It is more faster and easier to pass the Fortinet NSE5 exam by using High value Fortinet Fortinet Network Security Expert 5 Written Exam (500) questuins and answers. Immediate access to the Refresh NSE5 Exam and find the same core area NSE5 questions with professionally verified answers, then PASS your exam with a high score now.

2021 Sep NSE5 exam topics

Q61. - (Topic 2) 

Which of the following statements are TRUE for Port Pairing and Forwarding Domains? (Select all that apply.) 

A. They both create separate broadcast domains. 

B. Port Pairing works only for physical interfaces. 

C. Forwarding Domains only apply to virtual interfaces. 

D. They may contain physical and/or virtual interfaces. 

E. They are only available in high-end models. 

Answer: A,D 


Q62. - (Topic 2) 

For Data Leak Prevention, which of the following describes the difference between the block and quarantine actions? 

A. A block action prevents the transaction. A quarantine action blocks all future transactions, regardless of the protocol. 

B. A block action prevents the transaction. A quarantine action archives the data. 

C. A block action has a finite duration. A quarantine action must be removed by an administrator. 

D. A block action is used for known users. A quarantine action is used for unknown users. 

Answer: A 


Q63. - (Topic 1) 

A FortiGate unit can act as which of the following? (Select all that apply.) 

A. Antispam filter 

B. Firewall 

C. VPN gateway 

D. Mail relay 

E. Mail server 

Answer: A,B,C 


Q64. - (Topic 3) 

Which of the following statements is correct based on the firewall configuration illustrated in the exhibit? 


A. A user can access the Internet using only the protocols that are supported by user authentication. 

B. A user can access the Internet using any protocol except HTTP, HTTPS, Telnet, and FTP. These require authentication before the user will be allowed access. 

C. A user must authenticate using the HTTP, HTTPS, SSH, FTP, or Telnet protocol before they can access any services. 

D. A user cannot access the Internet using any protocols unless the user has passed firewall authentication. 

Answer: D 


Q65. - (Topic 3) 

Which of the following statements best decribes the proxy behavior on a FortiGate unit during an FTP client upload when FTP splice is disabled? 

A. The proxy buffers the entire file from the client, only sending the file to the server if the file is clean. One possible consequence of buffering is that the server could time out. 

B. The proxy sends the file to the server while simultaneously buffering it. 

C. The proxy removes the infected file from the server by sending a delete command on behalf of the client. 

D. If the file being scanned is determined to be clean, the proxy terminates the connection and leaves the file on the server. 

Answer: A 


NSE5 sample question

Most recent NSE5 practice exam:

Q66. - (Topic 3) 

A FortiGate unit is operating in NAT/Route mode and is configured with two Virtual LAN (VLAN) sub-interfaces added to the same physical interface. 

Which of the following statements is correct regarding the VLAN IDs in this scenario? 

A. The two VLAN sub-interfaces can have the same VLAN ID only if they have IP addresses in different subnets. 

B. The two VLAN sub-interfaces must have different VLAN IDs. 

C. The two VLAN sub-interfaces can have the same VLAN ID only if they belong to different VDOMs. 

D. The two VLAN sub-interfaces can have the same VLAN ID if they are connected to different L2 IEEE 802.1Q compliant switches. 

Answer: B 


Q67. - (Topic 1) 

Which of the following statements best describes the proxy behavior on a FortiGate unit during an FTP client upload when FTP splice is disabled? 

A. The proxy will not allow a file to be transmitted in multiple streams simultaneously. 

B. The proxy sends the file to the server while simultaneously buffering it. 

C. If the file being scanned is determined to be infected, the proxy deletes it from the server by sending a delete command on behalf of the client. 

D. If the file being scanned is determined to be clean, the proxy terminates the connection and leaves the file on the server. 

Answer: A 


Q68. - (Topic 1) 

Which part of an email message exchange is NOT inspected by the POP3 and IMAP proxies? 

A. TCP connection 

B. File attachments 

C. Message headers 

D. Message body 

Answer: A 


Q69. - (Topic 2) 

Examine the two static routes to the same destination subnet 172.20.168.0/24 as shown below; then answer the question following it. 

config router static 

edit 1 

set dst 172.20.168.0 255.255.255.0 

set distance 20 

set priority 10 

set device port1 

next 

edit 2 

set dst 172.20.168.0 255.255.255.0 

set distance 20 

set priority 20 

set device port2 

next 

end 

Which of the following statements correctly describes the static routing configuration provided above? 

A. The FortiGate unit will evenly share the traffic to 172.20.168.0/24 through both routes. 

B. The FortiGate unit will share the traffic to 172.20.168.0/24 through both routes, but the port2 route will carry approximately twice as much of the traffic. 

C. The FortiGate unit will send all the traffic to 172.20.168.0/24 through port1. 

D. Only the route that is using port1 will show up in the routing table. 

Answer: C 


Q70. - (Topic 1) 

Alert emails enable the FortiGate unit to send email notifications to an email address upon detection of a pre-defined event type. Which of the following are some of the available event types in Web Config? (Select all that apply.) 

A. Intrusion detected. 

B. Successful firewall authentication. 

C. Oversized file detected. 

D. DHCP address assigned. 

E. FortiGuard Web Filtering rating error detected. 

Answer: A