fortinet · NSE7 · Q427 · multiple_choice · topic_1

Examine the following partial output from a sniffer command; then answer the question below. //IMG// What is the meani…

Examine the following partial output from a sniffer command; then answer the question below. //IMG// What is the meaning of the packets dropped counter at the end of the sniffer?

A.Number of packets that didn't match the sniffer filter.
B.Number of total packets dropped by the FortiGate.
C.Number of packets that matched the sniffer filter and were dropped by the FortiGate.
D.Number of packets that matched the sniffer filter but could not be captured by the sniffer.

Explanation

The Fortinet device may not display all packets if too much information is requested to be displayed, or the traffic being sniffed is significant. When this occurs, the unit will log the following message once the trace is terminated: 12151 packets received by filter 3264 packets dropped by kernel When this occurs, it is possible that what you were attempting to capture was not actually captured. In order to avoid this, you may try to tighten the display filters, reduce the verbose level, or perform the trace during a lower traffic period.

Reference: examtopics_top_comment

Practice with progress tracking

Start tracked practice Pricing