CertsTopics Logo

Summer Special Limited Time 60% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: 60certs

Fortinet NSE6_FWB-6.4 Dumps

Page: 1 / 2
Total 56 questions
Get NSE6_FWB-6.4 Full Access Download NSE6_FWB-6.4 PDF

Fortinet NSE 6 - FortiWeb 6.4 Questions and Answers

Question 1

In which operation mode(s) can FortiWeb modify HTTP packets? (Choose two.)

Options:

A.

Transparent Inspection

B.

Offline protection

C.

True transparent proxy

D.

Reverse proxy

Question 2

A client is trying to start a session from a page that should normally be accessible only after they have logged in.

When a start page rule detects the invalid session access, what can FortiWeb do? (Choose three.)

Options:

A.

Reply with a “403 Forbidden” HTTP error

B.

Allow the page access, but log the violation

C.

Automatically redirect the client to the login page

D.

Display an access policy message, then allow the client to continue, redirecting them to their requested page

E.

Prompt the client to authenticate

Question 3

Refer to the exhibit.

Based on the configuration, what would happen if this FortiWeb were to lose power? (Choose two.)

Options:

A.

Traffic that passes between port5 and port6 will be inspected.

B.

Traffic will be interrupted between port3 and port4.

C.

All traffic will be interrupted.

D.

Traffic will pass between port5 and port6 uninspected.

Question 4

What benefit does Auto Learning provide?

Options:

A.

Automatically identifies and blocks suspicious IPs

B.

FortiWeb scans all traffic without taking action and makes recommendations on rules

C.

Automatically builds rules sets

D.

Automatically blocks all detected threats

Question 5

Which implementation is best suited for a deployment that must meet compliance criteria?

Options:

A.

SSL Inspection with FortiWeb in Transparency mode

B.

SSL Offloading with FortiWeb in reverse proxy mode

C.

SSL Inspection with FrotiWeb in Reverse Proxy mode

D.

SSL Offloading with FortiWeb in Transparency Mode

Question 6

You are deploying FortiWeb 6.4 in an Amazon Web Services cloud. Which 2 lines of this initial setup via CLI are incorrect? (Choose two.)

Options:

A.

6

B.

9

C.

3

D.

2

Question 7

Refer to the exhibit.

FortiWeb is configured to block traffic from Japan to your web application server. However, in the logs, the administrator is seeing traffic allowed from one particular IP address which is geo-located in Japan.

What can the administrator do to solve this problem? (Choose two.)

Options:

A.

Manually update the geo-location IP addresses for Japan.

B.

If the IP address is configured as a geo reputation exception, remove it.

C.

Configure the IP address as a blacklisted IP address.

D.

If the IP address is configured as an IP reputation exception, remove it.

Question 8

In Reverse proxy mode, how does FortiWeb handle traffic that does not match any defined policies?

Options:

A.

Non-matching traffic is allowed

B.

non-Matching traffic is held in buffer

C.

Non-matching traffic is Denied

D.

Non-matching traffic is rerouted to FortiGate

Page: 1 / 2
Total 56 questions
Get NSE6_FWB-6.4 Full Access Download NSE6_FWB-6.4 PDF