1. Home
  2. Fortinet
  3. NSE5

Fortinet Network Security Expert 5 Written Exam (500)

Exam Details

  • Exam Code
    :NSE5
  • Exam Name
    :Fortinet Network Security Expert 5 Written Exam (500)
  • Certification
    :Fortinet Certifications
  • Vendor
    :Fortinet
  • Total Questions
    :320 Q&As
  • Last Updated
    :Jul 12, 2025

Fortinet Fortinet Certifications NSE5 Questions & Answers

  • Question 211:

    In Transparent Mode, forward-domain is an attribute of ______________.

    A. an interface

    B. a firewall policy

    C. a static route

    D. a virtual domain

  • Question 212:

    Which of the following statements best describes the proxy behavior on a FortiGate unit during an FTP client upload when FTP splice is disabled?

    A. The proxy will not allow a file to be transmitted in multiple streams simultaneously.

    B. The proxy sends the file to the server while simultaneously buffering it.

    C. If the file being scanned is determined to be infected, the proxy deletes it from the server by sending a delete command on behalf of the client.

    D. If the file being scanned is determined to be clean, the proxy terminates the connection and leaves the file on the server.

  • Question 213:

    Two devices are in an HA cluster, the device hostnames are STUDENT and REMOTE. Exhibit A shows the command output of 'diag sys session stat' for the STUDENT device. Exhibit B shows the command output of 'diag sys session stat' for the REMOTE device.

    Exhibit A:

    Exhibit B: Given the information provided in the exhibits, which of the following statements are correct? (Select all that apply.)

    A. STUDENT is likely to be the master device.

    B. Session-pickup is likely to be enabled.

    C. The cluster mode is definitely Active-Passive.

    D. There is not enough information to determine the cluster mode.

  • Question 214:

    If RAID isn't supported, what are other types of backup mechanisms (i.e. methods to preserve your log data in the event of disk failure, deletion, or corruption)? (Choose three.)

    A. Backing up logs through the Web-based manager or CLI.

    B. Forwarding logs to a syslog server.

    C. Uploading logs to an FTP, SFTP, or SCP server.

    D. Archiving logs.

    E. Enabling full archiving.

  • Question 215:

    A FortiGate unit is configured with three Virtual Domains (VDOMs) as illustrated in the exhibit.

    Which of the following statements are true if the network administrator wants to route traffic between all the VDOMs? (Select all that apply.)

    A. The administrator should configure inter-VDOM links to avoid using external interfaces and routers.

    B. As with all FortiGate unit interfaces, firewall policies must be in place for traffic to be allowed to pass through any interface, including inter-VDOM links. This provides the same level of security internally as externally.

    C. This configuration requires the use of an external router.

    D. Inter-VDOM routing is automatically provided if all the subnets that need to be routed are locally attached.

    E. As each VDOM has an independent routing table, routing rules need to be set (for example, static routing, OSPF) in each VDOM to route traffic between VDOMs.

  • Question 216:

    Review the IPsec phase1 configuration in the Exhibit shown below; then answer the question following it.

    Which of the following statements are correct regarding this configuration? (Select all that apply).

    A. The phase1 is for a route-based VPN configuration.

    B. The phase1 is for a policy-based VPN configuration.

    C. The local gateway IP is the address assigned to port1.

    D. The local gateway IP address is 10.200.3.1.

  • Question 217:

    What is the FortiGate unit password recovery process?

    A. Interupt boot sequence, modify the boot registry and reboot. After changing the password, reset the boot registry.

    B. Log in through the console port using the maintainer account within several minutes of a reboot.

    C. Hold CTRL + break during reboot and reset the admin password.

    D. The only way to regain access is to interrupt boot sequence and restore a configuration file for which the password has been modified.

  • Question 218:

    On the Device Manager tab, what does a red circle in the Logs field of a device indicate?

    A. A red circle indicates logs are being received.

    B. A red circle indicates the IPSec tunnel is down.

    C. A red circle indicates logs are not being received.

    D. A red circle indicates no recent logs have been received.

  • Question 219:

    In HA, what is the effect of the Disconnect Cluster Member command as given in the Exhibit.

    A. The HA mode changes to standalone.

    B. Port3 is configured with an IP address for management access.

    C. The Firewall rules are purged on the disconnected unit.

    D. All other interface IP settings are maintained.

  • Question 220:

    An ADOM has two device modes: normal (default) and advanced.

    What is the main difference between the two modes?

    A. In normal mode, you can assign one administrator to multiple FortiAnalyzer ADOMs.

    B. In normal mode, you can assign the same device to multiple ADOMs.

    C. In normal mode, you cannot assign different FortiGate virtual domains (VDOMs) to multiple FortiAnalyzer ADOMs.

    D. In normal mode, you cannot create more than ten ADOMs.

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Fortinet exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your NSE5 exam preparations and Fortinet certification application, do not hesitate to visit our Vcedump.com to find your solutions here.