• Home
  • Articles
  • Lead2PassExam NSE6_FWB-6.0 Exam Questions Real NSE6_FWB-6.0 Practice Dumps [Q12-Q34]

Lead2PassExam NSE6_FWB-6.0 Exam Questions Real NSE6_FWB-6.0 Practice Dumps [Q12-Q34]

Share

Lead2PassExam NSE6_FWB-6.0 Exam Questions | Real NSE6_FWB-6.0 Practice Dumps

Verified NSE6_FWB-6.0 Exam Dumps Q&As - Provide NSE6_FWB-6.0 with Correct Answers

NEW QUESTION 12
Which is true about HTTPS on FortiWeb? (Choose three.)

  • A. After enabling HSTS, redirects to HTTPS are no longer necessary.
  • B. In true transparent mode, the TLS session terminator is a protected web server.
  • C. In transparent inspection mode, you select which certificate that FortiWeb will present in the server pool, not in the server policy.
  • D. Enabling RC4 protects against the BEAST attack, but is not recommended if you configure FortiWeb to only offer TLS 1.2.
  • E. For SNI, you select the certificate that FortiWeb will present in the server pool, not in the server policy.

Answer: B,C,E

 

NEW QUESTION 13
What capability can FortiWeb add to your Web App that your Web App may or may not already have?

  • A. SSL Inspection
  • B. Automatic backup and recovery
  • C. HTTP/HTML Form Authentication
  • D. High Availability

Answer: A

 

NEW QUESTION 14
When viewing the attack logs on your FortiWeb, which IP Address is shown for the client when using XFF Header rules?

  • A. FortiWeb's IP
  • B. FortiGate's local IP
  • C. FortiGate's public IP
  • D. Client's real IP

Answer: D

 

NEW QUESTION 15
In which operation mode(s) can FortiWeb modify HTTP packets? (Choose two.)

  • A. Offlineprotection
  • B. True transparent proxy
  • C. Reverse proxy
  • D. Transparent Inspection

Answer: C

 

NEW QUESTION 16
Which of the followingwould be a reason for implementing rewrites?

  • A. Replace vulnerable functions.
  • B. Page has been moved to a new IP address
  • C. Page has been moved to a new URL
  • D. Send connection to secure channel

Answer: C

 

NEW QUESTION 17
You are configuring FortiAnalyzer to store logs from FortiWeb.
Which is true?

  • A. To store logs from FortiWeb6.0, on FortiAnalyzer, you must select "FrotiWeb 5.4".
  • B. You mustenable ADOMs on FortiAnalyzer.
  • C. FortiAnalyzer will store antivirus and DLP archives from FortiWeb.
  • D. FortiWeb will query FortiAnalyzer for reports, instead of generating them locally.

Answer: B

 

NEW QUESTION 18
Under what circumstances would youwant to use the temporary uncompress feature of FortiWeb?

  • A. In the case of the file being a .MP3 music file
  • B. In the case of compression being done on the web server, to inspect the content of the compressed file.
  • C. In the case of compression being done on the FortiWeb, to inspect the content of the compressed file
  • D. In the case of the file being an .MP4 video

Answer: B

 

NEW QUESTION 19
A client is trying tostart a session from a page that should normally be accessible only after they have logged in.
When a start page rule detects the invalid session access, what can FortiWeb do? (Choose three.)

  • A. Display an access policy message, then allow the client to continue, redirecting them to their requested page
  • B. Reply with a "403 Forbidden" HTTP error
  • C. Automatically redirect the client to the login page
  • D. Prompt the client to authenticate
  • E. Allow the page access, but log the violation

Answer: B,C,E

 

NEW QUESTION 20
When theFortiWeb is configured in Reverse Proxy mode and the FortiGate is configured as an SNAT device, what IP address will the FortiGate's Real Server configuration point at?

  • A. Virtual Server IP on the FortiGate
  • B. Server's real IP
  • C. IPAddress of the Virtual Server on the FortiWeb
  • D. FortiWeb's real IP

Answer: A

 

NEW QUESTION 21
Reverse-proxy mode is best suited for use in which type of environment?

  • A. New networks where infrastructure is not yet defined
  • B. Flexible environments where you can easily change the IP addressing scheme
  • C. Small Office/Home Office environments
  • D. Environments where you cannot change your IP addressing scheme

Answer: D

 

NEW QUESTION 22
Which of the following FortiWeb features is part of the mitigation tools against OWASP A4 threats?

  • A. Poison Cookie detection
  • B. Session Management
  • C. Brute Force blocking
  • D. Sensitive info masking

Answer: B

 

NEW QUESTION 23
Which operationmode does not require additional configuration in order to allow FTP traffic to your web server?

  • A. True Transparent Proxy
  • B. Transparent Inspection
  • C. Offline Protection
  • D. Reverse-Proxy

Answer: B

 

NEW QUESTION 24
......

Get Top-Rated Fortinet NSE6_FWB-6.0 Exam Dumps Now: https://www.lead2passexam.com/Fortinet/valid-NSE6_FWB-6.0-exam-dumps.html

Related Articles

more
Fortinet NSE6_FWB-6.0 Certification Practice Exam