Month End Sale - Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: 65percent

Welcome To DumpsPedia
  1. Home
  2. Fortinet
  3. NSE 6 Network Security Specialist
  4. NSE6_FWB-6.4
  5. Fortinet NSE 6 - FortiWeb 6.4 Questions and Answers

NSE6_FWB-6.4 Sample Questions Answers

Questions 4

A client is trying to start a session from a page that should normally be accessible only after they have logged in.

When a start page rule detects the invalid session access, what can FortiWeb do? (Choose three.)

Options:

A.

Reply with a “403 Forbidden” HTTP error

B.

Allow the page access, but log the violation

C.

Automatically redirect the client to the login page

D.

Display an access policy message, then allow the client to continue, redirecting them to their requested page

E.

Prompt the client to authenticate

Buy Now
Questions 5

How does offloading compression to FortiWeb benefit your network?

Options:

A.

free up resources on the database server

B.

Free up resources on the web server

C.

reduces file size on the client’s storage

D.

free up resources on the FortiGate

Buy Now
Questions 6

When FortiWeb triggers a redirect action, which two HTTP codes does it send to the client to inform the browser of the new URL? (Choose two.)

Options:

A.

403

B.

302

C.

301

D.

404

Buy Now
Questions 7

Which statement about local user accounts is true?

Options:

A.

They are best suited for large environments with many users.

B.

They cannot be used for site publishing.

C.

They must be assigned, regardless of any other authentication.

D.

They can be used for SSO.

Buy Now
Questions 8

Which three statements about HTTPS on FortiWeb are true? (Choose three.)

Options:

A.

For SNI, you select the certificate that FortiWeb will present in the server pool, not in the server policy.

B.

After enabling HSTS, redirects to HTTPS are no longer necessary.

C.

In true transparent mode, the TLS session terminator is a protected web server.

D.

Enabling RC4 protects against the BEAST attack, but is not recommended if you configure FortiWeb to only offer TLS 1.2.

E.

In transparent inspection mode, you select which certificate that FortiWeb will present in the server pool, not in the server policy.

Buy Now
Questions 9

In which two operating modes can FortiWeb modify HTTP packets? (Choose two.)

Options:

A.

Offline protection

B.

Transparent inspection

C.

True transparent proxy

D.

Reverse proxy

Buy Now
Questions 10

When generating a protection configuration from an auto learning report what critical step must you do before generating the final protection configuration?

Options:

A.

Restart the FortiWeb to clear the caches

B.

Drill down in the report to correct any false positives.

C.

Activate the report to create t profile

D.

Take the FortiWeb offline to apply the profile

Buy Now
Questions 11

You are using HTTP content routing on FortiWeb. Requests for web app A should be forwarded to a cluster of web servers which all host the same web app. Requests for web app B should be forwarded to a different, single web server.

Which is true about the solution?

Options:

A.

Static or policy-based routes are not required.

B.

To achieve HTTP content routing, you must chain policies: the first policy accepts all traffic, and forwards requests for web app A to the virtual server for policy A. It also forwards requests for web app B to the virtual server for policy B. Policy A and Policy B apply their app-specific protection profiles, and then distribute that app’s traffic among all members of the server farm.

C.

You must put the single web server into a server pool in order to use it with HTTP content routing.

D.

The server policy applies the same protection profile to all its protected web apps.

Buy Now
Questions 12

What capability can FortiWeb add to your Web App that your Web App may or may not already have?

Options:

A.

Automatic backup and recovery

B.

High Availability

C.

HTTP/HTML Form Authentication

D.

SSL Inspection

Buy Now
Questions 13

In which operation mode(s) can FortiWeb modify HTTP packets? (Choose two.)

Options:

A.

Transparent Inspection

B.

Offline protection

C.

True transparent proxy

D.

Reverse proxy

Buy Now
Questions 14

How does FortiWeb protect against defacement attacks?

Options:

A.

It keeps a complete backup of all files and the database.

B.

It keeps hashes of files and periodically compares them to the server.

C.

It keeps full copies of all files and directories.

D.

It keeps a live duplicate of the database.

Buy Now
Questions 15

Refer to the exhibit.

FortiWeb is configured to block traffic from Japan to your web application server. However, in the logs, the administrator is seeing traffic allowed from one particular IP address which is geo-located in Japan.

What can the administrator do to solve this problem? (Choose two.)

Options:

A.

Manually update the geo-location IP addresses for Japan.

B.

If the IP address is configured as a geo reputation exception, remove it.

C.

Configure the IP address as a blacklisted IP address.

D.

If the IP address is configured as an IP reputation exception, remove it.

Buy Now
Questions 16

What must you do with your FortiWeb logs to ensure PCI DSS compliance?

Options:

A.

Store in an off-site location

B.

Erase them every two weeks

C.

Enable masking of sensitive data

D.

Compress them into a .zip file format

Buy Now
Exam Code: NSE6_FWB-6.4
Exam Name: Fortinet NSE 6 - FortiWeb 6.4
Last Update: Jan 26, 2025
Questions: 56
$57.75  $164.99
$43.75  $124.99
$36.75  $104.99
buy now NSE6_FWB-6.4