Free NSE6_FWB-6.4 Exam Braindumps - New 2023 Fortinet Pratice Exam [Q19-Q44]

Share

Free NSE6_FWB-6.4 Exam Braindumps - New 2023 Fortinet Pratice Exam

Practice Test for NSE6_FWB-6.4 Certification Real 2023 Mock Exam

NEW QUESTION 19
In which scenario might you want to use the compression feature on FortiWeb?

  • A. Never, since most traffic today is already highly compressed
  • B. When you are offering a music streaming service
  • C. When you are serving many corporate road warriors using 4G tablets and phones
  • D. When you want to reduce buffering of video streams

Answer: C

Explanation:
Explanation
https://training.fortinet.com/course/view.php?id=3363
When might you want to use the compression feature on FortiWeb? When you are serving many road warriors who are using 4G tablets and phones

 

NEW QUESTION 20
How does offloading compression to FortiWeb benefit your network?

  • A. reduces file size on the client's storage
  • B. free up resources on the FortiGate
  • C. Free up resources on the web server
  • D. free up resources on the database server

Answer: C

 

NEW QUESTION 21
Refer to the exhibit.

FortiWeb is configured to block traffic from Japan to your web application server. However, in the logs, the administrator is seeing traffic allowed from one particular IP address which is geo-located in Japan.
What can the administrator do to solve this problem? (Choose two.)

  • A. Manually update the geo-location IP addresses for Japan.
  • B. Configure the IP address as a blacklisted IP address.
  • C. If the IP address is configured as an IP reputation exception, remove it.
  • D. If the IP address is configured as a geo reputation exception, remove it.

Answer: B,D

 

NEW QUESTION 22
Under which circumstances does FortiWeb use its own certificates? (Choose Two)

  • A. HTTPS to FortiGate
  • B. HTTPS access to GUI
  • C. Secondary HTTPS connection to server where FortiWeb acts as a client
  • D. HTTPS to clients

Answer: B,C

 

NEW QUESTION 23
Refer to the exhibit.

Many legitimate users are being identified as bots. FortiWeb bot detection has been configured with the settings shown in the exhibit. The FortiWeb administrator has already verified that the current model is accurate.
What can the administrator do to fix this problem, making sure that real bots are not allowed through FortiWeb?

  • A. Change Model Type to Strict
  • B. Enable Bot Confirmation
  • C. Disable Dynamically Update Model
  • D. Change Action under Action Settings to Alert

Answer: B

Explanation:
Explanation
Bot Confirmation
If the number of anomalies from a user has reached the Anomaly Count, the system executes Bot Confirmation before taking actions.
The Bot Confirmation is to confirm if the user is indeed a bot. The system sends RBE (Real Browser Enforcement) JavaScript or CAPTCHA to the client to double check if it's a real bot.

 

NEW QUESTION 24
A client is trying to start a session from a page that should normally be accessible only after they have logged in.
When a start page rule detects the invalid session access, what can FortiWeb do? (Choose three.)

  • A. Reply with a "403 Forbidden" HTTP error
  • B. Allow the page access, but log the violation
  • C. Display an access policy message, then allow the client to continue, redirecting them to their requested page
  • D. Automatically redirect the client to the login page
  • E. Prompt the client to authenticate

Answer: A,B,D

 

NEW QUESTION 25
You've configured an authentication rule with delegation enabled on FortiWeb.
What happens when a user tries to access the web application?

  • A. FrotiWeb redirects users to a FortiAuthenticator page, then if the user authenticates successfully, FortiGate signals to FortiWeb to allow access to the web app
  • B. FortiWeb replies with a HTTP challenge of behalf of the server, the if the user authenticates successfully, FortiWeb allows the request and also includes credentials in the request that it forwards to the web app
  • C. FortiWeb forwards the HTTP challenge from the server to the client, then monitors the reply, allowing access if the user authenticates successfully
  • D. ForitWeb redirects the user to the web app's authentication page

Answer: A

 

NEW QUESTION 26
You are configuring FortiAnalyzer to store logs from FortiWeb.
Which is true?

  • A. FortiAnalyzer will store antivirus and DLP archives from FortiWeb.
  • B. You must enable ADOMs on FortiAnalyzer.
  • C. To store logs from FortiWeb 6.4, on FortiAnalyzer, you must select "FrotiWeb 6.1".
  • D. FortiWeb will query FortiAnalyzer for reports, instead of generating them locally.

Answer: B

 

NEW QUESTION 27
Which would be a reason to implement HTTP rewriting?

  • A. To replace a vulnerable function in the requested URL
  • B. The original page has moved to a new URL
  • C. To send the request to secure channel
  • D. The original page has moved to a new IP address

Answer: A

Explanation:
Explanation
Create a new URL rewriting rule.

 

NEW QUESTION 28
What must you do with your FortiWeb logs to ensure PCI DSS compliance?

  • A. Enable masking of sensitive data
  • B. Compress them into a .zip file format
  • C. Store in an off-site location
  • D. Erase them every two weeks

Answer: A

 

NEW QUESTION 29
How does your FortiWeb configuration differ if the FortiWeb is upstream of the SNAT device instead of downstream of the SNAT device?

  • A. You must enable "Add" X-Forwarded-For: instead of the "Use" X-Forwarded-For: option.
  • B. FortiWeb must be set for Transparent Mode
  • C. You must enable the "Use" X-Forwarded-For: option.
  • D. No special configuration required

Answer: A

 

NEW QUESTION 30
Which statement about local user accounts is true?

  • A. They cannot be used for site publishing.
  • B. They must be assigned, regardless of any other authentication.
  • C. They are best suited for large environments with many users.
  • D. They can be used for SSO.

Answer: A

 

NEW QUESTION 31
When is it possible to use a self-signed certificate, rather than one purchased from a commercial certificate authority?

  • A. If you are a small business or home office
  • B. If you are an enterprise whose employees use only mobile devices
  • C. If you are an enterprise whose resources do not need security
  • D. If you are an enterprise whose computers all trust your active directory or other CA server

Answer: D

 

NEW QUESTION 32
An e-commerce web app is used by small businesses. Clients often access it from offices behind a router, where clients are on an IPv4 private network LAN. You need to protect the web application from denial of service attacks that use request floods.
What FortiWeb feature should you configure?

  • A. Enable SYN cookies.
  • B. Enable "Shared IP" and configure the separate rate limits for requests from NATted source IPs.
  • C. Configure FortiWeb to use "X-Forwarded-For:" headers to find each client's private network IP, and to block attacks using that.
  • D. Configure a server policy that matches requests from shared Internet connections.

Answer: A

 

NEW QUESTION 33
Refer to the exhibit.

FortiADC is applying SNAT to all inbound traffic going to the servers. When an attack occurs, FortiWeb blocks traffic based on the 192.0.2.1 source IP address, which belongs to FortiADC. The setup is breaking all connectivity and genuine clients are not able to access the servers.
What must the administrator do to avoid this problem? (Choose two.)

  • A. Enable the Add X-Forwarded-For setting on FortiWeb.
  • B. No Special configuration is required; connectivity will be re-established after the set timeout.
  • C. Enable the Use X-Forwarded-For setting on FortiWeb.
  • D. Place FortiWeb in front of FortiADC.

Answer: C,D

Explanation:
Explanation
Configure your load balancer to insert or append to an X-Forwarded-For:, X-Real-IP:, or other HTTP X-header. Also configure FortiWeb to find the original attacker's or client's IP address in that HTTP header

 

NEW QUESTION 34
What can an administrator do if a client has been incorrectly period blocked?

  • A. Manually release the ID address from the temporary blacklist.
  • B. Nothing, it is not possible to override a period block.
  • C. Disconnect the client from the network.
  • D. Force a new IP address to the client.

Answer: A

Explanation:
Explanation
Block Period
Enter the number of seconds that you want to block the requests. The valid range is 1-3,600 seconds. The default value is 60 seconds.
This option only takes effect when you choose Period Block in Action.
Note: That's a temporary blacklist so you can manually release them from the blacklist.

 

NEW QUESTION 35
Which algorithm is used to build mathematical models for bot detection?

  • A. SVN
  • B. HMM
  • C. SVM
  • D. HCM

Answer: C

Explanation:
Explanation
FortiWeb uses SVM (Support Vector Machine) algorithm to build up the bot detection model

 

NEW QUESTION 36
Under what circumstances would you want to use the temporary uncompress feature of FortiWeb?

  • A. In the case of the file being an .MP4 video
  • B. In the case of compression being done on the web server, to inspect the content of the compressed file.
  • C. In the case of compression being done on the FortiWeb, to inspect the content of the compressed file
  • D. In the case of the file being a .MP3 music file

Answer: B

 

NEW QUESTION 37
When viewing the attack logs on FortiWeb, which client IP address is shown when you are using XFF header rules?

  • A. Client real IP
  • B. FortiGate local IP
  • C. FortiGate public IP
  • D. FortiWeb IP

Answer: A

Explanation:
Explanation
When an XFF header reaches Alteon from a client, Alteon removes all the content from the header and injects the client IP address. Alteon then forwards the header to the server.

 

NEW QUESTION 38
In which two operating modes can FortiWeb modify HTTP packets? (Choose two.)

  • A. Offline protection
  • B. True transparent proxy
  • C. Reverse proxy
  • D. Transparent inspection

Answer: B,C

 

NEW QUESTION 39
When the FortiWeb is configured in Reverse Proxy mode and the FortiGate is configured as an SNAT device, what IP address will the FortiGate's Real Server configuration point at?

  • A. FortiWeb's real IP
  • B. IP Address of the Virtual Server on the FortiWeb
  • C. Virtual Server IP on the FortiGate
  • D. Server's real IP

Answer: C

 

NEW QUESTION 40
A client is trying to start a session from a page that would normally be accessible only after the client has logged in.
When a start page rule detects the invalid session access, what can FortiWeb do? (Choose three.)

  • A. Display an access policy message, then allow the client to continue
  • B. Reply with a 403 Forbidden HTTP error
  • C. Allow the page access, but log the violation
  • D. Redirect the client to the login page
  • E. Prompt the client to authenticate

Answer: B,C,D

 

NEW QUESTION 41
......


Fortinet NSE6_FWB-6.4 Exam Syllabus Topics:

TopicDetails
Topic 1
  • Configure various access control and tracking methods
  • Troubleshoot deployment and system related issues
Topic 2
  • Configure API protection and bot mitigation
  • Configure caching and compression
Topic 3
  • Configure HTTP content routing, rewriting, and redirection
  • Mitigate attacks on authentication
Topic 4
  • Configure machine learning and bot detection
  • Configure SSL inspection and offloading
Topic 5
  • Configure server pools, policies, and protected hostnames
  • Trobleshoot encryption and authentication related issues

 

Prepare For Realistic NSE6_FWB-6.4 Dumps PDF - 100% Passing Guarantee: https://www.fast2test.com/NSE6_FWB-6.4-premium-file.html

Contact Us

If you have any question please leave me your email address, we will reply and send email to you in 12 hours.

Our Working Time: ( GMT 0:00-15:00 ) From Monday to Saturday

Support: Contact now 

日本語 Deutsch 繁体中文 한국어