Shortcuts To NSE5(1 to 10)

Want to know Examcollection NSE5 Exam practice test features? Want to lear more about Fortinet Fortinet Network Security Expert 5 Written Exam (500) certification experience? Study Accurate Fortinet NSE5 answers to Renewal NSE5 questions at Examcollection. Gat a success with an absolute guarantee to pass Fortinet NSE5 (Fortinet Network Security Expert 5 Written Exam (500)) test on your first attempt.


♥♥ 2021 NEW RECOMMEND ♥♥

Free VCE & PDF File for Fortinet NSE5 Real Exam (Full Version!)

★ Pass on Your First TRY ★ 100% Money Back Guarantee ★ Realistic Practice Exam Questions

Free Instant Download NEW NSE5 Exam Dumps (PDF & VCE):
Available on: http://www.surepassexam.com/NSE5-exam-dumps.html

Q1. - (Topic 1) 

A firewall policy has been configured for the internal email server to receive email from external parties through SMTP. Exhibits A and B show the antivirus and email filter profiles applied to this policy. 

Exhibit A: 

Exhibit B: 

What is the correct behavior when the email attachment is detected as a virus by the FortiGate antivirus engine? 

A. The FortiGate unit will remove the infected file and deliver the email with a replacement message to alert the recipient that the original attachment was infected. 

B. The FortiGate unit will reject the infected email and the sender will receive a failed delivery message. 

C. The FortiGate unit will remove the infected file and add a replacement message. Both sender and recipient are notified that the infected file has been removed. 

D. The FortiGate unit will reject the infected email and notify the sender. 

Answer:


Q2. - (Topic 3) 

A FortiGate unit is configured with three Virtual Domains (VDOMs) as illustrated in the exhibit. 

Which of the following statements are correct regarding these VDOMs? (Select all that apply.) 

A. The FortiGate unit supports any combination of these VDOMs in NAT/Route and Transparent modes. 

B. The FortiGate unit must be a model 1000 or above to support multiple VDOMs. 

C. A license had to be purchased and applied to the FortiGate unit before VDOM mode could be enabled. 

D. All VDOMs must operate in the same mode. 

E. Changing a VDOM operational mode requires a reboot of the FortiGate unit. 

F. An admin account can be assigned to one VDOM or it can have access to all three VDOMs. 

Answer: A,F 


Q3. - (Topic 1) 

The Idle Timeout setting on a FortiGate unit applies to which of the following? 

A. Web browsing 

B. FTP connections 

C. User authentication 

D. Administrator access 

E. Web filtering overrides. 

Answer:


Q4. - (Topic 2) 

Review the static route configuration for IPsec shown in the Exhibit below; then answer the question following it. 

Which of the following statements are correct regarding this configuration? (Select all that apply). 

A. Remote_1 is a Phase 1 object with interface mode enabled 

B. The gateway address is not required because the interface is a point-to-point connection 

C. The gateway address is not required because the default route is used 

D. Remote_1 is a firewall zone 

Answer: A,B 


Q5. - (Topic 1) 

Which of the following products can be installed on a computer running Windows XP to provide personal firewall protection, antivirus protection, web and mail filtering, spam filtering, and VPN functionality? 

A. FortiGate 

B. FortiAnalyzer 

C. FortiClient 

D. FortiManager 

E. FortiReporter 

Answer:


Q6. - (Topic 3) 

Which of the following describes the best custom signature for detecting the use of the word "Fortinet" in chat applications? 

A. The sample packet trace illustrated in the exhibit provides details on the packet that requires detection. F-SBID( --protocol tcp; --flow from_client; --pattern "X-MMS-IM-Format"; --pattern "fortinet"; --no_case; ) 

B. F-SBID( --protocol tcp; --flow from_client; --pattern "fortinet"; --no_case; ) 

C. F-SBID( --protocol tcp; --flow from_client; --pattern "X-MMS-IM-Format"; --pattern "fortinet"; --within 20; --no_case; ) 

D. F-SBID( --protocol tcp; --flow from_client; --pattern "X-MMS-IM-Format"; --pattern "fortinet"; --within 20; ) 

Answer:


Q7. - (Topic 1) 

FortiGate units are preconfigured with four default protection profiles. These protection profiles are used to control the type of content inspection to be performed. 

What action must be taken for one of these profiles to become active? 

A. The protection profile must be assigned to a firewall policy. 

B. The "Use Protection Profile" option must be selected in the Web Config tool under the sections for AntiVirus, IPS, WebFilter, and AntiSpam. 

C. The protection profile must be set as the Active Protection Profile. 

D. All of the above. 

Answer:


Q8. - (Topic 2) 

Review the IPsec phase1 configuration in the Exhibit shown below; then answer the question following it. 

Which of the following statements are correct regarding this configuration? (Select all that apply). 

A. The phase1 is for a route-based VPN configuration. 

B. The phase1 is for a policy-based VPN configuration. 

C. The local gateway IP is the address assigned to port1. 

D. The local gateway IP address is 10.200.3.1. 

Answer: A,C 


Q9. - (Topic 3) 

Which of the following report templates must be used when scheduling report generation? 

A. Layout Template 

B. Data Filter Template 

C. Output Template 

D. Chart Template 

Answer:


Q10. - (Topic 3) 

An administrator is examining the attack logs and notices the following entry: 

device_id=FG100A3907508962 log_id=18432 subtype=anomaly type=ips timestamp=1270017358 pri=alert itime=1270017893 severity=critical src=192.168.1.52 dst=64.64.64.64 src_int=internal serial=0 status=clear_session proto=6 service=http vd=root count=1 src_port=35094 dst_port=80 attack_id=100663402 sensor=protect-servers ref=http://www.fortinet.com/ids/VID100663402 msg="anomaly: tcp_src_session, 2 > threshold 1" policyid=0 carrier_ep=N/A profile=N/A dst_int=N/A user=N/A group=N/A 

Based solely upon this log message, which of the following statements is correct? 

A. This attack was blocked by the HTTP protocol decoder. 

B. This attack was caught by the DoS sensor "protect-servers". 

C. This attack was launched against the FortiGate unit itself rather than a host behind the FortiGate unit. 

D. The number of concurrent connections to destination IP address 64.64.64.64 has exceeded the configured threshold. 

Answer: