● NSE 5 - FortiSwitch 7.2 Administrator Exam Materials

Please note that the exam "NSE 5 - FortiSwitch 7.2 Administrator" is no longer offered by Fortinet and is not available for booking through Pearson VUE, so we opened it on free view,
It has been replaced by the exam "NSE 5 - FortiSwitch 7.6 Administrator t"

The new exam version is available on Brave-Dumps and can be purchased.



Question #11
Comment Image Comment Image Comment Image

what can an administrator do to maintain the existing standalone FortiSwitch configuration while changing the management mode to FortiLink? (Choose one answer)

  • A. Use a migration tool based on Python script to convert the configuration.
  • B. Enable the FortiLink setting on FortiSwitch before the authorization process.
  • C. FortiGate automatically saves the existing FortiSwitch configuration during the FortiLink management process.
  • D. Register FortiSwitch to FortiSwitch Cloud to save a copy before managing with FortiGate.

Question #12
Comment Image Comment Image Comment Image

Which statement about the quarantine VLAN on FortiSwitch is true? (Choose one answer)

  • A. Quarantine VLAN has no DHCP server.
  • B. Users who fail 802.1X authentication can be placed on the quarantine VLAN.
  • C. It is only used for quarantined devices if global setting is set to quarantine by VLAN.
  • D. FortiSwitch can block devices without configuring quarantine VLAN to be part of the allowed VLANs.

Question #13
Comment Image Comment Image Comment Image

Refer to the exhibit.

Which two statements best describe what is displayed in the FortiLink debug output shown in the exhibit? (Choose two answers)

  • A. FortiSwitch is sending FortiLink heartbeats to FortiGate.
  • B. FortiSwitch is discovered and authorized by FortiGate.
  • C. FortiSwitch is in a waiting state to join the stack group on FortiGate.
  • D. FortiSwitch is ready to push its new hostname to FortiGate.

Question #14
Comment Image Comment Image Comment Image

Which two statements about VLAN assignments on FortiSwitch ports are true? (Choose two answers)

  • A. Configure a native VLAN on the FortiLink
  • B. Assign an IP address and subnet mask to FortiSwitch VLANs
  • C. Only assign one native VLAN on a port
  • D. Assign untagged VLANs using FortiGate CLI

Question #15
Comment Image Comment Image Comment Image

Which two rules used by MSTP are similar to rules used by other STP methods? (Choose two answers)

  • A. MSTP uses port role election, similar to rapid STP on the instances.
  • B. MSTP uses alternate path and primary path, similar to regular STP.
  • C. MSTP uses root bridge selection, similar to rapid STP.
  • D. MSTP uses timers for transitioning the ports, similar to regular STP.

Question #16
Comment Image Comment Image Comment Image

Refer to the exhibit.

Which configuration change will allow the managed FortiSwitch to accept SNMP requests from any source? (Choose one answer)

  • A. Create a new local access profile for SNMP only.
  • B. Configure an SNMP host to send SNMP traps.
  • C. Enable SNMP on the internal interface of the switch.
  • D. Add SNMP service on the management interface of the switch.

Question #17
Comment Image Comment Image Comment Image

How does FortiSwitch perform actions on ingress and egress traffic using the access control list (ACL)? (Choose one answer)

  • A. Only high-end FortiSwitch models support ACL.
  • B. ACL can be used only at the prelookup stage in the traffic processing pipeline.
  • C. Classifiers enable matching traffic based only on the VLAN ID.
  • D. FortiSwitch checks ACL policies only from top to bottom.

Question #18
Comment Image Comment Image Comment Image

Which QoS mechanism maps packets with specific CoS or DSCP markings to an egress queue? (Choose one answer)

  • A. Queuing for egress traffic
  • B. Classification for ingress traffic
  • C. Rate limiting for egress traffic
  • D. Marking for ingress traffic

Question #19
Comment Image Comment Image Comment Image

An administrator needs to deploy managed FortiSwitch devices in a remote location where multiple VLANs must be utilized to segment devices. No Layer 3 switch or router is present. The only WAN connectivity is the router provided by the ISP connected to the public internet.

Which two items will the administrator need to use? (Choose two answers)

  • A. A FortiSwitch interface connected to the ISP router configured with fortilink-13-mode enabled.
  • B. FortiSwitch and FortiGate devices configured with VXLAN interfaces.
  • C. FortiSwitch devices configured with NAT disabled.
  • D. FortiSwitch devices that have the required internal hardware for this configuration.
  • E. FortiSwitch and FortiGate devices configured with IPsec interfaces.

Question #20
Comment Image Comment Image Comment Image

How does flow tracking work on FortiSwitch if you export the settings to a managed FortiSwitch stack with sampling mode set to local? (Choose one answer)

  • A. FortiGate does not change existing sampling settings of interfaces.
  • B. FortiGate configures FortiSwitch to perform ingress sampling on all switch interfaces.
  • C. FortiGate configures FortiSwitch to perform ingress sampling on all switch interfaces, except ICL and ISL interfaces.
  • D. FortiGate turns egress sampling on all management interfaces.