hiexam
fortinet · NSE4_FGT-72 · Q428 · multiple_choice · topic_1

Refer to the exhibits. Exhibit A shows a network diagram. Exhibit B shows the central SNAT policy and IP pool configur…

Refer to the exhibits. Exhibit A shows a network diagram. Exhibit B shows the central SNAT policy and IP pool configuration. The WAN (port1) interface has the IP address 10.200.1.1/24. The LAN (port3) interface has the IP address 10.0.1.254/24. A firewall policy is configured to allow all destinations from LAN (port3) to WAN (port1). Central NAT is enabled, so NAT settings from matching central SNAT policies will be applied. //IMG// //IMG// Which IP address will be used to source NAT (SNAT) the traffic, if the user on Local-Client (10.0.1.10) pings the IP address of Remote-FortiGate (10.200.3.1)?
  • A.10.200.1.99
  • B.10.200.1.1
  • C.10.200.1.49
  • D.10.200.1.149
Explanation
Selected Answer: A A is correct , pings is ICMP so protocol 1. Protocol 1 is enabled on access list id 2 which has destination address SNAT-remote 1

Reference: examtopics_top_comment

Practice with progress tracking

Sign in to track wrong answers, get spaced-repetition reminders, and run timed exam mode.

Start tracked practicePricing