All About Guaranteed NSE4-5.4 practice test

Q1. Which file names will match the *.tiff file name pattern configured in a data leak prevention filter? (Choose two.)

A. tiff.tiff

B. tiff.png

C. tiff.jpeg

D. gif.tiff

View Answer

Q2. Which statements are correct based on this output? (Choose two.)

A. The global configuration is synchronized between the primary and secondary FortiGate.

B. The all VDOM is not synchronized between the primary and secondary FortiGate.

C. The root VDOM is not synchronized between the primary and secondary FortiGate.

D. The FortiGates have three VDOMs.

View Answer

Q3. Which of the following statements are true when using Web Proxy Auto-discovery Protocol (WPAD) with the DHCP discovery method? (Choose two.)

A. The browser sends a DHCPINFORM request to the DHCP server.

B. The browser will need to be preconfigured with the DHCP serveru2021s IP address.

C. The DHCP server provides the PAC file for download.

D. If the DHCP method fails, browsers will try the DNS method.

View Answer

Q4. Which of the following Fortinet hardware accelerators can be used to offload flow-based antivirus inspection? (Choose two.)

A. SP3

B. CP8

C. NP4

D. NP6

View Answer

Q5. What traffic and attacks can be blocked by a web application firewall (WAF) profile? (Choose three.)

A. Traffic to inappropriate web sites

B. SQL injection attacks

C. Server information disclosure attacks

D. Credit card data leaks

E. Traffic to botnet command and control (C&C) servers

View Answer

Q6. Which statements correctly describe transparent mode operation? (Choose three.)

A. All interfaces of the transparent mode FortiGate device must be on different IP subnets.

B. The transparent FortiGate is visible to network hosts in an IP traceroute.

C. It permits inline traffic inspection and firewalling without changing the IP scheme of the network.

D. Ethernet packets are forwarded based on destination MAC addresses, not IP addresses.

E. The FortiGate acts as transparent bridge and forwards traffic at Layer-2.

View Answer

Q7. You are tasked to architect a new IPsec deployment with the following criteria:

- There are two HQ sites that all satellite offices must connect to.

- The satellite offices do not need to communicate directly with other satellite offices.

- No dynamic routing will be used.

- The design should minimize the number of tunnels being configured. Which topology should be used to satisfy all of the requirements?

A. Redundant

B. Hub-and-spoke

C. Partial mesh

D. Fully meshed

View Answer

Q8. If traffic matches a DLP filter with the action set to Quarantine IP Address, what action does the FortiGate take?

A. It blocks all future traffic for that IP address for a configured interval.

B. It archives the data for that IP address.

C. It provides a DLP block replacement page with a link to download the file.

D. It notifies the administrator by sending an email.

View Answer

Q9. What are the purposes of NAT traversal in IPsec? (Choose two.)

A. To detect intermediary NAT devices in the tunnel path.

B. To encapsulate ESP packets in UDP packets using port 4500.

C. To force a new DH exchange with each phase 2 re-key

D. To dynamically change phase 1 negotiation mode to Aggressive.

View Answer

Q10. Which of the following statements describe WMI polling mode for FSSO collector agent? (Choose two.)

A. The collector agent does not need to search any security event logs.

B. WMI polling can increase bandwidth usage with large networks.

C. The NetSessionEnum function is used to track user logoffs.

D. The collector agent uses a Windows API to query DCs for user logins.

View Answer