BlackFriday 2024! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Fortinet Exam NSE7_PBC-7.2 Topic 1 Question 1 Discussion

Actual exam question for Fortinet's NSE7_PBC-7.2 exam
Question #: 1
Topic #: 1
[All NSE7_PBC-7.2 Questions]

You are deploying Amazon Web Services (AWS) GuardDuty to monitor malicious or unauthorized behaviors related to AWS resources. You will also use the Fortinet aws-lambda-guardduty script to translate feeds from AWS GuardDuty findings into a list of malicious IP addresses. FortiGate can then consume this list as an external threat feed.

Which Amazon AWS services must you subscribe to in order to use this feature?

Show Suggested Answer Hide Answer
Suggested Answer: B

You must subscribe to GuardDuty, CloudWatch, S3, and DynamoDB. https://docs.fortinet.com/document/fortigate-public-cloud/6.4.0/aws-administration-guide/908646/populating-threat-feeds-with-guardduty


by Bernardo at Nov 27, 2023, 12:26 AM

Limited Time Offer

25%

Off

Get Premium NSE7_PBC-7.2 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Lynna
7 months ago
Good point! I was just thinking the same thing. Maybe we'd need to set up some S3 buckets or CloudWatch logs to capture the GuardDuty findings and then have the Fortinet script access that data. This seems like it could get a bit complex, but the end result of integrating with FortiGate is pretty useful.
upvoted 0 times
...
Mila
7 months ago
Ah, I see. So we'd need to have both GuardDuty and Lambda enabled in our AWS environment to make this work. I wonder if there are any other services we might need to consider, like AWS CloudWatch or AWS S3 to handle the data flow?
upvoted 0 times
...
Peter
7 months ago
Yeah, I agree. The key services I can think of are AWS GuardDuty and AWS Lambda. GuardDuty is responsible for detecting the malicious or unauthorized behaviors, and the Fortinet script you mentioned is a Lambda function that translates those findings into a threat feed for FortiGate.
upvoted 0 times
...
Melodie
7 months ago
Hmm, this is a tricky one. I think we need to have a good understanding of the AWS services involved in this setup. From the question, it seems like we need to subscribe to AWS GuardDuty and possibly some other services to make this work.
upvoted 0 times
Ashanti
7 months ago
Seems like a comprehensive setup to detect malicious behavior.
upvoted 0 times
...
Dorothy
7 months ago
True, we need all these services to make the setup work.
upvoted 0 times
...
Felton
7 months ago
Don't forget about Amazon CloudWatch.
upvoted 0 times
...
Gearldine
7 months ago
Maybe we need to subscribe to AWS Lambda as well.
upvoted 0 times
...
Lenita
7 months ago
I think we also need to subscribe to Amazon S3.
upvoted 0 times
...
Britt
7 months ago
We need to subscribe to AWS GuardDuty for sure.
upvoted 0 times
...
...

Save Cancel