Fortinet NSE4-5.4 Study Guides 2021

We provide in two formats. Download PDF & Practice Tests. Pass Fortinet NSE4-5.4 Exam quickly & easily. The NSE4-5.4 PDF type is available for reading and printing. You can print more and practice many times. With the help of our product and material, you can easily pass the NSE4-5.4 exam.

Free NSE4-5.4 Demo Online For Microsoft Certifitcation:

NEW QUESTION 1
Users may require access to a web site that is blocked by a policy. Administrators can give users the
ability to override the block.
Which of the following statements regarding overrides is NOT correct?

  • A. A web filter profile may only have one user group defined as an override group.
  • B. A firewall user group can be used to provide override privileges for FortiGuard Web Filtering.
  • C. When requesting an override, the matched user must belong to a user group for which the override capability has been enabled.
  • D. Overrides can be allowed by the administrator for a specific period of time.

Answer: A

NEW QUESTION 2
Which of the following statements are correct regarding the configuration of a FortiGate unit as an
SSL VPN gateway? (Select all that apply.)

  • A. Tunnel mode can only be used if the SSL VPN user groups have at least one Host Check option enabled.
  • B. The specific routes needed to access internal resources through an SSL VPN connection in tunnel mode from the client computer are defined in the routing widget associated with the SSL VPN portal.
  • C. In order to apply a portal to a user, that user must belong to an SSL VPN user group.
  • D. The portal settings specify whether the connection will operate in web-only or tunnel mode.

Answer: CD

NEW QUESTION 3
Which of the following statements correctly describes how a FortiGate unit functions in Transparent
mode?

  • A. To manage the FortiGate unit, one of the interfaces must be designated as the management interfac
  • B. This interface may not be used for forwarding data.
  • C. An IP address is used to manage the FortiGate unit but this IP address is not associated with a specific interface.
  • D. The FortiGate unit must use public IP addresses on the internal and external networks.
  • E. The FortiGate unit uses private IP addresses on the internal network but hides them using address translation.

Answer: B

NEW QUESTION 4
You are the administrator in charge of a FortiGate acting as an IPsec VPN gateway using route- based
mode. Users from either side must be able to initiate new sessions. There is only 1 subnet at either end and the FortiGate already has a default route.
Which two configuration steps are required to achieve these objectives? (Choose two.)

  • A. Create one firewall policy.
  • B. Create two firewall policies.
  • C. Add a route to the remote subnet.
  • D. Add two IPsec phases 2.

Answer: BC

NEW QUESTION 5
Alert emails enable the FortiGate unit to send email notifications to an email address upon detection
of a pre-defined event type.
Which of the following are some of the available event types in Web Config? (Select all that apply.)

  • A. Intrusion detected.
  • B. Successful firewall authentication.
  • C. Oversized file detected.
  • D. DHCP address assigned.
  • E. FortiGuard Web Filtering rating error detected.

Answer: A

NEW QUESTION 6
An administrator needs to create a tunnel mode SSLVPN to access an internal web server from the
Internet. The web server is connected to port1. The Internet is connected to port2. Both interfaces belong to the VDOM named Corporation. What interface must be used as the source for the firewall policy that will allow this traffic?

  • A. ssl.root
  • B. ssl.Corporation
  • C. port2
  • D. port1

Answer: C

NEW QUESTION 7
A FortiGate is configured with the 1.1.1.1/24 address on the wan2 interface and HTTPS Administrative Access, using the default tcp port, is enabled for that interface. Given the SSL VPN settings in the exhibit.
NSE4-5 dumps exhibit
Which of the following SSL VPN login portal URLs are valid? (Choose two.)

  • A. http://1.1.1.1:443/Training
  • B. https://1.1.1.1:443/STUDENTS
  • C. https://1.1.1.1/login
  • D. https://1.1.1.1/

Answer: BD

NEW QUESTION 8
Which of the following statements describe WMI polling mode for FSSO collector agent? (Choose
two.)

  • A. The collector agent does not need to search any security event logs.
  • B. WMI polling can increase bandwidth usage with large networks.
  • C. The NetSessionEnum function is used to track user logoffs.
  • D. The collector agent uses a Windows API to query DCs for user logins.

Answer: BD

NEW QUESTION 9
Which web filtering inspection mode inspects DNS traffic?

  • A. DNS-based
  • B. FQDN-based
  • C. Flow-based
  • D. URL-based

Answer: A

NEW QUESTION 10
Which answer best describes what an "Unknown Application" is?

  • A. All traffic that matches the internal signature for unknown applications.
  • B. Traffic that does not match the RFC pattern for its protocol.
  • C. Any traffic that does not match an application control signature
  • D. A packet that fails the CRC check.

Answer: C

NEW QUESTION 11
Which configuration objects can be selected for the Source filed of a firewall policy? (Choose two.)

  • A. FQDN address
  • B. IP pool
  • C. User or user group
  • D. Firewall service

Answer: AC

Explanation: NSE4-5 dumps exhibit
NSE4-5 dumps exhibit

NEW QUESTION 12
An administrator has disabled Accept push updates under Antivirus & IPS Updates. Which
statements is true when this setting is disabled?

  • A. The extreme database is disabled.
  • B. New AV definitions are not added to FortiGate as soon as they are releases by FortiGuard.
  • C. Administrators cannot manually upload new AV definitions to the FortiGate.
  • D. FortiGate does not send files to FortiSandbox for inspection.

Answer: B

NEW QUESTION 13
Which of the following statements are true regarding the web filtering modes? (Choose two.)

  • A. Proxy based mode allows for customizable block pages to display when sites are prevented.
  • B. Proxy based mode requires more resources than flow-based.
  • C. Flow based mode offers more settings under the advanced configuration section of the GUI.
  • D. Proxy based mode offers higher throughput than flow-based mode.

Answer: AB

NEW QUESTION 14
What methods can be used to access the FortiGate CLI? (Choose two.)

  • A. Using SNMP.
  • B. A direct connection to the serial console port.
  • C. Using the CLI console widget in the GUI.
  • D. Using RCP.

Answer: BC

NEW QUESTION 15
An Internet browser is using the WPAD DNS method to discover the PAC file's URL. The DNS server
replies to the browser's request with the IP address 10.100.1.10. Which URL will the browser use to download the PAC file?

  • A. http://10.100.1.10/proxy.pac
  • B. https://10.100.1.10/
  • C. http://10.100.1.10/wpad.dat
  • D. https://10.100.1.10/proxy.pac

Answer: C

NEW QUESTION 16
Examine the routing database.
NSE4-5 dumps exhibit
Which of the following statements are correct? (Choose two.)

  • A. The port3 default route has the lowest metric, making it the best route.
  • B. There will be eight routes active in the routing table.
  • C. The port3 default has a higher distance than the port1 and port2 default routes.
  • D. Both port1 and port2 default routers are active in the routing table.

Answer: CD

NEW QUESTION 17
Which of the following statements are correct regarding logging to memory on a FortiGate unit?
(Select all that apply.)

  • A. When the system has reached its capacity for log messages, the FortiGate unit will stop logging to memory.
  • B. When the system has reached its capacity for log messages, the FortiGate unit overwrites the oldest messages.
  • C. If the FortiGate unit is reset or loses power, log entries captured to memory will be lost.
  • D. None of the above.

Answer: BC

P.S. Certifytools now are offering 100% pass ensure NSE4-5.4 dumps! All NSE4-5.4 exam questions have been updated with correct answers: https://www.certifytools.com/NSE4-5.4-exam.html (576 New Questions)