Referring to the command output shown in the exhibit, how many hosts are connected to the FortiGate? http://cookbook.fortinet.com/troubleshooting-fortigate-installation/

The wireless controller diagnostic output is shown in the exhibit.
Which three statements are true? (Choose three.) http://docs.fortinet.com/uploaded/files/1083/fortigate-managing-devices-50.pdf

You are installing a new FortiAP as shown in the exhibit, however, the FortiAP cannot discover the FortiGate.
The FortiAP obtained an IP from the DHCP server and is reachable.
Which two configurations will resolve the problem? (Choose two.)
A)

B)

C)

D)

https://forum.fortinet.com/tm.aspx?m=112739

You are asked to implement a wireless network for a conference center and need to provision a high number of access points to support a large number of wireless client connections.
Which statement describes a valid solution for this requirement?

The FortiGate is used as an IPsec gateway at a branch office. Two tunnels, tunA and tunB, are established between this FortiGate and the headquarters’ IPsec gateway. The branch office’s subnet is 10.1.1.0/24. The headquarters’ subnet is 10.2.2.0/24. The desired usage for tunA and tunB has been defined as follows:
– sessions initiated from 10.1.1.0/24 to 10.2.2.0/24 must be routed out over tunA when tunA is up
– sessions initiated from 10.1.1.0/24 to 10.2.2.0/24 have to be routed out over tunB when tunA is down
– sessions initiated from 10.2.2.0/24 can ingress either on tunA or on tunB
Which static routing configuration meets the requirements?
A)

B)

C)

D)

You must establish a BGP peering with a service provider. The provider has supplied you with BGP peering parameters and you performed the basic configuration shown in the exhibit on your FortiGate unit. You notice that your peering session is not coming up.
Which three missing configuration statements are needed to make this configuration functional? (Choose three.)
A)

B)

C)

D)

E)

You are asked to design a secure solution using Fortinet products for a company. The company recently has
Web servers that were exploited and defaced. The customer has also experienced Denial or Service due to
SYN Flood attacks. Taking this into consideration, the customer’s solution should have the following requirements:
– management requires network-based content filtering with man-in-the-middle inspection

– the customer has no existing public key infrastructure but requires centralized certificate management
– users are tracked by their active directory username without installing any software on their hosts
– Web servers that have been exploited need to be protected from the OWASP Top 10
– notification of high volume SYN Flood attacks when a threshold has been triggered
Which three solutions satisfy these requirements? (Choose three.)

A customer just bought an additional FortiGate device and plans to use their existing load balancer to distribute traffic across two FortiGate units participating on a BGP network serving different neighbors. The customer has mixed traffic of IPv4 and IPv6 TCP, UDP, and ICMP. The two FortiGate devices shown in the exhibit should be redundant to each other so that the NAT session and active session tables will synchronize and fail over to the unit that is still operating without any loss of data if one of the units fail.
Which high availability solution would you implement? http://docs.fortinet.com/uploaded/files/1074/fortigate-ha-40-mr2.pdf

A university is looking for a solution with the following requirements:
– wired and wireless connectivity
– authentication (LDAP)
– Web filtering, DLP and application control
– data base integration using LDAP to provide access to those students who are up-to-date with their monthly payments
– support for an external captive portal
Which solution meets these requirements?

A customer wants to secure the network shown in the exhibit with a full redundancy design.
Which security design would you use?