最新的Fortinet FCNSP.v5免費考試真題

問題1

Which of the following describes the best custom signature for detecting the use of the word "Fortinet" in chat applications?

A. The sample packet trace illustrated in the exhibit provides details on the packet that requires
detection.
F-SBID( --protocol tcp; --flow from_client; --pattern "X-MMS-IM-Format"; --pattern "fortinet"; --
no_case; )

B. F-SBID( --protocol tcp; --flow from_client; --pattern "fortinet"; --no_case; )

C. F-SBID( --protocol tcp; --flow from_client; --pattern "X-MMS-IM-Format"; --pattern "fortinet"; --
within 20; )

D. F-SBID( --protocol tcp; --flow from_client; --pattern "X-MMS-IM-Format"; --pattern "fortinet"; --
within 20; --no_case; )

正確答案: A

問題2

The eicar test virus is put into a zip archive, which is given the password of "Fortinet" in order to open the archive. Review the configuration in the exhibits shown below; then answer the question that follows.
Exhibit A - Antivirus Profile:

Exhibit B - Non-default UTM Proxy Options Profile: Exhibit C - DLP Profile:

Which of one the following profiles could be enabled in order to prevent the file from passing through the FortiGate device over HTTP on the standard port for that protocol?

A. Only Exhibit B

B. Only Exhibit C with default UTM Proxy settings.

C. All of the Exhibits (A, B and C)

D. Only Exhibit A

E. Only Exhibit C with non-default UTM Proxy settings (Exhibit B).

正確答案: B

問題3

Which of the following is an advantage of using SNMP v3 instead of SNMP v1/v2 when querying the FortiGate unit?

A. Packet encryption

B. SNMP access limits through access lists

C. MIB-based report uploads

D. Running SNMP service on a non-standard port is possible

正確答案: A

問題4

When performing a log search on a FortiAnalyzer, it is generally recommended to use the Quick Search option.
What is a valid reason for using the Full Search option, instead?

A. The search items you are looking for are not contained in indexed log fields.

B. You want the search to include the FortiAnalyzer's local logs.

C. A quick search only searches data received within the last 24 hours.

D. You want the search to include content archive data as well.

正確答案: A

問題5

A FortiClient fails to establish a VPN tunnel with a FortiGate unit.
The following information is displayed in the FortiGate unit logs:
msg="Initiator: sent 192.168.11.101 main mode message #1 (OK)"
msg="Initiator: sent 192.168.11.101 main mode message #2 (OK)"
msg="Initiator: sent 192.168.11.101 main mode message #3 (OK)"
msg="Initiator: parsed 192.168.11.101 main mode message #3 (DONE)"
msg="Initiator: sent 192.168.11.101 quick mode message #1 (OK)"
msg="Initiator: tunnel 192.168.1.1/192.168.11.101 install ipsec sa"
msg="Initiator: sent 192.168.11.101 quick mode message #2 (DONE)"
msg="Initiator: tunnel 192.168.11.101, transform=ESP_3DES, HMAC_MD5" msg="Failed to acquire an IP address
Which of the following statements is a possible cause for the failure to establish the VPN tunnel?

A. An IPSec DHCP server is not enabled on the external interface of the FortiGate unit.

B. The phase 1 configuration on the FortiGate unit uses Aggressive mode while FortiClient uses Main mode.

C. There is no IPSec firewall policy configured for the policy-based VPN.

D. There is a mismatch between the FortiGate unit and the FortiClient IP addresses in the phase 2 settings.

正確答案: A

問題6

Which of the following report templates must be used when scheduling report generation?

A. Output Template

B. Chart Template

C. Data Filter Template

D. Layout Template

正確答案: D

問題7

When configuring a server load balanced virtual IP, which of the following is the best distribution algorithm to be used in applications where the same physical destination server must be maintained between sessions?

A. Static

B. Round robin

C. Weighted round robin

D. Least connected

正確答案: A

問題8

In HA, the option Reserve Management Port for Cluster Member is selected as shown in the Exhibit below.

Which of the following statements are correct regarding this setting? (Select all that apply.)

A. When connecting to port7 you always connect to the master device.

B. Port7 appears in the routing table.

C. Interface settings on port7 will not be synchronized with other cluster members.

D. The IP address assigned to this interface must not overlap with the IP address subnet assigned to another interface.

E. A gateway address may be configured for port7.

正確答案: C,E

問題9

Which of the following statements correctly describes the deepscan option for HTTPS?

A. With deepscan enabled, archived files will be decompressed before scanning for a more comprehensive file inspection.

B. Deepscan is only applicable to mail protocols, where all IP addresses in the header are checked.

C. Enabling deepscan will perform further checks on the server certificate.

D. When deepscan is disabled, only the web server certificate is inspected; no decryption of content occurs.

正確答案: D

最新的Fortinet Certified Network Security Professional (FCNSP.v5) - FCNSP.v5免費考試真題

聯系我們

站內鏈接

最新更新