NSE6_FML-6.2 | The Secret Of Fortinet NSE6_FML-6.2 Pdf

NEW QUESTION 1

Refer to the exhibit.

MTA-1 is delivering an email intended for User 1 to MTA-2.
Which two statements about protocol usage between the devices are true? (Choose two.)

• A. User 1 will uselogs were generatedload the email message from MTA-2
• B. MTA-2 will use IMAP to receive the email message from MTA-1
• C. MTA-1 will use POP3 to deliver the email message to User 1 directly
• D. MTA-1 will use SMTP to deliver the email message to MTA-2

Answer: AD

NEW QUESTION 2

Examine the FortiMail topology and access receive rule shown in the exhibit; then answer the question below.


An administrator must enforce authentication on FML-1 for all outbound email from the example.com domain. Which of the following settings should be used to configure the access receive rule? (Choose two.)

• A. The Sender IP/netmask should be set to 10.29.1.0/24
• B. The Authentication status should be set to Authenticated
• C. The Recipient pattern should be set o *@example.com
• D. The Action should be set to Reject

Answer: AB

NEW QUESTION 3

Examine the FortiMail IBE users shown in the exhibit; then answer the question below

Which one of the following statements describes the Pre-registered status of the IBE user krayner@external.com?

• A. The user was registered by an administrator in anticipation of IBE participation
• B. The user has completed the IBE registration process but has not yet accessed their IBE email
• C. The user has received an IBE notification email, but has not accessed the HTTPS URL or attachment yet
• D. The user account has been de-activated, and the user must register again the next time they receive an IBE email

Answer: C

NEW QUESTION 4

Refer to the exhibit.

An administrator must enforce authentication on FML-1 for all outbound email from the example.com domain. Which two settings should be used to configure the access receive rule? (Choose two.)

• A. The Recipient pattern should be set to *@example.com
• B. The Authentication status should be set to Authenticated
• C. The Sender IP/netmask should be set to 10.29.1.0/24
• D. The Action should be set to Reject

Answer: BC

NEW QUESTION 5

If you are using the built-in MTA to process email in transparent mode, which two statements about FortiMail behavior are true? (Choose two.)

• A. MUAs need to be configured to connect to the built-in MTA to send email
• B. If you disable the built-in MTA, FortiMail will use its transparent proxies to deliver email
• C. FortiMail can queue undeliverable messages and generate DSNs
• D. FortiMail ignores the destination set by the sender, and uses its own MX record lookup to deliver email

Answer: CD

NEW QUESTION 6

Examine the FortiMail archiving policies shown in the exhibit; then answer the question below.


Which of the following statements is true regarding this configuration? (Choose two.)

• A. Spam email will be exempt from archiving
• B. Email sent from marketing@example.com will be archived
• C. Archived email will be saved in the journal account
• D. Only the marketing@example.com account will be able to access the archived email

Answer: AB

NEW QUESTION 7

Examine the FortMail mail server settings shown in the exhibit; then answer the question below.

Which of the following statements are true? (Choose two.)

• A. mx.example.com will enforce SMTPS on all outbound sessions
• B. mx.example.com will display STARTTLS as one of the supported commands in SMTP sessions
• C. mx.example.com will accept SMTPS connections
• D. mx.example.com will drop any inbound plaintext SMTP connection

Answer: BC

NEW QUESTION 8

Which of the following statements are true regarding FortiMail’s behavior when using the built-in MTA to process email in transparent mode? (Choose two.)

• A. FortiMail can queue undeliverable messages and generate DSNs
• B. If you disable the built-in MTA, FortiMail will use its transparent proxies to deliver email
• C. FortiMail ignores the destination set by the sender and uses its own MX record lookup to deliver email
• D. MUAs need to be configured to connect to the built-in MTA to send email

Answer: BC

NEW QUESTION 9

Refer to the exhibit.

What are two expected outcomes if FortiMail applies this antivirus action profile to an email? (Choose two.)

• A. Virus content will be removed from the email
• B. A replacement message will be added to the email
• C. The sanitized email will be sent to the recipient’s personal quarantine
• D. The administrator will be notified of the virus detection

Answer: BC

NEW QUESTION 10

While testing outbound MTA functionality, an administrator discovers that all outbound email is being processed using policy IDs 1:2:0.
Which two reasons explain why the last policy ID value is 0? (Choose two.)

• A. Outbound email is being rejected
• B. IP policy ID 2 has the exclusive flag set
• C. There are no outgoing recipient policies configured
• D. There are no access delivery rules configured for outbound email

Answer: CD

NEW QUESTION 11

Which FortiMail option removes embedded code components in Microsoft Word, while maintaining the original file format?

• A. Behavior analysis
• B. Impersonation analysis
• C. Content disarm and reconstruction
• D. Header analysis

Answer: C

Explanation:
Reference: https://fortinetweb.s3.amazonaws.com/docs.fortinet.com/v2/attachments/8c063dd3-bafe-11e9- a989-00505692583a/fortimail-admin-620.pdf (435)

NEW QUESTION 12

Which three statements about SMTPS and SMTP over TLS are true? (Choose three.)

• A. SMTP over TLS connections are entirely encrypted and initiated on port 465
• B. SMTPS encrypts the identities of both the sender and receiver
• C. The STARTTLS command is used to initiate SMTP over TLS
• D. SMTPS encrypts only the body of the email message
• E. SMTPS connections are initiated on port 465

Answer: BCE

Explanation:
Reference:
https://docs.fortinet.com/document/fortimail/6.2.0/administration-guide/807960/fortimail-support-of- tls-ssl

NEW QUESTION 13

Refer to the exhibit.

It is recommended that you configure which three access receive settings to allow outbound email from the example.com domain on FML-1? (Choose three.)

• A. The Sender pattern should be set to *@example.com
• B. The Action should be set to Relay
• C. The Recipient pattern should be set to 10.29.1.45/24
• D. The Enable check box should be cleared
• E. The Sender IP/netmask should be set to 10.29.1.45/32

Answer: BDE

NEW QUESTION 14




Which of the following statements are true regarding the transparent mode FortiMail’s email routing for the example.com domain? (Choose two.)

• A. FML-1 will use the built-in MTA for outgoing sessions
• B. FML-1 will use the transparent proxy for incoming sessions
• C. If incoming email are undeliverable, FML-1 can queue them to retry again later
• D. If outgoing email messages are undeliverable, FML-1 can queue them to retry later

Answer: BC

NEW QUESTION 15

Refer to the exhibit.

Which configuration change must you make to block an offending IP address temporarily?

• A. Add the offending IP address to the system block list
• B. Add the offending IP address to the user block list
• C. Add the offending IP address to the domain block list
• D. Change the authentication reputation setting status to Enable

Answer: D

Explanation:
Reference: https://help.fortinet.com/fweb/550/Content/FortiWeb/fortiweb-admin/blacklisting.htm

NEW QUESTION 16
......