If the administrator knows that there is no NAT device located between both FortiGates, what command should the administrator execute?

Posted by: Pdfprep Category: NSE7_EFW-6.2 Tags: NSE7_EFW-6.2 exam questions, NSE7_EFW-6.2 practice exam, NSE 7 Post Date: November 7, 2020

An administrator wants to capture ESP traffic between two FortiGates using the built-in sniffer.

If the administrator knows that there is no NAT device located between both FortiGates, what command should the administrator execute?
A . diagnose sniffer packet any ‘udp port 500’
B . diagnose sniffer packet any ‘udp port 4500’
C . diagnose sniffer packet any ‘esp’
D . diagnose sniffer packet any ‘udp port 500 or udp port 4500’

Answer: C

Explanation:

Capture IKE Traffic without NAT:diagnose sniffer packet ‘host and udp port 500’ ―――――――――――――――――――――――――――――――――――――-Capture ESP Traffic without NAT:diagnose sniffer packet any ‘host and esp’ ―――――――――――――――――――――――――――――――――――――-Capture IKE and ESP with NAT-T:diagnose sniffer packet any ‘host and (udp port 500 or udp port 4500)’

If the administrator knows that there is no NAT device located between both FortiGates, what command should the administrator execute?

Author

Leave a Reply Cancel reply