NSE 4 – FortiGate 7.2 — Question 79

Which two statements describe how the RPF check is used? (Choose two.)

Answer options

• A. The RPF check is a mechanism that protects FortiGate and the network from IP spoofing attacks.
• B. The RPF check is run on the first sent and reply packet of any new session.
• C. The RPF check is run on the first sent packet of any new session.
• D. The RPF check is run on the first reply packet of any new session.

Correct answer: A, C

Explanation

The correct answer is A and C because the RPF check indeed prevents IP spoofing by validating the source IP address against the routing table and is specifically executed on the first sent packet of any new session. Option B is incorrect as it states that the check runs on both sent and reply packets, while option D incorrectly states that it runs only on the first reply packet, which is not the case.