NSE 4 – FortiGate 6.0 — Question 58

Which of the following are purposes of NAT traversal in IPsec? (Choose two.)

Answer options

• A. To delete intermediary NAT devices in the tunnel path.
• B. To dynamically change phase 1 negotiation mode aggressive mode.
• C. To encapsulation ESP packets in UDP packets using port 4500.
• D. To force a new DH exchange with each phase 2 rekey.

Correct answer: A, C

Explanation

The correct answers are A and C because NAT traversal allows IPsec traffic to pass through NAT devices by encapsulating ESP packets in UDP (option C) and does not delete intermediary NAT devices (option A). Options B and D are incorrect as they do not pertain to the primary functions of NAT traversal.