次の認定試験に速く合格する!

簡単に認定試験を準備し、学び、そして合格するためにすべてが必要だ。

会員センター  カート (0)
  • ホーム
  • ブログ
  • 究極のガイドはNSE5_FAZ-6.2最新2022年01月21日時間限定!今すぐダウンロード! [Q11-Q26]

究極のガイドはNSE5_FAZ-6.2最新2022年01月21日時間限定!今すぐダウンロード! [Q11-Q26]

Share

究極のガイドはNSE5_FAZ-6.2最新2022年01月21日時間限定!今すぐダウンロード!

2022年最新のな厳密検証された合格させるNSE5_FAZ-6.2試験にはリアル問題と解答

質問 11
FortiAnalyzer centralizes which functions? (Choose three)

  • A. Vulnerability assessment
  • B. Network analysis
  • C. Security log analysis / forensics
  • D. Content archiving / data mining
  • E. Graphical reporting

正解: C,D,E

 

質問 12
For which two purposes would you use the command set log checksum? (Choose two.)

  • A. To send an identical set of logs to a second logging server
  • B. To encrypt log communications
  • C. To help protect against man-in-the-middle attacks during log upload from FortiAnalyzer to an SFTP server
  • D. To prevent log modification or tampering

正解: B,D

 

質問 13
Logs are being deleted from one of your ADOMs earlier that the configured setting for archiving in your data policy. What is the most likely problem?

  • A. Logs in that ADOM are being forwarded in real-time to another FortiAnalyzer device.
  • B. The total disk space is insufficient and you need to add other disk.
  • C. The ADOM disk quota is set too low based on log rates.
  • D. CPU resources are too high.

正解: C

解説:
https://help.fortinet.com/fmgr/50hlp/56/5-6-1/FMG FAZ/1100_Storage/0017_Deleted%20device%20logs.htm
https://docs.fortinet.com/document/fortianalyzer/6.2.5/administration-guide/87802/automatic-deletion

 

質問 14
Which log type does the FortiAnalyzer indicators of compromise feature use to identify infected hosts?

  • A. Antivirus logs
  • B. IPS logs
  • C. Web filter logs
  • D. Application control logs

正解: C

解説:
Explanation/Reference: https://help.fortinet.com/fa/faz50hlp/60/6-0-2/Content/ FortiAnalyzer_Admin_Guide/3600_FortiView/0200_Using_FortiView/1200_Compromised_hosts_page.htm
?TocPath=FortiView%7CUsing%20FortiView%7C_____6

 

質問 15
View the exhibit:

What does the 1000MB maximum for disk utilization refer to?

  • A. The disk quota for each device in the ADOM
  • B. The disk quota for the FortiAnalyzer model
  • C. The disk quota for all devices in the ADOM
  • D. The disk quota for the ADOM type

正解: C

 

質問 16
Why should you use an NTP server on FortiAnalyzer and all registered devices that log into FortiAnalyzer?

  • A. To resolve host names
  • B. To improve DNS response times
  • C. To use real-time forwarding
  • D. To properly correlate logs

正解: D

 

質問 17
What is the purpose of the following CLI command?

  • A. To add a unique tag to each log to prove that it came from this FortiAnalyzer
  • B. To add a log file checksum
  • C. To encrypt log communications
  • D. To add the MD's hash value and authentication code

正解: B

 

質問 18
If a hard disk fails on a FortiAnalyzer that supports software RAID, what should you do to bring the FortiAnalyzer back to functioning normally, without losing data?

  • A. Shut down FortiAnalyzer and replace the disk
  • B. Hot swap the disk
  • C. Replace the disk and rebuild the RAID manually
  • D. Take no action if the RAID level supports a failed disk

正解: A

解説:
https://kb.fortinet.com/kb/documentLink.do?externalID=FD46446#:~:text=On%20FortiAnalyzer%2FFortiManager%20devices%20that,to%20exchanging%20the%20hard%20disk.
If a hard disk on a FortiAnalyzer unit fails, it must be replaced. On FortiAnalyzer devices that support hardware RAID, the hard disk can be replaced while the unit is still running - known as hot swapping. On FortiAnalyzer units with software RAID, the device must be shutdown prior to exchanging the hard disk

 

質問 19
For which two purposes would you use the command set log checksum? (Choose two.)

  • A. To send an identical set of logs to a second logging server
  • B. To help protect against man-in-the-middle attacks during log upload from FortiAnalyzer to an SFTP server
  • C. To encrypt log communications
  • D. To prevent log modification or tampering

正解: B,D

解説:
Explanation
To prevent the log in the store from being modified, you can add a log checksum by using the config system global command. When the log is split, archived, and the log is uploaded (if the feature is enabled), you can configure the FortiAnalyzer to log the log file hash value, timestamp, and authentication code. This can help defend against man-in-the-middle attacks when uploading log transmission data from the FortiAnalyzer to the SFTP server.

 

質問 20
By default, what happens when a log file reaches its maximum file size?

  • A. FortiAnalyzer forwards logs to syslog.
  • B. FortiAnalyzer rolls the active log by renaming the file.
  • C. FortiAnalyzer stops logging.
  • D. FortiAnalyzer overwrites the log files.

正解: B

 

質問 21
How does FortiAnalyzer retrieve specific log data from the database?

  • A. SQL SELECT statement
  • B. SQL GET statement
  • C. SQL EXTRACT statement
  • D. SQL FROM statement

正解: D

解説:
https://fortinetweb.s3.amazonaws.com/docs.fortinet.com/v2/attachments/137bb60e-ff37-11e8-8524-f8bc1258b856/fortianalyzer-fortigate-sql-technote-40-mr2.pdf

 

質問 22
What happens when a log file saved on FortiAnalyzer disks reaches the size specified in the device log settings?

  • A. The log file is purged from the database.
  • B. The log file rolls over and is archived.
  • C. The log file is overwritten.
  • D. The log file is stored as a raw log and is available for analytic support.

正解: B

解説:
Reference:
81a4-00505692583a/FortiAnalyzer-6.0.5-Administration-Guide.pdf
https://docs.fortinet.com/document/fortianalyzer/6.2.5/administration-guide/355632/log-browse

 

質問 23
Which two of the following must you configure on FortiAnalyzer to email a FortiAnalyzer report externally?
(Choose two.)

  • A. Mail server
  • B. Report scheduling
  • C. SFTP server
  • D. Output profile

正解: C,D

解説:
Explanation/Reference: https://fortinetweb.s3.amazonaws.com/docs.fortinet.com/v2/attachments/6d9f8fb5-6cf4-11e9-
81a4-00505692583a/FortiAnalyzer-6.0.5-Administration-Guide.pdf (119)

 

質問 24
In order for FortiAnalyzer to collect logs from a FortiGate device, what configuration is required? (Choose two.)

  • A. ADOMs must be enabled
  • B. Log encryption must be enabled
  • C. Remote logging must be enabled on FortiGate
  • D. FortiGate must be registered with FortiAnalyzer

正解: C,D

解説:
Explanation
Pg 70: "after you add and register a FortiGate device with the FortiAnalyzer unit, you must also ensure that the FortiGate device is configured to send logs to the FortiAnalyzer unit."
https://docs.fortinet.com/uploaded/files/4614/FortiAnalyzer-5.4.6-Administration%20Guide.pdf Pg 45: "ADOMs must be enabled to support the logging and reporting of NON-FORTIGATE devices, such as FortiCarrier, FortiClientEMS, FortiMail, FortiWeb, FortiCache, and FortiSandbox."

 

質問 25
View the exhibit.

What does the data point at 14:35 tell you?

  • A. FortiAnalyzer is dropping logs.
  • B. FortiAnalyzer has temporarily stopped receiving logs so older logs' can be indexed.
  • C. FortiAnalyzer is indexing logs faster than logs are being received.
  • D. The sqlplugind daemon is ahead in indexing by one log.

正解: C

解説:
https://docs.fortinet.com/document/fortianalyzer/6.2.5/administration-guide/47690/insert-rate-vs-receive-rate-widget

 

質問 26
......

問題集全額返金保証付き!NSE5_FAZ-6.2問題公式問題集:https://www.jpntest.com/shiken/NSE5_FAZ-6.2-mondaishu

関するブログ

もっと
NSE5_FAZ-6.2無料問題集

弊社を連絡する

我々は12時間以内ですべてのお問い合わせを答えます。

オンラインサポート時間:( UTC+9 ) 9:00-24:00
月曜日から土曜日まで

サポート:現在連絡 

関連リンク

トップ試験