hiexam
fortinet · NSE4_FGT-64 · Q425 · multiple_choice · topic_1

What is the effect of enabling auto-negotiate on the phase 2 configuration of an IPsec tunnel?

What is the effect of enabling auto-negotiate on the phase 2 configuration of an IPsec tunnel?
  • A.FortiGate automatically negotiates different local and remote addresses with the remote peer.
  • B.FortiGate automatically negotiates a new security association after the existing security association expires.
  • C.FortiGate automatically negotiates different encryption and authentication algorithms with the remote peer.
  • D.FortiGate automatically brings up the IPsec tunnel and keeps it up, regardless of activity on the IPsec tunnel.
Explanation
D is correct. FortiGate_Infrastructure_6.4 page 231 "Another benefit of enabling Auto-negotiate is that the tunnel comes up and stays up automatically, even when there is no interesting traffic.

Reference: examtopics_top_comment

Practice with progress tracking

Sign in to track wrong answers, get spaced-repetition reminders, and run timed exam mode.

Start tracked practicePricing