Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Fortinet Exam NSE7_PBC-7.2 Topic 1 Question 1 Discussion

Actual exam question for Fortinet's NSE7_PBC-7.2 exam
Question #: 1
Topic #: 1
[All NSE7_PBC-7.2 Questions]

You are deploying Amazon Web Services (AWS) GuardDuty to monitor malicious or unauthorized behaviors related to AWS resources. You will also use the Fortinet aws-lambda-guardduty script to translate feeds from AWS GuardDuty findings into a list of malicious IP addresses. FortiGate can then consume this list as an external threat feed.

Which Amazon AWS services must you subscribe to in order to use this feature?

Show Suggested Answer Hide Answer
Suggested Answer: B

You must subscribe to GuardDuty, CloudWatch, S3, and DynamoDB. https://docs.fortinet.com/document/fortigate-public-cloud/6.4.0/aws-administration-guide/908646/populating-threat-feeds-with-guardduty


by Bernardo at Nov 27, 2023, 12:26 AM

Limited Time Offer

25%

Off

Get Premium NSE7_PBC-7.2 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Lynna
10 months ago
Good point! I was just thinking the same thing. Maybe we'd need to set up some S3 buckets or CloudWatch logs to capture the GuardDuty findings and then have the Fortinet script access that data. This seems like it could get a bit complex, but the end result of integrating with FortiGate is pretty useful.
upvoted 0 times
...
Mila
10 months ago
Ah, I see. So we'd need to have both GuardDuty and Lambda enabled in our AWS environment to make this work. I wonder if there are any other services we might need to consider, like AWS CloudWatch or AWS S3 to handle the data flow?
upvoted 0 times
...
Peter
11 months ago
Yeah, I agree. The key services I can think of are AWS GuardDuty and AWS Lambda. GuardDuty is responsible for detecting the malicious or unauthorized behaviors, and the Fortinet script you mentioned is a Lambda function that translates those findings into a threat feed for FortiGate.
upvoted 0 times
...
Melodie
11 months ago
Hmm, this is a tricky one. I think we need to have a good understanding of the AWS services involved in this setup. From the question, it seems like we need to subscribe to AWS GuardDuty and possibly some other services to make this work.
upvoted 0 times
Ashanti
10 months ago
Seems like a comprehensive setup to detect malicious behavior.
upvoted 0 times
...
Dorothy
10 months ago
True, we need all these services to make the setup work.
upvoted 0 times
...
Felton
10 months ago
Don't forget about Amazon CloudWatch.
upvoted 0 times
...
Gearldine
10 months ago
Maybe we need to subscribe to AWS Lambda as well.
upvoted 0 times
...
Lenita
10 months ago
I think we also need to subscribe to Amazon S3.
upvoted 0 times
...
Britt
10 months ago
We need to subscribe to AWS GuardDuty for sure.
upvoted 0 times
...
...

Save Cancel