1. Home
  2. Fortinet
  3. NSE5

Fortinet Network Security Expert 5 Written Exam (500)

Exam Details

  • Exam Code
    :NSE5
  • Exam Name
    :Fortinet Network Security Expert 5 Written Exam (500)
  • Certification
    :Network Security,NSE 5
  • Vendor
    :Fortinet
  • Total Questions
    :320 Q&As
  • Last Updated
    :

Fortinet Network Security,NSE 5 NSE5 Questions & Answers

  • Question 1:

    WAN optimization is configured in Active/Passive mode. When will the remote peer accept an attempt to initiate a tunnel?

    A. The attempt will be accepted when the request comes from a known peer and there is a matching WAN optimization passive rule.

    B. The attempt will be accepted when there is a matching WAN optimization passive rule.

    C. The attempt will be accepted when the request comes from a known peer.

    D. The attempt will be accepted when a user on the remote peer accepts the connection request.

  • Question 2:

    Which of the following products can be installed on a computer running Windows XP to provide personal firewall protection, antivirus protection, web and mail filtering, spam filtering, and VPN functionality?

    A. FortiGate

    B. FortiAnalyzer

    C. FortiClient

    D. FortiManager

    E. FortiReporter

  • Question 3:

    The service access settings for a FortiManager network interface relate to which product feature?

    A. Device Manager

    B. Policy and Objects

    C. FortiGuard

    D. FortiView

  • Question 4:

    A user creates a policy package with two installation targets, as shown in the exhibit. When the install operation is performed, which two statements are correct concerning the Install On column in the policy configuration? (Choose two.)

    A. Policy ID 3 will not be installed on any FortiGate device.

    B. Policy ID 3 will be installed on both FortiGate devices.

    C. Policy ID 2 will be installed only on the HeadOffice FortiGate device.

    D. Install On column values represent successful installations.

  • Question 5:

    Because changing the operational mode to Transparent resets device (or vdom) to all defaults, which precautions should an Administrator take prior to performing this? (Select all that apply.)

    A. Backup the configuration.

    B. Disconnect redundant cables to ensure the topology will not contain layer 2 loops.

    C. Set the unit to factory defaults.

    D. Update IPS and AV files.

  • Question 6:

    A FortiGate 100 unit is configured to receive push updates from the FortiGuard Distribution Network, however, updates are not being received. Which of the following statements are possible reasons for this? (Select all that apply.)

    A. The external facing interface of the FortiGate unit is configured to use DHCP.

    B. The FortiGate unit has not been registered.

    C. There is a NAT device between the FortiGate unit and the FortiGuard Distribution Network.

    D. The FortiGate unit is in Transparent mode.

  • Question 7:

    A FortiGate unit can create a secure connection to a client using SSL VPN in tunnel mode.

    Which of the following statements are correct regarding the use of tunnel mode SSL VPN? (Select all that apply.)

    A. Split tunneling can be enabled when using tunnel mode SSL VPN.

    B. Software must be downloaded to the web client to be able to use a tunnel mode SSL VPN.

    C. Users attempting to create a tunnel mode SSL VPN connection must be members of a configured user group on the FortiGate unit.

    D. Tunnel mode SSL VPN requires the FortiClient software to be installed on the user's computer.

    E. The source IP address used by the client for the tunnel mode SSL VPN is assigned by the FortiGate unit.

  • Question 8:

    What is the problem with the following SQL SELECT statement? SELECT dstip as "Destination IP", count(*) as session FROM $log-traffic GROUP BY dstip WHERE $filter and dstip is not null

    A. The clauses are not coded in the right sequence.

    B. $log-traffic is not a log type.

    C. The FROM clause is not required.

    D. SQL queries are case-sensitive.

  • Question 9:

    What is the primary difference between raw format logs and formatted format logs?

    A. Raw logs can be viewed in the CLI only.

    B. Raw logs display logs as they appear within the log file.

    C. Raw logs are more human-consumable than formatted format logs.

    D. Raw logs cannot be downloaded into .csv format.

  • Question 10:

    Which statement is correct regarding virus scanning on a FortiGate unit?

    A. Virus scanning is enabled by default.

    B. Fortinet Customer Support enables virus scanning remotely for you.

    C. Virus scanning must be enabled in a protection profile and the protection profile must be assigned to a firewall policy.

    D. Enabling virus scanning in a protection profile enables virus scanning for all traffic flowing through the FortiGate.

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Fortinet exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your NSE5 exam preparations and Fortinet certification application, do not hesitate to visit our Vcedump.com to find your solutions here.