Refer to the exhibit. An operational technology (OT) architect has implemented Modbus TCP with a simulation Conpot server to identify and control Modbus traffic in their OT network. The FortiGate-Edge device is configured with a software switch interface, SSW-01. Based on the topology shown in the exhibit, which two statements must be true for the simulation of traffic between client and server to be successful? (Choose two answers)

A. An IP address must be assigned to port5.
B. The FortiGate-Edge device must be in network address translation (NAT) operation mode.
C. The FortiGate device must be in offline intrusion detection system (IDS) mode.
D. In the FortiGate firewall policy, NAT must be enabled from port3 to SSW-01.

Correct Answer: B,D

Brave-Dump Clients Votes

BC 50%

BD 50%

Comments

mahmoud mostafa 2025-11-11 10:18:49

Selected Answers: B, C

I think >>>>>>>>>>>>>> B,C is the correct answer
b>>>>> fortigate to be in nat mode ........ okay
D>>>>> """""""""""Flase""""""""" while the policy must not has the nat enabled
if nat is enabled , this may work but not a must to enable nating ,,,,, another thing is that
for most correct policy configuration,,,,,,, nat to be disabled here.
/////////////////////////////
C >>>>>>>>>""""""""Correct"""""""'" for conpot server works as a fortiDeceptor in the honypot concept ,,, this server simulate or pretend to be vulnerable to attrack attacks and know them and analyses their behaviors.
so fortigate must be in offline IDS mode to allow these attacks
if fortigate in Inline IPS Mode it will block attacks preventing the mession of the conpot server

Majd al deen 2026-01-21 11:32:05

Selected Answers: B, D

B D