Certbus > Fortinet > Network Security Expert Program > NSE5 > NSE5 Online Practice Questions and Answers

NSE5 Online Practice Questions and Answers

Questions 4

What are the methods available to register a device? (Choose two.)

A. A supported device can request registration.

B. An administrator from a supported device can use a CLI command to automatically connect to FortiAnalyzer without intervention from a FortiAnalyzer administrator.

C. A FortiAnalyzer can register a supported device through the Device Registration wizard.

D. A FortiAnalyzer automatically registers all supported devices on the same Local Area Network (LAN) by default.

Browse 320 Q&As
Questions 5

Which of the following DLP actions will override any other action?

A. Exempt

B. Quarantine Interface

C. Block

D. None

Browse 320 Q&As
Questions 6

Which two statements are correct regarding synchronization between primary and secondary devices in a FortiManager HA cluster? (Choose two.)

A. All device configurations including global databases are synchronized in the HA cluster.

B. FortiGuard databases are downloaded separately by each cluster device.

C. FortiGuard databases are downloaded by the primary FortiManager device and then synchronized with all secondary devices.

D. Local logs and log configuration settings are synchronized in the HA cluster.

Browse 320 Q&As
Questions 7

Which of the following statements best decribes the proxy behavior on a FortiGate unit during an FTP client upload when FTP splice is disabled?

A. The proxy buffers the entire file from the client, only sending the file to the server if the file is clean. One possible consequence of buffering is that the server could time out.

B. The proxy sends the file to the server while simultaneously buffering it.

C. The proxy removes the infected file from the server by sending a delete command on behalf of the client.

D. If the file being scanned is determined to be clean, the proxy terminates the connection and leaves the file on the server.

Browse 320 Q&As
Questions 8

A FortiGate unit is configured with three Virtual Domains (VDOMs) as illustrated in the exhibit.

Which of the following statements are correct regarding these VDOMs? (Select all that apply.)

A. The FortiGate unit supports any combination of these VDOMs in NAT/Route and Transparent modes.

B. The FortiGate unit must be a model 1000 or above to support multiple VDOMs.

C. A license had to be purchased and applied to the FortiGate unit before VDOM mode could be enabled.

D. All VDOMs must operate in the same mode.

E. Changing a VDOM operational mode requires a reboot of the FortiGate unit.

F. An admin account can be assigned to one VDOM or it can have access to all three VDOMs.

Browse 320 Q&As
Questions 9

Which of the following statements is correct regarding URL Filtering on the FortiGate unit?

A. The available actions for URL Filtering are Allow and Block.

B. Multiple URL Filter lists can be added to a single Web filter profile.

C. A FortiGuard Web Filtering Override match will override a block action in the URL filter list.

D. The available actions for URL Filtering are Allow, Block and Exempt.

Browse 320 Q&As
Questions 10

Which of the following are FortiManager features? (Choose two.)

A. Administrative Domains

B. Virtual Domains

C. Centralized Management

D. Cloud-based Management

Browse 320 Q&As
Questions 11

Which tabs are available on the FortiManager Web-based manager? (Choose two.)

A. Device Manager

B. Policy and Objects

C. FortiGate

D. Database

Browse 320 Q&As
Questions 12

Examine the Exhibits shown below, then answer the question that follows. Review the following DLP Sensor (Exhibit 1):

Review the following File Filter list for rule #1 (Exhibit 2): Review the following File Filter list for rule #2 (Exhibit 3):

Review the following File Filter list for rule #3 (Exhibit 4):

An MP3 file is renamed to `workbook.exe' and put into a ZIP archive. It is then sent through the FortiGate device over HTTP. It is intercepted and processed by the configuration shown in the above Exhibits 1-4.

Assuming the file is not too large for the File scanning threshold, what action will the FortiGate unit take?

A. The file will be detected by rule #1 as an `Audio (mp3)', a log entry will be created and it will be allowed to pass through.

B. The file will be detected by rule #2 as a "*.exe", a log entry will be created and the interface that received the traffic will be brought down.

C. The file will be detected by rule #3 as an Archive(zip), blocked, and a log entry will be created.

D. Nothing, the file will go undetected.

Browse 320 Q&As
Questions 13

Which of the following Session TTL values will take precedence?

A. Session TTL specified at the system level for that port number

B. Session TTL specified in the matching firewall policy

C. Session TTL dictated by the application control list associated with the matching firewall policy

D. The default session TTL specified at the system level

Browse 320 Q&As
Questions 14

Which of the following is true regarding Switch Port Mode?

A. Allows all internal ports to share the same subnet.

B. Provides separate routable interfaces for each internal port.

C. An administrator can select ports to be used as a switch.

D. Configures ports to be part of the same broadcast domain.

Browse 320 Q&As
Questions 15

Refer to the exhibit. What does the clock icon denote beside the Bandwidth and Applications Report?

A. It is a custom report.

B. It is an imported report from either a different FortiAnalyzer device or a different (but supported) ADOM.

C. It is in the process of generating.

D. It is a scheduled report.

Browse 320 Q&As
Questions 16

Review the IPsec diagnostics output of the command diag vpn tunnel list shown in the Exhibit below.

Which of the following statements are correct regarding this output? (Select all that apply.)

A. The connecting client has been allocated address 172.20.1.1.

B. In the Phase 1 settings, dead peer detection is enabled.

C. The tunnel is idle.

D. The connecting client has been allocated address 10.200.3.1.

Browse 320 Q&As
Questions 17

Which of the following statements is correct regarding URL Filtering on the FortiGate unit?

A. The FortiGate unit can filter URLs based on patterns using text and regular expressions.

B. The available actions for URL Filtering are Allow and Block.

C. Multiple URL Filter lists can be added to a single Web filter profile.

D. A FortiGuard Web Filtering Override match will override a block action in the URL filter list.

Browse 320 Q&As
Questions 18

Review the IKE debug output for IPsec shown in the Exhibit below.

Which one of the following statements is correct regarding this output?

A. The output is a Phase 1 negotiation.

B. The output is a Phase 2 negotiation.

C. The output captures the Dead Peer Detection messages.

D. The output captures the Dead Gateway Detection packets.

Browse 320 Q&As
Exam Code: NSE5
Exam Name: Fortinet Network Security Expert 5 Written Exam (500)
Last Update: Mar 24, 2024
Questions: 320 Q&As

PDF

$45.99

VCE

$49.99

PDF + VCE

$59.99