Free Preparation Discussions
MENU
Fortinet Exam NSE7_ZTA-7.2 Topic 3 Question 16 Discussion
Topic #: 3
Exhibit.
Based on the ZTNA logs provided, which statement is true?
Based on the ZTNA logs provided, the true statement is:
A) The Remote_user ZTNA tag has matched the ZTNA rule: The log includes a user tag 'ztna_user' and a policy name 'External_Access_FAZ', which suggests that the ZTNA tag for 'Remote_User' has successfully matched the ZTNA rule defined in the policy to allow access.
The other options are not supported by the information in the log:
B) An authentication scheme is configured: The log does not provide details about an authentication scheme.
C) The external IP for ZTNA server is 10.122.0.139: The log entry indicates 'dstip=10.122.0.139' which suggests that this is the destination IP address for the traffic, not necessarily the external IP of the ZTNA server.
D) Traffic is allowed by firewall policy 1: The log entry 'policyid=1' indicates that the traffic is matched to firewall policy ID 1, but it does not explicitly state that the traffic is allowed; although the term 'action=accept' suggests that the action taken by the policy is to allow the traffic, the answer option D could be considered correct as well.
Interpretation of FortiGate ZTNA Log Files.
Analyzing Traffic Logs for Zero Trust Network Access.
Brett
4 months agoMike
4 months agoGraham
3 months agoBasilia
3 months agoKrystina
4 months agoVincenza
5 months agoDorethea
3 months agoBrynn
3 months agoJosefa
3 months agoSherita
3 months agoSabrina
4 months agoClemencia
4 months agoCordie
5 months agoRyan
4 months agoGeorgeanna
4 months agoJavier
5 months agoSalome
5 months agoVerona
5 months agoCasie
4 months agoPercy
4 months agoKanisha
5 months agoOcie
5 months agoJesusa
5 months agoMichael
5 months ago