[2022] Pass Key features of NSE6_FWB-6.4 Course with Updated 58 Questions NSE6_FWB-6.4 Sample Practice Exam Questions 2022 Updated Verified NEW QUESTION 28 In Reverse proxy mode, how does FortiWeb handle traffic that does not match any defined policies? A. Non-matching traffic is rerouted to FortiGate B. Non-matching traffic is Denied C. non-Matching traffic is held in buffer D. Non-matching traffic [...]

All Products Contact now

[2022] Pass Key features of NSE6_FWB-6.4 Course with Updated 58 Questions [Q28-Q51]

Share

[2022] Pass Key features of NSE6_FWB-6.4 Course with Updated 58 Questions

NSE6_FWB-6.4 Sample Practice Exam Questions 2022 Updated Verified

NEW QUESTION 28
In Reverse proxy mode, how does FortiWeb handle traffic that does not match any defined policies?

  • A. Non-matching traffic is rerouted to FortiGate
  • B. Non-matching traffic is Denied
  • C. non-Matching traffic is held in buffer
  • D. Non-matching traffic is allowed

Answer: B

 

NEW QUESTION 29
Which
regex expression is the correct format for redirecting the URL http://www.example.com?

  • A. www\.example\.com
  • B. www\example\com
  • C. www.example.com
  • D. www/.example/.com

Answer: C

Explanation:
Explanation
\1://www.company.com/\2/\3

 

NEW QUESTION 30
In which two operating modes can FortiWeb modify HTTP packets? (Choose two.)

  • A. True transparent proxy
  • B. Reverse proxy
  • C. Offline protection
  • D. Transparent inspection

Answer: A,B

 

NEW QUESTION 31
What key factor must be considered when setting brute force rate limiting and blocking?

  • A. Multiple clients sharing a single Internet connection
  • B. Multiple clients from geographically diverse locations
  • C. Multiple clients connecting to multiple resources
  • D. A single client contacting multiple resources

Answer: A

Explanation:
Explanation
https://training.fortinet.com/course/view.php?id=3363 What is one key factor that you must consider when setting brute force rate limiting and blocking? Multiple clients sharing a single Internet connection

 

NEW QUESTION 32
You are configuring FortiAnalyzer to store logs from FortiWeb.
Which is true?

  • A. FortiAnalyzer will store antivirus and DLP archives from FortiWeb.
  • B. You must enable ADOMs on FortiAnalyzer.
  • C. FortiWeb will query FortiAnalyzer for reports, instead of generating them locally.
  • D. To store logs from FortiWeb 6.4, on FortiAnalyzer, you must select "FrotiWeb 6.1".

Answer: B

 

NEW QUESTION 33
Refer to the exhibit.

FortiWeb is configured to block traffic from Japan to your web application server. However, in the logs, the administrator is seeing traffic allowed from one particular IP address which is geo-located in Japan.
What can the administrator do to solve this problem? (Choose two.)

  • A. Manually update the geo-location IP addresses for Japan.
  • B. Configure the IP address as a blacklisted IP address.
  • C. If the IP address is configured as an IP reputation exception, remove it.
  • D. If the IP address is configured as a geo reputation exception, remove it.

Answer: B,D

 

NEW QUESTION 34
When FortiWeb triggers a redirect action, which two HTTP codes does it send to the client to inform the browser of the new URL? (Choose two.)

  • A. 0
  • B. 1
  • C. 2
  • D. 3

Answer: C,D

 

NEW QUESTION 35
Which would be a reason to implement HTTP rewriting?

  • A. To replace a vulnerable function in the requested URL
  • B. The original page has moved to a new URL
  • C. The original page has moved to a new IP address
  • D. To send the request to secure channel

Answer: A

Explanation:
Explanation
Create a new URL rewriting rule.

 

NEW QUESTION 36
How does an ADOM differ from a VDOM?

  • A. ADOMs improve performance by offloading some functions.
  • B. ADOMs do not have virtual networking
  • C. ADOMs only affect specific functions, and do not provide full separation like VDOMs do.
  • D. Allows you to have 1 administrator for multiple tenants

Answer: B

 

NEW QUESTION 37
What can an administrator do if a client has been incorrectly period blocked?

  • A. Manually release the ID address from the temporary blacklist.
  • B. Nothing, it is not possible to override a period block.
  • C. Disconnect the client from the network.
  • D. Force a new IP address to the client.

Answer: A

Explanation:
Explanation
Block Period
Enter the number of seconds that you want to block the requests. The valid range is 1-3,600 seconds. The default value is 60 seconds.
This option only takes effect when you choose Period Block in Action.
Note: That's a temporary blacklist so you can manually release them from the blacklist.

 

NEW QUESTION 38
Refer to the exhibits.


FortiWeb is configured in reverse proxy mode and it is deployed downstream to FortiGate. Based on the configuration shown in the exhibits, which of the following statements is true?

  • A. The configuration is incorrect. FortiWeb should always be located upstream to FortiGate.
  • B. You must disable the Preserve Client IP setting on FotriGate for this configuration to work.
  • C. FortiGate should forward web traffic to virtual server IP address.
  • D. FortiGate should forward web traffic to the server pool IP addresses.

Answer: C

 

NEW QUESTION 39
Which implementation is best suited for a deployment that must meet compliance criteria?

  • A. SSL Inspection with FortiWeb in Transparency mode
  • B. SSL Offloading with FortiWeb in Transparency Mode
  • C. SSL Offloading with FortiWeb in reverse proxy mode
  • D. SSL Inspection with FrotiWeb in Reverse Proxy mode

Answer: D

 

NEW QUESTION 40
In which scenario might you want to use the compression feature on FortiWeb?

  • A. Never, since most traffic today is already highly compressed
  • B. When you are serving many corporate road warriors using 4G tablets and phones
  • C. When you are offering a music streaming service
  • D. When you want to reduce buffering of video streams

Answer: B

Explanation:
Explanation
https://training.fortinet.com/course/view.php?id=3363
When might you want to use the compression feature on FortiWeb? When you are serving many road warriors who are using 4G tablets and phones

 

NEW QUESTION 41
When integrating FortiWeb and FortiAnalyzer, why is the selection for FortiWeb Version critical? (Choose two)

  • A. Defines Database Schema
  • B. Defines communication protocol
  • C. Defines Log storage location
  • D. Defines Log file format

Answer: C,D

 

NEW QUESTION 42
Which two statements about running a vulnerability scan are true? (Choose two.)

  • A. You should run the vulnerability scan on a live website to get accurate results.
  • B. Vulnerability scanning increases the load on FortiWeb, so it should be avoided.
  • C. You should run the vulnerability scan during a maintenance window.
  • D. You should run the vulnerability scan in a test environment.

Answer: C,D

Explanation:
Explanation
Should the Vulnerability Scanner allow it, SVMS will set the scan schedule (or schedules) to run in a maintenance window. SVMS will advise Client of the scanner's ability to complete the scan(s) within the maintenance window.
Vulnerabilities on live web sites. Instead, duplicate the web site and its database in a test environment.

 

NEW QUESTION 43
When viewing the attack logs on FortiWeb, which client IP address is shown when you are using XFF header rules?

  • A. Client real IP
  • B. FortiWeb IP
  • C. FortiGate local IP
  • D. FortiGate public IP

Answer: A

Explanation:
Explanation
When an XFF header reaches Alteon from a client, Alteon removes all the content from the header and injects the client IP address. Alteon then forwards the header to the server.

 

NEW QUESTION 44
What must you do with your FortiWeb logs to ensure PCI DSS compliance?

  • A. Erase them every two weeks
  • B. Store in an off-site location
  • C. Enable masking of sensitive data
  • D. Compress them into a .zip file format

Answer: C

 

NEW QUESTION 45
What other consideration must you take into account when configuring Defacement protection

  • A. None. FortiWeb completely secures the site against defacement attacks
  • B. Configure the FortiGate to perform Anti-Defacement as well
  • C. Also incorporate a FortiADC into your network
  • D. Use FortiWeb to block SQL Injections and keep regular backups of the Database

Answer: D

 

NEW QUESTION 46
Which two statements about the anti-defacement feature on FortiWeb are true? (Choose two.)

  • A. Anti-defacement does not make a backup copy of your databases.
  • B. Anti-defacement can redirect users to a backup web server, if it detects a change.
  • C. Anti-defacement downloads a copy of your website to RAM, in order to restore a clean image, if it detects defacement.
  • D. FortiWeb will only check to see if there are changes on the web server; it will not download the whole file each time.

Answer: A,D

Explanation:
Explanation
Anti-defacement backs up web pages only, not databases.
If it detects any file changes, the FortiWeb appliance will download a new backup revision.

 

NEW QUESTION 47
An e-commerce web app is used by small businesses. Clients often access it from offices behind a router, where clients are on an IPv4 private network LAN. You need to protect the web application from denial of service attacks that use request floods.
What FortiWeb feature should you configure?

  • A. Configure FortiWeb to use "X-Forwarded-For:" headers to find each client's private network IP, and to block attacks using that.
  • B. Configure a server policy that matches requests from shared Internet connections.
  • C. Enable "Shared IP" and configure the separate rate limits for requests from NATted source IPs.
  • D. Enable SYN cookies.

Answer: D

 

NEW QUESTION 48
The FortiWeb machine learning (ML) feature is a two-phase analysis mechanism.
Which two functions does the first layer perform? (Choose two.)

  • A. Determines whether an anomaly is a real attack or just a benign anomaly that should be ignored
  • B. Builds a threat model behind every parameter and HTTP method
  • C. Determines whether traffic is an anomaly, based on observed application traffic over time
  • D. Determines if a detected threat is a false-positive or not

Answer: B,C

Explanation:
Explanation
The first layer uses the Hidden Markov Model (HMM) and monitors access to the application and collects data to build a mathematical model behind every parameter and HTTP method.

 

NEW QUESTION 49
You are using HTTP content routing on FortiWeb. You want requests for web application A to be forwarded to a cluster of web servers, which all host the same web application. You want requests for web application B to be forwarded to a different, single web server.
Which statement about this solution is true?

  • A. Static or policy-based routes are not required.
  • B. You must put the single web server in to a server pool, in order to use it with HTTP content routing.
  • C. The server policy applies the same protection profile to all of its protected web applications.
  • D. You must chain policies so that requests for web application A go to the virtual server for policy A, and requests for web application B go to the virtual server for policy B.

Answer: A

 

NEW QUESTION 50
......

The New NSE6_FWB-6.4 2022 Updated Verified Study Guides & Best Courses: https://dumpstorrent.prep4surereview.com/NSE6_FWB-6.4-latest-braindumps.html

Related Articles

more
Fortinet NSE6_FWB-6.4 Certification Practice Exam

Prep4SureReview is engaged on providing valid & accurate IT Prep4sure materials & exam review to help candidates pass exams and get certifications successfully. The pass rate of Prep4sure materials is very high.

Latest Exam Review

Useful Links

Contact Us

Our Working Time: ( GMT 0:00-15:00 )
From Monday to Saturday

Support: Contact now 

If you have any question please leave me your email address, we will reply and send email to you in 12 hours.

Copyright © 2026 Prep4SureReview NETWORK CO.,LIMITED. All Rights Reserved. All trademarks used are properties of their respective owners. Privacy Policy