[polax]

Q 88:
tc says E, which is not correct imo, even page 298 student hand book says otherwise (chapter manual nat)- As long as client-side translation is implemented, no anti-spooofing issues exist with Manual NAT rules.
So i would pick B!
From real world experience because i had such troubles in the past with this.

EDIT:
Q 95: is wrong in ver 14 and 16 as well imo, B is wrong and D as well, because user auth is not limited to only Telnet, FTP, and rlogin, but to http and https as well.
And in the student hand book 350 is written The security Server first check if the connection can be allowed by a rule that doesnt need authetication. So correct is imo answer A!

Q 115: A is incorrect, because you see hiden rules but you cannot dissable them, check unhide or as answer E say Clear hide from rules drop-down menu ..