ExamTopics Logo
Mail Us[email protected]
Menu
Fortinet Discussions
exam questions

Exam FCSS_SDW_AR-7.4 All Questions

View all questions & answers for the FCSS_SDW_AR-7.4 exam
Go to Exam

Exam FCSS_SDW_AR-7.4 topic 1 question 62 discussion

Actual exam question from Fortinet's FCSS_SDW_AR-7.4
Question #: 62
Topic #: 1
[All FCSS_SDW_AR-7.4 Questions]

The FortiGate devices are managed by ForliManager, and are configured for direct internet access (DIA). You confirm that DIA is working as expected for each branch, and check the SD-WAN zone configuration and firewall policies shown in the exhibits.



Then, you use the SD-WAN overlay template to configure the IPsec overlay tunnels. You create the associated SD-WAN rules to connect existing branches to the company hub device and apply the changes on the branches.
After those changes, users complain that they lost internet access. DIA is no longer working.
Based on the exhibit, which statement best describes the possible root cause of this issue?

  • A. The SD-WAN overlay template defines a zone for each underlay interface and moves the interfaces into those zones.
  • B. The SD-WAN overlay template didn’t configure a firewall policy to allow traffic through the overlay.
  • C. The SD-WAN overlay template redefines the interface gateway addresses if they are defined with metadata variables.
  • D. The SD-WAN overlay template updates the SD-WAN template and the rules.
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by [deleted] at Oct. 24, 2025, 8:24 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Gillz
2 days, 1 hour ago
Selected Answer: C
Another use case for metadata is the gateway setting of SD-WAN members. The gateway for the SD-WAN members is configured using an interface IP address of the underlay device. However, not all branches have the same gateway. For this reason, you can define a metadata variable for the gateway setting that indicates the gateway IP address to push to each device. This means that when you apply the SD-WAN template or overlay template, the metadata gateway value is pushed down to the branch, replacing whatever gateway was configured on the device. If the metadata is incorrect or not defined, the branch may lose its default route, and DIA (Direct Internet Access) stops working.”
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel