Salih F6

30 Questions | Total Attempts: 223

SettingsSettingsSettings
Please wait...
Cyber Security Quizzes & Trivia

.


Questions and Answers
  • 1. 
    Which devices can receive logs from FortiSandbox? (Choose Two)
    • A. 

      SNMP manager

    • B. 

      FortiAnalayzer

    • C. 

      FortiManager

    • D. 

      FortiGate

  • 2. 
    FortiGate is configured to send suspicious file to a sandbox for in-line inspection. The administrator creates a new VDOM, and then generates some traffic so what the new VDOM sends a file to the FortiSandbox for the first time.Which is true regarding this scenario?
    • A. 

      FortiSandbox will store the file, but not inspect it until the administrator manually authorizes the new VDOM

    • B. 

      Before generating traffic, the administrator can push the VDOM configuration from the FortiGate to the FortiSandbox. Then when FortiSandbox receives the file, FortiSandbox will inspect the file.

    • C. 

      FortiSandbox can be pre-configured to automatically authorize the new VDOM and inspect the file.

    • D. 

      FortiSandbox will store the file, but no inspect it until the administrator manually adds the new VDOM to the FortiSandbox configuration.

  • 3. 
    Which is true regarding Microsoft Office on FortiSandbox?
    • A. 

      Microsoft Word documents (.docx) are not inspected.

    • B. 

      Office 365 files are not supported.

    • C. 

      Microsoft Office is not included. You must purchase it separately, then manually install it in the applicable VMs on FortiSandbox.

    • D. 

      Office 2013 is installed in one of the VMs.

  • 4. 
    Which protocols can a FortiSandbox inspect when is deployed in sniffer mode? (Choose two)
    • A. 

      MAPI

    • B. 

      FTPS

    • C. 

      HTTP

    • D. 

      POP3

  • 5. 
    Which FortiGate process sends files to FortiSandbox for inspection?
    • A. 

      Scanunit

    • B. 

      Fortisandboxd

    • C. 

      Miglogd

    • D. 

      Quarantine

  • 6. 
    If FortiSandbox connects to FortiGuard through a web proxy server, which FortiSandbox interface must have access to the proxy server?
    • A. 

      Port3

    • B. 

      Port2

    • C. 

      Port1

    • D. 

      Port4

  • 7. 
    Which protocols can FortiSandbox use to connect to a network file share? (Choose two)
    • A. 

      FTP

    • B. 

      HTTP

    • C. 

      NTFSv2

    • D. 

      CIFS

  • 8. 
    What mechanism does FortiGate use to avoid sending a file that has been already inspected to FortiSandbox?
    • A. 

      FortiGate sends the file name to FortiGuard. FortiGuard checks if a file with name has been already inspected.

    • B. 

      FortiGate sends the file name to FortiSandbox. FortiSandbox checks if it has already inspected a file with the name

    • C. 

      FortiGate sends a hash of the file to FortiSandbox. FortiSandbox checks if it has already inspected a file with that hash.

    • D. 

      FortiGate searches its cache of a list of file names that it has already inspected.

  • 9. 
    Which protocols are supported for archiving scan job reports? (Choose two)
    • A. 

      SMB

    • B. 

      CIFS

    • C. 

      FTP

    • D. 

      NFSv2

  • 10. 
    Which methods can be used to submit files to FortiSandbox for inspection? (Choose Two)
    • A. 

      File Shares

    • B. 

      FTP upload

    • C. 

      SFTP upload

    • D. 

      JSON API

  • 11. 
    Based on the exhibit, which are true? (Choose two)
    • A. 

      Depending on the version indicated in the PDF file. FortiSandbox will scan using only one PDF reader (either AdobeReader 9 or Adobe Reader 11)

    • B. 

      If there are no internet Explorer 10 installations on your network, you can safely disable the scaning of Adobe Flash with Microsoft Internet Explorer 10.

    • C. 

      FortiSandbox will scan all Flash applications using Internet Explorer 10. This does not guarantee safety for Internet Explorer 8.

    • D. 

      You can safely disable the PDF scanning with Acrobat Reader 9 because PDF scanning with Acrobat Reader 11 is enabled.

  • 12. 
    What information does a scan job report include? (Choose two)
    • A. 

      Summary of the file activity

    • B. 

      Changes to the FortiSandbox's configuration

    • C. 

      Details about system files deleted or modified

    • D. 

      Updates to the antivirus database

  • 13. 
    The Windows licenses in a FortiSandbox could be locked because they have exceeded the maximum number of allowed activitions. What should the administrator do to fix the problem?
    • A. 

      Contact Microsoft support

    • B. 

      Restore a backup of the configuration taken before the licenses became locked.

    • C. 

      Reinstall the license files.

    • D. 

      Contact Fortinet Support.

  • 14. 
    Which threats can a FortiSandbox inspect when it is deployed in sniffer mode? (Choose three)
    • A. 

      Suspicious website access

    • B. 

      Botnet Connections

    • C. 

      Applications that use excessive bandwidth

    • D. 

      Known viruses

    • E. 

      Spam

  • 15. 
    Which methods can be used to submit files to FortiSandbox for inspection? (Choose Three)
    • A. 

      JSON API

    • B. 

      SFTP upload

    • C. 

      File shares

    • D. 

      FortiGate HA synchronization

    • E. 

      Sniffer mode

  • 16. 
    FortiSanbox contains VM images for multiple operating systems, Which are included? (Choose three) 
    • A. 

      Windows 7 (64-bit)

    • B. 

      Windows 7 (32-bit)

    • C. 

      Windows XP (32-bit)

    • D. 

      Mac OS X 10.10

    • E. 

      Windows 8.1 (64-bit)

  • 17. 
    What is the minimum FortiManager firmware version taht supports FortiSandbox using it (instead of the FDN directly) for F...
    • A. 

      FortiManager 5.0.11

    • B. 

      FortiManager 5.0.8

    • C. 

      FortiManager 5.0.6

    • D. 

      FortiManager 5.2.1

  • 18. 
    In the windows 7 x86 VM image on FortiSandox, which browser is installed?
    • A. 

      Internet Explorer 10

    • B. 

      Internet Explorer 9

    • C. 

      Firefox 41.0.1 (auto-updating)

    • D. 

      GoogleChrome 45.0.2454 (auto-updating)

  • 19. 
    FortiGate is configured to send suspicious file to a sandbox for in-line inspection. The administrator creates a new VDOM, and then generates some traffic so what the new VDOM sends a file to the FortiSandbox for the first time.Which is true regarding this scenario?
    • A. 

      In Advance, the admiistrator can push the VDOM configuration from the FortiGate to the FortiSandbox so that it wil authorize the VDOM and FortiSandbox will inspect the file.

    • B. 

      FortiSandbox will store the file, and not inspectit until the administrator manually adds the new VDOM to the FortiSandbox configuration

    • C. 

      FortiSandbox will store the file, and not inspectit until the administrator manually authorize the new VDOM on FortiSandbox.

    • D. 

      In Advance, the admiistrator can configure FortiSandbox to automaticaly authorize the new VDOM and inspect the file

  • 20. 
    Which Fortinet devices can be configured to snd files to FortiSandbox 2.0.3 (Choose two)
    • A. 

      FortiMail

    • B. 

      FortiSwitch

    • C. 

      FortiGate

    • D. 

      FortiAP

  • 21. 
    Examine the FortiGate configuration in the exhibit. Which situations describe when the file could be sent to the FortiSandbox? (Choose Three)
    • A. 

      A 5MB EXE file attached to an email, sent over POP3, detected as a known virus by the FortiGate

    • B. 

      An 11 MB EXE file, sent HTTP, detected as suspicious by the FortiGate

    • C. 

      A 7MB PDF attachment to an Email, sent over SMTP

    • D. 

      A 3 MB archve that ecompress to 16 MB, sent over HTTP

    • E. 

      A 3 MB Flash video, sent over HTTP

  • 22. 
    Which type of profile on FortiMail determines if a file will be sent to the FortiSandbox?
    • A. 

      Antispam

    • B. 

      Antivirus

    • C. 

      Protocol Options

    • D. 

      Recipient

  • 23. 
    While FortiSandbox is sniffing traffic, which protocols payload files can it inspect (Choose two.)
    • A. 

      POP3

    • B. 

      HTTP

    • C. 

      FTPS

    • D. 

      MAPI

  • 24. 
    While FortiSandbox is sniffing traffic, which types of files can it inspect? (Choose Three.)
    • A. 

      TXT

    • B. 

      JAR

    • C. 

      EXE

    • D. 

      CMD

  • 25. 
    What is the minimum FortiAnalayzer firmware version that supports FortiSandbox device registration (not siply receiving log)
    • A. 

      FortiAnalayzer 5.0.11

    • B. 

      FortiAnalayzer 5.0.8

    • C. 

      FortiAnalayzer 5.0.6

    • D. 

      FortiAnalayzer 5.2.1

  • 26. 
    On FortiSandbox, which are the file-based detection categories? (Choose three.)
    • A. 

      Sespicious

    • B. 

      Malicious

    • C. 

      Uninfected

    • D. 

      Infected

  • 27. 
    FortiSandbox's eventlog contains details about which activities? (Choose Two)
    • A. 

      Detailed scan job reports

    • B. 

      Administrator logins

    • C. 

      CPU utilization

    • D. 

      Windows VM license activation

  • 28. 
    Which statements describe settings that can be enabled in network share settings on FortiSandbox? (Choose two.)
    • A. 

      Store a copy of an infected file metdata in a quarantine folder.

    • B. 

      Delete an infected file from the network share

    • C. 

      Create a password-protected ZIP of an infected file.

    • D. 

      Automatically scan the network file share

  • 29. 
    Which statements is true about Microsoft Office on FortiSandbox?
    • A. 

      Office 365 files are not supported

    • B. 

      Microsoft Office licenses for a FortiSandbox VM are available for download form the Fortinet Technical Support web site.

    • C. 

      Microsoft Office is not included You must purchase it seperately, then install it in the applicable VMs on FortiSandbox.

    • D. 

      Microsoft Office licenses for a FortiSandbox VM are available for download form the Microsoft web site.

  • 30. 
    In a file scan profile on FortiSandbox, the options for "Scan PDF with Adobe Reader 10", "Scan PDF with Adobe Reader 11" and "Scan Adobe Flash with Microsoft...
    • A. 

      All Flash apps will be scaned in Internet Explorer 10. This does not guarantee safety for Internet Explorer 9.

    • B. 

      Depending on the version indicated in the PDF, Fortiandbox will only scan using one software (Either Adobe Reader 10 or 11).

    • C. 

      You can safety disable the scan for Acrobat Reder 11, Because FortiSandbox will automatically scan for earlier versions.

    • D. 

      If there are no Internet Explorer 10 installations in your network, you can safety disable that options.