NSE 4 – FortiGate 7.2 — Question 62

What is a reason for triggering IPS fail open?

Answer options

• A. The IPS socket buffer is full and the IPS engine cannot process additional packets.
• B. The IPS engine cannot decode a packet.
• C. The IPS engine is upgraded.
• D. The administrator enabled NTurbo acceleration.

Correct answer: A

Explanation

The correct answer, A, indicates that when the IPS socket buffer reaches capacity, it can't handle more packets, leading to a fail open state to prevent packet loss. Option B is incorrect because inability to decode a packet does not directly result in fail open; it may simply drop the packet. Options C and D are unrelated to buffer capacity and do not trigger fail open conditions.