Browse Exams Pricing

ExamsNSE4Questions

NSE4 Exam Questions

552 real NSE4 exam questions with expert-verified answers and explanations. Page 6 of 12.

Question #259Security Profiles and Content Inspection
When the SSL proxy inspects the server certificate for Web Filtering only in SSL Handshake mode, which certificate field is being used to determine the site rating?
SSL InspectionWeb FilteringServer CertificatesCommon Name
Question #260Security Profiles and Content Inspection
Which of the following describes the best custom signature for detecting the use of the word "Fortinet" in chat applications?
Custom IPS SignaturesTraffic AnalysisData Leak PreventionFortiGate IPS
Question #261FortiGate Deployment and System Configuration
When configuring a server load balanced virtual IP, which of the following is the best distribution algorithm to be used in applications where the same physical destination server...
server load balancingvirtual IPsession persistencestatic distribution
Question #262Security Profiles and Content Inspection
Which of the following Session TTL values will take precedence?
Session TTLPrecedenceApplication ControlFirewall Policy
Question #263Routing and SD-WAN
If Routing Information Protocol (RIP) version 1 or version 2 has already been configured on a FortiGate unit, which of the following statements is correct if the routes learned thr...
Route RedistributionRIPOSPFFortiGate Routing
Question #264VPN and Routing
In the Tunnel Mode widget of the web portal, the administrator has configured an IP Pool and enabled split tunneling. Which of the following statements is true about the IP address...
SSL VPNIP PoolSplit TunnelingFortiGate Configuration
Question #265VPN and ZTNA
The Host Check feature can be enabled on the FortiGate unit for SSL VPN connections. When this feature is enabled, the FortiGate unit probes the remote host computer to verify that...
SSL VPNHost CheckEndpoint SecurityFortiClient
Question #266Logging and Monitoring
Which of the following report templates must be used when scheduling report generation?
ReportingScheduled ReportsReport Templates
Question #267FortiGate Deployment and System Configuration
Which of the following statements is not correct regarding virtual domains (VDOMs)?
VDOMsVirtual DomainsFortiGate ConfigurationSystem Features
Question #268FortiGate Deployment and System Configuration
Which of the following must be configured on a FortiGate unit to redirect content requests to remote web cache servers?
WCCPWeb CacheTraffic RedirectionInterface Configuration
Question #269Firewall Policies and Authentication
Which of the following statements is correct based on the firewall configuration illustrated in the exhibit?
Firewall AuthenticationFirewall PoliciesUser Access ControlInternet Access
Question #270Firewall Policies and Authentication
Which of the following statements is correct regarding the NAC Quarantine feature?
NACQuarantineEndpoint securityNetwork access control
Question #271VPN and Routing
What advantages are there in using a fully Meshed IPSec VPN configuration instead of a hub and spoke set of IPSec tunnels?
IPSec VPNVPN TopologiesFull MeshFault Tolerance
Question #272Logging and Monitoring
An administrator wishes to generate a report showing Top Traffic by service type, but wants to exclude SMTP traffic from the report. Which of the following statements best describe...
ReportingData FilteringService ExclusionLog Management
Question #273Security Profiles and Content Inspection
An organization wishes to protect its SIP Server from call flooding attacks. Which of the following configuration changes can be performed on the FortiGate unit to fulfill this req...
SIP ProtectionApplication ControlCall FloodingSecurity Profiles
Question #274FortiGate Deployment and System Configuration
In a High Availability configuration operating in Active-Active mode, which of the following correctly describes the path taken by a load-balanced HTTP session?
High Availability (HA)Active-Active ModeSession FlowFortiGate HA
Question #275Logging and Monitoring
An administrator is examining the attack logs and notices the following entry: device_id=FG100A3907508962 log_id=18432 subtype=anomaly type=ips timestamp=1270017358 pri=alert itime...
Log AnalysisDoS ProtectionIPSFortiGate Logging
Question #276Firewall Policies and Authentication
The following diagnostic output is displayed in the CLI: diag firewall auth list policy iD. 9, srC. 192.168.3.168, action: accept, timeout: 13427 user: forticlient_chk_only, group:...
FortiGate CLIDiagnostic Output InterpretationEndpoint ComplianceFirewall Authentication
Question #277Security Profiles and Content Inspection
An administrator is configuring a DLP rule for FTP traffic. When adding the rule to a DLP sensor, the administrator notes that the Ban Sender action is not available (greyed-out),...
DLPFTPSecurity ProfilesFortiGate Features
Question #278Security Profiles and Content Inspection
Which of the following statements are correct regarding URL Filtering on the FortiGate unit? (Select all that apply.)
URL FilteringFortiGateWeb FilteringSecurity Profiles
Question #279Firewall Policies and Authentication
An administrator sets up a new FTP server on TCP port 2121. A FortiGate unit is located between the FTP clients and the server. The administrator has created a policy for TCP port...
FTP ALGSession HelperFortiGate TroubleshootingApplication Layer Gateway
Question #280Security Profiles and Content Inspection
Which of the following statements is correct about configuring web filtering overrides?
Web FilteringOverridesAuthenticationFirewall Policies
Question #281Firewall Policies and Authentication
A network administrator connects his PC to the INTERNAL interface on a FortiGate unit. The administrator attempts to make an HTTPS connection to the FortiGate unit on the VLAN1 int...
Firewall PolicyDebug FlowFortiGate TroubleshootingInterface Connectivity
Question #282Security Profiles and Content Inspection
Which of the following features could be used by an administrator to block FTP uploads while still allowing FTP downloads?
Data Leak PreventionFTP SecurityContent InspectionSecurity Profiles
Question #283Logging and Monitoring
A portion of the device listing for a FortiAnalyzer unit is displayed in the exhibit. Which of the following statements best describes the reason why the FortiGate 60B unit is unab...
FortiAnalyzerDevice registrationData archivingFortiGate integration
Question #285Security Profiles and Content Inspection
When viewing the Banned User monitor in Web Config, the administrator notes the entry illustrated in the exhibit. Which of the following statements is correct regarding this entry?
DLPUser BanningSecurity ProfilesMonitoring
Question #286Security Profiles and Content Inspection
The transfer of encrypted files or the use of encrypted protocols between users and servers on the internet can frustrate the efforts of administrators attempting to monitor traffi...
SSL InspectionDLPApplication ControlEncrypted Traffic
Question #287Security Profiles and Content Inspection
Which of the following DLP actions will override any other action?
DLPData Loss PreventionSecurity ProfilesAction Priority
Question #288VPN and Routing
A FortiClient fails to establish a VPN tunnel with a FortiGate unit. The following information is displayed in the FortiGate unit logs: msg="Initiator: sent 192.168.11.101 main mod...
VPN TroubleshootingIPsec VPNRemote Access VPNDHCP for VPN
Question #289Security Profiles and Content Inspection
Which of the following statements correctly describes the deepscan option for HTTPS?
HTTPS InspectionSSL InspectionDeep InspectionSecurity Profiles
Question #290Logging and Monitoring
An intermittent connectivity issue is noticed between two devices located behind the FortiGate dmz and internal interfaces. A continuous sniffer trace is run on the FortiGate unit...
packet captureCLI commandstroubleshootingtraffic filtering
Question #291Security Profiles and Content Inspection
The following ban list entry is displayed through the CLI. get user ban list id cause src-ip-addr dst-ip-addr expires created 531 protect_client 10.177.0.21 207.1.17.1 indefinite W...
CLIQuarantineIPSAutomated Actions
Question #292VPN and Routing
A network administrator needs to implement dynamic route redundancy between a FortiGate unit located in a remote office and a FortiGate unit located in the central office. The remo...
IPSec VPNRoute-based VPNDynamic RoutingRedundancy
Question #293Logging and Monitoring
When performing a log search on a FortiAnalyzer, it is generally recommended to use the Quick Search option. What is a valid reason for using the Full Search option, instead?
FortiAnalyzerLog SearchIndexed LogsFull Search
Question #294Logging and Monitoring
The diag sys session list command is executed in the CLI. The output of this command is shown in the exhibit. Based on the output from this command, which of the following statemen...
CLI DiagnosticsSession MonitoringTraffic ShapingFortiGate Sessions
Question #295Firewall and Authentication
What protocol cannot be used with the active authentication type?
Authentication methodsActive authenticationPassive authenticationFortiGate RSSO
Question #296Firewall Policies and Authentication
Review the exhibit of an explicit proxy policy configuration. If there is a proxy connection attempt coming from the IP address 10.0.1.5, and from a user that has not authenticated...
Explicit ProxyPolicy MatchingUser AuthenticationFortiGate Policies
Question #297Security Profiles and Content Inspection
Which of the following statements are true regarding DLP File Type Filtering? (Choose two.)
DLPFile Type FilteringContent InspectionSecurity Profiles
Question #298FortiGate Deployment and System Configuration
Which of the following settings can be configured per VDOM? (Choose three)
VDOMsFortiGate ConfigurationOperating ModePer-VDOM Settings
Question #299FortiGate Deployment and System Configuration
Which protocols can you use for secure administrative access to a FortiGate? (Choose two)
Administrative AccessSecurity ProtocolsFortiGate ManagementSecure Access
Question #300Logging and Monitoring
What are examples of correct syntax for the session table diagnostics command? (Choose two.)
CLI commandsdiagnosticssession table
Question #301FortiGate Deployment and System Configuration
A FortiGate interface is configured with the following commands: What statements about the configuration are correct? (Choose two.)
IPv6 AddressingSLAACRouter AdvertisementsFortiGate Interface Config
Question #302Security Profiles and Content Inspection
Which of the following Fortinet hardware accelerators can be used to offload flow-based antivirus inspection? (Choose two.)
Hardware AcceleratorsASICContent ProcessingAntivirus
Question #303Firewall Policies and Authentication
Under what circumstance would you enable LEARN as the Action on a firewall policy?
Firewall Policy ActionsLEARN ModePolicy StagingSecurity Profiles
Question #304Firewall and Authentication
What methods can be used to deliver the token code to a user who is configured to use two- factor authentication? (Choose three.)
Two-Factor AuthenticationFortiTokenAuthentication MethodsToken Delivery
Question #305VPN and Routing
You are tasked to architect a new IPsec deployment with the following criteria: - There are two HQ sites that all satellite offices must connect to. - The satellite offices do not...
IPsec VPNVPN TopologiesHub-and-SpokeNetwork Design
Question #306VPN and Routing
View the exhibit. Which of the following statements are correct? (Choose two.)
IPsec VPNVPN RedundancyRoutingFailover
Question #307Security Profiles and Content Inspection
Which statements about DNS filter profiles are true? (Choose two.)
DNS FilteringSecurity ProfilesThreat ProtectionBlocked Request Redirection
Question #308Logging and Monitoring
An administrator needs to offload logging to FortiAnalyzer from a FortiGate with an internal hard drive. Which statements are true? (Choose two.)
FortiGate LoggingFortiAnalyzer IntegrationLog Transmission ProtocolLog Encryption
Question #309Firewall Policies and Authentication
Which of the following statements describe WMI polling mode for FSSO collector agent? (Choose two.)
FSSOWMI PollingUser AuthenticationActive Directory Integration

PreviousPage 6 of 12Next

study smarter, certify faster.

Product

Browse Exams
Pricing
PDF Downloads

Resources

Blog
Glossary
Topics
FAQ
Contact Us

Legal

Terms of Service
Privacy Policy
Cookie Policy
DMCA
Refund Policy

Company

About
Contact

© 2026 NerdExam. All rights reserved.Built for IT professionals

NerdExam is a trading name of WADL Solutions Limited, a company incorporated in Hong Kong (CR# 80143234). Registered office: Unit 2904-05, 29/F, Universal Trade Centre, 3 Arbuthnot Road, Central, Hong Kong.

CompTIA, AWS, Cisco, Microsoft, Google Cloud, Oracle, VMware, and other certification names referenced on this site are trademarks of their respective owners. NerdExam is not affiliated with, endorsed by, or sponsored by any certification vendor.