Security Fabric

Question 1

What are the three attributes of the Security Fabric

Answer 1

Broad, Integrated, Automated

Question 2

What combination of Forti devices must appear in the core?

Answer 2

Two FTG’s one root and one downstream and one FortAnalyzer (can be cloud)

Question 3

What does ISFW stand for?

Answer 3

Internal Segmentation Firewall (ISFW)

Question 4

How do you configure the root FTG for the Security Fabric?

Answer 4

Enable Fabric Connection on the appropriate Int
Enable Security Fabric Connector (serve as root)
Config FortiAnalyzer
Optional Pre auth down stream devices with serial number

Question 5

How do you enable the security fabric for downstream devices?

Answer 5

Turn the security fabric connection on the required interfaces
enable join security fabric connection (join existing fabric)
specify the root IP

Question 6

What is object synchronization?

Answer 6

Allows the root to sync objects like addresses, services and schedules.

Question 7

What does set configuration-sync local do on a down stream security fabric device>

Answer 7

It tells the downstream device to not participate in the object synchronization.

Question 8

What are the two ways to identify devices in the security fabric?

Answer 8

Agentless and Agent (FortiClient)

Question 9

For Agentless endpoint ID how must it be connected to FTG?

Answer 9

It must be on the same L2 segment.

Question 10

What is an automation stitch?

Answer 10

Admin-defined automated workflows.