If the administrator knows that there is no NAT device located between both FortiGates, what command should the administrator execute?

NSE7_EFW-7.0

Last Post by Colton 1 year ago

1 Posts

1 Users

0 Likes

81 Views

RSS

Colton

(@finnecolton)

Posts: 729

Noble Member

Topic starter

An administrator wants to capture ESP traffic between two FortiGates using the built-in sniffer.

If the administrator knows that there is no NAT device located between both FortiGates, what command should the administrator execute?

A . diagnose sniffer packet any ‘udp port 500’
B. diagnose sniffer packet any ‘udp port 4500’
C. diagnose sniffer packet any ‘esp’
D. diagnose sniffer packet any ‘udp port 500 or udp port 4500’

Show Answer Hide Answer

Suggested Answer: C

Explanation:

Capture IKE Traffic without NAT:diagnose sniffer packet ‘host and udp port 500’―――――――――――――――――――――――――――――――――――――-Capture ESP Traffic without NAT:diagnose sniffer packet any ‘host and esp’―――――――――――――――――――――――――――――――――――――-Capture IKE and ESP with NAT-T:diagnose sniffer packet any ‘host and (udp port 500 or udp port 4500)’

Posted : 29/01/2023 2:46 am

Topic Tags

NSE 7 Network Security Ar

Latest Fortinet NSE7_EFW-7.0 Dumps Valid Version

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund

Instant Download PDF

Forum Jump:

Previous Topic

Next Topic