Is this exam completely free?

ExamCademy offers a free preview for every exam, covering around 20% of the total questions. Full access to all questions is available for free by signing up for an account. Optional supporters unlock AstroTutor (AI tutor) and advanced study modes.

Can I practice IT certification exams from Microsoft, AWS, or CompTIA?

Yes! ExamCademy supports a wide range of IT certification exams including Microsoft Azure, AWS Cloud Practitioner, and CompTIA A+ and Security+.

How accurate are the mock exams?

Our practice questions are community-created and moderator-reviewed to align with realistic exam objectives, style, and difficulty.

Home Exams Contribute Leaderboard

Home Exams Contribute Leaderboard Login

Loading questions...

info@examcademy.com

Features

Contribute Questions Leaderboard

Community

Discord

YouTube

Legal

ExamCademy is not affiliated with or endorsed by any certification providers. All trademarks are the property of their respective owners.

NSE7-SDW-7-0 by Fortinet - Page 1 | ExamCademy | ExamCademy

Exams
Fortinet
NSE7-SDW-7-0

NSE7-SDW-7-0Preview

By Fortinet

Updated

25Q per page

Mode Selection

Question 1

Question 2

Question 3

Which two settings can you configure to speed up routing convergence in BGP? (Choose two.)

A update-source
B set-route-tag
C holdtime-timer
D link-down-failover

Question 4

Which two statements are correct when traffic matches the implicit SD-WAN rule? (Choose two.)

A The sdwan_service_id flag in the session information is 0.
B All SD-WAN rules have the default setting enabled.
C Traffic does not match any of the entries in the policy route table.
D Traffic is load balanced using the algorithm set for the v4-ecmp-mode setting.

Question 5

Refer to the exhibit.

Question Image

Which configuration change is required if the responder FortiGate uses a dynamic routing protocol to exchange routes over IPsec?

A type must be set to static.
B mode-cfg must be enabled.
C exchange-interface-ip must be enabled.
D add-route must be disabled.

Want a break from the ads?

Become a Supporter and enjoy a completely ad-free experience, plus unlock Learn Mode, Exam Mode, AstroTutor AI, and more.

Go ad-free

Question 6

Which two statements about SD-WAN central management are true? (Choose two.)

A The objects are saved in the ADOM common object database.
B It does not support meta fields.
C It uses templates to configure SD-WAN on managed devices.
D It supports normalized interfaces for SD-WAN member configuration.

Question 7

Refer to the exhibit.

Question Image

An administrator is troubleshooting SD-WAN on FortiGate. A device behind branch1_fgt generates traffic to the 10.0.0.0/8 network. The administrator expects the traffic to match SD-WAN rule ID 1 and be routed over T_INET_0_0. However, the traffic is routed over T_INET_1_0.
Based on the output shown in the exhibit, which two reasons can cause the observed behavior? (Choose two.)

A The traffic matches a regular policy route configured with T_INET_1_0 as the outgoing device.
B T_INET_1_0 has a lower route priority value (higher priority) than T_INET_0_0.
C T_INET_0_0 does not have a valid route to the destination.
D T_INET_1_0 has a higher member configuration priority than T_INET_0_0.

That's the end of the Preview

Create a free account to unlock all questions for this exam.

Page 1 of 2 • Questions 1-25 of 34

1 2

→

Know a question that should be here? Contribute to this exam

Which diagnostic command can you use to show the member utilization statistics measured by performance SLAs for the last 10 minutes?

A diagnose sys sdwan intf-sla-log
B diagnose sys sdwan health-check
C diagnose sys sdwan log
D diagnose sys sdwan sla-log

Which two protocols in the IPsec suite are most used for authentication and encryption? (Choose two.)

A Encapsulating Security Payload (ESP)
B Secure Shell (SSH)
C Internet Key Exchange (IKE)
D Security Association (SA)