New Year Sale ! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Fortinet Exam FCSS_SASE_AD-23 Topic 1 Question 15 Discussion

Actual exam question for Fortinet's FCSS_SASE_AD-23 exam
Question #: 15
Topic #: 1
[All FCSS_SASE_AD-23 Questions]

An organization needs to resolve internal hostnames using its internal rather than public DNS servers for remotely connected endpoints. Which two components must be configured on FortiSASE to achieve this? (Choose two.)

Show Suggested Answer Hide Answer
Suggested Answer: B, C

To resolve internal hostnames using internal DNS servers for remotely connected endpoints, the following two components must be configured on FortiSASE:

Split DNS Rules:

Split DNS allows the configuration of specific DNS queries to be directed to internal DNS servers instead of public DNS servers.

This ensures that internal hostnames are resolved using the organization's internal DNS infrastructure, maintaining privacy and accuracy for internal network resources.

Split Tunneling Destinations:

Split tunneling allows specific traffic (such as DNS queries for internal domains) to be routed through the VPN tunnel while other traffic is sent directly to the internet.

By configuring split tunneling destinations, you can ensure that DNS queries for internal hostnames are directed through the VPN to the internal DNS servers.


FortiOS 7.2 Administration Guide: Provides details on configuring split DNS and split tunneling for VPN clients.

FortiSASE 23.2 Documentation: Explains the implementation and configuration of split DNS and split tunneling for securely resolving internal hostnames.

by Verlene at Nov 18, 2024, 12:14 PM

Limited Time Offer

25%

Off

Get Premium FCSS_SASE_AD-23 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Wilburn
3 days ago
B and D, no doubt. But I'm more curious about who came up with these answer options. Sounds like a game of 'Guess the Networking Buzzwords'!
upvoted 0 times
...
Bambi
8 days ago
Definitely B and D. Unless, of course, you're feeling adventurous and want to try some SSL deep inspection on the side.
upvoted 0 times
...
Wenona
15 days ago
I'm not sure about DNS filter. Can someone explain why it is needed for this configuration?
upvoted 0 times
...
Gregoria
19 days ago
I agree with Magda. Split DNS rules will help resolve internal hostnames using internal DNS servers.
upvoted 0 times
...
Emile
30 days ago
B and D, easy peasy. Now, how about a side of Split Tunneling for some extra spice?
upvoted 0 times
Darrel
8 days ago
Sounds good to me!
upvoted 0 times
...
Deeanna
20 days ago
D) DNS filter
upvoted 0 times
...
Delisa
21 days ago
B) Split DNS rules
upvoted 0 times
...
...
Magda
1 months ago
I think the answer is B) Split DNS rules and D) DNS filter.
upvoted 0 times
...
Evette
1 months ago
Split DNS rules and DNS filter? Sounds like a party for the network admin!
upvoted 0 times
Eleonora
24 days ago
B) Split DNS rules
upvoted 0 times
...
Cletus
26 days ago
A) SSL deep inspection
upvoted 0 times
...
...

Save Cancel