Fortinet NSE 4 Questions and Answers
Which UTM feature sends a UDP query to FortiGuard servers each time FortiGate scans a packet (unless the response is locally cached)?
Web Filtering
You have configured the DHCP server on a FortiGate's port1 interface (or internal, depending on the model...
you have configured the dhcp server on a fortigate
Written for
Nse
Nse
Seller
Follow
Pogba119
Reviews received
Content preview
Fortinet NSE 4 Questions and Answers
Which UTM feature sends a UDP query to FortiGuard servers each time FortiGate
scans a packet (unless the response is locally cached)? - answer Web Filtering
You have configured the DHCP server on a FortiGate's port1 interface (or internal,
depending on the model) to offer IPs in a range of 192.168.1.65-192.168.1.253. When
the first host sends a DHCP request, what IP will the DHCP offer? - answer
192.168.1.65
When an administrator attempts to manage FortiGate from an IP address that is not a
trusted host, what happens? - answer FortiGate will drop the packets and not
respond.
Is Database Auditing a FortiGate feature? - answer No.
When a new administrator account is assigned the "prof_admin" profile, can it reset
forgetten passwords of other administrator accounts such as "admin"? - answer No.
If you have lost your password for the "admin" account on your FortiGate, how should
you reset it? (3 Steps) - answer 1. Power off the FortiGate.
2. After several seconds, restart it.
3. Via the local console, within 30 seconds after booting has completed, log in as
"maintainer" and enter the CLI commands to set the password for the "admin" account.
A backup file begins with this line: #config-version=FGVM64-5.02-FW-build589-
140613:opmode=0:vdom=0:user=admin #conf_file_ver=3881503152630288414
#buildno=0589 #global_vdom=1 Can you restore it to a FortiGate 60D? - answer No,
this is for a FortiGate VM 64.
If you upload a new firmware image via the boot loader's menu from a TFTP server, will
your configuration be preserved? - answer No.
If you upload new firmware via the GUI or CLI, and are following a supported upgrade
path, will your configuration be preserved? - answer FortiOS will attempt to convert
the existing configuration to be valid with any new or changed syntax. So yes, mostly.
FortiGuard gives package updates for which features? - answer Antivirus and IPS
FortiGuard gives live queries for which features? - answer Web and Email Gateway
What is the most common mode for a FortiGate? - answer NAT
What mode other than NAT can a FortiGate be in? - answer Transparent
, Will a soft reboot enable you to reset admin password if you were to forget it? - answer
No, only a hard reboot will work.
If you disable maintainer mode and then lose your admin password, are you ****ed? -
answer Yupp, totally ****ed.
Can you view reports in the CLI? - answer No.
Can you use diagnostic commands in the GUI? - answer No.
What is FortiExplorer used for? - answer Used via mobile device to help deploy your
FortiGate. Configures network addresses and can be integrated into your network to
configure other Fortinet appliances.
Do you have to create admin accounts in the management console? - answer No,
you can also do it on a remote authentication server.
What is best practice when configuring permissions for certain admins? - answer Do
not give everyone all the permissions. Only give certain ones to certain people. That
way, if someone is compromised you aren't totally ****ed.
What are Virtual Domains? - answer A way of subdividing resources and
configurations on a single FortiGate.
What do you need to do to enable MFA on your FortiGate? - answer Configure it to
send emails or texts via a server.
If you leave an IP as 0.0.0.0, what does that mean? - answer Any IP. If you set
0.0.0.0 as a trusted IP, then any IP can get through which is no bueno.
What are some perks to restricting concurrent sessions? - answer You do not
accidentally override settings. Prevents conflicts with multiple people editing the same
thing at the same time.
What perk do you get from shutting down unused ports? - answer People can't just
plug into your firewall and do whatever they want. If the port is not on, then they would
be SOL.
What must every interface that handles traffic have? - answer An IP Address
Does FortiGate have a built in DHCP server? - answer Yes.
Can FortiGate act as a local DNS server? - answer Yes.
The benefits of buying summaries with Stuvia:
Guaranteed quality through customer reviews
Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.
Quick and easy check-out
You can quickly pay through EFT, credit card or Stuvia-credit for the summaries. There is no membership needed.
Focus on what matters
Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!
Frequently asked questions
What do I get when I buy this document?
You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.
Satisfaction guarantee: how does it work?
Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.
Who am I buying this summary from?
Stuvia is a marketplace, so you are not buying this document from us, but from seller Pogba119. Stuvia facilitates payment to the seller.
Will I be stuck with a subscription?
No, you only buy this summary for R252,27. You're not tied to anything after your purchase.