1. Home
  2. Fortinet
  3. NSE5

Fortinet Network Security Expert 5 Written Exam (500)

Exam Details

  • Exam Code
    :NSE5
  • Exam Name
    :Fortinet Network Security Expert 5 Written Exam (500)
  • Certification
    :Fortinet Certifications
  • Vendor
    :Fortinet
  • Total Questions
    :320 Q&As
  • Last Updated
    :Jul 12, 2025

Fortinet Fortinet Certifications NSE5 Questions & Answers

  • Question 71:

    In the example dataset, where does it state to limit the results to a specific time period? SELECT dstip as domain, count(*) as session FROM $log WHERE $filter and dstip is not null GROUP BY dstip ORDER BY session desc LIMIT 7 OFFSET 1

    A. count(*)

    B. LIMIT 7

    C. There is no time period set in this query

    D. $filter

  • Question 72:

    You are the administrator in charge of a FortiGate unit which acts as a VPN gateway. You have chosen to use Interface Mode when configuring the VPN tunnel and you want users from either side to be able to initiate new sessions. There is only 1 subnet at either end and the FortiGate unit already has a default route.

    Which of the following configuration steps are required to achieve these objectives? (Select all that apply.)

    A. Create one firewall policy.

    B. Create two firewall policies.

    C. Add a route for the remote subnet.

    D. Add a route for incoming traffic.

    E. Create a phase 1 definition.

    F. Create a phase 2 definition.

  • Question 73:

    Examine the exhibit shown below then answer the question that follows it.

    Within the UTM Proxy Options, the CA certificate Fortinet_CA_SSLProxy defines which of the following:

    A. FortiGate unit's encryption certificate used by the SSL proxy.

    B. FortiGate unit's signing certificate used by the SSL proxy.

    C. FortiGuard's signing certificate used by the SSL proxy.

    D. FortiGuard's encryption certificate used by the SSL proxy.

  • Question 74:

    An administrator configures a FortiGate unit in Transparent mode on the 192.168.11.0 subnet. Automatic Discovery is enabled to detect any available FortiAnalyzers on the network.

    Which of the following FortiAnalyzers will be detected? (Select all that apply.)

    A. 192.168.11.100

    B. 192.168.11.251

    C. 192.168.10.100

    D. 192.168.10.251

  • Question 75:

    Both the FortiGate and FortiAnalyzer units can notify administrators when certain alert conditions are met. Considering this, which of the following statements is NOT correct?

    A. On a FortiGate device, the alert condition is based either on the severity level or on the log type, but not on a combination of the two.

    B. On a FortiAnalyzer device, the alert condition is based either on the severity level or on the log type, but not on a combination of the two.

    C. Only a FortiAnalyzer device can send the alert notification in the form of a syslog message.

    D. Both the FortiGate and FortiAnalyzer devices can send alert notifications in the form of an email alert.

  • Question 76:

    Which statements are true regarding encryption settings and levels? (Choose three.)

    A. The default encryption level is 128-bit and larger key length algorithms.

    B. High level encryption requires additional CPU resources.

    C. AES is an example of a high level encryption.

    D. The default encryption level on FortiAnalyzer is set at the same default encryption level as FortiGate.

    E. "Set enc-algorithm " is the command used to set the encryption level on FortiAnalyzer.

  • Question 77:

    Which of the following cannot be used in conjunction with the endpoint compliance check?

    A. HTTP Challenge Redirect to a Secure Channel (HTTPS) in the Authentication Settings.

    B. Any form of firewall policy authentication.

    C. WAN optimization.

    D. Traffic shaping.

  • Question 78:

    An administrator sets up a new FTP server on TCP port 2121. A FortiGate unit is located between the FTP clients and the server. The administrator has created a policy for TCP port 2121.

    Users have been complaining that when downloading data they receive a 200 Port command successful message followed by a 425 Cannot build data connection message.

    Which of the following statements represents the best solution to this problem?

    A. Create a new session helper for the FTP service monitoring port 2121.

    B. Enable the ANY service in the firewall policies for both incoming and outgoing traffic.

    C. Place the client and server interface in the same zone and enable intra-zone traffic.

    D. Disable any protection profiles being applied to FTP traffic.

  • Question 79:

    Which of the following authentication types are supported by FortiGate units? (Select all that apply.)

    A. Kerberos

    B. LDAP

    C. RADIUS

    D. Local Users

  • Question 80:

    Which of the following Regular Expression patterns will make the term "bad language" case insensitive?

    A. [bad language]

    B. /bad language/i

    C. i/bad language/

    D. "bad language"

    E. /bad language/c

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Fortinet exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your NSE5 exam preparations and Fortinet certification application, do not hesitate to visit our Vcedump.com to find your solutions here.