Refer to the exhibits. The configuration on FortiGate and partial internet session information from a user on the internal network are shown. An administrator would like to test session failover between the two service provider connections. Which two changes must the administrator make to force this existing session to immediately start using the other interface? (Choose two answers)

A. Change the priority of the port1 static route to 11.
B. Configure set snat-route-change enable.
C. Modify the distance of the port1 route to 1.
D. Change the priority of the port2 static route to 5.

Correct Answer: A,B

Brave-Dump Clients Votes

AB 66.67%

AD 33.33%

Comments

Pedro Joao Serafim Junior 2025-12-12 05:47:19

Selected Answers: A, D

I believe that change snap to enable, don't make a current effect immediately with all sessions established on firewall.

Anonymous User 2025-12-26 08:46:28

Selected Answers: A, B

The user wants to test session failover. Currently, the session is established on port1. Enabling `snat-route-change` and changing the priority of the default route on port 1 will force the establishment of a new session using the other route. Changing the priority of port 2 to 5 will generate an ECMP.

For me A and B are correct

James 2026-01-24 23:06:26

Selected Answers: A, B

D would make it become ECMP which traffic could still egress from port1