NSE 7 – Network Security Architect — Question 3

Examine the following partial outputs from two routing debug commands; then answer the question below.
# get router info routing-table database
s 0.0.0.0/0 [20/0] via 10.200.2.254, port2, [10/0] s *> 0.0.0.0/0 [10/0] via 10.200.1.254, port1
# get router info routing-table all
s* 0.0.0.0/0 [10/0] via 10.200.1.254, port1
Why the default route using port2 is not displayed in the output of the second command?

Answer options

• A. It has a lower priority than the default route using port1.
• B. It has a higher priority than the default route using port1.
• C. It has a higher distance than the default route using port1.
• D. It is disabled in the FortiGate configuration.

Correct answer: C

Explanation

The default route using port2 is not displayed in the second command's output because it has a higher distance value compared to the default route using port1, which makes it less preferred. Routes with a higher distance are ignored when a more favorable route is available, thus only the route via port1 is shown.