Download Full Version NSE7_OTS-7.2 Fortinet Exam

Fortinet NSE 7 - OT Security 7.2 Questions and Answers

Question 13

Refer to the exhibit

In the topology shown in the exhibit, both PLCs can communicate directly with each other, without going through the firewall.

Which statement about the topology is true?

Options:

PLCs use IEEE802.1Q protocol to communicate each other.

An administrator can create firewall policies in the switch to secure between PLCs.

This integration solution expands VLAN capabilities from Layer 2 to Layer 3.

There is no micro-segmentation in this topology.

Question 14

Refer to the exhibit.

Based on the Purdue model, which three measures can be implemented in the control area zone using the Fortinet Security Fabric? (Choose three.)

Options:

FortiGate for SD-WAN

FortiGate for application control and IPS

FortiNAC for network access control

FortiSIEM for security incident and event management

FortiEDR for endpoint detection

Question 15

Which three Fortinet products can you use for device identification in an OT industrial control system (ICS)? (Choose three.)

Options:

FortiSIEM

FortiManager

FortiAnalyzer

FortiGate

FortiNAC

Question 16

Refer to the exhibit.

PLC-3 and CLIENT can send traffic to PLC-1 and PLC-2. FGT-2 has only one software switch (SSW-1) connecting both PLC-3 and CLIENT. PLC-3 and CLIENT cannot send traffic to each other.

Which two statements about the traffic between PCL-1 and PLC-2 are true? (Choose two.)

Options:

The switch on FGT-2 must be hardware to implement micro-segmentation.

Micro-segmentation on FGT-2 prevents direct device-to-device communication.

Traffic must be inspected by FGT-EDGE in OT networks.

FGT-2 controls intra-VLAN traffic through firewall policies.

Weekend Sale Special - Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: top65certs

Download Full Version NSE7_OTS-7.2 Fortinet Exam

Fortinet NSE 7 - OT Security 7.2 Questions and Answers

Options:

Answer:

Options:

Answer:

Options:

Answer:

Options:

Answer: