ExamGecko
Search Search Login
Home Home / Fortinet / NSE6_FWB-6.4
Question list
Search
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

True transparent proxy mode is best suited for use in which type of environment?
You've configured an authentication rule with delegation enabled on FortiWeb. What happens when a user tries to access the web application?
In which scenario might you want to use the compression feature on FortiWeb?
Which algorithm is used to build mathematical models for bot detection?
You are using HTTP content routing on FortiWeb. Requests for web app A should be forwarded to a cluster of web servers which all host the same web app. Requests for web app B should be forwarded to a different, single web server. Which is true about the solution?
Which is true about HTTPS on FortiWeb? (Choose three.)
When integrating FortiWeb and FortiAnalyzer, why is the selection for FortiWeb Version critical? (Choose two)
In which two operating modes can FortiWeb modify HTTP packets? (Choose two.)
The FortiWeb machine learning (ML) feature is a two-phase analysis mechanism. Which two functions does the first layer perform? (Choose two.)
Refer to the exhibit. Many legitimate users are being identified as bots. FortiWeb bot detection has been configured with the settings shown in the exhibit. The FortiWeb administrator has already verified that the current model is accurate. What can the administrator do to fix this problem, making sure that real bots are not allowed through FortiWeb?

Question 16 - NSE6_FWB-6.4 discussion

Report
Export

Refer to the exhibit.

FortiADC is applying SNAT to all inbound traffic going to the servers. When an attack occurs, FortiWeb blocks traffic based on the 192.0.2.1 source IP address, which belongs to FortiADC. The setup is breaking all connectivity and genuine clients are not able to access the servers.

What must the administrator do to avoid this problem? (Choose two.)

A.
Enable the Use X-Forwarded-For setting on FortiWeb.
Answers
A.
Enable the Use X-Forwarded-For setting on FortiWeb.
B.
No Special configuration is required; connectivity will be re-established after the set timeout.
Answers
B.
No Special configuration is required; connectivity will be re-established after the set timeout.
C.
Place FortiWeb in front of FortiADC.
Answers
C.
Place FortiWeb in front of FortiADC.
D.
Enable the Add X-Forwarded-For setting on FortiWeb.
Answers
D.
Enable the Add X-Forwarded-For setting on FortiWeb.
Suggested answer: A, C

Explanation:

Configure your load balancer to insert or append to anX-Forwarded-For:,X-Real-IP:, or other HTTP X-header. Also configureFortiWebto find the original attacker's or client's IP address in that HTTP header

Show Answer
asked 18/09/2024
Kevin Taylor
30 questions
PreviousPreviousNextNext
User
Your answer:
0 comments
Sorted by

Leave a comment first

ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms