It is impossible to pass Fortinet NSE5 exam without any help in the short term. Come to Testking soon and find the most advanced, correct and guaranteed Fortinet NSE5 practice questions. You will get a surprising result by our Update Fortinet Network Security Expert 5 Written Exam (500) practice guides.

Q25. - (Topic 1) 

If no firewall policy is specified between two FortiGate interfaces and zones are not used, which of the following statements describes the action taken on traffic flowing between these interfaces? 

A. The traffic is blocked. 

B. The traffic is passed. 

C. The traffic is passed and logged. 

D. The traffic is blocked and logged. 

Answer:


Q26. - (Topic 3) 

Which of the following describes the difference between the ban and quarantine actions? 

A. A ban action prevents future transactions using the same protocol which triggered the ban. A qarantine action blocks all future transactions, regardless of the protocol. 

B. A ban action blocks the transaction. A quarantine action archives the data. 

C. A ban action has a finite duration. A quarantine action must be removed by an administrator. 

D. A ban action is used for known users. A quarantine action is used for unknown users. 

Answer:


Q27. - (Topic 1) 

Users may require access to a web site that is blocked by a policy. Administrators can give 

users the ability to override the block. Which of the following statements regarding overrides is NOT correct? 

A. A web filter profile may only have one user group defined as an override group. 

B. A firewall user group can be used to provide override privileges for FortiGuard Web Filtering. 

C. When requesting an override, the matched user must belong to a user group for which the override capabilty has been enabled. 

D. Overrides can be allowed by the administrator for a specific period of time. 

Answer:


Q28. - (Topic 3) 

Both the FortiGate and FortiAnalyzer units can notify administrators when certain alert conditions are met. 

Considering this, which of the following statements is NOT correct? 

A. On a FortiGate device, the alert condition is based either on the severity level or on the log type, but not on a combination of the two. 

B. On a FortiAnalyzer device, the alert condition is based either on the severity level or on the log type, but not on a combination of the two. 

C. Only a FortiAnalyzer device can send the alert notification in the form of a syslog message. 

D. Both the FortiGate and FortiAnalyzer devices can send alert notifications in the form of an email alert. 

Answer:


Q29. - (Topic 1) 

Encrypted backup files provide which of the following benefits? (Select all that apply.) 

A. Integrity of the backup file is protected since it cannot be easily modified when encrypted. 

B. Prevents the backup file from becoming corrupted. 

C. Protects details of the device's configuration settings from being discovered while the backup file is in transit. For example, transferred to a data centers for system recovery. 

D. A copy of the encrypted backup file is automatically pushed to the FortiGuard Distribution Service (FDS) for disaster recovery purposes. If the backup file becomes corrupt it can be retrieved through FDS. 

E. Fortinet Technical Support can recover forgotten passwords with a backdoor passphrase. 

Answer: A,C 


Q30. - (Topic 3) 

An organization wishes to protect its SIP Server from call flooding attacks. Which of the following configuration changes can be performed on the FortiGate unit to fulfill this requirement? 

A. Apply an application control list which contains a rule for SIP and has the "Limit INVITE Request" option configured. 

B. Enable Traffic Shaping for the appropriate SIP firewall policy. 

C. Reduce the session time-to-live value for the SIP protocol by running the configure system session-ttl CLI command. 

D. Run the set udp-idle-timer CLI command and set a lower time value. 

Answer:


Q31. - (Topic 1) 

Which statement is correct regarding virus scanning on a FortiGate unit? 

A. Virus scanning is enabled by default. 

B. Fortinet Customer Support enables virus scanning remotely for you. 

C. Virus scanning must be enabled in a protection profile and the protection profile must be assigned to a firewall policy. 

D. Enabling virus scanning in a protection profile enables virus scanning for all traffic flowing through the FortiGate. 

Answer:


Q32. - (Topic 1) 

Which of the following statements correctly describes how a FortiGate unit functions in Transparent mode? 

A. To manage the FortiGate unit, one of the interfaces must be designated as the management interface. This interface may not be used for forwarding data. 

B. An IP address is used to manage the FortiGate unit but this IP address is not associated with a specific interface. 

C. The FortiGate unit must use public IP addresses on the internal and external networks. 

D. The FortiGate unit uses private IP addresses on the internal network but hides them using address translation. 

Answer: