Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions

Fortinet Exam NSE7_ZTA-7.2 Topic 1 Question 28 Discussion

Actual exam question for Fortinet's NSE7_ZTA-7.2 exam
Question #: 28
Topic #: 1
[All NSE7_ZTA-7.2 Questions]

Exhibit.

Based on the ZTNA logs provided, which statement is true?

Show Suggested Answer Hide Answer
Suggested Answer: A

Based on the ZTNA logs provided, the true statement is:

A) The Remote_user ZTNA tag has matched the ZTNA rule: The log includes a user tag 'ztna_user' and a policy name 'External_Access_FAZ', which suggests that the ZTNA tag for 'Remote_User' has successfully matched the ZTNA rule defined in the policy to allow access.

The other options are not supported by the information in the log:

B) An authentication scheme is configured: The log does not provide details about an authentication scheme.

C) The external IP for ZTNA server is 10.122.0.139: The log entry indicates 'dstip=10.122.0.139' which suggests that this is the destination IP address for the traffic, not necessarily the external IP of the ZTNA server.

D) Traffic is allowed by firewall policy 1: The log entry 'policyid=1' indicates that the traffic is matched to firewall policy ID 1, but it does not explicitly state that the traffic is allowed; although the term 'action=accept' suggests that the action taken by the policy is to allow the traffic, the answer option D could be considered correct as well.


Interpretation of FortiGate ZTNA Log Files.

Analyzing Traffic Logs for Zero Trust Network Access.

Contribute your Thoughts:

Celeste
12 days ago
This question is a piece of cake. I could solve it in my sleep. *yawns*
upvoted 0 times
Barney
2 days ago
A) The Remote_user ZTNA tag has matched the ZTNA rule
upvoted 0 times
...
...
Aracelis
15 days ago
Haha, of course the traffic is allowed by firewall policy 1. How else would it be getting through?
upvoted 0 times
...
Gail
21 days ago
I'm not sure, but I think the answer might be B) An authentication scheme is configured.
upvoted 0 times
...
Jules
22 days ago
I agree with Deangelo, the ZTNA logs show that the Remote_user ZTNA tag has matched the ZTNA rule.
upvoted 0 times
...
Kirk
25 days ago
The external IP for the ZTNA server is clearly 10.122.0.139. It's right there in the logs!
upvoted 0 times
Kenny
14 days ago
User 2
upvoted 0 times
...
Latrice
18 days ago
User 1
upvoted 0 times
...
...
Deangelo
26 days ago
I think the answer is A) The Remote_user ZTNA tag has matched the ZTNA rule.
upvoted 0 times
...
Talia
1 months ago
Hmm, an authentication scheme has to be configured for this to work, right? Otherwise, how would the user authenticate?
upvoted 0 times
...
Sanjuana
1 months ago
The Remote_user ZTNA tag has definitely matched the ZTNA rule. That's the only logical conclusion I can draw from these logs.
upvoted 0 times
Antione
22 days ago
C) The external IP for ZTNA server is 10 122 0 139.
upvoted 0 times
...
Stacey
1 months ago
A) The Remote_user ZTNA tag has matched the ZTNA rule.
upvoted 0 times
...
...

Save Cancel