ExamGecko
Login
Home / Fortinet / NSE6_FWB-6.4 / List of questions
Ask Question

Fortinet NSE6_FWB-6.4 Practice Test - Questions Answers, Page 4

List of questions

Question 31

Report Export Collapse

When viewing the attack logs on FortiWeb, which client IP address is shown when you are using XFF header rules?

FortiGate public IP
FortiGate public IP
FortiWeb IP
FortiWeb IP
FortiGate local IP
FortiGate local IP
Client real IP
Client real IP
Suggested answer: D
Explanation:

When an XFF header reaches Alteon from a client, Alteon removes all the content from the header and injects the client IP address. Alteon then forwards the header to the server.

asked 18/09/2024
Debaparna Bandyopadhyay
45 questions

Question 32

Report Export Collapse

Which three statements about HTTPS on FortiWeb are true? (Choose three.)

For SNI, you select the certificate that FortiWeb will present in the server pool, not in the server policy.
For SNI, you select the certificate that FortiWeb will present in the server pool, not in the server policy.
After enabling HSTS, redirects to HTTPS are no longer necessary.
After enabling HSTS, redirects to HTTPS are no longer necessary.
In true transparent mode, the TLS session terminator is a protected web server.
In true transparent mode, the TLS session terminator is a protected web server.
Enabling RC4 protects against the BEAST attack, but is not recommended if you configure FortiWeb to only offer TLS 1.2.
Enabling RC4 protects against the BEAST attack, but is not recommended if you configure FortiWeb to only offer TLS 1.2.
In transparent inspection mode, you select which certificate that FortiWeb will present in the server pool, not in the server policy.
In transparent inspection mode, you select which certificate that FortiWeb will present in the server pool, not in the server policy.
Suggested answer: C, D, E
asked 18/09/2024
Deepak PSK
52 questions

Question 33

Report Export Collapse

What is one of the key benefits of the FortiGuard IP reputation feature?

Become a Premium Member for full access
  Unlock Premium Member

Question 34

Report Export Collapse

How does FortiWeb protect against defacement attacks?

Become a Premium Member for full access
  Unlock Premium Member

Question 35

Report Export Collapse

You are using HTTP content routing on FortiWeb. You want requests for web application A to be forwarded to a cluster of web servers, which all host the same web application. You want requests for web application B to be forwarded to a different, single web server.

Which statement about this solution is true?

Become a Premium Member for full access
  Unlock Premium Member

Question 36

Report Export Collapse

When generating a protection configuration from an auto learning report what critical step must you do before generating the final protection configuration?

Become a Premium Member for full access
  Unlock Premium Member

Question 37

Report Export Collapse

How does an ADOM differ from a VDOM?

Become a Premium Member for full access
  Unlock Premium Member

Question 38

Report Export Collapse

In which operation mode(s) can FortiWeb modify HTTP packets? (Choose two.)

Become a Premium Member for full access
  Unlock Premium Member

Question 39

Report Export Collapse

What other consideration must you take into account when configuring Defacement protection

Become a Premium Member for full access
  Unlock Premium Member

Question 40

Report Export Collapse

Under what circumstances would you want to use the temporary uncompress feature of FortiWeb?

Become a Premium Member for full access
  Unlock Premium Member
Total 56 questions
Go to page: of 6
Open VPLUS File
Convert VPLUS to PDF

Related questions

The FortiWeb machine learning (ML) feature is a two-phase analysis mechanism. Which two functions does the first layer perform? (Choose two.)
You've configured an authentication rule with delegation enabled on FortiWeb. What happens when a user tries to access the web application?
In which scenario might you want to use the compression feature on FortiWeb?
True transparent proxy mode is best suited for use in which type of environment?
Which is true about HTTPS on FortiWeb? (Choose three.)
You are using HTTP content routing on FortiWeb. Requests for web app A should be forwarded to a cluster of web servers which all host the same web app. Requests for web app B should be forwarded to a different, single web server. Which is true about the solution?
Refer to the exhibit. Many legitimate users are being identified as bots. FortiWeb bot detection has been configured with the settings shown in the exhibit. The FortiWeb administrator has already verified that the current model is accurate. What can the administrator do to fix this problem, making sure that real bots are not allowed through FortiWeb?
A client is trying to start a session from a page that would normally be accessible only after the client has logged in. When a start page rule detects the invalid session access, what can FortiWeb do? (Choose three.)
In which two operating modes can FortiWeb modify HTTP packets? (Choose two.)
Which algorithm is used to build mathematical models for bot detection?