Fortinet NSE5
Get real exam questions for NSE5 Fortinet Network Security Expert 5 Written Exam (500). 100% Free.
NSE5 Premium VCE File
Learn More
100% Pass Guarantee - Dumps Verified - Instant Download
150 Lectures, 20 Hours
Q1. - (Topic 1) Each UTM feature has configurable UTM objects such as sensors, profiles or lists that define how the feature will function. How are UTM features applied to traffic? A. One or more UTM features are enabled in a firewall policy. B. In the system configuration for that UTM feature, you can identify the policies to which the feature is to be applied. C. Enable the appropriate UTM
Q1. - (Topic 2)Â Examine the following log message for IPS and identify the valid responses below. (Select all that apply.)Â 2012-07-01 09:54:28 oid=2 log_id=18433 type=ips subtype=anomaly pri=alert vd=root severity="critical" src="192.168.3.168" dst="192.168.3.170" src_int="port2" serial=0 status="detected" proto=1 service="icmp" count=1 attack_name="icmp_flood" icmp_id="0xa8a4" icmp_type="0x08"
Q1. - (Topic 3) A DLP rule with an action of Exempt has been matched against traffic passing through the FortiGate unit. Which of the following statements is correct regarding how this transaction will be handled by the FortiGate unit? A. Any other matched DLP rules will be ignored with the exception of Archiving. B. Future files whose characteristics match this file will bypass DLP scanning.Â
Q1. - (Topic 3) Which of the following describes the difference between the ban and quarantine actions? A. A ban action prevents future transactions using the same protocol which triggered the ban. A qarantine action blocks all future transactions, regardless of the protocol. B. A ban action blocks the transaction. A quarantine action archives the data. C. A ban action has a finite duration.
Q1. - (Topic 3) A network administrator connects his PC to the INTERNAL interface on a FortiGate unit. The administrator attempts to make an HTTPS connection to the FortiGate unit on the VLAN1 interface at the IP address of 10.0.1.1, but gets no connectivity. The following troubleshooting commands are executed from the CLI: user1 # get system interface == [ internal ] namE. internal modE. st
Q1. - (Topic 1) Caching improves performance by reducing FortiGate unit requests to the FortiGuard server. Which of the following statements are correct regarding the caching of FortiGuard responses? (Select all that apply.) A. Caching is available for web filtering, antispam, and IPS requests. B. The cache uses a small portion of the FortiGate system memory. C. When the cache is full, the l
Q1. - (Topic 1) What is the effect of using CLI "config system session-ttl" to set session_ttl to 1800 seconds? A. Sessions can be idle for no more than 1800 seconds. B. The maximum length of time a session can be open is 1800 seconds. C. After 1800 seconds, the end user must reauthenticate. D. After a session has been open for 1800 seconds, the FortiGate unit will send a keepalive packet to
Q1. - (Topic 2) Identify the correct properties of a partial mesh VPN deployment: A. VPN tunnels interconnect between every single location. B. VPN tunnels are not configured between every single location. C. Some locations are reached via a hub location. D. There are no hub locations in a partial mesh. View AnswerAnswer: B,C Q2. - (Topic 1) A FortiAnalyzer device could use which securi
Q1. - (Topic 1) In order to match an identity-based policy, the FortiGate unit checks the IP information. Once inside the policy, the following logic is followed: A. First, a check is performed to determine if the user’s login credentials are valid. Next, the user is checked to determine if they belong to any of the groups defined for that policy. Finally, user restrictions are determined and
Q1. - (Topic 1) An end user logs into the SSL VPN portal and selects the Tunnel Mode option by clicking on the "Connect" button. The administrator has not enabled split tunneling and so the end user must access the Internet through the SSL VPN Tunnel. Which firewall policies are needed to allow the end user to not only access the internal network but also reach the Internet? A) B) C) D) A.