View all questions & answers for the FCSS - Network Security 7.4 Support Engineer Exam Materials exam


Question 21 Discussion

Refer to the exhibit, which contains a screenshot of some phase 1 settings. The VPN is up. To monitor traffic flow, the administrator enters the following CLI commands on an SSH session on FortiGate. However, the sniffer does not show any output. Why? (Choose one answer)

  • A. Change the filter to sniff protocol TCP
  • B. It must sniff IP address 10.0.10.1
  • C. Change the filter to sniff traffic on port1
  • D. NAT Traversal is enabled
Correct Answer: D

Brave-Dump Clients Votes

D 100%

Comments



Brave-Dumps Admin 2025-05-12 14:47:09

Selected Answers: D


"The diagnose command is filtering for traffic on port 500, but with NAT Traversal enabled, IKE negotiations use port 4500 instead."

So there is no output