[Q12-Q37] NSE6_FML-7.2認証試験の問題集解答を提供しています [2024年03月]

NSE6_FML-7.2認証試験の問題集解答を提供しています [2024年03月]

更新されたNSE6_FML-7.2試験練習テスト問題

Fortinet NSE6_FML-7.2は、Fortinetが提供するFortiMail 7.2製品に焦点を当てた認定試験です。FortiMailは、スパム、フィッシング、マルウェアなどの電子メールによる脅威から高度な保護を提供する電子メールセキュリティプラットフォームです。NSE6_FML-7.2試験は、FortiMail 7.2の設定、管理、トラブルシューティングにおける専門知識を証明したいネットワークセキュリティ専門家を対象としています。

 

質問 # 12
Refer to the exhibits which show a topology diagram (Topology), and a configuration element (Access Control Rule).


An administrator must enforce authentication on FML-1 for all outbound email from the example.com domain.
Which two settings should be used to configure the access receive rule? (Choose two.)

• A. The Action should be set to Reject
• B. The Recipient pattern should be set to * @example. com.
• C. The Authentication status should be set to Authenticated
• D. The Sender IP/netmask should be set to 10.29.1.0/24.

正解：C、D

質問 # 13
Refer to the exhibit which displays the domain configuration of a transparent mode FortiMail device.

Based on the exhibit, which two sessions are considered incoming sessions? (Choose two.)

• A. DESTINATION IP: 192.168.54.10 MAIL FROM: [email protected] RCPT TO: [email protected]
• B. DESTINATION IP: 10.25.32.15 MAIL FROM: [email protected] RCPT TO: [email protected]
• C. DESTINATION IP: 172.16.32.56 MAIL FROM: [email protected] RCPT TO: [email protected]
• D. DESTINATION IP: 172.16.32.56 MAIL FROM: [email protected] RCPT TO: [email protected]

正解：C、D

質問 # 14
Which item is a supported one-time secure token for IBE authentication?

• A. Security question
• B. FortiToken
• C. SMS
• D. Certificate

正解：A

質問 # 15
Which two features are available when you enable HA centralized monitoring on FortiMail? (Choose two.)

• A. Cross-device log searches across all cluster members from the primary device.
• B. Mail statistics of all cluster members on the primary device.
• C. Policy configuration changes of all cluster members from the primary device.
• D. Firmware update of all cluster members from the primary device

正解：A、B

質問 # 16
Refer to the exhibit which shows a command prompt output of a telnet command.

Which configuration change must you make to prevent the banner from displaying the FortiMail serial number?

• A. Add a protected domain
• B. Change the operation mode
• C. Configure a local domain name
• D. Change the host name

正解：D

質問 # 17
A FortiMail administrator is investigating a sudden increase in DSNs being delivered to their protected domain. After searching the logs, the administrator identifies that the DSNs were not generated because of any outbound email sent from their organization.
Which FortiMail antispam technique can the administrator use to prevent this scenario?

• A. Bounce address tag validation
• B. Spoofed header detection
• C. FortiGuard IP Reputation
• D. Spam outbreak protection

正解：A

質問 # 18
Which two FortiMail antispam techniques can you use to combat zero-day spam? (Choose two.)

• A. Behavior analysis
• B. DNSBL
• C. IP reputation
• D. Spam outbreak protection

正解：C、D

質問 # 19
Refer to the exhibit which displays a topology diagram.

Which two statements describe the built-in bridge functionality on a transparent mode FortiMail? (Choose two.)

• A. All bridge member interfaces belong to the same subnet as the management IP.
• B. Any bridge member interface can be removed from the bridge and configured as a routed interface.
• C. The management IP is permanently tied to port1, and port1 cannot be removed from the bridge.
• D. If port1. is required to process SMTP traffic, it must be configured as a routed interface.

正解：A、C

質問 # 20
While reviewing logs, an administrator discovers that an incoming email was processed using policy IDs 0:4:9:INTERNAL.
Which two statements describe what this policy ID means? (Choose two.)

• A. The email was processed using IP-based policy ID 4.
• B. Access control policy number 9 was used.
• C. The FortiMail configuration is missing an access delivery rule.
• D. FortiMail is applying the default behavior for relaying inbound email.

正解：A、B

質問 # 21
A FortiMail device is configured with the protected domain example.com.
If none of the senders is authenticated, which two envelope addresses will require an access receive rule? (Choose two.)

• A. MAIL FROM: [email protected] RCPT TO: [email protected]
• B. MAIL FROM: [email protected] RCPT TO: [email protected]
• C. MAIL FROM: [email protected] RCPT TO: [email protected]
• D. MAIL FROM: [email protected] RCPT TO: [email protected]

正解：A、D

質問 # 22
Refer to the exhibits which shows a DLP scan profile configuration (DLP Scan Rule 1 and DLP Scan Rule 2) from a FortiMail device.


Which two message types will trigger this DLP scan rule? (Choose two.)

• A. An email that contains credit card numbers in the body, attachment, and subject will trigger this scan rule.
• B. An email message with a subject that contains the term "credit card' will trigger this scan rule.
• C. An email message that contains credit card numbers in the body will trigger this scan rule.
• D. An email sent from salesdinternal. lab will trigger this scan rule, even without matching any conditions.

正解：B、C

質問 # 23
Refer to the exhibit, which shows a topology diagram of two separate email domains.

Which two statements correctly describe how an email message is delivered from User A to User B? (Choose two.)

• A. The DNS server will act as an intermediary MTA.
• B. User B will retrieve the email message using either POP3 or IMAP.
• C. mx.example1.org will forward the email message to the MX record that has the lowest preference.
• D. User A's MUA will perform a DNS MX record lookup to send the email message.

正解：B、C

質問 # 24
......

合格させるNSE 6 Network Security Specialist NSE6_FML-7.2試験には31問があります：https://www.jpntest.com/shiken/NSE6_FML-7.2-mondaishu