Which of the following statements about DLP is correct?
A. DLP can traffic shape the user who is trying to leak sensitive data.
B. DLP prevents specific data from leaving a network.
Secure protocols such as HTTPS are listed as options.
True
False
If SSL/SSH inspection is enabled, FortiGate will scan both secure and non-secure versions of each chosen protocol, for example, both HTTPS and HTTP.
DLP action (Select 4)
Allow
Log only
Block
Quarantine IP Address
Default
Banned IP Address
Filter options
Messages File
Regular expression Pattern
Which actions can you configure in a DLP filter?
A. Monitor
B. Log only
Which filter types can be configured for DLP?
A. Folders type filter
B. Messages type filter
Fingerprint sensitivity Default sensitivity levels are:
Critical Private Warning
Critical Alert Warning
The fingerprint feature is enabled only on the GUI for each filter in the DLP sensor.
Which statement about the document fingerprinting feature in DLP is true?
A. You can manually upload files to FortiGate for document fingerprinting.
B. Changing the chunk size will flush the entire database of document fingerprinting.
Which statement about fingerprinting sensitivity in DLP is true?
A. Custom fingerprint sensitivity level can be configured on the CLI only.
B. FortiGate appends a fingerprint sensitivity tag to all emails sent by users.
DLP Archiving supported protocols: (Select 7)
SMTP
POP3
IMAP
MAPI
HTTP (GET and POST methods only)
FTP
NNTP
HTTPS
TLS
Which of the following items can be archived by a DLP sensor that is configured for summary archiving?
A. Sender email address (in the case of SMTP traffic)
B. Attached file (in the case of SMTP traffic)
When a file matches more than one rule in a DLP sensor, what action does FortiGate take?
A. The action specified by the rule that most specifically matches the file.
B. The action specified in the first rule from top to bottom.
