1. Home
  2. Fortinet
  3. NSE5

Fortinet Network Security Expert 5 Written Exam (500)

Exam Details

  • Exam Code
    :NSE5
  • Exam Name
    :Fortinet Network Security Expert 5 Written Exam (500)
  • Certification
    :Fortinet Certifications
  • Vendor
    :Fortinet
  • Total Questions
    :320 Q&As
  • Last Updated
    :Jul 12, 2025

Fortinet Fortinet Certifications NSE5 Questions & Answers

  • Question 101:

    Which of the following Fortinet products can receive updates from the FortiGuard Distribution Network? (Select all that apply.)

    A. FortiGate

    B. FortiClient

    C. FortiMail

    D. FortiAnalyzer

  • Question 102:

    What are the operating modes of FortiAnalyzer? (Choose two.)

    A. Standalone

    B. Manager

    C. Analyzer

    D. Collector

  • Question 103:

    A static route is configured for a FortiGate unit from the CLI using the following commands: config router static edit 1 set device "wan1" set distance 20 set gateway 192.168.100.1 next end

    Which of the following conditions is NOT required for this static default route to be displayed in the FortiGate unit's routing table?

    A. The Administrative Status of the wan1 interface is displayed as Up.

    B. The Link Status of the wan1 interface is displayed as Up.

    C. All other default routes should have an equal or higher distance.

    D. You must disable DHCP client on that interface.

  • Question 104:

    Which of the following network protocols can be used to access a FortiGate unit as an administrator?

    A. HTTPS, HTTP, SSH, TELNET, PING, SNMP

    B. FTP, HTTPS, NNTP, TCP, WINS

    C. HTTP, NNTP, SMTP, DHCP

    D. Telnet, FTP, RLOGIN, HTTP, HTTPS, DDNS

    E. Telnet, UDP, NNTP, SMTP

  • Question 105:

    Which tabs do not appear when FortiAnalyzer is operating in Collector mode? (Choose two.)

    A. FortiView

    B. Event Management

    C. Device Manager

    D. Reporting

  • Question 106:

    What advantages are there in using a fully Meshed IPSec VPN configuration instead of a hub and spoke set of IPSec tunnels?

    A. Using a hub and spoke topology is required to achieve full redundancy.

    B. Using a full mesh topology simplifies configuration.

    C. Using a full mesh topology provides stronger encryption.

    D. Full mesh topology is the most fault-tolerant configuration.

  • Question 107:

    An issue could potentially occur when clicking Connect to start tunnel mode SSL VPN. The tunnel will start up for a few seconds, then shut down.

    Which of the following statements best describes how to resolve this issue?

    A. This user does not have permission to enable tunnel mode. Make sure that the tunnel mode widget has been added to that user's web portal.

    B. This FortiGate unit may have multiple Internet connections. To avoid this problem, use the appropriate CLI command to bind the SSL VPN connection to the original incoming interface.

    C. Check the SSL adaptor on the host machine. If necessary, uninstall and reinstall the adaptor from the tunnel mode portal.

    D. Make sure that only Internet Explorer is used. All other browsers are unsupported.

  • Question 108:

    In a High Availability cluster operating in Active-Active mode, which of the following correctly describes the path taken by the SYN packet of an HTTP session that is offloaded to a subordinate unit?

    A. Request: Internal Host; Master FortiGate; Slave FortiGate; Internet; Web Server

    B. Request: Internal Host; Master FortiGate; Slave FortiGate; Master FortiGate; Internet; Web Server

    C. Request: Internal Host; Slave FortiGate; Internet; Web Server

    D. Request: Internal Host; Slave FortiGate; Master FortiGate; Internet; Web Server

  • Question 109:

    Which of the following statements are correct regarding logging to memory on a FortiGate unit? (Select all that apply.)

    A. When the system has reached its capacity for log messages, the FortiGate unit will stop logging to memory.

    B. When the system has reached its capacity for log messages, the FortiGate unit overwrites the oldest messages.

    C. If the FortiGate unit is reset or loses power, log entries captured to memory will be lost.

    D. None of the above.

  • Question 110:

    Examine the Exhibits shown below, then answer the question that follows. Review the following DLP Sensor (Exhibit 1):

    Review the following File Filter list for rule #1 (Exhibit 2): Review the following File Filter list for rule #2 (Exhibit 3):

    Review the following File Filter list for rule #3 (Exhibit 4):

    An MP3 file is renamed to `workbook.exe' and put into a ZIP archive. It is then sent through the FortiGate device over HTTP. It is intercepted and processed by the configuration shown in the above Exhibits 1-4.

    Assuming the file is not too large for the File scanning threshold, what action will the FortiGate unit take?

    A. The file will be detected by rule #1 as an `Audio (mp3)', a log entry will be created and it will be allowed to pass through.

    B. The file will be detected by rule #2 as a "*.exe", a log entry will be created and the interface that received the traffic will be brought down.

    C. The file will be detected by rule #3 as an Archive(zip), blocked, and a log entry will be created.

    D. Nothing, the file will go undetected.

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Fortinet exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your NSE5 exam preparations and Fortinet certification application, do not hesitate to visit our Vcedump.com to find your solutions here.