Fortinet Fortinet Certifications NSE5 Questions & Answers

• Question 181:

  Two FortiGate devices fail to form an HA cluster, the device hostnames are STUDENT and REMOTE. Exhibit A shows the command output of 'show system ha' for the STUDENT device. Exhibit B shows the command output of 'show system ha' for the REMOTE device.

  Exhibit A:

  

  Exhibit B: Which one of the following is the most likely reason that the cluster fails to form?

  

  A. Password

  B. HA mode

  C. Hearbeat

  D. Override

  Correct Answer: B

• Question 182:

  Examine the Exhibit shown below; then answer the question following it.

  

  In this scenario, the Fortigate unit in Ottawa has the following routing table:

  S* 0.0.0.0/0 [10/0] via 172.20.170.254, port2 C 172.20.167.0/24 is directly connected, port1 C 172.20.170.0/24 is directly connected, port2 Sniffer tests show that packets sent from the Source IP address 172.20.168.2 to the Destination IP

  address 172.20.169.2 are being dropped by the FortiGate unit located in Ottawa. Which of the following correctly describes the cause for the dropped packets?

  A. The forward policy check.

  B. The reverse path forwarding check.

  C. The subnet 172.20.169.0/24 is NOT in the Ottawa FortiGate unit's routing table.

  D. The destination workstation 172.20.169.2 does NOT have the subnet 172.20.168.0/24 in its routing table.

  Correct Answer: B

• Question 183:

  Which of the following statements is correct about configuring web filtering overrides?

  A. The Override option for FortiGuard Web Filtering is available for any user group type.

  B. Admin overrides require an administrator to manually allow pending override requests which are listed in the Override Monitor.

  C. The Override Scopes of User and User Group are only for use when Firewall Policy Authentication is also being used.

  D. Using Web Filtering Overrides requires the use of Firewall Policy Authentication.

  Correct Answer: C

• Question 184:

  Which of the following statements are correct about the HA diag command diagnose sys ha reset-uptime? (Select all that apply.)

  A. The device this command is executed on is likely to switch from master to slave status if master override is disabled.

  B. The device this command is executed on is likely to switch from master to slave status if master override is enabled.

  C. This command has no impact on the HA algorithm.

  D. This command resets the uptime variable used in the HA algorithm so it may cause a new master to become elected.

  Correct Answer: AD

• Question 185:

  Which of the following logging options are supported on a FortiGate unit? (Select all that apply.)

  A. LDAP

  B. Syslog

  C. FortiAnalyzer

  D. Local

  Correct Answer: BCD

• Question 186:

  For Data Leak Prevention, which of the following describes the difference between the block and quarantine actions?

  A. A block action prevents the transaction. A quarantine action blocks all future transactions, regardless of the protocol.

  B. A block action prevents the transaction. A quarantine action archives the data.

  C. A block action has a finite duration. A quarantine action must be removed by an administrator.

  D. A block action is used for known users. A quarantine action is used for unknown users.

  Correct Answer: A

• Question 187:

  What is the effect of using CLI "config system session-ttl" to set session_ttl to 1800 seconds?

  A. Sessions can be idle for no more than 1800 seconds.

  B. The maximum length of time a session can be open is 1800 seconds.

  C. After 1800 seconds, the end user must reauthenticate.

  D. After a session has been open for 1800 seconds, the FortiGate unit will send a keepalive packet to both client and server.

  Correct Answer: A

• Question 188:

  What statements are true regarding RAID? (Choose three.)

  A. RAID is supported on all FortiAnalyzer models (both hardware appliances and virtual appliances).

  B. RAID backs up log information.

  C. RAID requires multiple identical drives.

  D. RAID levels determine how data is distributed across drives.

  E. RAID status is available via the CLI only.

  Correct Answer: CDE

• Question 189:

  Which two statements are correct concerning the revision history functionality? (Choose two.)

  A. When a modified configuration is installed, FortiManager creates a new revision.

  B. The diff feature can be used to compare two revisions.

  C. The retrieve button downloads the managed device's revision history.

  D. The auto update feature automatically installs changes made from FortiManager.

  Correct Answer: AB

• Question 190:

  The FortiGate Web Config provides a link to update the firmware in the System > Status window. Clicking this link will perform which of the following actions?

  A. It will connect to the Fortinet support site where the appropriate firmware version can be selected.

  B. It will send a request to the FortiGuard Distribution Network so that the appropriate firmware version can be pushed down to the FortiGate unit.

  C. It will present a prompt to allow browsing to the location of the firmware file.

  D. It will automatically connect to the Fortinet support site to download the most recent firmware version for the FortiGate unit.

  Correct Answer: C