1. Home
  2. Fortinet
  3. NSE5

Fortinet Network Security Expert 5 Written Exam (500)

Exam Details

  • Exam Code
    :NSE5
  • Exam Name
    :Fortinet Network Security Expert 5 Written Exam (500)
  • Certification
    :Fortinet Certifications
  • Vendor
    :Fortinet
  • Total Questions
    :320 Q&As
  • Last Updated
    :Jul 12, 2025

Fortinet Fortinet Certifications NSE5 Questions & Answers

  • Question 41:

    Review the IPsec diagnostics output of the command diag vpn tunnel list shown in the Exhibit below.

    Which of the following statements are correct regarding this output? (Select all that apply.)

    A. The connecting client has been allocated address 172.20.1.1.

    B. In the Phase 1 settings, dead peer detection is enabled.

    C. The tunnel is idle.

    D. The connecting client has been allocated address 10.200.3.1.

  • Question 42:

    Which of the following statements is correct regarding URL Filtering on the FortiGate unit?

    A. The FortiGate unit can filter URLs based on patterns using text and regular expressions.

    B. The available actions for URL Filtering are Allow and Block.

    C. Multiple URL Filter lists can be added to a single Web filter profile.

    D. A FortiGuard Web Filtering Override match will override a block action in the URL filter list.

  • Question 43:

    Which of the following pieces of information can be included in the Destination Address field of a firewall policy? (Select all that apply.)

    A. An IP address pool.

    B. A virtual IP address.

    C. An actual IP address or an IP address group.

    D. An FQDN or Geographic value(s).

  • Question 44:

    Caching improves performance by reducing FortiGate unit requests to the FortiGuard server.

    Which of the following statements are correct regarding the caching of FortiGuard responses? (Select all that apply.)

    A. Caching is available for web filtering, antispam, and IPS requests.

    B. The cache uses a small portion of the FortiGate system memory.

    C. When the cache is full, the least recently used IP address or URL is deleted from the cache.

    D. An administrator can configure the number of seconds to store information in the cache before the FortiGate unit contacts the FortiGuard server again.

    E. The size of the cache will increase to accomodate any number of cached queries.

  • Question 45:

    The Host Check feature can be enabled on the FortiGate unit for SSL VPN connections. When this feature is enabled, the FortiGate unit probes the remote host computer to verify that it is "safe" before access is granted.

    Which of the following items is NOT an option as part of the Host Check feature?

    A. FortiClient Antivirus software

    B. Microsoft Windows Firewall software

    C. FortiClient Firewall software

    D. Third-party Antivirus software

  • Question 46:

    Based on the web filtering configuration illustrated in the exhibit

    Which one of the following statements is not a reasonable conclusion?

    A. Users can access both the www.google.com site and the www.fortinet.com site.

    B. When a user attempts to access the www.google.com site, the FortiGate unit will not perform web filtering on the content of that site.

    C. When a user attempts to access the www.fortinet.com site, any remaining web filtering will be bypassed.

    D. Downloaded content from www.google.com will be scanned for viruses if antivirus is enabled.

  • Question 47:

    Which of the following are valid components of the Fortinet Server Authentication Extensions (FSAE)? (Select all that apply.)

    A. Domain Local Security Agent.

    B. Collector Agent.

    C. Active Directory Agent.

    D. User Authentication Agent.

    E. Domain Controller Agent.

  • Question 48:

    Setting workspace-mode to normal, as shown in the exhibit, allows what on FortiManager? (Choose two.) config system global set workspace-mode normal end

    A. ADOM locking

    B. VDOM locking

    C. Unrestricted concurrent access

    D. Restricted concurrent access

  • Question 49:

    FortiAnalyzer centralizes which functions? (Choose three.)

    A. Network analysis

    B. Graphical reporting

    C. Content archiving / data mining

    D. Vulnerability assessment

    E. Security log analysis / forensics

  • Question 50:

    Which of the following methods does the FortiGate unit use to determine the availability of a web cache using Web Cache Communication Protocol (WCCP)?

    A. The FortiGate unit receives periodic "Here I am" messages from the web cache.

    B. The FortiGate unit polls all globally-defined web cache servers at a regular intervals.

    C. The FortiGate using uses the health check monitor to verify the availability of a web cache server.

    D. The web cache sends an "I see you" message which is captured by the FortiGate unit.

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Fortinet exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your NSE5 exam preparations and Fortinet certification application, do not hesitate to visit our Vcedump.com to find your solutions here.