NSE4-5.4 | how many questions of NSE4-5.4 braindumps?

Question No: 5

If traffic matches a DLP filter with the action set to Quarantine IP Address, what action does the FortiGate take?

A. It blocks all future traffic for that IP address for a configured interval.

B. It archives the data for that IP address.

C. It provides a DLP block replacement page with a link to download the file.

D. It notifies the administrator by sending an email.

Answer: A

Question No: 6

View the exhibit.

Which statements about the exhibit are true? (Choose two.)

A. port1-VLAN10 and port2-VLAN10 can be assigned to different VDOMs.

B. port1-VLAN1 is the native VLAN for the port1 physical interface.

C. Traffic between port1-VLAN1 and port2-VLAN1 is allowed by default.

D. Broadcast traffic received in port1-VLAN10 will not be forwarded to port2-VLAN10.

Answer: A,D

Question No: 7

View the exhibit.

What is the effect of the Disconnect Cluster Member operation as shown in the exhibit? (Choose two.)

A. The HA mode changes to standalone.

B. The firewall policies are deleted on the disconnected member.

C. The system hostname is set to the FortiGate serial number.

D. The port3 is configured with an IP address for management access.

Answer: A,D

Question No: 8

Which of the following statements are true when using Web Proxy Auto-discovery Protocol (WPAD) with the DHCP discovery method? (Choose two.)

A. The browser sends a DHCPINFORM request to the DHCP server.

B. The browser will need to be preconfigured with the DHCP serveru2021s IP address.

C. The DHCP server provides the PAC file for download.

D. If the DHCP method fails, browsers will try the DNS method.

Answer: C,D

Question No: 9

What does the command diagnose debuf fsso-polling refresh-user do?

A. It refreshes user group information form any servers connected to the FortiGate using a collector agent.

B. It refreshes all users learned through agentless polling.

C. It displays status information and some statistics related with the polls done by FortiGate on each DC.

D. It enables agentless polling mode real-time debug.

Answer: C

Question No: 10

Which of the following Fortinet hardware accelerators can be used to offload flow-based antivirus inspection? (Choose two.)

A. SP3

B. CP8

C. NP4

D. NP6

Answer: C,D

Explanation: Sessions that require proxy-based security features (for example, virus scanning, IPS, application control and so on) are not fast pathed and must be processed by the CPU. Sessions that require flow-based security features can be offloaded to NP4 or NP6 network processors if the FortiGate supports NTurbo.

Question No: 11

Which of the following statements about NTLM authentication are correct? (Choose two.)

A. It is useful when users log in to DCs that are not monitored by a collector agent.

B. It takes over as the primary authentication method when configured alongside FSSO.

C. Multi-domain environments require DC agents on every domain controller.

D. NTLM-enabled web browsers are required.

Answer: A,C

Question No: 12

Examine the routing database.

Which of the following statements are correct? (Choose two.)

A. The port3 default route has the lowest metric, making it the best route.

B. There will be eight routes active in the routing table.

C. The port3 default has a higher distance than the port1 and port2 default routes.

D. Both port1 and port2 default routers are active in the routing table.

Answer: C,D

Explanation: There's no metric concept on Fortigate, Only admin distance and priority

Question No: 13

An administrator is using the FortiGate built-in sniffer to capture HTTP traffic between a client and a server, however, the sniffer output shows only the packets related with TCP session setups and disconnections. Why?

A. The administrator is running the sniffer on the internal interface only.

B. The filter used in the sniffer matches the traffic only in one direction.

C. The FortiGate is doing content inspection.

D. TCP traffic is being offloaded to an NP6.

Answer: D

Question No: 14

An administrator wants to configure a FortiGate as a DNS server. The FortiGate must use its DNS database first, and then relay all irresolvable queries to an external DNS server. Which of the following DNS method must you use?

A. Non-recursive

B. Recursive

C. Forward to primary and secondary DNS

D. Forward to system DNS

Answer: B