NSE5 Online Practice Questions and Answers

Which two statements are correct regarding header and footer policies? (Choose two.)

A. Header and footer policies can only be created in the root ADOM.

B. Header and footer policies can only be created in the global ADOM.

C. Header and footer policies are created in policy packages and assigned to ADOM policy packages.

D. Header and footer policies can be modified in the assigned ADOM policy package.

When performing a log search on a FortiAnalyzer, it is generally recommended to use the Quick Search option.

What is a valid reason for using the Full Search option, instead?

A. The search items you are looking for are not contained in indexed log fields.

B. A quick search only searches data received within the last 24 hours.

C. You want the search to include the FortiAnalyzer's local logs.

D. You want the search to include content archive data as well.

In Transparent Mode, forward-domain is an attribute of ______________.

A. an interface

B. a firewall policy

C. a static route

D. a virtual domain

What are the requirements for a cluster to maintain TCP connections after device or link failover? (Select all that apply.)

A. Enable session pick-up.

B. Only applies to connections handled by a proxy.

C. Only applies to UDP and ICMP connections.

D. Connections must not be handled by a proxy.

Which statement correctly compares FortiManager physical and virtual appliances?

A. Physical and virtual FortiManager appliances may manage unlimited devices and have unrestricted storage.

B. Physical and virtual FortiManager appliances use licenses to increase managed device and storage capacity limits.

C. Physical and virtual FortiManager appliances have an unrestricted daily logging rate.

D. Physical and virtual FortiManager appliances use model types and licenses respectively, to differentiate managed device and storage capacity limits.

Which of the following regular expression patterns will make the terms "confidential data" case insensitive?

A. \[confidential data]

B. /confidential data/i

C. i/confidential data/

D. "confidential data"

E. /confidential data/c

The __________ CLI command is used on the FortiGate unit to run static commands such as ping or to reset the FortiGate unit to factory defaults.

A. execute

An end user logs into the full-access SSL VPN portal and selects the Tunnel Mode option by clicking on the "Connect" button. The administrator has enabled split tunneling.

Given that the user authenticates against the SSL VPN policy shown in the image below, which statement below identifies the route that is added to the client's routing table.

A. A route to destination matching the `WIN2K3' address object.

B. A route to the destination matching the `all' address object.

C. A default route.

D. No route is added.

What is the effect of using CLI "config system session-ttl" to set session_ttl to 1800 seconds?

A. Sessions can be idle for no more than 1800 seconds.

B. The maximum length of time a session can be open is 1800 seconds.

C. After 1800 seconds, the end user must reauthenticate.

D. After a session has been open for 1800 seconds, the FortiGate unit will send a keepalive packet to both client and server.

By default, what happens when a log file reaches its maximum file size?

A. FortiAnalyzer overwrites the log files.

B. FortiAnalyzer stops logging.

C. FortiAnalyzer rolls the active log by renaming the file.

D. FortiAnalyzer forwards logs to syslog.