Fortinet Network Security Expert 8 Written Exam (NSE8 801 - FortiOS 5.2) (NSE8) Free Practice Test
Question 1
You are an administrator of FortiGate devices that use FortiManager for central management. You need
to add a policy on an ADOM, but upon selecting the ADOM drop-down list, you notice that the ADOM is in
locked state. Workflow mode is enabled on your FortiManager to define approval or notification workflow
when creating and installing policy changes.
What caused this problem?
to add a policy on an ADOM, but upon selecting the ADOM drop-down list, you notice that the ADOM is in
locked state. Workflow mode is enabled on your FortiManager to define approval or notification workflow
when creating and installing policy changes.
What caused this problem?
Correct Answer: D
Question 2
A FortiGate is deployed in the NAT/Route operation mode.
This operation mode operates at which 051 layer?
This operation mode operates at which 051 layer?
Correct Answer: D
Question 3
You are asked to write a FortiAnalyzer report that lists the session that has consumed the most bandwidth.
You are required to include the source IP, destination IP, application, application category, hostname, and
total bandwidth consumed.
Which dataset meets these requirements?
You are required to include the source IP, destination IP, application, application category, hostname, and
total bandwidth consumed.
Which dataset meets these requirements?
Correct Answer: B
Question 4
There is an interface-mode IPsec tunnel configured between FortiGate1 and FortiGate2. You want to run
OSPF over the IPsec tunnel. On both FortiGates. the IPsec tunnel is based on physical interface Port1.
Port1 has the default MTU setting on both FortiGate units. Which statement is true about this scenario?
OSPF over the IPsec tunnel. On both FortiGates. the IPsec tunnel is based on physical interface Port1.
Port1 has the default MTU setting on both FortiGate units. Which statement is true about this scenario?
Correct Answer: A
Question 5
Referring to the exhibit, users are reporting that their FortiFones ring but when they pick up, the cannot
hear each other. The FortiFones use SIP to communicate with the SIP Proxy Server and RTP between
the phones.
Which configuration change will resolve the problem?
A:
B:
C:
D:
hear each other. The FortiFones use SIP to communicate with the SIP Proxy Server and RTP between
the phones.
Which configuration change will resolve the problem?
A:
B:
C:
D:
Correct Answer: B
Question 6
You are installing a new FortiAP as shown on the exhibit, however, the FortiAP cannot discover the
FortiGate. The FortiAP obtained an IP from the DHCP server and is reachable.
Which two configurations will resolve the problem? (Choose two.)
A:
B:
C:
D:
FortiGate. The FortiAP obtained an IP from the DHCP server and is reachable.
Which two configurations will resolve the problem? (Choose two.)
A:
B:
C:
D:
Correct Answer: A
Question 7
A cafe offers free Wi-Fi. Customers' portable electronic devices often do not have antivirus software installed and may be hosting worms without their knowledge.
You must protect all customers from any other customers' infected devices that join the same SSID.
Which step meets the requirement?
You must protect all customers from any other customers' infected devices that join the same SSID.
Which step meets the requirement?
Correct Answer: B