NSE 4 – FortiGate 6.4 — Question 17

An administrator must disable RPF check to investigate an issue.
Which method is best suited to disable RPF without affecting features like antivirus and intrusion prevention system?

Answer options

• A. Enable asymmetric routing, so the RPF check will be bypassed.
• B. Disable the RPF check at the FortiGate interface level for the source check.
• C. Disable the RPF check at the FortiGate interface level for the reply check.
• D. Enable asymmetric routing at the interface level.

Correct answer: B

Explanation

The best method is to disable the RPF check at the FortiGate interface level for the source check, as it directly targets the check without impacting other security features. Options A and D involve enabling asymmetric routing, which may not effectively focus on the RPF check's source aspect. Option C addresses the reply check, which is not the relevant check for this situation.