View all questions & answers for the FCP - FortiGate 7.4 Administrator Exam Materials exam


Question 73 Discussion

An administrator has configured the following settings: What are the two results of this configuration? (Choose two answers)

  • A. Device detection on all interfaces is enforced for 30 minutes
  • B. Denied users are blocked for 30 minutes
  • C. A session for denied traffic is created
  • D. The number of logs generated by denied traffic is reduced
Correct Answer: C,D

Brave-Dump Clients Votes

BC 50%
CD 50%

Comments



Abdulla 2025-05-16 09:38:37

Selected Answers: B, C


C. A session for denied traffic is created

The set ses-denied-traffic enable command ensures that FortiGate creates sessions even for denied traffic. This helps track and log blocked connections.

✔ B. Denied users are blocked for 30 minutes

The set block-session-timer 30 command keeps blocked sessions active for 30 seconds (not minutes). If the question intended to refer to seconds rather than minutes, then B could be correct.

Brave-Dumps Admin 2025-05-16 15:31:30

Selected Answers: C, D


Dear Abdulla, Thank you for sharing your experience in the Brave-Dumps community — you’re doing an excellent job!

C & D is confirmed as per Fortigate 7.4 Study guide page 49

C is Correct: "This creates the denied session in the session table and, if the session is denied, all packets of that session are also denied."

D is Correct: "To reduce the number of log messages generated and improve performance, you can enable a session table entry of dropped traffic." & "...which reduces CPU usage and log generation."

B is not Correct: From the guide "This determines how long a session will be kept in the session table by setting block-session-timer in the CLI. By default, it is set to 30 seconds." This means that the block-session-timer setting does not define how long a user is blocked, but rather how long a denied traffic session remains in the session table.