• Home
  • Articles
  • Fortinet Certification NSE6_FWB-6.0 Dumps Updated Oct 23, 2021 - Lead2PassExam [Q15-Q38]

Fortinet Certification NSE6_FWB-6.0 Dumps Updated Oct 23, 2021 - Lead2PassExam [Q15-Q38]

Share

Fortinet Certification NSE6_FWB-6.0 Dumps | Updated  Oct 23, 2021 - Lead2PassExam

Master 2021 Latest The Questions Fortinet Certification and Pass NSE6_FWB-6.0  Real Exam!

NEW QUESTION 15
What other consideration must you take into account when configuring Defacement protection

  • A. Use FortiWeb to block SQL Injections and keep regular backups of the Database
  • B. Configure the FortiGate to perform Anti-Defacement as well
  • C. Also incorporate a FortiADC into your network
  • D. None. FortiWeb completely secures the site against defacement attacks

Answer: B

 

NEW QUESTION 16
Which is true about HTTPS on FortiWeb? (Choose three.)

  • A. After enabling HSTS, redirects to HTTPS are no longer necessary.
  • B. In true transparent mode, the TLS session terminator is a protected web server.
  • C. In transparent inspection mode, you select which certificate that FortiWeb will present in the server pool, not in the server policy.
  • D. Enabling RC4 protects against the BEAST attack, but is not recommended if you configure FortiWeb to only offer TLS 1.2.
  • E. For SNI, you select the certificate that FortiWeb will present in the server pool, not in the server policy.

Answer: B,C,E

 

NEW QUESTION 17
How does your FortiWeb configuration differ if the FortiWeb is upstream of the SNAT device instead of downstream of the SNAT device?

  • A. FortiWeb must be set for Transparent Mode
  • B. You must enable "Add" X-Forwarded-For: instead of the "Use" X-Forwarded-For: option.
  • C. No special configuration required
  • D. You must enable the "Use" X-Forwarded-For: option.

Answer: D

 

NEW QUESTION 18
When integrating FortiWeb and FortiAnalyzer, why is the selection for FortiWebVersion critical? (Choose two)

  • A. Defines Log file format
  • B. Defines Database Schema
  • C. Defines Log storage location
  • D. Defines communication protocol

Answer: A,C

 

NEW QUESTION 19
What role does FortiWeb play in ensuring PCI DSScompliance?

  • A. Provides credit card processing capabilities
  • B. Provide ability to securely process cash transactions
  • C. PCI specifically requires a WAF
  • D. Provides load balancing between multiple web servers

Answer: A

 

NEW QUESTION 20
An e-commerce web app is used by small businesses. Clients often access it from offices behind a router, where clients are on an IPv4 privatenetwork LAN. You need to protect the web application from denial of service attacks that use request floods.
What FortiWeb feature should you configure?

  • A. Enable SYN cookies.
  • B. Configure a server policy that matches requests from shared Internet connections.
  • C. Configure FortiWeb to use "X-Forwarded-For:" headers to find each client's private network IP, and to block attacks using that.
  • D. Enable "Shared IP" and configure the separate rate limits for requests from NATted source IPs.

Answer: A

 

NEW QUESTION 21
You've configured an authentication rule with delegation enabled on FortiWeb.
Whathappens when a user tries to access the web application?

  • A. FortiWeb forwards the HTTP challenge from the server to the client, then monitors the reply, allowing access if the user authenticates successfully
  • B. FrotiWeb redirects users to a FortiAuthenticator page, then if the user authenticates successfully, FortiGate signals to FortiWeb to allow access to the web app
  • C. ForitWeb redirects the user tothe web app's authentication page
  • D. FortiWeb replies with a HTTP challenge of behalf of the server, theif the user authenticates successfully, FortiWeb allows the request and also includes credentials in the request that it forwards to the web app

Answer: B

 

NEW QUESTION 22
Under which circumstances does FortiWeb use its own certificates? (Choose Two)

  • A. Secondary HTTPS connection to server where FortiWeb acts as a client
  • B. HTTPS access to GUI
  • C. HTTPS to clients
  • D. HTTPS to FortiGate

Answer: A,B

 

NEW QUESTION 23
Reverse-proxy mode is best suited for use in which type of environment?

  • A. New networks where infrastructure is not yet defined
  • B. Flexible environments where you can easily change the IP addressing scheme
  • C. Small Office/Home Office environments
  • D. Environments where you cannot change your IP addressing scheme

Answer: D

 

NEW QUESTION 24
When generating a protection configuration from an auto learning report what critical step must you dobefore generating the final protection configuration?

  • A. Restart the FortiWeb to clear the caches
  • B. Activate the report to create t profile
  • C. Take the FortiWeb offline to apply the profile
  • D. Drill down in the report to correct any false positives.

Answer: D

 

NEW QUESTION 25
Under what circumstances would youwant to use the temporary uncompress feature of FortiWeb?

  • A. In the case of the file being a .MP3 music file
  • B. In the case of compression being done on the web server, to inspect the content of the compressed file.
  • C. In the case of compression being done on the FortiWeb, to inspect the content of the compressed file
  • D. In the case of the file being an .MP4 video

Answer: B

 

NEW QUESTION 26
What is one of the key benefits of the FortiGuard IP Reputation feature?

  • A. It is updated once per year
  • B. FortiGuard maintains a list of public IPs with a bad reputation for participating in attacks.
  • C. It maintains a list of private IP addresses
  • D. Provides a Document of IP addresses that are suspect, so that administrators can manually update their blacklists

Answer: B

 

NEW QUESTION 27
......

A fully updated 2021 NSE6_FWB-6.0 Exam Dumps exam guide from training expert Lead2PassExam: https://www.lead2passexam.com/Fortinet/valid-NSE6_FWB-6.0-exam-dumps.html

Related Articles

more
Fortinet NSE6_FWB-6.0 Certification Practice Exam