Question No. 1

You are using HTTP content routing on FortiWeb. Requests for web app A should be forwarded to a cluster of web servers which all host the same web app. Requests for web app B should be forwarded to a different, single web server.

Which is true about the solution?

AStatic or policy-based routes are not required.

BTo achieve HTTP content routing, you must chain policies: the first policy accepts all traffic, and forwards requests for web app A to the virtual server for policy A. It also forwards requests for web app B to the virtual server for policy B. Policy A and Policy B apply their app-specific protection profiles, and then distribute that app's traffic among all members of the server farm.

CYou must put the single web server into a server pool in order to use it with HTTP content routing.

DThe server policy applies the same protection profile to all its protected web apps.

Show Answer

Correct Answer: B

Question No. 2

When viewing the attack logs on FortiWeb, which client IP address is shown when you are using XFF header rules?

AFortiGate public IP

BFortiWeb IP

CFortiGate local IP

DClient real IP

Show Answer

Correct Answer: D

When an XFF header reaches Alteon from a client, Alteon removes all the content from the header and injects the client IP address. Alteon then forwards the header to the server.

Question No. 3

Which three statements about HTTPS on FortiWeb are true? (Choose three.)

AFor SNI, you select the certificate that FortiWeb will present in the server pool, not in the server policy.

BAfter enabling HSTS, redirects to HTTPS are no longer necessary.

CIn true transparent mode, the TLS session terminator is a protected web server.

DEnabling RC4 protects against the BEAST attack, but is not recommended if you configure FortiWeb to only offer TLS 1.2.

EIn transparent inspection mode, you select which certificate that FortiWeb will present in the server pool, not in the server policy.

Show Answer

Correct Answer: C, D, E

Question No. 4

How does FortiWeb protect against defacement attacks?

AIt keeps a complete backup of all files and the database.

BIt keeps hashes of files and periodically compares them to the server.

CIt keeps full copies of all files and directories.

DIt keeps a live duplicate of the database.

Show Answer

Correct Answer: B

The anti-defacement feature examines a web site's files for changes at specified time intervals. If it detects a change that could indicate a defacement attack, theFortiWebappliancecan notify you and quickly react by automatically restoring the web site contents to the previous backup.

Question No. 5

What is one of the key benefits of the FortiGuard IP reputation feature?

AIt maintains a list of private IP addresses.

BIt provides a document of IP addresses that are suspect, so that administrators can manually update their blacklists.

CIt is updated once per year.

DIt maintains a list of public IPs with a bad reputation for participating in attacks.

Show Answer

Correct Answer: D

FortiGuard IP Reputation service assigns a poor reputation, including virus-infected clients and malicious spiders/crawlers.

Free Fortinet NSE6_FWB-6.4 Exam Actual Questions

The questions for NSE6_FWB-6.4 were last updated On Jan 17, 2025