★ Pass on Your First TRY ★ 100% Money Back Guarantee ★ Realistic Practice Exam Questions

Free Instant Download NEW NSE5 Exam Dumps (PDF & VCE):
Available on: https://www.certleader.com/NSE5-dumps.html


Want to know Actualtests NSE5 Exam practice test features? Want to lear more about Fortinet Fortinet Network Security Expert 5 Written Exam (500) certification experience? Study Breathing Fortinet NSE5 answers to Most up-to-date NSE5 questions at Actualtests. Gat a success with an absolute guarantee to pass Fortinet NSE5 (Fortinet Network Security Expert 5 Written Exam (500)) test on your first attempt.

2021 Sep NSE5 test preparation

Q21. - (Topic 3) 

In which of the following report templates would you configure the charts to be included in the report? 

A. Layout Template 

B. Data Filter Template 

C. Output Template 

D. Schedule Template 

Answer: A


Q22. - (Topic 3) 

A network administrator connects his PC to the INTERNAL interface on a FortiGate unit. The administrator attempts to make an HTTPS connection to the FortiGate unit on the VLAN1 interface at the IP address of 10.0.1.1, but gets no connectivity. 

The following troubleshooting commands are executed from the CLI: 

user1 # get system interface 

== [ internal ] 

namE. internal modE. static ip: 10.0.1.254 255.255.255.128 status: up 

netbios-forwarD. disable typE. physical mtu-overridE. disable 

== [ vlan1 ] 

namE. vlan1 modE. static ip: 10.0.1.1 255.255.255.128 status: up netb 

ios-forwarD. disable typE. vlan mtu-overridE. disable 

user1 # get router info routing-table all 

Codes: K - kernel, C - connected, S - static, R - RIP, B - BGP 

O - OSPF, IA - OSPF inter area 

N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2 

E1 - OSPF external type 1, E2 - OSPF external type 2 

i - IS-IS, L1 - IS-IS level-1, L2 - IS-IS level-2, ia - IS-IS inter area 

* - candidate default 

S 10.0.0.0/8 [10/0] is a summary, Null 

C 10.0.1.0/25 is directly connected, vlan1 

C 10.0.1.128/25 is directly connected, internal 

user1 # diagnose debug flow trace start 100 

user1 # diagnose debug ena 

user1 # diagnose debug flow filter daddr 10.0.1.1 10.0.1.1 

id=20085 trace_id=277 msg="vd-root received a packet(proto=6, 10.0.1.130 

:47922->10.0.1.1:443) from internal." 

id=20085 trace_id=277 msg="allocate a new session-00000b21" 

id=20085 trace_id=277 msg="iprope_in_check() check failed, drop" 

Based on the output from these commands, which of the following is a possible cause of the problem? 

A. The FortiGate unit has no route back to the PC. 

B. The PC has an IP address in the wrong subnet. 

C. The PC is using an incorrect default gateway IP address. 

D. There is no firewall policy allowing traffic from INTERNAL -> VLAN1. 

Answer: D 


Q23. - (Topic 2) 

Which of the following statements correctly describe Transparent Mode operation? (Select all that apply.) 

A. The FortiGate unit acts as transparent bridge and routes traffic using Layer-2 forwarding. 

B. Ethernet packets are forwarded based on destination MAC addresses NOT IPs. 

C. The device is transparent to network hosts. 

D. Permits inline traffic inspection and firewalling without changing the IP scheme of the network. 

E. All interfaces must be on different IP subnets. 

Answer: A,B,C,D 


Q24. - (Topic 1) 

How is traffic routed onto an SSL VPN tunnel from the FortiGate unit side? 

A. A static route must be configured by the administrator using the ssl.root interface as the outgoing interface. 

B. Assignment of an IP address to the client causes a host route to be added to the FortiGate unit’s kernel routing table. 

C. A route back to the SSLVPN IP pool is automatically created on the FortiGate unit. 

D. The FortiGate unit adds a route based upon the destination address in the SSL VPN firewall policy. 

Answer: B 


Q25. - (Topic 1) 

DLP archiving gives the ability to store session transaction data on a FortiAnalyzer unit for which of the following types of network traffic? (Select all that apply.) 

A. SNMP 

B. IPSec 

C. SMTP 

D. POP3 

E. HTTP 

Answer: C,D,E 


NSE5 study guide

Down to date NSE5 vce:

Q26. - (Topic 1) 

Which of the following is an advantage of using SNMP v3 instead of SNMP v1/v2 when querying the FortiGate unit? 

A. Packet encryption 

B. MIB-based report uploads 

C. SNMP access limits through access lists 

D. Running SNMP service on a non-standard port is possible 

Answer: A 


Q27. - (Topic 2) 

Review the output of the command get router info routing-table database shown in the Exhibit below; then answer the question following it. 


Which of the following statements are correct regarding this output? (Select all that apply). 

A. There will be six routes in the routing table. 

B. There will be seven routes in the routing table. 

C. There will be two default routes in the routing table. 

D. There will be two routes for the 10.0.2.0/24 subnet in the routing table. 

Answer: A,C 


Q28. - (Topic 2) 

Review the CLI configuration below for an IPS sensor and identify the correct statements regarding this configuration from the choices below. (Select all that apply.) 

config ips sensor 

edit "LINUX_SERVER" 

set comment '' 

set replacemsg-group '' 

set log enable 

config entries 

edit 1 

set action default 

set application all 

set location server 

set log enable 

set log-packet enable 

set os Linux set protocol all 

set quarantine none 

set severity all 

set status default 

next 

end 

next 

end 

A. The sensor will log all server attacks for all operating systems. 

B. The sensor will include a PCAP file with a trace of the matching packets in the log message of any matched signature. 

C. The sensor will match all traffic from the address object ‘LINUX_SERVER’. 

D. The sensor will reset all connections that match these signatures. 

E. The sensor only filters which IPS signatures to apply to the selected firewall policy. 

Answer: B,E 


Q29. - (Topic 1) 

Which of the following statements are correct regarding logging to memory on a FortiGate unit? (Select all that apply.) 

A. When the system has reached its capacity for log messages, the FortiGate unit will stop logging to memory. 

B. When the system has reached its capacity for log messages, the FortiGate unit overwrites the oldest messages. 

C. If the FortiGate unit is reset or loses power, log entries captured to memory will be lost. 

D. None of the above. 

Answer: B,C 


Q30. - (Topic 1) 

By default the Intrusion Protection System (IPS) on a FortiGate unit is set to perform which action? 

A. Block all network attacks. 

B. Block the most common network attacks. 

C. Allow all traffic. 

D. Allow and log all traffic. 

Answer: C