Improve Your Cyber Security Knowledge - Fortisandbox Quiz

30 Questions | Total Attempts: 250

SettingsSettingsSettings
Please wait...
Cyber Security Quizzes & Trivia

FortiSandbox is a detection tool that works best in conjunction with the enforcement capabilities of established threat prevention capabilities like a next generation firewall (NGFW) or unified threat management (UTM) system, as well as secure email gateway or endpoint protection platform. Improve your Cyber Security Knowledge in this FortiSandbox Quiz.


Questions and Answers
  • 1. 
    Which devices can receive logs from FortiSandbox? (Choose Two)
    • A. 

      SNMP manager

    • B. 

      FortiAnalayzer

    • C. 

      FortiManager

    • D. 

      FortiGate

  • 2. 
    FortiGate is configured to send suspicious file to a sandbox for in-line inspection. The administrator creates a new VDOM, and then generates some traffic so what the new VDOM sends a file to the FortiSandbox for the first time.Which is true regarding this scenario?
    • A. 

      FortiSandbox will store the file, but not inspect it until the administrator manually authorizes the new VDOM

    • B. 

      Before generating traffic, the administrator can push the VDOM configuration from the FortiGate to the FortiSandbox. Then when FortiSandbox receives the file, FortiSandbox will inspect the file.

    • C. 

      FortiSandbox can be pre-configured to automatically authorize the new VDOM and inspect the file.

    • D. 

      FortiSandbox will store the file, but no inspect it until the administrator manually adds the new VDOM to the FortiSandbox configuration.

  • 3. 
    Which is true regarding Microsoft Office on FortiSandbox?
    • A. 

      Microsoft Word documents (.docx) are not inspected.

    • B. 

      Office 365 files are not supported.

    • C. 

      Microsoft Office is not included. You must purchase it separately, then manually install it in the applicable VMs on FortiSandbox.

    • D. 

      Office 2013 is installed in one of the VMs.

  • 4. 
    Which protocols can a FortiSandbox inspect when is deployed in sniffer mode? (Choose two)
    • A. 

      MAPI

    • B. 

      FTPS

    • C. 

      HTTP

    • D. 

      POP3

  • 5. 
    Which methods can be used to submit files to FortiSandbox for inspection? (Choose Two)
    • A. 

      File Shares

    • B. 

      FTP upload

    • C. 

      SFTP upload

    • D. 

      JSON API

  • 6. 
    Which FortiGate process sends files to FortiSandbox for inspection?
    • A. 

      Scanunit

    • B. 

      Fortisandboxd

    • C. 

      Miglogd

    • D. 

      Quarantine

  • 7. 
    If FortiSandbox connects to FortiGuard through a web proxy server, which FortiSandbox interface must have access to the proxy server?
    • A. 

      Port3

    • B. 

      Port2

    • C. 

      Port1

    • D. 

      Port4

  • 8. 
    Which protocols can FortiSandbox use to connect to a network file share? (Choose two)
    • A. 

      FTP

    • B. 

      HTTP

    • C. 

      NTFSv2

    • D. 

      CIFS

  • 9. 
    What mechanism does FortiGate use to avoid sending a file that has been already inspected to FortiSandbox?
    • A. 

      FortiGate sends the file name to FortiGuard. FortiGuard checks if a file with name has been already inspected.

    • B. 

      FortiGate sends the file name to FortiSandbox. FortiSandbox checks if it has already inspected a file with the name

    • C. 

      FortiGate sends a hash of the file to FortiSandbox. FortiSandbox checks if it has already inspected a file with that hash.

    • D. 

      FortiGate searches its cache of a list of file names that it has already inspected.

  • 10. 
    Which protocols are supported for archiving scan job reports? (Choose two)
    • A. 

      SMB

    • B. 

      CIFS

    • C. 

      FTP

    • D. 

      NFSv2

  • 11. 
    Based on the exhibit, which are true? (Choose two)
    • A. 

      Depending on the version indicated in the PDF file. FortiSandbox will scan using only one PDF reader (either AdobeReader 9 or Adobe Reader 11)

    • B. 

      If there are no internet Explorer 10 installations on your network, you can safely disable the scaning of Adobe Flash with Microsoft Internet Explorer 10.

    • C. 

      FortiSandbox will scan all Flash applications using Internet Explorer 10. This does not guarantee safety for Internet Explorer 8.

    • D. 

      You can safely disable the PDF scanning with Acrobat Reader 9 because PDF scanning with Acrobat Reader 11 is enabled.

  • 12. 
    The Windows licenses in a FortiSandbox could be locked because they have exceeded the maximum number of allowed activitions. What should the administrator do to fix the problem?
    • A. 

      Contact Microsoft support

    • B. 

      Restore a backup of the configuration taken before the licenses became locked.

    • C. 

      Reinstall the license files.

    • D. 

      Contact Fortinet Support.

  • 13. 
    What information does a scan job report include? (Choose two)
    • A. 

      Summary of the file activity

    • B. 

      Changes to the FortiSandbox's configuration

    • C. 

      Details about system files deleted or modified

    • D. 

      Updates to the antivirus database

  • 14. 
    Which threats can a FortiSandbox inspect when it is deployed in sniffer mode? (Choose three)
    • A. 

      Suspicious website access

    • B. 

      Botnet Connections

    • C. 

      Applications that use excessive bandwidth

    • D. 

      Known viruses

    • E. 

      Spam

  • 15. 
    Which methods can be used to submit files to FortiSandbox for inspection? (Choose Three)
    • A. 

      JSON API

    • B. 

      SFTP upload

    • C. 

      File shares

    • D. 

      FortiGate HA synchronization

    • E. 

      Sniffer mode

  • 16. 
    FortiSanbox contains VM images for multiple operating systems, Which are included? (Choose three) 
    • A. 

      Windows 7 (64-bit)

    • B. 

      Windows 7 (32-bit)

    • C. 

      Windows XP (32-bit)

    • D. 

      Mac OS X 10.10

    • E. 

      Windows 8.1 (64-bit)

  • 17. 
    What is the minimum FortiManager firmware version taht supports FortiSandbox using it (instead of the FDN directly) for F...
    • A. 

      FortiManager 5.0.11

    • B. 

      FortiManager 5.0.8

    • C. 

      FortiManager 5.0.6

    • D. 

      FortiManager 5.2.1

  • 18. 
    In the windows 7 x86 VM image on FortiSandox, which browser is installed?
    • A. 

      Internet Explorer 10

    • B. 

      Internet Explorer 9

    • C. 

      Firefox 41.0.1 (auto-updating)

    • D. 

      GoogleChrome 45.0.2454 (auto-updating)

  • 19. 
    FortiGate is configured to send suspicious file to a sandbox for in-line inspection. The administrator creates a new VDOM, and then generates some traffic so what the new VDOM sends a file to the FortiSandbox for the first time.Which is true regarding this scenario?
    • A. 

      In Advance, the admiistrator can push the VDOM configuration from the FortiGate to the FortiSandbox so that it wil authorize the VDOM and FortiSandbox will inspect the file.

    • B. 

      FortiSandbox will store the file, and not inspectit until the administrator manually adds the new VDOM to the FortiSandbox configuration

    • C. 

      FortiSandbox will store the file, and not inspectit until the administrator manually authorize the new VDOM on FortiSandbox.

    • D. 

      In Advance, the admiistrator can configure FortiSandbox to automaticaly authorize the new VDOM and inspect the file

  • 20. 
    Which Fortinet devices can be configured to snd files to FortiSandbox 2.0.3 (Choose two)
    • A. 

      FortiMail

    • B. 

      FortiSwitch

    • C. 

      FortiGate

    • D. 

      FortiAP

  • 21. 
    Examine the FortiGate configuration in the exhibit. Which situations describe when the file could be sent to the FortiSandbox? (Choose Three)
    • A. 

      A 5MB EXE file attached to an email, sent over POP3, detected as a known virus by the FortiGate

    • B. 

      An 11 MB EXE file, sent HTTP, detected as suspicious by the FortiGate

    • C. 

      A 7MB PDF attachment to an Email, sent over SMTP

    • D. 

      A 3 MB archve that ecompress to 16 MB, sent over HTTP

    • E. 

      A 3 MB Flash video, sent over HTTP

  • 22. 
    Which type of profile on FortiMail determines if a file will be sent to the FortiSandbox?
    • A. 

      Antispam

    • B. 

      Antivirus

    • C. 

      Protocol Options

    • D. 

      Recipient

  • 23. 
    While FortiSandbox is sniffing traffic, which protocols payload files can it inspect (Choose two.)
    • A. 

      POP3

    • B. 

      HTTP

    • C. 

      FTPS

    • D. 

      MAPI

  • 24. 
    While FortiSandbox is sniffing traffic, which types of files can it inspect? (Choose Three.)
    • A. 

      TXT

    • B. 

      JAR

    • C. 

      EXE

    • D. 

      CMD

  • 25. 
    What is the minimum FortiAnalayzer firmware version that supports FortiSandbox device registration (not siply receiving log)
    • A. 

      FortiAnalayzer 5.0.11

    • B. 

      FortiAnalayzer 5.0.8

    • C. 

      FortiAnalayzer 5.0.6

    • D. 

      FortiAnalayzer 5.2.1

Back to Top Back to top