Examine the network diagram shown in the exhibit, and then answer the following question:
A firewall administrator must configure equal cost multipath (ECMP) routing on FGT1 to ensure both port1 and port3 links are used at the same time for all traffic destined for 172.20.2.0/24. Which of the following static routes will satisfy this requirement on FGT1? (Choose two.)
A. 172.20.2.0/24 (1/0) via 10.10.1.2, port1 [0/0]
B. 172.20.2.0/24 (25/0) via 10.10.3.2, port3 [5/0]
C. 172.20.2.0/24 (1/150) via 10.10.3.2, port3 [10/0]
D. 172.20.2.0/24 (1/150) via 10.30.3.2, port3 [10/0]
|
Download Printable PDF. VALID exam to help you PASS. |
 |
AD
when the distance is equal so both routes will be installed on RT.
S* 0.0.0.0/0 [10/0] via 192.168.19.2, VPN1_VPN2_20
[10/0] via 192.168.18.2, VPN1_VPN20, [10/0]
S* 0.0.0.0/0 [10/0] via 192.168.19.2, VPN1_VPN2_20
[10/0] via 192.168.18.2, VPN1_VPN20, [10/100]
Fortinet says:
“To be considered for ECMP, routes must have the same values for the following attributes:
– Destination subnet
– Distance
– Metric
– Priority”
only C & D have the same attributes, so the answer should be C & D.
But there is a mistake in answer C I guess, it should be port1 and 10.10.1.2.
C and D are the closest ones. See https://kb.fortinet.com/kb/viewContent.do?externalId=FD32103
Closest is C&D. There’s type error in C.
Should be:
C. 172.20.2.0/24 (1/150) via 10.10.1.2, port1 [10/0]
Notice the 10.10.1.2 and port1
Has to use port1 and port 3 links.
A. 172.20.2.0/24 (1/0) via 10.10.1.2, port1 [0/0] is the only port1 answer
D. 172.20.2.0/24 (1/150) via 10.30.3.2, port3 [10/0] is the only port3 answer that has next hop ip correct
Did anyone take the exam recently? Are the questions valid for NSE4-6.2 exam? I will take my exam this month
Hi Ferdinand, are they ultimately the same questions?
…[distance/metric] … [priority/weight] , so weight could be different for ECMP LB, distance, priority,metric have to be equal, metric is protocol-specific and ecmp is protocol-related too. For a static route there is no metric to be set.
All of them are wrong! Woudl be right if distance, metric, prio would be the same like:
A. 172.20.2.0/24 (1/0) via 10.10.1.2, port1 [0/0]
C. 172.20.2.0/24 (1/0) via 10.10.3.2, port3 [0/0]
10.10.3.2 is this a valid ip according to the diagram?
Distance is the same, the other metrics such as priority are used to determine load distribution.
Answer is A&D
ECMP routes must have the same values for the following attributes:
– Destination subnet
– Distance
– Metric
– Priority
I think C&D are the right answers but with some error in the answer C. it should be:
C. 172.20.2.0/24 (1/150) via 10.10.12, port1 [10/0]
Answer C should read
C. 172.20.2.0/24 (1/150) via 10.10.1.2, port3 [10/0]
should be :
A & D .
A. 172.20.2.0/24 (1/0) via 10.10.1.2, port1 [0/0]
D. 172.20.2.0/24 (1/150) via 10.30.3.2, port3 [10/0]
C. 172.20.2.0/24 (1/150) via 10.10.1.2, port3 [10/0] via 10.10.1.2 port 3 ??? is not correct.
Don’t you mean port1? Like this:
C. 172.20.2.0/24 (1/150) via 10.10.1.2, port1 [10/0]