It is impossible to pass Fortinet NSE5 exam without any help in the short term. Come to Exambible soon and find the most advanced, correct and guaranteed Fortinet NSE5 practice questions. You will get a surprising result by our Improved Fortinet Network Security Expert 5 Written Exam (500) practice guides.
Q81. - (Topic 1)
What is the FortiGate unit password recovery process?
A. Interupt boot sequence, modify the boot registry and reboot. After changing the password, reset the boot registry.
B. Log in through the console port using the maintainer account within several minutes of a reboot.
C. Hold CTRL + break during reboot and reset the admin password.
D. The only way to regain access is to interrupt boot sequence and restore a configuration file for which the password has been modified.
Answer: B
Q82. - (Topic 3)
An administrator wishes to generate a report showing Top Traffic by service type, but wants to exclude SMTP traffic from the report.
Which of the following statements best describes how to do this?
A. In the Service field of the Data Filter, type 25/smtp and select the NOT checkbox.
B. Add the following entry to the Generic Field section of the Data Filter: service="!smtp".
C. When editing the chart, uncheck mlog to indicate that Mail Filtering data is being excluded when generating the chart.
D. When editing the chart, enter 'dns' in the Exclude Service field.
Answer: A
Q83. - (Topic 1)
A firewall policy has been configured for the internal email server to receive email from external parties through SMTP. Exhibits A and B show the antivirus and email filter profiles applied to this policy.
Exhibit A:
Exhibit B:
What is the correct behavior when the email attachment is detected as a virus by the FortiGate antivirus engine?
A. The FortiGate unit will remove the infected file and deliver the email with a replacement message to alert the recipient that the original attachment was infected.
B. The FortiGate unit will reject the infected email and the sender will receive a failed delivery message.
C. The FortiGate unit will remove the infected file and add a replacement message. Both sender and recipient are notified that the infected file has been removed.
D. The FortiGate unit will reject the infected email and notify the sender.
Answer: B
Q84. - (Topic 1)
Which part of an email message exchange is NOT inspected by the POP3 and IMAP proxies?
A. TCP connection
B. File attachments
C. Message headers
D. Message body
Answer: A
Q85. - (Topic 3)
When configuring a server load balanced virtual IP, which of the following is the best distribution algorithm to be used in applications where the same physical destination server must be maintained between sessions?
A. Static
B. Round robin
C. Weighted round robin
D. Least connected
Answer: A
Q86. - (Topic 3)
Which of the following cannot be used in conjunction with the endpoint compliance check?
A. HTTP Challenge Redirect to a Secure Channel (HTTPS) in the Authentication Settings.
B. Any form of firewall policy authentication.
C. WAN optimization.
D. Traffic shaping.
Answer: A
Q87. - (Topic 1)
Which of the following authentication types are supported by FortiGate units? (Select all that apply.)
A. Kerberos
B. LDAP
C. RADIUS
D. Local Users
Answer: B,C,D
Q88. - (Topic 1)
Which of the following items does NOT support the.Logging feature?
A. File Filter
B. Application control
C. Session timeouts
D. Administrator activities
E. Web URL filtering
Answer: C