Fortinet Fortinet Certifications NSE4 Questions & Answers

• Question 141:

  What determines whether a log message is generated or not?

  A. Firewall policy setting

  B. Log Settings in the GUI

  C. 'config log' command in the CLI

  D. Syslog

  E. Webtrends

  Correct Answer: A

• Question 142:

  Which statement best describes what the FortiGate hardware acceleration processors main task is?

  A. Offload traffic processing tasks from the main CPU.

  B. Offload management tasks from the main CPU.

  C. Compress and optimize the network traffic.

  D. Increase maximum bandwidth available in a FortiGate interface.

  Correct Answer: A

• Question 143:

  Which of the following statements describes the objectives of the gratuitous ARP packets sent by an HA cluster?

  A. To synchronize the ARp tables in all the FortiGate Unis that are part of the HA cluster.

  B. To notify the network switches that a new HA master unit has been elected.

  C. To notify the master unit that the slave devices are still up and alive.

  D. To notify the master unit about the physical MAC addresses of the slave units.

  Correct Answer: B

• Question 144:

  What methods can be used to access the FortiGate CLI? (Choose two.)

  A. Using SNMP.

  B. A direct connection to the serial console port.

  C. Using the CLI console widget in the GUI.

  D. Using RCP.

  Correct Answer: BC

• Question 145:

  A firewall policy has been configured for the internal email server to receive email from external parties through SMTP. Exhibits A and B show the antivirus and email filter profiles applied to this policy.

  Exhibit A

  

  Exhibit B: What is the correct behavior when the email attachment is detected as a virus by the FortiGate antivirus engine?

  

  A. The FortiGate unit will remove the infected file and deliver the email with a replacement message to alert the recipient that the original attachment was infected.

  B. The FortiGate unit will reject the infected email and the sender will receive a failed delivery message.

  C. The FortiGate unit will remove the infected file and add a replacement message. Both sender and recipient are notified that the infected file has been removed.

  D. The FortiGate unit will reject the infected email and notify the sender.

  Correct Answer: B

• Question 146:

  The FortiGate port1 is connected to the Internet. The FortiGate port2 is connected to the internal network. Examine the firewall configuration shown in the exhibit; then answer the question below.

  

  Based on the firewall configuration illustrated in the exhibit, which statement is correct?

  A. A user that has not authenticated can access the Internet using any protocol that does not trigger an authentication challenge.

  B. A user that has not authenticated can access the Internet using any protocol except HTTP, HTTPS, Telnet, and FTP.

  C. A user must authenticate using the HTTP, HTTPS, SSH, FTP, or Telnet protocol before they can access all Internet services.

  D. DNS Internet access is always allowed, even for users that have not authenticated.

  Correct Answer: D

• Question 147:

  Examine this log entry.

  What does the log indicate? (Choose three.)

  date=2013-12-04 time=09:30:18 logid=0100032001 type=event subtype=system level=information vd="root" user="admin" ui=http(192.168.1.112) action=login status=success reason=none profile="super_admin" msg="Administrator admin logged in successfully from http(192.168.1.112)"

  A. In the GUI, the log entry was located under "Log and Report > Event Log > User".

  B. In the GUI, the log entry was located under "Log and Report > Event Log > System".

  C. In the GUI, the log entry was located under "Log and Report > Traffic Log > Local Traffic".

  D. The connection was encrypted.

  E. The connection was unencrypted.

  F. The IP of the FortiGate interface that "admin" connected to was 192.168.1.112.

  G. The IP of the computer that "admin" connected from was 192.168.1.112.

  Correct Answer: BEG

• Question 148:

  Caching improves performance by reducing FortiGate unit requests to the FortiGuard server. Which of the following statements are correct regarding the caching of FortiGuard responses?

  A. Caching is available for web filtering, antispam, and IPS requests.

  B. The cache uses a small portion of the FortiGate system memory.

  C. When the cache is full, the least recently used IP address or URL is deleted from the cache.

  D. An administrator can configure the number of seconds to store information in the cache before the FortiGate unit contacts the FortiGuard server again.

  E. The size of the cache will increase to accommodate any number of cached queries.

  Correct Answer: BCD

• Question 149:

  What are examples of correct syntax for the session table diagnostics command? (Choose two.)

  A. diagnose sys session filter clear

  B. diagnose sys session src 10.0.1.254

  C. diagnose sys session filter

  D. diagnose sys session filter list dst.

  Correct Answer: AC

• Question 150:

  What is the default criteria for selecting the HA master unit in a HA cluster?

  A. port monitor, priority, uptime, serial number

  B. Port monitor, uptime, priority, serial number

  C. Priority, uptime, port monitor, serial number

  D. uptime, priority, port monitor, serial number

  Correct Answer: B