Download Fortinet NSE 6 - FortiWeb 6.4.NSE6_FWB-6.4.VCEplus.2024-01-30.29q.vcex

Vendor: Fortinet
Exam Code: NSE6_FWB-6.4
Exam Name: Fortinet NSE 6 - FortiWeb 6.4
Date: Jan 30, 2024
File Size: 766 KB
Downloads: 3

How to open VCEX files?

Files with VCEX extension can be opened by ProfExam Simulator.

Demo Questions

Question 1
Which of the following FortiWeb features is part of the mitigation tools against OWASP A4 threats?
  1. Sensitive info masking
  2. Poison Cookie detection
  3. Session Management
  4. Brute Force blocking
Correct answer: C
Question 2
What capability can FortiWeb add to your Web App that your Web App may or may not already have?
  1. Automatic backup and recovery
  2. High Availability
  3. HTTP/HTML Form Authentication
  4. SSL Inspection
Correct answer: C
Question 3
What must you do with your FortiWeb logs to ensure PCI DSS compliance?
  1. Store in an off-site location
  2. Erase them every two weeks
  3. Enable masking of sensitive data
  4. Compress them into a .zip file format
Correct answer: C
Question 4
What role does FortiWeb play in ensuring PCI DSS compliance?
  1. It provides the ability to securely process cash transactions.
  2. It provides the required SQL server protection.
  3. It provides the WAF required by PCI.
  4. It provides credit card processing capabilities.
Correct answer: C
Question 5
Refer to the exhibit.
 
There is only one administrator account configured on FortiWeb. What must an administrator do to restrict any brute force attacks that attempt to gain access to the FortiWeb management GUI?
  1. Delete the built-in administrator user and create a new one.
  2. Configure IPv4 Trusted Host # 3 with a specific IP address.
  3. The configuration changes must be made on the upstream device.
  4. Change the Access Profile to Read_Only.
Correct answer: B
Question 6
What key factor must be considered when setting brute force rate limiting and blocking?
  1. A single client contacting multiple resources
  2. Multiple clients sharing a single Internet connection
  3. Multiple clients from geographically diverse locations
  4. Multiple clients connecting to multiple resources
Correct answer: B
Explanation:
https://training.fortinet.com/course/view.php?id=3363 What is one key factor that you must consider when setting brute force rate limiting and blocking? Multiple clients sharing a single Internet connection
https://training.fortinet.com/course/view.php?id=3363 What is one key factor that you must consider when setting brute force rate limiting and blocking? Multiple clients sharing a single Internet connection
Question 7
Refer to the exhibits.
 
 
FortiWeb is configured in reverse proxy mode and it is deployed downstream to FortiGate. Based on the configuration shown in the exhibits, which of the following statements is true?
  1. FortiGate should forward web traffic to the server pool IP addresses.
  2. The configuration is incorrect. FortiWeb should always be located upstream to FortiGate.
  3. You must disable the Preserve Client IP setting on FotriGate for this configuration to work.
  4. FortiGate should forward web traffic to virtual server IP address.
Correct answer: D
Question 8
Which two statements about running a vulnerability scan are true? (Choose two.)
  1. You should run the vulnerability scan during a maintenance window.
  2. You should run the vulnerability scan in a test environment.
  3. Vulnerability scanning increases the load on FortiWeb, so it should be avoided.
  4. You should run the vulnerability scan on a live website to get accurate results.
Correct answer: AB
Explanation:
Should the Vulnerability Scanner allow it, SVMS will set the scan schedule (or schedules) to run in a maintenance window. SVMS will advise Client of the scanner's ability to complete the scan(s) within the maintenancewindow.Vulnerabilities on live web sites. Instead, duplicate the web site and its database in a test environment.https://help.fortinet.com/fweb/552/Content/FortiWeb/fortiweb-admin/vulnerability_scans.htm
Should the Vulnerability Scanner allow it, SVMS will set the scan schedule (or schedules) to run in a maintenance window. SVMS will advise Client of the scanner's ability to complete the scan(s) within the maintenance
window.
Vulnerabilities on live web sites. Instead, duplicate the web site and its database in a test environment.
https://help.fortinet.com/fweb/552/Content/FortiWeb/fortiweb-admin/vulnerability_scans.htm
Question 9
FortiWeb offers the same load balancing algorithms as FortiGate.
Which two Layer 7 switch methods does FortiWeb also offer? (Choose two.)
  1. Round robin
  2. HTTP session-based round robin
  3. HTTP user-based round robin
  4. HTTP content routes
Correct answer: AD
Explanation:
http://fortinet.globalgate.com.ar/pdfs/FortiWeb/FortiWeb_DS.pdf
http://fortinet.globalgate.com.ar/pdfs/FortiWeb/FortiWeb_DS.pdf
Question 10
Which would be a reason to implement HTTP rewriting?
  1. The original page has moved to a new URL
  2. To replace a vulnerable function in the requested URL
  3. To send the request to secure channel
  4. The original page has moved to a new IP address
Correct answer: B
Explanation:
Create a new URL rewriting rule.
Create a new URL rewriting rule.
HOW TO OPEN VCE FILES

Use VCE Exam Simulator to open VCE files
Avanaset

HOW TO OPEN VCEX AND EXAM FILES

Use ProfExam Simulator to open VCEX and EXAM files
ProfExam Screen

ProfExam
ProfExam at a 20% markdown

You have the opportunity to purchase ProfExam at a 20% reduced price

Get Now!