Browse Exams Pricing

ExamsNSE4_FGT-6.0Questions

NSE4_FGT-6.0 Exam Questions

93 real NSE4_FGT-6.0 exam questions with expert-verified answers and explanations. Page 1 of 2.

Question #1
Examine this output from a debug flow: id=20085 trace_id=469 msg="vd-root: received a packet (proto=6, 66.111.121.84:80->10.200.1.200:49089) from port1. " id=20085 trace_id=469 msg...
Question #2
Examine this FortiGate configuration: config authentication setting set active-auth-scheme SCHEME1 end config authentication rule edit WebProxyRule set srcaddr 10.0.1.0/24 set acti...
Question #3
Which of the following are purposes of NAT traversal in IPsec? (Choose two.)
Question #4
Which of the following statements correctly describes FortiGates route lookup behavior when searching for a suitable gateway? (Choose two)
Question #5
Which of the following will be the expected FortiGate behavior regarding these two routes to the same destination?
Question #6
Which of the following statements about central NAT are true? (Choose two.)
Question #7
Refer to the following exhibit. Why is FortiGate not blocking the test file over FTP download?
Question #8
View the following exhibit, which shows the firewall policies and the object uses in the firewall policies. The administrator is using the Policy Lookup feature and has entered the...
Question #9
An administrator wants to create a policy-based IPsec VPN tunnel between two FortiGate devices Winch configuration steps must be performed on both devices to support this scenario?...
Question #10
Which two of the following statements about NTLM authentication are correct? (Choose two.)
Question #11
View the certificate shown to the exhibit, and then answer the following question: The CA issued this certificate to which entity?
Question #12
Why does a FortiGate keep TCP sessions in the session table for some seconds even after both sides (client and server) have terminated the session?
Question #13
A FortiGate is operating in NAT mode and configured with two virtual LAN (VLAN) sub interfaces added to the physical interface. Which statements about the VLAN sub interfaces can h...
Question #14
You are asked to design a new IPsec deployment with the following criteria: - There are two HQ sites that all satellite offices must connect to - All satellite offices can be asked...
Question #15
Which of the following statements is true regarding SSL VPN settings for an SSL VPN portal?
Question #16
Which of the following conditions roust be met in order for a web browser to trust a web server certificate signed by a third-party CA?
Question #18
Examine the IPS sensor configuration and forward traffic logs shown in the exhibit, then, answer the question below. An administrator has configured the WINDOWS_SERVERS IPS sensor...
Question #19
What types of traffic and attacks can be blocked by a web application firewall (WAF) profile? (Choose three.)
Question #20
Which statement about DLP on FortiGate is true?
Question #21
Examine the PAC file configuration. Which of the following statements are true? (Choose two.)
Question #22
Which statements about the firmware upgrade process on an active-active HA cluster are true? (Choose two.)
Question #23
Which statements best describe auto discovery VPN (ADVPN). (Choose two.)
Question #24
An administrator needs to create an SSL-VPN connection for accessing an internal server using the bookmark Port Forward. What step is required for this configuration?
Question #25
What FortiGate configuration is required to actively prompt users for credentials?
Question #26
Which statements are true regarding firewall policy NAT using the outgoing interface IP address with fixed port disabled? (Choose two.)
Question #27
If the Issuer and Subject values are the same in a digital certificate, which type of entity was the certificate issued to?
Question #28
What is the limitation of using a URL list and application control on the same firewall policy, In NCFW policy-based mode?
Question #29
Which FortiGate Collector Agent set to advanced access mode for the Windows Active Directory uses which of the following?
Question #30
Examine the following web filtering log. Date=2016-08-31 12:55:06 logid=0316013057 type=utm subtype=webfilter eventtype=ftgd_blk level=warning vd=root filteraction=blocked action=p...
Question #31
Which of the following SD-WAN load balancing method use interface weight value to distribute traffic? (Choose two.)
Question #32
What is the requirement for creating an inter-VDOM link between two VDOMs?
Question #33
Which statement regarding the firewall policy authentication timeout is true?
Question #34
Examine the exhibit, which contains a virtual IP and firewall policy configuration. Network Diagram The WAN(port1) interface has the IP address 10.200.1.1/24. The LAN(port2) interf...
Question #35
Which of the following components are tested during the hardware test? (Choose three.)
Question #36
How do you format the FortiGate flash disk?
Question #37
Which of the following are valid actions for FortiGuard category based filter in a web filter profile ui proxy-based inspection mode? (Choose two.)
Question #38
Examine the IPS sensor and DoS policy configuration shown in the exhibit, then answer the question below. When detecting attacks, which anomaly, signature, or filter will FortiGate...
Question #39
Which mode allows policy-based configured for most inspection rules. Which security profile's configuration does not change when you enable policy-based inspection?
Question #40
Which of the following FortiGate configuration tasks will create a route in the policy route table? (Choose two.)
Question #41
Which statement about the IP authentication header (AH) used by IPsec is true?
Question #42
If the Services field is configured in a Virtual IP (VIP), which of the following statements is true when central NAT is used?
Question #43
Examine the explicit web proxy configuration: What filter can be used u, the command diagnose sniffer packet to capture the traffic between the client and the explicit web pray?
Question #44
View the exhibit. VDOM1 is operating in transparent mode. VDOM2 is operating in NAT Route mode. There is an inter-VDOM link between both VDOMs. A client workstation with IP 10.0.1....
Question #45
View the exhibit. Which of the following statements are correct? (Choose two.)
Question #46
What criteria does FortiGate use to look for a matching firewall policy to process traffic? (Choose two.)
Question #47
Which of the following static routes are not maintained in the routing table? (Choose two.)
Question #48
Which statements about virtual domains (VDOMs) are true? (Choose two.)
Question #49
An administrator wants to configure a FortiGate as a DNS server. FortiGate must use DNS database first, and then relay all irresolvable queries to an external DNS server. Which of...
Question #50
What files are sent to FortiSandbox for inspection in flow-based inspection mode?
Question #51
Which statements about a One-to-One IP pool are true? (Choose two.)

Page 1 of 2Next

study smarter, certify faster.

Product

Browse Exams
Pricing
PDF Downloads

Resources

Blog
Glossary
Topics
FAQ
Contact Us

Legal

Terms of Service
Privacy Policy
Cookie Policy
DMCA
Refund Policy

Company

About
Contact

© 2026 NerdExam. All rights reserved.Built for IT professionals

NerdExam is a trading name of WADL Solutions Limited, a company incorporated in Hong Kong (CR# 80143234). Registered office: Unit 2904-05, 29/F, Universal Trade Centre, 3 Arbuthnot Road, Central, Hong Kong.

CompTIA, AWS, Cisco, Microsoft, Google Cloud, Oracle, VMware, and other certification names referenced on this site are trademarks of their respective owners. NerdExam is not affiliated with, endorsed by, or sponsored by any certification vendor.