NSE6 Exam Questions

Which of the following statements best describe what a SYN cookie does when a SYN packet is received?

Which of the following features are available in all FortiADC models? (Choose three.)

The sender validation techniques SPF and DKIM rely on data provided by what type of entity?

What is the maximum number of sites (or peers) supported in a global load-balancing solution based on FortiADC?

What statement is true for the self-service portal? (Choose two.)

Which FortiADC log severity level corresponds to Log Severity Level 2?

Which methods can be used to submit files to FortiSandbox for inspection? (Choose two.)

Which FortiGate process sends files to FortiSandbox for inspection?

If FortiSandbox connects to FortiGuard through a web proxy server, which FortiSandbox interface must have access to the proxy server?

Which of the following statements about virtual tunneling for outbound link load balancing are true? (Choose three.)

You want to allow guests to authenticate to your network through Facebook. What configuration is required on FortiAuthenticator? (Choose two.)

If the corporate email policy dictates that SMTP over SSL/TLS is preferred for inbound SMTP connections and required for outbound SMTP connections, which FortiMail configuration ob...

Which protocols can FortiSandbox use to connect to a network file share? (Choose two.)

In transparent mode, when choosing between using the built-in MTA or using the transparent proxy, what difference might be encountered regarding mail routing?

Access delivery rules provide which two of the following functions? (Choose two.)

What is one requirement for your network when deploying FortiAuthenticator?

RADIUS authentication with FortiAuthenticator is not working. The traffic sniffer indicates that client traffic is not reaching FortiAuthenticator. Which could be the cause of the...

In a server mode config-only cluster, where is the mail data stored? (Choose one.)

When FortiMail is operating is transparent mode, SMTP sessions are intercepted and scanned based on what criteria?

What mechanism does FortiGate use to avoid sending a file that has been already inspected to FortiSandbox?

What is a primary motivating factor for choosing FortiMail transparent mode over server mode or gateway mode?

Which of these is a security feature specific to FortiADC global load balancing? (Choose two.)

Which of the following statements about layer 2 load balancing are true? (Choose two.)

When FortiMail is operating in server mode, the DNS MX records for each protected domain should point to:

Which statements are true about the RADIUS service on FortiAuthenticator? (Choose two.)

Which statements are true for the EAP-TTLS authentication method? (Choose two.)

Which CLI command on FortiAuthenticator is not used for troubleshooting network connectivity issues?

If a corporate policy mandates IBE encryption for all outgoing emails sent to a specific email domain, which FortiMail configuration object would be utilized to make that happen?

You are a FortiAuthenticator administrator for a large organization, and suddenly all of the FortiToken 200 users in the organization are unable to authenticate using their tokens....

Which protocols are supported for archiving scan job reports? (Choose two.)

Based on the exhibit, which are true? (Choose two.)

Which configuration object in FortiMail would be used to attach the string "[SPAM DETECTED]" to the subject header of email messages determined by FortiMail to be spam? (Choose one...

Why is it recommended to choose the FortiMail operation mode early in the setup process?

If the FortiMail administrator wished to identify emails which were sent to a particular email address so that those emails could be processed differently, which configuration obje...

Which of these is an OATH-based standard to generate one-time password tokens?

What actions can a FortiADC take for HTTP traffic that is coming from an IP address that is blacklisted in the FortiGuard IP reputation database? (Choose two.)

Two FortiADC devices from an HA cluster. What information can be synchronized between both FortiADC devices? (Choose three.)

Which FortiADC features can be used to harden the device and server security? (Choose two.)

Which behavior does not exist for certificate revocation lists (CRLs) on FortiAuthenticator?

For the case of outbound link load balancing, which upstream link is elected by the proximity route dynamic detection feature as the best one for a destination IP address?

Which threats can a FortiSandbox inspect when it is deployed in sniffer mode? (Choose three.)

Which configuration elements must be in place for the FortiADC global load balancing feature to discover from local FortiADC server load balancers the virtual servers that can be i...

Once defined, an antivirus profile can be activated from which two configuration objects in FortiMail? (Choose two.)

On FortiMail which type of profile is used to configure when files are sent to a FortiSandbox?

What information does a scan job report include? (Choose two.)

Which Fortinet Single Sign-on (FSSO) user identity discovery method can FortiAuthenticator use if the device or user identity cannot be established transparently, such as with non-...

Which statements are true about the FortiAuthenticator CLI? (Choose two.)

Once an antispam profile has been configured, how is it put into action?

Which three methods are available to perform backups of the FortiMail configuration data? (Choose three.)

The Windows licenses in a FortiSandbox could be locked because they have exceeded the maximum number of allowed activations. What should the administrator do to fix the problem?