NSE 7 – Enterprise Firewall 7.0 — Question 34

An administrator has created a VPN community within VPN Manager on FortiManager. They also added gateways to the VPN community and are now trying to create firewall policies to permit traffic over the tunnel; however, the VPN interfaces are not listed as available options.
What step must the administrator take to resolve this issue?

Answer options

• A. Install the VPN community and gateway configuration to the FortiGate devices, in order for the interfaces to be displayed within Policy & Objects on FortiManager
• B. Set up all of the phase 1 settings in the VPN community that they neglected to set up initially. The interfaces will be automatically generated after the administrator configures all of the required settings.
• C. Refresh the device status from the Device Manager so that FortiGate will populate the IPsec interfaces.
• D. Create interface mappings for the IPsec VPN interfaces, before they can be used in a policy.

Correct answer: A

Explanation

The correct answer is A because installing the VPN community and gateway configuration on the FortiGate devices is necessary for the interfaces to become available in the Policy & Objects section of FortiManager. The other options do not directly address the need for the configuration to be installed on the FortiGate devices, which is essential for interface visibility.