1. Home
  2. Fortinet
  3. NSE5

Fortinet Network Security Expert 5 Written Exam (500)

Exam Details

  • Exam Code
    :NSE5
  • Exam Name
    :Fortinet Network Security Expert 5 Written Exam (500)
  • Certification
    :Fortinet Certifications
  • Vendor
    :Fortinet
  • Total Questions
    :320 Q&As
  • Last Updated
    :Jul 12, 2025

Fortinet Fortinet Certifications NSE5 Questions & Answers

  • Question 281:

    Which of the following products is designed to manage multiple FortiGate devices?

    A. FortiGate device

    B. FortiAnalyzer device

    C. FortiClient device

    D. FortiManager device

    E. FortiMail device

    F. FortiBridge device

  • Question 282:

    Which two statements are correct for configuration changes made by FortiManager scripts? (Choose two.)

    A. When run on the device database, you can install changes to the managed FortiGate devices using the installation wizard.

    B. When run on the device database, changes are automatically installed to the managed FortiGate devices.

    C. When run on managed devices directly, changes are automatically installed to the managed FortiGate devices.

    D. When run on managed devices directly, you can install changes to the managed FortiGate devices using the installation wizard.

  • Question 283:

    What remote authentication servers can you configure to validate your FortiAnalyzer administrator logons? (Choose three.)

    A. RADIUS

    B. Local

    C. LDAP

    D. PKI

    E. TACACS+

  • Question 284:

    Review the output of the command get router info routing-table database shown in the Exhibit below; then answer the question following it.

    Which of the following statements are correct regarding this output? (Select all that apply).

    A. There will be six routes in the routing table.

    B. There will be seven routes in the routing table.

    C. There will be two default routes in the routing table.

    D. There will be two routes for the 10.0.2.0/24 subnet in the routing table.

  • Question 285:

    A FortiGate unit can act as which of the following? (Select all that apply.)

    A. Antispam filter

    B. Firewall

    C. VPN gateway

    D. Mail relay

    E. Mail server

  • Question 286:

    Which of the following statements regarding the firewall policy authentication timeout is true?

    A. The authentication timeout is an idle timeout. This means that the FortiGate unit will consider a user to be "idle" if it does not see any packets coming from the user's source IP.

    B. The authentication timeout is a hard timeout. This means that the FortiGate unit will remove the temporary policy for this user's source IP after this timer has expired.

    C. The authentication timeout is an idle timeout. This means that the FortiGate unit will consider a user to be "idle" if it does not see any packets coming from the user's source MAC.

    D. The authentication timeout is a hard timeout. This means that the FortiGate unit will remove the temporary policy for this user's source MAC after this timer has expired.

  • Question 287:

    Which of the following represents the method used on a FortiGate unit running FortiOS version 4.2 to apply traffic shaping to P2P traffic, such as BitTorrent?

    A. Apply a Traffic Shaper to a BitTorrent entry in an Application Control List.

    B. Enable the Shape option in a Firewall policy with a Service set to BitTorrent.

    C. Define a DLP Rule to match against BitTorrent traffic and include the rule in a DLP Sensor with Traffic Shaping enabled.

    D. Specify the amount of Rate Limiting to be applied to BitTorrent traffic through the P2P settings of the Firewall Policy Protocol Options.

  • Question 288:

    Data Leak Prevention archiving gives the ability to store files and message data onto a FortiAnalyzer unit for which of the following types of network traffic? (Select all that apply.)

    A. SNMP

    B. IPSec

    C. SMTP

    D. POP3

    E. HTTP

  • Question 289:

    A FortiAnalyzer device could use which security method to secure the transfer of log data from FortiGate devices?

    A. SSL

    B. IPSec

    C. direct serial connection

    D. S/MIME

  • Question 290:

    What is the FortiGate unit password recovery process?

    A. Interrupt boot sequence, modify the boot registry and reboot. After changing the password, reset the boot registry.

    B. Log in through the console port using the "maintainer" account within approximately 30 seconds of a reboot.

    C. Hold down the CTRL + Esc (Escape) keys during reboot, then reset the admin password.

    D. The only way to regain access is to interrupt the boot sequence and restore a configuration file for which the password has been modified.

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Fortinet exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your NSE5 exam preparations and Fortinet certification application, do not hesitate to visit our Vcedump.com to find your solutions here.