New Year Sale ! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions

Fortinet Exam NSE8_812 Topic 1 Question 24 Discussion

Actual exam question for Fortinet's NSE8_812 exam
Question #: 24
Topic #: 1
[All NSE8_812 Questions]

Refer to the exhibits.

The exhibits show a diagram of a requested topology and the base IPsec configuration.

A customer asks you to configure ADVPN via two internet underlays. The requirement is that you use one interface with a single IP address on DC FortiGate.

In this scenario, which feature should be implemented to achieve this requirement?

Show Suggested Answer Hide Answer
Suggested Answer: A

A is correct because using network-overlay id allows you to configure multiple ADVPN tunnels on a single interface with a single IP address on the DC FortiGate. This is explained in the FortiGate Administration Guide under ADVPN > Configuring ADVPN > Configuring ADVPN on the hub. References: https://docs.fortinet.com/document/fortigate/7.4.0/administration-guide/978793/advpn https://docs.fortinet.com/document/fortigate/7.4.0/administration-guide/978793/advpn/978794/configuring-advpn


Contribute your Thoughts:

Vivan
6 months ago
I'm just glad they didn't include an option for using a magic wand to configure ADVPN. That would have really thrown me off!
upvoted 0 times
Ronald
5 months ago
C) Use local-id
upvoted 0 times
...
Latrice
5 months ago
A) Use network-overlay id
upvoted 0 times
...
...
Kris
6 months ago
I agree with Beckie, using local-id makes sense for this scenario.
upvoted 0 times
...
Roy
6 months ago
Use network-overlay id? Seriously? I think the developers who came up with that option must have been on a different planet when they wrote this question.
upvoted 0 times
Tamekia
5 months ago
Maybe we should consider using local-id or peer-id instead.
upvoted 0 times
...
Aja
6 months ago
Yeah, I don't think that's the right feature to use in this scenario.
upvoted 0 times
...
Floyd
6 months ago
I agree, using network-overlay id seems like a strange choice.
upvoted 0 times
...
...
Beckie
6 months ago
I think the answer is C) Use local-id.
upvoted 0 times
...
Janey
6 months ago
The exhibits are a bit confusing, but I think using peer-id is the key. Why else would they mention it in the options?
upvoted 0 times
...
Catalina
6 months ago
Hmm, I'm not sure about that. Changing advpn2 to IKEv1 might be the better choice here. It's worth looking into.
upvoted 0 times
Trina
6 months ago
I agree with Trina, let's consider changing advpn2 to IKEv1.
upvoted 0 times
...
Jerlene
6 months ago
I'm not sure about that. Changing advpn2 to IKEv1 might be the better choice here. It's worth looking into.
upvoted 0 times
...
Lavonda
6 months ago
I think we should use network-overlay id.
upvoted 0 times
...
...
Olene
7 months ago
Option C seems like the way to go. Using local-id should help us achieve the single IP address requirement on the DC FortiGate.
upvoted 0 times
Gayla
6 months ago
Agreed, that should help us meet the single IP address requirement on the DC FortiGate.
upvoted 0 times
...
Nan
6 months ago
I think we should go with option C, using local-id.
upvoted 0 times
...
Coral
6 months ago
Yes, local-id is the feature we need to implement in this scenario to achieve the desired configuration.
upvoted 0 times
...
Renea
6 months ago
I agree, local-id is the best choice for this scenario.
upvoted 0 times
...
Paola
6 months ago
I agree, using local-id will definitely help us meet the requirement for a single IP address on the DC FortiGate.
upvoted 0 times
...
Lilli
6 months ago
Option C seems like the way to go. Using local-id should help us achieve the single IP address requirement on the DC FortiGate.
upvoted 0 times
...
...

Save Cancel