Latest Certified Success Dumps Download

CISCO, MICROSOFT, COMPTIA, HP, IBM, ORACLE, VMWARE
FCNSA.v5 Examination questions (September)

Achieve New Updated (September) Fortinet FCNSA.v5 Examination Questions 31-40

September 24, 2015

Ensurepass

 

QUESTION 31

The FortiGate Web Config provides a link to update the firmware in the System > Status window.Clicking this link will perform which of the following actions?

 

A.

It will connect to the Fortinet support site where the appropriate firmware version can be selected.

B.

It will send a request to the FortiGuard Distribution Network so that the appropriate firmware version can be pushed down to the FortiGate unit.

C.

It will present a prompt to allow browsing to the location of the firmware file.

D.

It will automatically connect to the Fortinet support site to download the most recent firmware version for the FortiGate unit.

 

Answer: C

 

 

 

QUESTION 32

You are the administrator in charge of a FortiGate unit which acts as a VPN gateway. You have chosen to use Interface Mode when configuring the VPN tunnel and you want users from either side to be able to initiate new sessions. There is only 1 subnet at either end and the FortiGate unit already has a default route.

 

Which of the following configuration steps are required to achieve these objectives? (Select all that apply.)

 

A.

Create one firewall policy.

B.

Create two firewall policies.

C.

Add a route for the remote subnet.

D.

Add a route for incoming traffic.

E.

Create a phase 1 definition.

F.

Create a phase 2 definition.

 

Answer: BCEF

 

 

QUESTION 33

Examine the exhibit shown below; then answer the question following it.

 

clip_image001

 

 

 

 

Which of the following statements best describes the green status indicators that appear next to the different FortiGuard Distribution Network services as illustrated in the exhibit?

 

A.

They indicate that the FortiGate unit is able to connect to the FortiGuard Distribution Network.

B.

They indicate that the FortiGate unit has the latest updates that are available from the FortiGuard Distribution Network.

C.

They indicate that updates are available and should be downloaded from the FortiGuard Distribution Network to the FortiGate unit.

D.

They indicate that the FortiGate unit is in the process of downloading updates from the FortiGuard Distribution Network.

 

Answer: A

 

 

QUESTION 34

In NAT/Route mode when there is no matching firewall policy for traffic to be forwarded by the Firewall, which of the following statements describes the action taken on traffic?

 

A.

The traffic is blocked.

B.

The traffic is passed.

C.

The traffic is passed and logged.

D.

The traffic is blocked and logged.

 

Answer: A

 

 

QUESTION 35

A FortiAnalyzer device could use which security method to secure the transfer of log data from FortiGate devices?

 

A.

SSL

B.

IPSec

C.

direct serial connection

D.

S/MIME

 

Answer: B

 

 

 

QUESTION 36

When backing up the configuration file on a FortiGate unit, the contents can be encrypted by enabling the encrypt option and supplying a password.

 

If the password is forgotten, the configuration file can still be restored using which of the following methods?

 

A.

Selecting the recover password option during the restore process.

B.

Having the password emailed to the administrative user by selecting the Forgot Password option.

C.

Sending the configuration file to Fortinet Support for decryption.

D.

If the password is forgotten, there is no way to use the file.

 

Answer: D

 

 

QUESTION 37

The command structure of the CLI on a FortiGate unit consists of commands, objects, branches, tables and parameters. Which of the following items describes port1?

 

A.

A command.

B.

An object.

C.

A table.

D.

A parameter.

 

Answer: C

 

 

QUESTION 38

When browsing to an internal web server using a web-mode SSL VPN bookmark, from which of the following source IP addresses would the web server consider the HTTP request to be initiated?

 

A.

The remote user’s virtual IP address.

B.

The FortiGate unit’s internal IP address.

C.

The remote user’s public IP address.

D.

The FortiGate unit’s external IP address.

 

 

 

 

 

Answer: B

 

 

QUESTION 39

SSL content inspection is enabled on the FortiGate unit. Which of the following steps is required to prevent a user from being presented with a web browser warning when accessing an SSL-encrypted website?

 

A.

The root certificate of the FortiGate SSL proxy must be imported into the local certificate store on the user’s workstation.

B.

Disable the strict server certificate check in the web browser under Internet Options.

C.

Enable transparent proxy mode on the FortiGate unit.

D.

Enable NTLM authentication on the FortiGate unit. NTLM authentication suppresses the certificate warning messages in the web browser.

 

Answer: A

 

 

QUESTION 40

What is the FortiGate unit password recovery process?

 

A.

Interupt boot sequence, modify the boot registry and reboot. After changing the password, reset the boot registry.

B.

Log in through the console port using the maintainer account within several minutes of a reboot.

C.

Hold CTRL + break during reboot and reset the admin password.

D.

The only way to regain access is to interrupt boot sequence and restore a configuration file for which the password has been modified.

 

Answer: B

Free VCE & PDF File for Fortinet FCNSA.v5 Real Exam

Instant Access to Free VCE Files: CompTIA | VMware | SAP …
Instant Access to Free PDF Files: CompTIA | VMware | SAP …