Latest Certified Success Dumps Download

CISCO, MICROSOFT, COMPTIA, HP, IBM, ORACLE, VMWARE
FCESP Examination questions (September)

Achieve New Updated (September) Fortinet FCESP Examination Questions 21-30

September 24, 2015

Ensurepass

 

QUESTION 21

Which of the following statements regarding SMTPs and SMTP over TLS are true?

 

A.

SMTPS connections are initiated on port 465.

B.

SMTP over TLS connections are entirely encrypted and initiated on port 465.

C.

The command STARTTLS is used to initiate SMTP over TLS.

D.

In an SMTPS session, the identities of both sender and receiver are encrypted.

E.

In an SMTP over TLS session, the identities of both sender and receiver are encrypted.

 

Answer: ACD

 

 

QUESTION 22

What is the best explanation for why a FortiMail unit would issue the error message indicated in the exhibit?

 

 

 

 

 

clip_image001

 

A.

The recipient domain external1.lab is not defined.

B.

This traffic comes from an authenticated sender.

C.

Recipient verification is not working properly.

D.

The session is matching an Access Control Rule with action “Reject”.

 

Answer: A

 

 

QUESTION 23

Examine the SMTP session below to determine which of the following statements is TRUE:

 

220 server.internal.lab ESMTP Smtpd; Fri, 5 Mar 2010 10:15:17 +0100

 

ehlo 192.168.5.192

 

250-server.internal.lab Hello [192.168.5.192], pleased to meet you

 

250-ENHANCEDSTATUSCODES

 

250-PIPELINING

 

250-8BITMIME

 

250-SIZE 10485760

 

250-DSN

 

250-AUTH LOGIN PLAIN DIGEST-MD5 CRAM-MD5

 

250-STARTTLS

 

250-DELIVERBY

 

250 HELP

 

 

 

 

mail from: <user1@external.lab>

 

250 2.1.0 <user1@external.lab>… Sender ok

 

rcpt to: <user1@internal1.lab>

 

250 2.1.5 <user1@internal1.lab>… Recipient ok

 

data

 

354 Enter mail, end with “.” on a line by itself

 

This is a test

 

.

 

250 2.0.0 o259FHGe000418-o259FHGf000418 Message accepted for delivery

 

quit

 

221 2.0.0 server.internal.lab closing connection

 

A.

The remote MTA FQDN is server.internal.lab.

B.

The remote MTA IP address is 192.168.5.192.

C.

The session has been unexpectedly closed by the sender MUA.

D.

The remote MTA does not support SMTP over TLS.

E.

The SMTP id is o259FHGe000418-o259FHGf000418.

 

Answer: AE

 

 

QUESTION 24

Which of the following statements regarding Antivirus scanning is NOT correct?

 

A.

Antivirus scanning is performed on incoming email traffic only.

B.

When a virus is found, the infected file is replaced with a replacement message.

C.

An SMTP session that matches an Access Control Rule with action Bypass is exempted by Antivirus scan.

D.

When an email is detected as infected, the Sender Reputation score associated with the sender IP is incremented.

 

Answer: AC

 

 

 

QUESTION 25

Based upon the exhibit, which of the following statements are true?

 

clip_image002

 

A.

The new session initiated by the FortiMail proxy will reuse the sender IP.

B.

The FortiMail unit will add a received header to the email message.

C.

This option applies to outgoing SMTP sessions only.

D.

Email headers will not contain any reference to the FortiMail transparent device.

 

Answer: AD

 

 

QUESTION 26

An SMTP client successfully authenticates with a FortiMail unit with no access list entries configured. Which of the following statements correctly describes the expected behavior of the FortiMail unit in this scenario?

 

A.

The FortiMail unit will relay all email messages from the authenticated client.

B.

The FortiMail unit will deny relaying the email message and will send an SMTP 550 error to the authenticated client.

C.

The FortiMail unit will only relay email messages from the authenticated client to recipients on the FortiMail unit’s protected email domains.

D.

The FortiMail unit will discard all email messages from the authenticated client.

 

Answer: A

 

 

QUESTION 27

Which of the following statements regarding User Quarantine Access is true?

 

 

 

 

 

A.

User Quarantine access can be enabled in Recipient-based policies only.

B.

User Quarantine access can be enabled in IP-based policies only.

C.

An authentication profile is only needed when the FortiMail is protecting multiple domains.

D.

Email users can access their quarantine emails through an IMAP client.

 

Answer: A

 

 

QUESTION 28

Which of the following statements regarding SMTP Authentication is true?

 

A.

It can be enabled in Recipient-based policies only.

B.

It can be enabled in IP-based policies only.

C.

When enabled in Recipient or IP-based policies, it is supported but not enforced.

D.

It can be enforced through Access Control Rules only.

 

Answer: CD

 

 

QUESTION 29

Which back-end servers can be used to provide Recipient Verification?

 

A.

LDAP servers

B.

POP3 servers

C.

RADIUS servers

D.

SMTP servers

 

Answer: AD

 

 

QUESTION 30

A System Administrator is concerned by the amount of disk space being used to store quarantine email messages for non-existent accounts. Which of the following techniques can be used on a FortiMail unit to PREVENT email messages from being quarantined for non-existent accounts?

 

 

 

 

 

A.

Greylist Scanning

B.

Recipient Address Verification

C.

Sender Reputation

D.

Automatic Removal of Invalid Quarantine Accounts

 

Answer: B

Free VCE & PDF File for Fortinet FCESP Real Exam

Instant Access to Free VCE Files: CompTIA | VMware | SAP …
Instant Access to Free PDF Files: CompTIA | VMware | SAP …