Page: 1
/ 3
Total 31 questions
Refer to the exhibit, which shows a few lines of FortiMail logs.
Based on these log entries, which two statements correctly describe the operational status of this FortiMail device? (Choose two.)
- A. FortiMail is experiencing issues delivering the email to the internal.lab MTA.
- B. The FortiMail device is in sever mode.
- C. The FortiMail device is in gateway or transparent mode.
- D. FortiMail is experiencing issues accepting the connection from the external.lab MTA.
Answer : AC
Refer to the exhibits which show a topology diagram (Topology) and a configuration element (Access Control Rule).
Which three access control settings are recommended to allow outbound email from the example.com domain on FML-1? (Choose three.)
- A. The Sender IP/netmask should be set to 10.29.1.45/32.
- B. The Recipient pattern should be set to 10.29.1.45/24.
- C. The Action should be set to Relay.
- D. The Sender pattern should be set to *@example.com.
- E. The Enable check box should be cleared.
Answer : ACD
Refer to the exhibit which shows the Authentication Reputation list on a gateway mode FortiMail device.
Why was the IP address blocked?
- A. The IP address had consecutive SMTPS login failures to FortiMail.
- B. The IP address had consecutive IMAP login failures to FortiMail.
- C. The IP address had consecutive SSH, SMTPS, and HTTPS login failures to FortiMail.
- D. The IP address had consecutive administrative password failures to FortiMail
Answer : C
Which item is a supported one-time secure token for IBE authentication?
- A. FortiToken
- B. Certificate
- C. SMS
- D. Security question
Answer : C
What are two disadvantages of configuring the dictionary and DLP scan rule aggressiveness too high? (Choose two.)
- A. High aggressiveness scan settings do not support executable file types.
- B. It is more resource intensive.
- C. More false positives could be detected.
- D. FortiMail requires more disk space for the additional rules.
Answer : BC
In which FortiMail configuration object can you assign an outbound session profile?
- A. Outbound recipient policy
- B. Inbound recipient policy
- C. IP policy
- D. Access delivery rule
Answer : A
A FortiMail administrator is investigating a sudden increase in DSNs being delivered to their protected domain. After searching the logs, the administrator identifies that the DSNs were not generated because of any outbound email sent from their organization.
Which FortiMail antispam technique can the administrator use to prevent this scenario?
- A. FortiGuard IP Reputation
- B. Spoofed header detection
- C. Spam outbreak protection
- D. Bounce address tag validation
Answer : D
Refer to the exhibit which shows a detailed history log view.
Which two actions did FortiMail take on this email message? (Choose two.)
- A. FortiMail replaced the virus content with a message.
- B. FortiMail modified the subject of the email message.
- C. FortiMail forwarded the email to User 1 without scanning.
- D. FortiMail sent the email message to User 1’s personal quarantine.
Answer : AB
Refer to the exhibit, which shows an inbound recipient policy.
After creating the policy shown in the exhibit, an administrator discovers that clients can send unauthenticated emails using SMTP.
What must the administrator do to enforce authentication?
- A. Move this incoming recipient policy to the top of the list.
- B. Configure a matching IP policy with the exclusive flag enabled.
- C. Configure an access delivery rule to enforce authentication.
- D. Configure an access receive rule to verify authentication status.
Answer : D
Refer to the exhibits, which display a topology diagram (Topology) and two FortiMail device configurations (FML1 Configuration and FML2 Configuration).
What is the expected outcome of SMTP sessions sourced from FML1 and destined for FML2?
- A. FML1 will fail to establish any connection with FML2.
- B. FML1 will attempt to establish an SMTPS session with FML2, but fail and revert to standard SMTP.
- C. FML1 will send the STARTTLS command in the SMTP session, which will be rejected by FML2.
- D. FML1 will successfully establish an SMTPS session with FML2.
Answer : D
Refer to the exhibit which displays a history log entry.
Why does the last field show SYSTEM in the Policy ID column?
- A. The email was dropped by a system blocklist.
- B. It is an inbound email.
- C. The email matched a system-level authentication policy.
- D. The email did not match a recipient-based policy.
Answer : D
Which two FortiMail antispam techniques can you use to combat zero-day spam? (Choose two.)
- A. IP reputation
- B. Spam outbreak protection
- C. DNSBL
- D. Behavior analysis
Answer : AB
Which statement about how impersonation analysis identifies spoofed email addresses is correct?
- A. It uses behavior analysis to detect spoofed addresses.
- B. It uses DMARC validation to detect spoofed addresses.
- C. It maps the display name to the correct recipient email address.
- D. It uses SPF validation to detect spoofed addresses.
Answer : B
Refer to the exhibit which shows an nslookup output of MX records of the example.com domain.
Which two MTA selection behaviors for the example.com domain are correct? (Choose two.)
- A. mx.example.com will receive approximately twice the number of email as mx.hosted.com because of its preference value.
- B. The primary MTA for the example.com domain is mx.hosted.com.
- C. The external MTAs will send email to mx.example.com only if mx.hosted.com is unreachable.
- D. The PriNS server should receive all email for the example.com domain.
Answer : BC
While reviewing logs, an administrator discovers that an incoming email was processed using policy IDs 0:4:9:INTERNAL.
Which two statements describe what this policy ID means? (Choose two.)
- A. Access control policy number 9 was used.
- B. The FortiMail configuration is missing an access delivery rule.
- C. The email was processed using IP-based policy ID 4.
- D. FortiMail is applying the default behavior for relaying inbound email.
Answer : AC
30 days access 