CertsTopics Logo

New Year Special 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: save70

Free and Premium Fortinet NSE7_ATP-2.5 Dumps Questions Answers

Page: 1 / 2
Total 30 questions
Get NSE7_ATP-2.5 Full Access Download NSE7_ATP-2.5 PDF

Fortinet NSE 7 - Advanced Threat Protection 2.5 Questions and Answers

Question 1

Which of the advanced threat protection solutions should you use to protect against an attacker may take during the lateral movement stage of the kill chain? (Choose two.)

Options:

A.

FortiClient and FortiSandbox

B.

FortiMail and FortiSandbox

C.

FortiGate and FortiSandbox

D.

FortiWeb and FortiSandbox

Buy Now
Question 2

Which of the following are features of network share scanning of FortiSandbox? (Choose two.)

Options:

A.

Move clean files to a separate network share.

B.

Replace suspicious files with a replacement message.

C.

Detect malicious URLs.

D.

Detect network attacks.

Question 3

When using FortiSandbox in sniffer-mode, you should configure FortiSandbox to inspect both inbound and outbound traffic.

What type of threats can FortiSandbox detect on inbound traffic? (Choose two.)

Options:

A.

Botnet connections

B.

Malware

C.

Malicious URLs

D.

Intrusion attempts

Question 4

Examine the FortiClient configuration shown in the exhibit. then answer the following question:

What is the general rule you should follow when configuring the Timeout value for files submitted to FortiSandbox?

Options:

A.

It should be long enough for FortiSandbox to complete an antivirus scan of files.

B.

It should be long enough for FortiSandbox to complete a cloud query of file hashes.

C.

It should be long enough for FortiSandbox to complete sandbox analysis of files.

D.

It should be long enough for FortiSandbox to complete a static analysis of files.

Question 5

Examine the following topology shown in the exhibit, then answer the following question:

Which of the following configuration tasks are applicable to secure Webserver from known threats? (Choose two.)

Options:

A.

Apply an SSL inspection profile configured for protecting SSL server.

B.

Apply an antivirus profile to the port1 -> port2 firewall policy.

C.

Apply an SSL inspection profile configured for full SSL inspection.

D.

Apply a web filter profile to the port1 -> port2 firewall policy.

Question 6

Which FortiSandbox interfaces can you use for sniffer mode? (Choose two.)

Options:

A.

port2

B.

port3

C.

port1

D.

port4

Question 7

Which samples can FortiClient submit to FortiSandbox for analysis? (Choose two.)

Options:

A.

Downloads from emails

B.

URLs from web requests

C.

Command and control traffic

D.

Files from removable storage

Question 8

Which of the following are FortiWeb’s roles when integrated with FortiSandbox? (Choose two.)

Options:

A.

Share threat information

B.

Prevent outbreaks

C.

Generate a verdict

D.

Block known threats

Question 9

Which FortiSandbox diagnostic command should you use to diagnose Internet connectivity issues on port3?

Options:

A.

ping

B.

tcpdump

C.

test-network

D.

traceroute

Exam Detail
Vendor: Fortinet
Certification: Fortinet Other Certification
Exam Code: NSE7_ATP-2.5
Exam Name: Fortinet NSE 7 - Advanced Threat Protection 2.5
Last Update: Dec 22, 2024
NSE7_ATP-2.5 Question Answers
Page: 1 / 2
Total 30 questions
Get NSE7_ATP-2.5 Full Access Download NSE7_ATP-2.5 PDF