getcertified4sure.com

NSE5 Exam

What Renovate NSE5 Is?



Our pass rate is high to 98.9% and the similarity percentage between our NSE5 study guide and real exam is 90% based on our seven-year educating experience. Do you want achievements in the Fortinet NSE5 exam in just one try? I am currently studying for the Fortinet NSE5 exam. Latest Fortinet NSE5 Test exam practice questions and answers, Try Fortinet NSE5 Brain Dumps First.

Q1. - (Topic 2) 

Which of the following statements are TRUE for Port Pairing and Forwarding Domains? (Select all that apply.) 

A. They both create separate broadcast domains. 

B. Port Pairing works only for physical interfaces. 

C. Forwarding Domains only apply to virtual interfaces. 

D. They may contain physical and/or virtual interfaces. 

E. They are only available in high-end models. 

Answer: A,D 


Q2. - (Topic 3) 

An administrator wishes to generate a report showing Top Traffic by service type. They notice that web traffic overwhelms the pie chart and want to exclude the web traffic from the report. 

Which of the following statements best describes how to do this? 

A. In the Service field of the Data Filter, type 80/tcp and select the NOT checkbox. 

B. Add the following entry to the Generic Field section of the Data Filter: service="!web". 

C. When editing the chart, uncheck wlog to indicate that Web Filtering data is being excluded when generating the chart. 

D. When editing the chart, enter 'http' in the Exclude Service field. 

Answer:


Q3. - (Topic 1) 

If no firewall policy is specified between two FortiGate interfaces and zones are not used, which of the following statements describes the action taken on traffic flowing between these interfaces? 

A. The traffic is blocked. 

B. The traffic is passed. 

C. The traffic is passed and logged. 

D. The traffic is blocked and logged. 

Answer:


Q4. - (Topic 1) 

How is traffic routed onto an SSL VPN tunnel from the FortiGate unit side? 

A. A static route must be configured by the administrator using the ssl.root interface as the outgoing interface. 

B. Assignment of an IP address to the client causes a host route to be added to the FortiGate unit’s kernel routing table. 

C. A route back to the SSLVPN IP pool is automatically created on the FortiGate unit. 

D. The FortiGate unit adds a route based upon the destination address in the SSL VPN firewall policy. 

Answer:


Q5. - (Topic 3) 

Which of the following items is NOT a packet characteristic matched by a firewall service object? 

A. ICMP type and code 

B. TCP/UDP source and destination ports 

C. IP protocol number 

D. TCP sequence number 

Answer:


Q6. - (Topic 1) 

A FortiGate AntiVirus profile can be configured to scan for viruses on SMTP, FTP, POP3, and SMB protocols using which inspection mode? 

A. Proxy 

B. DNS 

C. Flow-based 

D. Man-in-the-middle 

Answer:


Q7. - (Topic 1) 

A FortiGate unit can provide which of the following capabilities? (Select all that apply.) 

A. Email filtering 

B. Firewall 

C. VPN gateway 

D. Mail relay 

E. Mail server 

Answer: A,B,C 


Q8. - (Topic 1) 

A FortiGate unit is configured to receive push updates from the FortiGuard Distribution Network, however, updates are not being received. 

Which of the following statements are possible reasons for this? (Select all that apply.) 

A. The external facing interface of the FortiGate unit is configured to use DHCP. 

B. The FortiGate unit has not been registered. 

C. There is a NAT device between the FortiGate unit and the FortiGuard Distribution Network and no override push IP is configured. 

D. The FortiGate unit is in Transparent mode which does not support push updates. 

Answer: A,B,C 


Q9. - (Topic 1) 

When backing up the configuration file on a FortiGate unit, the contents can be encrypted 

by enabling the encrypt option and supplying a password. 

If the password is forgotten, the configuration file can still be restored using which of the following methods? 

A. Selecting the recover password option during the restore process. 

B. Having the password emailed to the administrative user by selecting the Forgot Password option. 

C. Sending the configuration file to Fortinet Support for decryption. 

D. If the password is forgotten, there is no way to use the file. 

Answer:


Q10. - (Topic 1) 

The FortiGate unit can be configured to allow authentication to a RADIUS server. The RADIUS server can use several different authentication protocols during the authentication process. 

Which of the following are valid authentication protocols that can be used when a user authenticates to the RADIUS server? (Select all that apply.) 

A. MS-CHAP-V2 (Microsoft Challenge-Handshake Authentication Protocol v2) 

B. PAP (Password Authentication Protocol) 

C. CHAP (Challenge-Handshake Authentication Protocol) 

D. MS-CHAP (Microsoft Challenge-Handshake Authentication Protocol v1) 

E. FAP (FortiGate Authentication Protocol) 

Answer: A,B,C,D 


© Copyright Getcertified4sure.com. examcollectionuk.com
All other trademarks and copyrights are the property of their respective owners.
All rights reserved.