Latest Certified Success Dumps Download

CISCO, MICROSOFT, COMPTIA, HP, IBM, ORACLE, VMWARE
NSE5 Examination questions (September)

Achieve New Updated (September) Fortinet NSE5 Examination questions Topic 1, Volume A part 02

September 25, 2015

Ensurepass

 

QUESTION 11  (Topic 1)

 

In order to match an identity-based policy, the FortiGate unit checks the IP information. Once inside the policy, the following logic is followed:

 

A.

First, a check is performed to determine if the user’s login credentials are valid. Next, the user is checked to determine if they belong to any of the groups defined for that policy. Finally, user restrictions are determined and port, time, and UTM profiles are applied.

B.

First, user restrictions are determined and port, time, and UTM profiles are applied. Next, a check is performed to determine if the user’s login credentials are valid. Finally, the user is checked to determine if they belong to any of the groups defined for that policy.

C.

First, the user is checked to determine if they belong to any of the groups defined for that policy. Next, user restrictions are determined and port, time, and UTM profiles are applied. Finally, a check is performed to determine if the user’s login credentials are valid.

 

Answer: A

 

 

QUESTION 12  (Topic 1)

 

Which of the following statements is correct regarding URL Filtering on the FortiGate unit?

 

A.

The FortiGate unit can filter URLs based on patterns using text and regular expressions.

 

 

 

 

B.

The available actions for URL Filtering are Allow and Block.

C.

Multiple URL Filter lists can be added to a single Web filter profile.

D.

A FortiGuard Web Filtering Override match will override a block action in the URL filter list.

 

Answer: A

 

 

QUESTION 13  (Topic 1)

 

Which of the following spam filtering methods are supported on the FortiGate unit? (Select all that apply.)

 

A.

IP Address Check

B.

Open Relay Database List (ORDBL)

C.

Black/White List

D.

Return Email DNS Check

E.

Email Checksum Check

 

Answer: ABCDE

 

 

QUESTION 14  (Topic 1)

 

What is the FortiGate unit password recovery process?

 

A.

Interupt boot sequence, modify the boot registry and reboot. After changing the password, reset the boot registry.

B.

Log in through the console port using the maintainer account within several minutes of a reboot.

C.

Hold CTRL + break during reboot and reset the admin password.

D.

The only way to regain access is to interrupt boot sequence and restore a configuration file for which the password has been modified.

 

Answer: B

 

 

QUESTION 15  (Topic 1)

 

If a FortiGate unit has a dmz interface IP address of 210.192.168.2 with a subnet mask of

Q1

255.255.0, what is a valid dmz DHCP addressing range?

 

 

 

 

 

A.

172.168.0.1 – 172.168.0.10

B.

210.192.168.3 – 210.192.168.10

C.

210.192.168.1 – 210.192.168.4

D.

All of the above.

 

Answer: B

 

 

QUESTION 16  (Topic 1)

 

Under the System Information widget on the dashboard, which of the following actions are available for the system configuration? (Select all that apply.)

 

A.

Backup

B.

Restore

C.

Revisions

D.

Export

 

Answer: ABC

 

 

QUESTION 17  (Topic 1)

 

Which of the following statements are correct regarding logging to memory on a FortiGate unit? (Select all that apply.)

 

A.

When the system has reached its capacity for log messages, the FortiGate unit will stop logging to memory.

B.

When the system has reached its capacity for log messages, the FortiGate unit overwrites the oldest messages.

C.

If the FortiGate unit is reset or loses power, log entries captured to memory will be lost.

D.

None of the above.

 

Answer: BC

 

 

QUESTION 18  (Topic 1)

 

Which statement is correct regarding virus scanning on a FortiGate unit?

 

 

 

 

 

A.

Virus scanning is enabled by default.

B.

Fortinet Customer Support enables virus scanning remotely for you.

C.

Virus scanning must be enabled in a protection profile and the protection profile must be assigned to a firewall policy.

D.

Enabling virus scanning in a protection profile enables virus scanning for all traffic flowing through the FortiGate.

 

Answer: C

 

 

QUESTION 19  (Topic 1)

 

Which of the following email spam filtering features is NOT supported on a FortiGate unit?

 

A.

Multipurpose Internet Mail Extensions (MIME) Header Check

B.

HELO DNS Lookup

C.

Greylisting

D.

Banned Word

 

Answer: C

 

 

QUESTION 20  (Topic 1)

 

A firewall policy has been configured such that traffic logging is disabled and a UTM function is enabled.

 

In addition, the system setting `utm-incident-traffic-log’ has been enabled. In which log will a UTM event message be stored?

 

A.

Traffic

B.

UTM

C.

System

D.

None

 

Answer: A

 

Free VCE & PDF File for Fortinet NSE5 Real Exam

Instant Access to Free VCE Files: CompTIA | VMware | SAP …
Instant Access to Free PDF Files: CompTIA | VMware | SAP …