hiexam
fortinet · NSE7_NST-72 · Q427 · multiple_choice · topic_1

Refer to the exhibit, which contains partial output from an IKE real-time debug. //IMG// The administrator does not ha…

Refer to the exhibit, which contains partial output from an IKE real-time debug. //IMG// The administrator does not have access to the remote gateway. Based on the debug output, which configuration change can the administrator make to the local gateway to resolve the phase 1 negotiation error?
  • A.In the phase 1 proposal configuration, add AESCBC-SHA2 to the list of encryption algorithms.
  • B.In the phase 1 proposal configuration, add AES256-SHA256 to the list of encryption algorithms.
  • C.In the phase 1 proposal configuration, add AES128-SHA128 to the list of encryption algorithms.
  • D.In the phase 1 network configuration, set the IKE version to 2.
Explanation
Selected Answer: B Incoming proposal lists SHA_256 for encryption, which is not selected locally, cipher suites don't match

Reference: examtopics_top_comment

Practice with progress tracking

Sign in to track wrong answers, get spaced-repetition reminders, and run timed exam mode.

Start tracked practicePricing