Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Fortinet Exam FCSS_SASE_AD-23 Topic 2 Question 17 Discussion

Actual exam question for Fortinet's FCSS_SASE_AD-23 exam
Question #: 17
Topic #: 2
[All FCSS_SASE_AD-23 Questions]

An organization needs to resolve internal hostnames using its internal rather than public DNS servers for remotely connected endpoints. Which two components must be configured on FortiSASE to achieve this? (Choose two.)

Show Suggested Answer Hide Answer
Suggested Answer: B, C

To resolve internal hostnames using internal DNS servers for remotely connected endpoints, the following two components must be configured on FortiSASE:

Split DNS Rules:

Split DNS allows the configuration of specific DNS queries to be directed to internal DNS servers instead of public DNS servers.

This ensures that internal hostnames are resolved using the organization's internal DNS infrastructure, maintaining privacy and accuracy for internal network resources.

Split Tunneling Destinations:

Split tunneling allows specific traffic (such as DNS queries for internal domains) to be routed through the VPN tunnel while other traffic is sent directly to the internet.

By configuring split tunneling destinations, you can ensure that DNS queries for internal hostnames are directed through the VPN to the internal DNS servers.


FortiOS 7.2 Administration Guide: Provides details on configuring split DNS and split tunneling for VPN clients.

FortiSASE 23.2 Documentation: Explains the implementation and configuration of split DNS and split tunneling for securely resolving internal hostnames.

by Tyisha at Jan 10, 2025, 06:26 PM

Limited Time Offer

25%

Off

Get Premium FCSS_SASE_AD-23 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Jose
16 days ago
I wonder if the exam will have a joke question like 'Which component is used to brew coffee in the IT closet?' A) Espresso machine B) Keurig C) Chemex D) All of the above
upvoted 0 times
Gilma
6 days ago
D) DNS filter
upvoted 0 times
...
Gilma
7 days ago
B) Split DNS rules
upvoted 0 times
...
...
Colene
20 days ago
This is a classic IT exam question. The answer is so obvious, it makes me wonder if the test writer is trying to trick us somehow. Oh well, B and D it is!
upvoted 0 times
Marva
14 days ago
I agree, B and D are the correct choices for resolving internal hostnames.
upvoted 0 times
...
...
Willow
26 days ago
I agree with Xuan and Willard. B and D are the way to go. Though if I were the one taking the exam, I'd probably still overthink it and second-guess myself.
upvoted 0 times
Earleen
7 days ago
It's always better to go with your initial instinct. Trust yourself!
upvoted 0 times
...
Elenore
12 days ago
Yes, I agree. Split DNS rules and DNS filter should be configured on FortiSASE.
upvoted 0 times
...
Thomasena
21 days ago
I think B and D are the correct choices for this scenario.
upvoted 0 times
...
...
Willard
1 months ago
B and D for sure. Split tunneling destinations would be for handling public internet traffic, not internal hostnames.
upvoted 0 times
...
Willard
1 months ago
I'm not sure about DNS filter. Can someone explain how it helps in this scenario?
upvoted 0 times
...
Xuan
1 months ago
Split DNS rules and DNS filter, duh! How else would you resolve internal hostnames without using public DNS servers?
upvoted 0 times
Daron
23 days ago
So, by configuring Split DNS rules and DNS filter on FortiSASE, we can ensure internal hostnames are resolved using internal DNS servers for remotely connected endpoints.
upvoted 0 times
...
Chanel
24 days ago
DNS filter can be used to block or allow specific DNS queries based on policies set by the organization.
upvoted 0 times
...
Jame
25 days ago
Split DNS rules allow us to specify which DNS queries should be resolved using internal DNS servers.
upvoted 0 times
...
...
Nidia
1 months ago
I agree with Jill. Split DNS rules will help resolve internal hostnames using internal DNS servers.
upvoted 0 times
...
Jill
1 months ago
I think we need to configure Split DNS rules and DNS filter on FortiSASE.
upvoted 0 times
...

Save Cancel