New Year Special Limited Time Flat 70% Discount offer - Ends in 0d 00h 00m 00s - Coupon code: 70spcl

Fortinet NSE6_FWB-6.4 Fortinet NSE 6 - FortiWeb 6.4 Exam Practice Test

Page: 1 / 6
Total 56 questions

Fortinet NSE 6 - FortiWeb 6.4 Questions and Answers

Question 1

How does FortiWeb protect against defacement attacks?

Options:

A.

It keeps a complete backup of all files and the database.

B.

It keeps hashes of files and periodically compares them to the server.

C.

It keeps full copies of all files and directories.

D.

It keeps a live duplicate of the database.

Question 2

Which of the following is true about Local User Accounts?

Options:

A.

Must be assigned regardless of any other authentication

B.

Can be used for Single Sign On

C.

Can be used for site publishing

D.

Best suited for large environments with many users

Question 3

How does your FortiWeb configuration differ if the FortiWeb is upstream of the SNAT device instead of downstream of the SNAT device?

Options:

A.

You must enable the “Use” X-Forwarded-For: option.

B.

FortiWeb must be set for Transparent Mode

C.

No special configuration required

D.

You must enable “Add” X-Forwarded-For: instead of the “Use” X-Forwarded-For: option.

Question 4

FortiWeb offers the same load balancing algorithms as FortiGate.

Which two Layer 7 switch methods does FortiWeb also offer? (Choose two.)

Options:

A.

Round robin

B.

HTTP session-based round robin

C.

HTTP user-based round robin

D.

HTTP content routes

Question 5

You are using HTTP content routing on FortiWeb. You want requests for web application A to be forwarded to a cluster of web servers, which all host the same web application. You want requests for web application B to be forwarded to a different, single web server.

Which statement about this solution is true?

Options:

A.

The server policy applies the same protection profile to all of its protected web applications.

B.

You must put the single web server in to a server pool, in order to use it with HTTP content routing.

C.

You must chain policies so that requests for web application A go to the virtual server for policy A, and requests for web application B go to the virtual server for policy B.

D.

Static or policy-based routes are not required.

Question 6

Under what circumstances would you want to use the temporary uncompress feature of FortiWeb?

Options:

A.

In the case of compression being done on the FortiWeb, to inspect the content of the compressed file

B.

In the case of the file being a .MP3 music file

C.

In the case of compression being done on the web server, to inspect the content of the compressed file.

D.

In the case of the file being an .MP4 video

Question 7

Refer to the exhibits.

Question # 7

Question # 7

FortiWeb is configured in reverse proxy mode and it is deployed downstream to FortiGate. Based on the configuration shown in the exhibits, which of the following statements is true?

Options:

A.

FortiGate should forward web traffic to the server pool IP addresses.

B.

The configuration is incorrect. FortiWeb should always be located upstream to FortiGate.

C.

You must disable the Preserve Client IP setting on FotriGate for this configuration to work.

D.

FortiGate should forward web traffic to virtual server IP address.

Question 8

What role does FortiWeb play in ensuring PCI DSS compliance?

Options:

A.

PCI specifically requires a WAF

B.

Provides credit card processing capabilities

C.

Provide ability to securely process cash transactions

D.

Provides load balancing between multiple web servers

Page: 1 / 6
Total 56 questions