NSE4-5.4 Online Practice Questions and Answers

Which of the following statements are correct regarding virtual domains (VDOMs)? (Select all that apply.)

A. VDOMs divide a single FortiGate unit into two or more virtual units that function as multiple, independent units.

B. A management VDOM handles SNMP, logging, alert email, and FDN-based updates.

C. VDOMs share firmware versions, as well as antivirus and IPS databases.

D. Only administrative users with a 'super_admin' profile will be able to enter multiple VDOMs to make configuration changes.

Which of the following statements are TRUE for Port Pairing and Forwarding Domains? (Select all that apply.)

A. They both create separate broadcast domains.

B. Port Pairing works only for physical interfaces.

C. Forwarding Domains only apply to virtual interfaces.

D. They may contain physical and/or virtual interfaces.

E. They are only available in high-end models.

Examine the Exhibits shown below, then answer the question that follows. Review the following DLP Sensor (Exhibit 1):

Review the following File Filter list for rule #1 (Exhibit 2):

Review the following File Filter list for rule #2 (Exhibit 3):

Review the following File Filter list for rule #3 (Exhibit 4):

An MP3 file is renamed to `workbook.exe' and put into a ZIP archive. It is then sent through the FortiGate device over HTTP. It is intercepted and processed by the configuration shown in the above Exhibits 1-4. Assuming the file is not too large for the File scanning threshold, what action will the FortiGate unit take?

A. The file will be detected by rule #1 as an `Audio (mp3)', a log entry will be created and it will be allowed to pass through.

B. The file will be detected by rule #2 as a "*.exe", a log entry will be created and the interface that received the traffic will be brought down.

C. The file will be detected by rule #3 as an Archive(zip), blocked, and a log entry will be created.

D. Nothing, the file will go undetected.

What are the requirements for a cluster to maintain TCP connections after device or link failover? (Select all that apply.)

A. Enable session pick-up.

B. Only applies to connections handled by a proxy.

C. Only applies to UDP and ICMP connections.

D. Connections must not be handled by a proxy.

What are the advantages of FSSO DC mode over polling mode?

A. Redundancy in the collector agent.

B. Allows transparent authentication.

C. DC agents are not required in the AD domain controllers.

D. Scalability

When firewall policy authentication is enabled, only traffic on supported protocols will trigger an authentication challenge. Select all supported protocols from the following:

A. SMTP

B. SSH

C. HTTP

D. FTP

E. SCP

The FortiGate unit can be configured to allow authentication to a RADIUS server. The RADIUS server can use several different authentication protocols during the authentication process. Which of the following are valid authentication protocols that can be used when a user authenticates to the RADIUS server? (Select all that apply.)

A. MS-CHAP-V2 (Microsoft Challenge-Handshake Authentication Protocol v2)

B. PAP (Password Authentication Protocol)

C. CHAP (Challenge-Handshake Authentication Protocol)

D. MS-CHAP (Microsoft Challenge-Handshake Authentication Protocol v1)

E. FAP (FortiGate Authentication Protocol)

Examine the exhibit, which shows the output of a web filtering real time debug.

Why is the site www.bing.com being blocked?

A. The web server IP address 204.79.197.200 is categorized by FortiGuard as Malicious Websites.

B. The rating for the web site www.bing.com has been locally overridden to a category that is being blocked.

C. The web site www.bing.com is categorized by FortiGuard as Malicious Websites.

D. The user has not authenticated with the FortiGate yet.

DLP archiving gives the ability to store session transaction data on a FortiAnalyzer unit for which of the following types of network traffic? (Select all that apply.)

A. SNMP

B. IPSec

C. SMTP

D. POP3

E. HTTP

What is FortiGate's behavior when local disk logging is disabled?

A. Only real-time logs appear on the FortiGate dashboard.

B. No logs are generated.

C. Alert emails are disabled.

D. Remote logging is automatically enabled.