FNF India Security Analyst Interview Questions and Answers

Q1. What's the DNS port number
Ans. 
DNS port number is 53
• DNS port number is 53 for both TCP and UDP protocols

• It is used for DNS queries and responses

• Firewalls and network devices need to allow traffic on port 53 for DNS to function properly
Answered by AI
Add your answer

Q1. How Siem works Mitre attack framework Cyber kill chain Different types of attack
Ans. 
SIEM works by collecting and analyzing security data to detect and respond to cyber threats. Mitre attack framework and Cyber kill chain are used to categorize and analyze attacks.
• SIEM collects security data from various sources like logs, network traffic, and endpoints for analysis.

• Mitre attack framework provides a structured way to categorize and analyze cyber threats based on tactics and techniques used by attackers...read more
Answered by AI
Add your answer

Q1. When you say you are aware of VAPT, then qn is from tools that u have used. projects that u have worked so far in internship or bugbounty or anything that u have mentioned in CV. Any vuln that u r more fam...read more
Add your answer

Q1. 2nd round is with manager not much technical general qn like - 5 years down the line where do u see ur self,
Add your answer

Q1. About salary, family background, education done
Add your answer

Q1. Packet flow fortigate
Add your answer
Q2. IPsec VPN troubleshooting
Add your answer

Q1. Fortigate proxy and flow mode
Add your answer
Q2. How to design HA in active passive environment
Ans. 
Designing HA in active passive environment involves ensuring redundancy and failover mechanisms.
• Identify critical components and services that require high availability

• Implement redundancy by setting up a secondary system that can take over in case of failure

• Ensure automatic failover mechanisms are in place to minimize downtime

• Regularly test the failover mechanisms to ensure they work as expected

• Consider load balancing...read more
Answered by AI
Add your answer

Q1. 1. How router install routes in routing table 2. IPsec VPN types 3. application slowness troubleshooting 4 Some questions from F5 LTM.
Ans. 
Questions on router routing table, IPsec VPN types, application slowness troubleshooting, and F5 LTM.
• Router installs routes in routing table using routing protocols such as OSPF, BGP, etc.

• IPsec VPN types include site-to-site, remote access, and extranet VPNs.

• Application slowness troubleshooting involves checking network latency, server performance, and application code.

• F5 LTM questions may include load balancing algori
Answered by AI
Add your answer
Q2. How to troubleshoot IPsec vpns
Ans. 
To troubleshoot IPsec vpns, check configuration, logs, and network connectivity.
• Check if the configuration is correct and matches on both ends

• Check the logs for any error messages or warnings

• Verify network connectivity between the two endpoints

• Check for any firewall or NAT issues

• Ensure that the correct encryption and authentication algorithms are being used

• Check for any MTU issues

• Verify that the VPN tunnel is up and ru
Answered by AI
Add your answer
Q3. What is ssl persistence in F5.
Ans. 
SSL persistence is a feature in F5 that allows a client to maintain a secure connection with the same server during a session.
• SSL persistence ensures that a client's SSL session is maintained with the same server throughout the session.

• This feature is useful in scenarios where multiple servers are used to handle client requests.

• SSL persistence can be configured based on SSL session ID, SSL session ticket, or SSL sessio...read more
Answered by AI
Add your answer

Some questions based on information security.

Q1. 1. Question from ospf Question from fortigate basics Static route. 2. Packet flow of fortigate How to block Facebook chat in fortigate
Add your answer
Q2. How does fortigate stop dos attack
Ans. 
Fortigate uses various techniques to stop DOS attacks.
• Fortigate can detect and block traffic from known malicious sources

• It can also limit the number of connections from a single IP address

• Fortigate can use rate limiting to prevent excessive traffic from a single source

• It can also use packet filtering to drop packets from known DOS attack patterns

• Fortigate can also use behavior-based detection to identify and block abn
Answered by AI
Add your answer

Technical networking MCQ

Q1. Network layers description and how it works
Ans. 
Network layers are a hierarchical approach to network communication, with each layer responsible for specific functions.
• There are seven layers in the OSI model: Physical, Data Link, Network, Transport, Session, Presentation, and Application.

• Each layer performs specific tasks and communicates with adjacent layers to facilitate data transfer.

• For example, the Physical layer deals with the physical connection between devic...read more
Answered by AI
Add your answer
Q2. Wireshark TCP/ IP packet analysis
Add your answer