An organization requires remote users to send external application data running on their PCs and access FTP resources through an SSL/TLS connection.
Which FortiGate configuration can achieve this goal?

1. A. SSL VPN bookmark
2. B. SSL VPN tunnel
3. C. Zero trust network access
4. D. SSL VPN quick connection

Correct Answer: B
FortiGate Infrastructure 7.2 Study Guide (p.198): "Tunnel mode requires FortiClient to connect to FortiGate. FortiClient adds a virtual network adapter identified as fortissl to the user’s PC. This virtual adapter dynamically receives an IP address from FortiGate each time FortiGate establishes a new VPN connection. Inside the tunnel, all traffic is SSL/TLS encapsulated. The main advantage of tunnel mode over web mode is that after the VPN is established, any IP network application running on the client can send traffic through the tunnel."
An SSL VPN tunnel allows remote users to establish a secure and encrypted Virtual Private Network (VPN) connection to the private network using the SSL/TLS protocol1. An SSL VPN tunnel can provide access to network resources such as FTP servers, as well as external applications running on the user’s PC1.
An SSL VPN bookmark is a web link that provides access to network resources through the SSL VPN web portal1. It does not support external applications running on the user’s PC.
Zero trust network access (ZTNA) is a security model that provides role-based application access to remote users without exposing the private network to the internet2. It does not use SSL/TLS protocol, but rather a proprietary ZTNA protocol.
SSL VPN quick connection is a feature that allows users to connect to an SSL VPN tunnel without installing FortiClient or any other software on their PC3. It requires a web browser that supports Java or ActiveX. It does not support external applications running on the user’s PC.

Refer to the exhibit.

An administrator is running a sniffer command as shown in the exhibit.
Which three pieces of information are included in the sniffer output? (Choose three.)

1. A. Interface name
2. B. Ethernet header
3. C. IP header
4. D. Application header
5. E. Packet payload

Correct Answer: ACE

An administrator configures outgoing interface any in a firewall policy. What is the result of the policy list view?

1. A. Search option is disabled.
2. B. Policy lookup is disabled.
3. C. By Sequence view is disabled.
4. D. Interface Pair view is disabled.

Correct Answer: D
"If you use multiple source or destination interfaces, or the any interface in a firewall policy, you cannot separate policies into sections by interface pairs—some would be triplets or more. So instead, policies are then always displayed in a single list (By Sequence)."

FortiGate is configured as a policy-based next-generation firewall (NGFW) and is applying web filtering and application control directly on the security policy. Which two other security profiles can you apply to the security policy? (Choose two.)

1. A. Antivirus scanning
2. B. File filter
3. C. DNS filter
4. D. Intrusion prevention

Correct Answer: AD

Refer to the web filter raw logs.

Based on the raw logs shown in the exhibit, which statement is correct?

1. A. Social networking web filter category is configured with the action set to authenticate.
2. B. The action on firewall policy ID 1 is set to warning.
3. C. Access to the social networking web filter category was explicitly blocked to all users.
4. D. The name of the firewall policy is all_users_web.

Correct Answer: A