• Home
  • Articles
  • Get Latest Sep-2021 Conduct effective penetration tests using TrainingDump NSE6_FWB-6.0 exam [Q15-Q39]

Get Latest Sep-2021 Conduct effective penetration tests using TrainingDump NSE6_FWB-6.0 exam [Q15-Q39]

Share

Get Latest [Sep-2021] Conduct effective penetration tests using  TrainingDump NSE6_FWB-6.0

Penetration testers simulate NSE6_FWB-6.0 exam PDF

NEW QUESTION 15
In Reverse proxy mode, how does FortiWeb handle traffic that does not match any defined policies?

  • A. Non-matching traffic is Denied
  • B. Non-matching traffic is rerouted to FortiGate
  • C. Non-matching traffic is allowed
  • D. non-Matching traffic is held in buffer

Answer: A

 

NEW QUESTION 16
What other consideration must you take into account when configuring Defacement protection

  • A. Configure the FortiGate to perform Anti-Defacement as well
  • B. Also incorporate a FortiADC into your network
  • C. None. FortiWeb completely secures the site against defacement attacks
  • D. Use FortiWeb to block SQL Injections and keep regular backups of the Database

Answer: A

 

NEW QUESTION 17
Under what circumstances would youwant to use the temporary uncompress feature of FortiWeb?

  • A. In the case of compression being done on the FortiWeb, to inspect the content of the compressed file
  • B. In the case of the file being a .MP3 music file
  • C. In the case of the file being an .MP4 video
  • D. In the case of compression being done on the web server, to inspect the content of the compressed file.

Answer: D

 

NEW QUESTION 18
What benefit does Auto Learning provide?

  • A. Automatically builds rules sets
  • B. FortiWeb scans all traffic without taking action and makes recommendations on rules
  • C. Automatically blocks all detected threats
  • D. Automatically identifies and blocks suspicious IPs

Answer: A

 

NEW QUESTION 19
How does your FortiWeb configuration differ if the FortiWeb is upstream of the SNAT device instead of downstream of the SNAT device?

  • A. You must enable "Add" X-Forwarded-For: instead of the "Use" X-Forwarded-For: option.
  • B. No special configuration required
  • C. FortiWeb must be set for Transparent Mode
  • D. You must enable the "Use" X-Forwarded-For: option.

Answer: D

 

NEW QUESTION 20
Which of the followingwould be a reason for implementing rewrites?

  • A. Send connection to secure channel
  • B. Replace vulnerable functions.
  • C. Page has been moved to a new IP address
  • D. Page has been moved to a new URL

Answer: D

 

NEW QUESTION 21
Which of the following is true about Local User Accounts?

  • A. Must be assigned regardless of any other authentication
  • B. Can be used for site publishing
  • C. Best suited for large environments with many users
  • D. Can be used for Single Sign On

Answer: A

 

NEW QUESTION 22
Reverse-proxy mode is best suited for use in which type of environment?

  • A. Flexible environments where you can easily change the IP addressing scheme
  • B. Small Office/Home Office environments
  • C. New networks where infrastructure is not yet defined
  • D. Environments where you cannot change your IP addressing scheme

Answer: D

 

NEW QUESTION 23
What role does FortiWeb play in ensuring PCI DSScompliance?

  • A. Provide ability to securely process cash transactions
  • B. Provides credit card processing capabilities
  • C. PCI specifically requires a WAF
  • D. Provides load balancing between multiple web servers

Answer: B

 

NEW QUESTION 24
In which operation mode(s) can FortiWeb modify HTTP packets? (Choose two.)

  • A. Transparent Inspection
  • B. Reverse proxy
  • C. Offlineprotection
  • D. True transparent proxy

Answer: B

 

NEW QUESTION 25

  • A. You must put the single web server into a server pool in order to use it with HTTP content routing.
  • B. To achieve HTTP content routing, you must chain policies: the first policy accepts all traffic, and forwards requests for web app A to the virtual server for policy
  • C. The server policy applies the same protection profile to all its protected web apps.
  • D. Static or policy-based routes are not required.
  • E. Policy A and Policy B apply their app-specific protection profiles, and then distribute that app's traffic among all members of the server farm.
  • F. It also forwards requests for web app B to the virtual serverfor policy

Answer: B,E

 

NEW QUESTION 26
When theFortiWeb is configured in Reverse Proxy mode and the FortiGate is configured as an SNAT device, what IP address will the FortiGate's Real Server configuration point at?

  • A. Server's real IP
  • B. FortiWeb's real IP
  • C. IPAddress of the Virtual Server on the FortiWeb
  • D. Virtual Server IP on the FortiGate

Answer: D

 

NEW QUESTION 27
......

Tested Material Used To NSE6_FWB-6.0 Test Engine: https://www.trainingdump.com/Fortinet/NSE6_FWB-6.0-practice-exam-dumps.html

 

Related Articles

more
Go To NSE6_FWB-6.0 Questions
0
0
0
0