Free NSE6_FSW-7.2 Sample Questions — Fortinet NSE 6 - FortiSwitch 7.2

How does FortiSwitch perform actions on ingress and egress traffic using the access control list (ACL)?

• A. Only high-end FortiSwitch models support ACL
• B. ACL can be used only at the prelookup stage in the traffic processing pipeline
• C. Classifiers enable matching traffic based only on the VLAN ID
• D. FortiSwitch checks ACL policies only from top to bottom

In which two ways can you assign a FortiSwitch port to a VDOM using multi-tenancy setup? (Choose two.)

• A. Assign a port to a VDOM directly on the managed FortiSwitch
• B. Create a virtual port pool on the FortiGate CLI
• C. Remove the managed FortiSwitch and allocate ports directly on FortiSwitch
• D. Switch the FortiLink interface to the target VDOM

How does flow tracking work on FortiSwitch if you export the settings to a managed FortiSwitch stack with sampling mode set to local?

• A. FortiGate does not change existing sampling settings of interfaces
• B. FortiGate configures FortiSwitch to perform ingress sampling on all switch interfaces
• C. FortiGate configures FortiSwitch to perform ingress sampling on all switch interfaces, except ICL and ISL interfaces
• D. FortiGate turns egress sampling on all management interfaces

What can an administrator do to maintain a Forti-Gate-compatible FortiSwitch configuration when changing the management mode from standalone to FortiLink?

• A. Use a migration tool based on Python script to convert the configuration
• B. Enable the FortiLink setting on FortiSwitch before the authorization process
• C. FortiGate automatically saves the existing FortiSwitch configuration during the FortiLink management process
• D. Register FortiSwitch to FortiSwitch Cloud to save a copy before managing with FortiGate

Which feature should enable to reduce the number of unwanted IGMP reports processed by the IGMP querier?

• A. Enable IGMP snooping proxy
• B. Enable the IGMP flood setting on the static port for all multicast groups
• C. Enable the IGMP flood reports setting on the mRouter port
• D. Enable IGMP flood unknown multicast traffic on the global setting

Which drop policy mode, if assigned to a congested port, will drop incoming packets until there is no congestion on the egress port?

• A. Tail-drop mode
• B. Weighted round robin mode
• C. Random early detection mode
• D. Strict mode

Which Ethernet frame can create Layer 2 flooding due to all bytes on the destination MAC address being set to all FF?

• A. The broadcast Ethernet frame
• B. The unicast Ethernet frame
• C. The multicast Ethernet frame
• D. The anycast Ethernet frame

Which statement about the IGMP snooping querier when enabled on a VLAN is true?

• A. IGMP reports on the VLAN are forwarded to all switch ports
• B. Active multicast receiver entries are aging on each IGMP query sent on the VLAN
• C. The setting can only be enabled using the FortiSwitch CLI
• D. All other indirectly connected switches will be unable to get IGMP multicast traffic

Which statement about the quarantine VLAN on FortiSwitch is true?

• A. Quarantine VLAN has no DHCP server
• B. Users who fail 802.1X authentication can be placed on the quarantine VLAN
• C. It is only used for quarantined devices if global setting is set to quarantine by VLAN
• D. FortiSwitch can block devices without configuring quarantine VLAN to be part of the allowed VLANs

Which LLDP-MED Type-Length-Values does FortiSwitch collect from endpoints to track network devices and determine their characteristics?

• A. Network policy
• B. Power management
• C. Location
• D. Inventory management