1. Home
  2. Fortinet
  3. NSE7_SDW-7.0

Fortinet NSE 7 - SD-WAN 7.0

Exam Details

  • Exam Code
    :NSE7_SDW-7.0
  • Exam Name
    :Fortinet NSE 7 - SD-WAN 7.0
  • Certification
    :Fortinet Certifications
  • Vendor
    :Fortinet
  • Total Questions
    :134 Q&As
  • Last Updated
    :Jun 17, 2025

Fortinet Fortinet Certifications NSE7_SDW-7.0 Questions & Answers

  • Question 61:

    Refer to the exhibit.

    Based on the output shown in the exhibit, which two criteria on the SD-WAN member configuration can be used to select an outgoing interface in an SD-WAN rule? (Choose two.)

    A. Set priority 10.

    B. Set cost 15.

    C. Set load-balance-mode source-ip-ip-based.

    D. Set source 100.64.1.1.

  • Question 62:

    What is the purpose of a predefined template on the FortiAnalyzer?

    A. It can be edited and modified as required

    B. It specifies the report layout which contains predefined texts, charts, and macros

    C. It specifies report settings which contains time period, device selection, and schedule

    D. It contains predefined data to generate mock reports

  • Question 63:

    Which three protocols are available only on the command line to configure as performance SLA status check? (Choose three.)

    A. smtp

    B. tcp-echo

    C. twamp

    D. udp-echo

    E. icmp

  • Question 64:

    Refer to the exhibit.

    Which two statements about the status of the VPN tunnel are true?

    A. There are separate virtual interfaces for each dial-up client.

    B. VPN static routes are prevented from populating the FortiGate routing table.

    C. FortiGate created a single IPsec virtual interface that is shared by all clients.

    D. 100.64.3.1 is one of the remote IP address that comes through index interface 1.

  • Question 65:

    Refer to the exhibit.

    Based on output shown in the exhibit, which two commands can be used by SD-WAN rules? (Choose two.)

    A. set cost 15.

    B. set source 100.64.1.1.

    C. set priority 10.

    D. set load-balance-mode source-ip-based.

  • Question 66:

    Refer to the exhibit.

    Which statement about the trace evaluation by FortiGate is true?

    A. Packets exceeding the configured maximum concurrent connection limit are denied by the per-IP shaper.

    B. The packet exceeded the configured bandwidth and was dropped based on the priority configuration.

    C. The packet exceeded the configured maximum bandwidth and was dropped by the shared shaper.

    D. Packets exceeding the configured concurrent connection limit are dropped based on the priority configuration.

  • Question 67:

    Which diagnostic command can you use to show interface-specific SLA logs for the last 10 minutes?

    A. diagnose sys sdwan log

    B. diagnose sys sdwan health-check

    C. diagnose sys sdwan intf-sla-log

    D. diagnose sys sdwan sla-log

  • Question 68:

    In the default SD-WAN minimum configuration, which two statements are correct when traffic matches the default implicit SD-WAN rule? (Choose two )

    A. Traffic has matched none of the FortiGate policy routes.

    B. Matched traffic failed RPF and was caught by the rule.

    C. The FIB lookup resolved interface was the SD-WAN interface.

    D. An absolute SD-WAN rule was defined and matched traffic.

  • Question 69:

    Refer to the exhibits.

    Exhibit A shows the SD-WAN performance SLA and exhibit B shows the SD-WAN member and the static routes configuration. If port2 is detected dead by FortiGate, which expected behavior is correct?

    A. Port2 becomes alive after one successful probe is detected.

    B. The SD-WAN interface becomes disabled and port1 becomes the WAN interface.

    C. Dead members require manual administrator access to bring them back alive.

    D. Subnets 10.0.20.0/23 and 172.20.0.0/16 are reachable only through port1.

  • Question 70:

    Refer to exhibits.

    Exhibit A, which shows the SD-WAN performance SLA and exhibit B shows the health of the participating SD-WAN members.

    Based on the exhibits, which statement is correct?

    A. The dead member interface stays unavailable until an administrator manually brings the interface back.

    B. Port2 needs to wait 500 milliseconds to change the status from alive to dead.

    C. Static routes using port2 are active in the routing table.

    D. FortiGate has not received three consecutive requests from the SLA server configured for port2.

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Fortinet exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your NSE7_SDW-7.0 exam preparations and Fortinet certification application, do not hesitate to visit our Vcedump.com to find your solutions here.