1. Home
  2. Fortinet
  3. NSE7_EFW-6.4

Fortinet NSE 7 - Enterprise Firewall 6.4

Exam Details

  • Exam Code
    :NSE7_EFW-6.4
  • Exam Name
    :Fortinet NSE 7 - Enterprise Firewall 6.4
  • Certification
    :Fortinet Certifications
  • Vendor
    :Fortinet
  • Total Questions
    :122 Q&As
  • Last Updated
    :Jun 17, 2025

Fortinet Fortinet Certifications NSE7_EFW-6.4 Questions & Answers

  • Question 101:

    An administrator has configured a FortiGate device with two VDOMs: root and internal. The administrator has also created and inter-VDOM link that connects both VDOMs. The objective is to have each VDOM advertise some routes to the other VDOM via OSPF through the inter-VDOM link. What OSPF configuration settings must match in both VDOMs to have the OSPF adjacency successfully forming? (Choose three.)

    A. Router ID.

    B. OSPF interface area.

    C. OSPF interface cost.

    D. OSPF interface MTU.

    E. Interface subnet mask.

  • Question 102:

    An administrator wants to capture ESP traffic between two FortiGates using the built-in sniffer. If the administrator knows that there is no NAT device located between both FortiGates, what command should the administrator execute?

    A. diagnose sniffer packet any `udp port 500'

    B. diagnose sniffer packet any `udp port 4500'

    C. diagnose sniffer packet any `esp'

    D. diagnose sniffer packet any `udp port 500 or udp port 4500'

  • Question 103:

    Examine the output of the `get router info bgp summary' command shown in the exhibit; then answer the question below.

    Which statements are true regarding the output in the exhibit? (Choose two.)

    A. BGP state of the peer 10.125.0.60 is Established.

    B. BGP peer 10.200.3.1 has never been down since the BGP counters were cleared.

    C. Local BGP peer has not received an OpenConfirm from 10.200.3.1.

    D. The local BGP peer has received a total of 3 BGP prefixes.

  • Question 104:

    Two independent FortiGate HA clusters are connected to the same broadcast domain. The administrator has reported that both clusters are using the same HA virtual MAC address. This creates a duplicated MAC address problem in the network. What HA setting must be changed in one of the HA clusters to fix the problem?

    A. Group ID.

    B. Group name.

    C. Session pickup.

    D. Gratuitous ARPs.

  • Question 105:

    View the exhibit, which contains the output of a BGP debug command, and then answer the question below.

    Which of the following statements about the exhibit are true? (Choose two.)

    A. For the peer 10.125.0.60, the BGP state of is Established.

    B. The local BGP peer has received a total of three BGP prefixes.

    C. Since the BGP counters were last reset, the BGP peer 10.200.3.1 has never been down.

    D. The local BGP peer has not established a TCP session to the BGP peer 10.200.3.1.

  • Question 106:

    Examine the IPsec configuration shown in the exhibit; then answer the question below.

    An administrator wants to monitor the VPN by enabling the IKE real time debug using these commands: diagnose vpn ike log-filter src-addr4 10.0.10.1 diagnose debug application ike -1 diagnose debug enable The VPN is currently up, there is no traffic crossing the tunnel and DPD packets are being interchanged

    between both IPsec gateways. However, the IKE real time debug does NOT show any output. Why isn't there any output?

    A. The IKE real time shows the phases 1 and 2 negotiations only. It does not show any more output once the tunnel is up.

    B. The log-filter setting is set incorrectly. The VPN's traffic does not match this filter.

    C. The IKE real time debug shows the phase 1 negotiation only. For information after that, the

    administrator must use the IPsec real time debug instead: diagnose debug application ipsec -1.

    D. The IKE real time debug shows error messages only. If it does not provide any output, it indicates that the tunnel is operating normally.

  • Question 107:

    Which real time debug should an administrator enable to troubleshoot RADIUS authentication problems?

    A. Diagnose debug application radius -1.

    B. Diagnose debug application fnbamd -1.

    C. Diagnose authd console 璴og enable.

    D. Diagnose radius console 璴og enable.

  • Question 108:

    View the exhibit, which contains the output of get sys ha status, and then answer the question below.

    Which statements are correct regarding the output? (Choose two.)

    A. The slave configuration is not synchronized with the master.

    B. The HA management IP is 169.254.0.2.

    C. Master is selected because it is the only device in the cluster.

    D. port 7 is used the HA heartbeat on all devices in the cluster.

  • Question 109:

    What events are recorded in the crashlogs of a FortiGate device? (Choose two.)

    A. A process crash.

    B. Configuration changes.

    C. Changes in the status of any of the FortiGuard licenses.

    D. System entering to and leaving from the proxy conserve mode.

  • Question 110:

    View the exhibit, which contains the output of a diagnose command, and then answer the question below.

    What statements are correct regarding the output? (Choose two.)

    A. This is an expected session created by a session helper.

    B. Traffic in the original direction (coming from the IP address 10.171.122.38) will be routed to the next-hop IP address 10.0.1.10.

    C. Traffic in the original direction (coming from the IP address 10.171.122.38) will be routed to the next-hop IP address 10.200.1.1.

    D. This is an expected session created by an application control profile.

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Fortinet exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your NSE7_EFW-6.4 exam preparations and Fortinet certification application, do not hesitate to visit our Vcedump.com to find your solutions here.