NSE 4 – FortiGate 6.0 — Question 55

Why does FortiGate keep TCP sessions in the session table for some seconds even after both sides
(client and server) have terminated the session?

Answer options

• A. To remove the NAT operation.
• B. To generate logs
• C. To finish any inspection operations.
• D. To allow for out-of-order packets that could arrive after the FIN/ACK packets.

Correct answer: D

Explanation

The correct answer is D because FortiGate retains session information to handle any packets that may arrive out of sequence after the session has been terminated. Options A, B, and C do not accurately reflect the need to manage out-of-order packets, which is crucial for ensuring reliable TCP communication.