Fortinet Exam NSE7_NST-7.2 Topic 5 Question 8 Discussion

Actual exam question for Fortinet's NSE7_NST-7.2 exam

Question #: 8
Topic #: 5

[All NSE7_NST-7.2 Questions]

Which three conditions are required for two FortiGate devices to form an OSPF adjacency? (Choose three.)

AOSPF link costs match.

BOSPF interface priority settings are unique

COSPF interface network types match

DAuthentication settings match.

EOSPF router IDs are unique.

Show Suggested Answer

Suggested Answer: C

Capturing ESP Traffic:

ESP (Encapsulating Security Payload) traffic is associated with IPsec and is identified by the protocol number 50. To capture ESP traffic, you need to filter packets based on this protocol.

In this specific case, you also need to filter for the host associated with the VPN tunnel, which is 10.200.3.2 as indicated in the exhibit.

Sniffer Command:

The correct command to capture ESP traffic for the VPN named DialUp_0 is:

diagnose sniffer packet any 'esp and host 10.200.3.2'

This command ensures that only ESP packets to and from the specified host are captured, providing a focused and relevant data set for troubleshooting.

Fortinet Documentation: Verifying IPsec VPN Tunnels (Fortinet Docs) (Welcome to the Fortinet Community!).

Fortinet Community: Troubleshooting IPsec VPN Tunnels (Welcome to the Fortinet Community!) (Fortinet Docs).

by Janey at Jun 30, 2024, 09:00 PM

Limited Time Offer

25%

Off

Get Premium NSE7_NST-7.2 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Daren

1 months ago

Wait, is 'B) OSPF interface priority settings are unique' a real thing? I feel like that's just asking for trouble. Let's stick to the basics, folks!

upvoted 0 times

Magnolia

16 days ago

User 3: E) OSPF router IDs are unique.

upvoted 0 times

...

Sanda

20 days ago

User 2: C) OSPF interface network types match

upvoted 0 times

...

Tawna

27 days ago

User 1: A) OSPF link costs match.

upvoted 0 times

...

Veta

1 months ago

Okay, let's see... C) and E) are definitely must-haves, and I'd go with D) as well. B) OSPF interface priority seems a bit overkill for this, but what do I know?

upvoted 0 times

...

Karl

1 months ago

Haha, don't forget to check your OSPF link costs, Susana! Can't have those mismatched or your adjacency is toast.

upvoted 0 times

...

Carlee

2 months ago

I agree with C) and E), and I think D) Authentication settings should also match. Got to keep those devices secure, you know?

upvoted 0 times

Jacqueline

8 days ago

D) Authentication settings match

upvoted 0 times

...

Emerson

9 days ago

True, all three conditions are necessary for a successful OSPF adjacency.

upvoted 0 times

...

Ryan

14 days ago

E) OSPF router IDs are unique

upvoted 0 times

...

Pearline

17 days ago

C) OSPF interface network types match

upvoted 0 times

...

Bea

27 days ago

Don't forget about OSPF link costs matching as well.

upvoted 0 times

...

Roselle

1 months ago

Agreed, authentication settings should match for security.

upvoted 0 times

...

Oneida

1 months ago

Yes, C) and E) are definitely important for OSPF adjacency.

upvoted 0 times

...

Susana

2 months ago

Definitely need C) OSPF interface network types to match, and E) OSPF router IDs to be unique. But I'm not sure about the other options - what do you guys think?

upvoted 0 times