1. Home
  2. Fortinet
  3. FCNSA.V5

Fortinet Certified Network Security Administrator (FCNSA.v5)

Exam Details

  • Exam Code
    :FCNSA.V5
  • Exam Name
    :Fortinet Certified Network Security Administrator (FCNSA.v5)
  • Certification
    :Fortinet Certification
  • Vendor
    :Fortinet
  • Total Questions
    :119 Q&As
  • Last Updated
    :

Fortinet Fortinet Certification FCNSA.V5 Questions & Answers

  • Question 31:

    A FortiGate unit can act as which of the following? (Select all that apply.)

    A. Antispam filter

    B. Firewall

    C. VPN gateway

    D. Mail relay

    E. Mail server

  • Question 32:

    Which of the following components are contained in all FortiGate units from the FG50 models and up? (Select all that apply.)

    A. FortiASIC content processor.

    B. Hard Drive.

    C. Gigabit network interfaces.

    D. Serial console port.

  • Question 33:

    A FortiGate 60 unit is configured for your small office. The DMZ interface is connected to a net- work containing a web server and email server. The Internal interface is connected to a network containing 10 user workstations and the WAN1 interface is connected to your ISP.

    You want to configure firewall policies so that your users can send and receive email messages to the email server on the DMZ network. You also want the email server to be able to retrieve email messages from an email server hosted by your ISP using the POP3 protocol.

    Which policies must be created for this communication? (Select all that apply.)

    A. Internal > DMZ

    B. DMZ > Internal

    C. Internal > WAN1

    D. WAN1 > Internal

    E. DMZ > WAN1

    F. WAN1 > DMZ

  • Question 34:

    In which order are firewall policies processed on the FortiGate unit?

    A. They are processed from the top down as they appear in Web Config.

    B. They are processed based on the policy ID number shown in the left hand column of the policy window.

    C. They are processed using a policy hierarchy scheme that allows for multiple decision branch- ing.

    D. They are processed based on a priority value assigned through the priority column in the policy window.

  • Question 35:

    File blocking rules are applied before which of the following?

    A. Firewall policy processing

    B. Virus scanning

    C. Web URL filtering

    D. White/Black list filtering

  • Question 36:

    Which of the following pieces of information can be included in the Destination Address field of a firewall policy?

    A. An IP address pool, a virtual IP address, an actual IP address, and an IP address group.

    B. A virtual IP address, an actual IP address, and an IP address group.

    C. An actual IP address and an IP address group.

    D. Only an actual IP address.

  • Question 37:

    FortiGate units are preconfigured with four default protection profiles. These protection profiles are used to control the type of content inspection to be performed.

    What action must be taken for one of these profiles to become active?

    A. The protection profile must be assigned to a firewall policy.

    B. The "Use Protection Profile" option must be selected in the Web Config tool under the sec- tions for AntiVirus, IPS, WebFilter, and AntiSpam.

    C. The protection profile must be set as the Active Protection Profile.

    D. All of the above.

  • Question 38:

    Which of the following statements is correct regarding URL Filtering on the FortiGate unit?

    A. The FortiGate unit can filter URLs based on patterns using text and regular expressions.

    B. The available actions for URL Filtering are Allow and Block.

    C. Multiple URL Filter lists can be added to a single Web filter profile.

    D. A FortiGuard Web Filtering Override match will override a block action in the URL filter list.

  • Question 39:

    Which of the following Regular Expression patterns will make the term "bad language" case in- sensitive?

    A. [bad language]

    B. /bad language/i

    C. i/bad language/

    D. "bad language"

    E. /bad language/c

  • Question 40:

    SSL content inspection is enabled on the FortiGate unit.

    Which of the following steps is required to prevent a user from being presented with a web browser warning when accessing an SSL-en- crypted website?

    A. The root certificate of the FortiGate SSL proxy must be imported into the local certificate store on the user's workstation.

    B. Disable the strict server certificate check in the web browser under Internet Options.

    C. Enable transparent proxy mode on the FortiGate unit.

    D. Enable NTLM authentication on the FortiGate unit. NTLM authentication suppresses the cer- tificate warning messages in the web browser.

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Fortinet exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your FCNSA.V5 exam preparations and Fortinet certification application, do not hesitate to visit our Vcedump.com to find your solutions here.