Fortinet Exam NSE7_NST-7.2 Topic 5 Question 8 Discussion

Actual exam question for Fortinet's NSE7_NST-7.2 exam

Question #: 8
Topic #: 5

[All NSE7_NST-7.2 Questions]

Which three conditions are required for two FortiGate devices to form an OSPF adjacency? (Choose three.)

AOSPF link costs match.

BOSPF interface priority settings are unique

COSPF interface network types match

DAuthentication settings match.

EOSPF router IDs are unique.

Show Suggested Answer

Suggested Answer: C

Capturing ESP Traffic:

ESP (Encapsulating Security Payload) traffic is associated with IPsec and is identified by the protocol number 50. To capture ESP traffic, you need to filter packets based on this protocol.

In this specific case, you also need to filter for the host associated with the VPN tunnel, which is 10.200.3.2 as indicated in the exhibit.

Sniffer Command:

The correct command to capture ESP traffic for the VPN named DialUp_0 is:

diagnose sniffer packet any 'esp and host 10.200.3.2'

This command ensures that only ESP packets to and from the specified host are captured, providing a focused and relevant data set for troubleshooting.

Fortinet Documentation: Verifying IPsec VPN Tunnels (Fortinet Docs) (Welcome to the Fortinet Community!).

Fortinet Community: Troubleshooting IPsec VPN Tunnels (Welcome to the Fortinet Community!) (Fortinet Docs).

by Janey at Jun 30, 2024, 09:00 PM

Limited Time Offer

25%

Off

Get Premium NSE7_NST-7.2 Questions as Interactive Web-Based Practice Test or PDF