getcertified4sure.com

NSE5 Exam

10 Tips For NSE5 IT examinee



It is more faster and easier to pass the Fortinet NSE5 exam by using Certified Fortinet Fortinet Network Security Expert 5 Written Exam (500) questuins and answers. Immediate access to the Up to the minute NSE5 Exam and find the same core area NSE5 questions with professionally verified answers, then PASS your exam with a high score now.

Q11. - (Topic 3) 

A network administrator connects his PC to the INTERNAL interface on a FortiGate unit. The administrator attempts to make an HTTPS connection to the FortiGate unit on the VLAN1 interface at the IP address of 10.0.1.1, but gets no connectivity. 

The following troubleshooting commands are executed from the DOS prompt on the PC and from the CLI. 

C:\>ping 10.0.1.1 

Pinging 10.0.1.1 with 32 bytes of data: 

Reply from 10.0.1.1: bytes=32 time=1ms TTL=255 

Reply from 10.0.1.1: bytes=32 time<1ms TTL=255 

Reply from 10.0.1.1: bytes=32 time<1ms TTL=255 

Reply from 10.0.1.1: bytes=32 time<1ms TTL=255 

user1 # get system interface 

== [ internal ] 

namE. internal modE. static ip: 10.0.1.254 255.255.255.128 status: up 

netbios-forwarD. disable typE. physical mtu-overridE. disable 

== [ vlan1 ] 

namE. vlan1 modE. static ip: 10.0.1.1 255.255.255.128 status: up netb 

ios-forwarD. disable typE. vlan mtu-overridE. disable 

user1 # diagnose debug flow trace start 100 

user1 # diagnose debug ena 

user1 # diagnose debug flow filter daddr 10.0.1.1 10.0.1.1 

id=20085 trace_id=274 msg="vd-root received a packet(proto=6, 10.0.1.130:47927->10.0.1.1:443) from internal." 

id=20085 trace_id=274 msg="allocate a new session-00000b1b" 

id=20085 trace_id=274 msg="find SNAT: IP-10.0.1.1, port-43798" 

id=20085 trace_id=274 msg="iprope_in_check() check failed, drop" 

Based on the output from these commands, which of the following explanations is a possible cause of the problem? 

A. The Fortigate unit has no route back to the PC. 

B. The PC has an IP address in the wrong subnet. 

C. The PC is using an incorrect default gateway IP address. 

D. The FortiGate unit does not have the HTTPS service configured on the VLAN1 interface. 

E. There is no firewall policy allowing traffic from INTERNAL-> VLAN1. 

Answer:


Q12. - (Topic 1) 

A firewall policy has been configured such that traffic logging is disabled and a UTM function is enabled. 

In addition, the system setting ‘utm-incident-traffic-log’ has been enabled..In which log will a UTM event message be stored? 

A. Traffic 

B. UTM 

C. System 

D. None 

Answer:


Q13. - (Topic 1) 

A FortiAnalyzer device could use which security method to secure the transfer of log data from FortiGate devices? 

A. SSL 

B. IPSec 

C. direct serial connection 

D. S/MIME 

Answer:


Q14. - (Topic 1) 

Which of the following items is NOT a packet characteristic matched by a firewall service object? 

A. ICMP type and code 

B. TCP/UDP source and destination ports 

C. IP protocol number 

D. TCP sequence number 

Answer:


Q15. - (Topic 2) 

The eicar test virus is put into a zip archive, which is given the password of “Fortinet” in order to open the archive. Review the configuration in the exhibits shown below; then answer the question that follows. 

Exhibit A – Antivirus Profile: 

Exhibit B – Non-default UTM Proxy Options Profile: 

Exhibit C – DLP Profile: 

Which of one the following profiles could be enabled in order to prevent the file from passing through the FortiGate device over HTTP on the standard port for that protocol? 

A. Only Exhibit A 

B. Only Exhibit B 

C. Only Exhibit C with default UTM Proxy settings. 

D. All of the Exhibits (A, B and C) 

E. Only Exhibit C with non-default UTM Proxy settings (Exhibit B). 

Answer:


Q16. - (Topic 1) 

Which of the following statements regarding Banned Words are correct? (Select all that apply.) 

A. The FortiGate unit can scan web pages and email messages for instances of banned words. 

B. When creating a banned word list, an administrator can indicate either specific words or patterns. 

C. Banned words can be expressed as wildcards or regular expressions. 

D. Content is automatically blocked if a single instance of a banned word appears. 

E. The FortiGate unit includes a pre-defined library of common banned words. 

Answer: A,B,C 


Q17. - (Topic 3) 

SSL Proxy is used to decrypt the SSL-encrypted traffic. After decryption, where is the traffic buffered in preparation for content inspection? 

A. The file is buffered by the application proxy. 

B. The file is buffered by the SSL proxy. 

C. In the upload direction, the file is buffered by the SSL proxy. In the download direction, the file is buffered by the application proxy. 

D. No file buffering is needed since a stream-based scanning approach is used for SSL content inspection. 

Answer:


Q18. - (Topic 3) 

The following ban list entry is displayed through the CLI. 

get user ban list 

id cause src-ip-addr dst-ip-addr expires created 

531 protect_client 10.177.0.21 207.1.17.1 indefinite Wed Dec 24 :21:33 2008 

Based on this command output, which of the following statements is correct? 

A. The administrator has specified the Attack and Victim Address method for the quarantine. 

B. This diagnostic entry results from the administrator running the diag ips log test command. This command has no effect on traffic. 

C. A DLP rule has been matched. 

D. An attack has been repeated more than once during the holddown period; the expiry time has been reset to indefinite. 

Answer:


Q19. - (Topic 1) 

Which of the following are valid authentication user group types on a FortiGate unit? (Select all that apply.) 

A. Firewall 

B. Directory Service 

C. Local 

D. LDAP 

E. PKI 

Answer: A,B 


Q20. CORRECT TEXT - (Topic 1) 

When creating administrative users, the assigned _____________determines user rights on the FortiGate unit. 

Answer: access profile 


© Copyright Getcertified4sure.com. examcollectionuk.com
All other trademarks and copyrights are the property of their respective owners.
All rights reserved.