Exam FCSS_EFW_AD-7.4 Topic 3 Question 12 Discussion
Actual exam question for Fortinet's FCSS_EFW_AD-7.4 exam
Question #: 12
Topic #: 3
Question #: 12
Topic #: 3
An administrator configured the FortiGate devices in an enterprise network to join the Fortinet Security Fabric. The administrator has a list of IP addresses that must be blocked by the data center firewall. This list is updated daily.
How can the administrator automate a firewall policy with the daily updated list?
How can the administrator automate a firewall policy with the daily updated list?
Suggested Answer: D Vote an answer
Thebest way to automate a firewall policyusing a daily updated list ofIP addressesis by using anexternal connector from Threat Feeds. This allows FortiGate to dynamically retrievereal-time threat intelligence from external sources and apply it directly to security policies.
By configuringThreat Feeds, the administrator can:
#Automatically updatefirewall policies with the latest malicious IPs daily.
#Block trafficfrom those IPs in real-time without manual intervention.
#Integrate with FortiGuard, third-party threat intelligence sources, or custom feeds (CSV, STIX
/TAXII, etc.).
By configuringThreat Feeds, the administrator can:
#Automatically updatefirewall policies with the latest malicious IPs daily.
#Block trafficfrom those IPs in real-time without manual intervention.
#Integrate with FortiGuard, third-party threat intelligence sources, or custom feeds (CSV, STIX
/TAXII, etc.).
by Cynthia at Mar 02, 2026, 11:02 AM
0
0
0
10
Comments
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Report Comment
Commenting
You can sign-up / login (it's free).