NSE6_FWB-6.4 Exam Questions

Review the following configuration: What is the expected result of this configuration setting?

Which three statements about HTTPS on FortiWeb are true? (Choose three.)

What is one of the key benefits of the FortiGuard IP reputation feature?

How does FortiWeb protect against defacement attacks?

You are using HTTP content routing on FortiWeb. You want requests for web application A to be forwarded to a cluster of web servers, which all host the same web application. You wa...

When generating a protection configuration from an auto learning report what critical step must you do before generating the final protection configuration?

How does an ADOM differ from a VDOM?

You are configuring FortiAnalyzer to store logs from FortiWeb. Which is true?

Which of the following would be a reason for implementing rewrites?

A client is trying to start a session from a page that should normally be accessible only after they have logged in. When a start page rule detects the invalid session access, what...

Which is true about HTTPS on FortiWeb? (Choose three.)

Which of the following is true about Local User Accounts?

In which operation mode(s) can FortiWeb modify HTTP packets? (Choose two.)

What other consideration must you take into account when configuring Defacement protection

Under what circumstances would you want to use the temporary uncompress feature of FortiWeb?

You are deploying FortiWeb 6.4 in an Amazon Web Services cloud. Which 2 lines of this initial setup via CLI are incorrect? (Choose two.)

How does offloading compression to FortiWeb benefit your network?

When the FortiWeb is configured in Reverse Proxy mode and the FortiGate is configured as an SNAT device, what IP address will the FortiGate's Real Server configuration point at?

How does your FortiWeb configuration differ if the FortiWeb is upstream of the SNAT device instead of downstream of the SNAT device?

You are using HTTP content routing on FortiWeb. Requests for web app A should be forwarded to a cluster of web servers which all host the same web app. Requests for web app B shoul...

In Reverse proxy mode, how does FortiWeb handle traffic that does not match any defined policies?

You've configured an authentication rule with delegation enabled on FortiWeb. What happens when a user tries to access the web application?

When integrating FortiWeb and FortiAnalyzer, why is the selection for FortiWeb Version critical? (Choose two)

What role does FortiWeb play in ensuring PCI DSS compliance?

Which operation mode does not require additional configuration in order to allow FTP traffic to your web server?

Which implementation is best suited for a deployment that must meet compliance criteria?

Which of the following FortiWeb features is part of the mitigation tools against OWASP A4 threats?

What capability can FortiWeb add to your Web App that your Web App may or may not already have?

An e-commerce web app is used by small businesses. Clients often access it from offices behind a router, where clients are on an IPv4 private network LAN. You need to protect the w...

Under which circumstances does FortiWeb use its own certificates? (Choose Two)

What benefit does Auto Learning provide?

Which two FortiWeb operation modes support machine learning? (Choose two.)

In order for FortiWeb to provide the best possible protection for servers, how should you deploy it?

In which two ways does FortiWeb handle traffic that does not match any defined policies? (Choose two.)

Which operation mode requires additional configuration in order to allow FTP traffic into your web server?

Which two statements about running a vulnerability scan are true? (Choose two.)

FortiWeb offers the same load balancing algorithms as FortiGate. Which two Layer 7 switch methods does FortiWeb also offer? (Choose two.)

Which would be a reason to implement HTTP rewriting?

Refer to the exhibit. FortiADC is applying SNAT to all inbound traffic going to the servers. When an attack occurs, FortiWeb blocks traffic based on the 192.0.2.1 source IP address...

Which statement about local user accounts is true?

Refer to the exhibit. Based on the configuration, what would happen if this FortiWeb were to lose power? (Choose two.)

Refer to the exhibit. FortiWeb is configured to block traffic from Japan to your web application server. However, in the logs, the administrator is seeing traffic allowed from one...

Under which circumstance would you not use compression on FortiWeb?

In which operation mode does FortiWeb offer both the ability to offload SSL as well as re-encrypt SSL?

What are two advantages of using the URL rewriting and redirecting feature on FortiWeb? (Choose two.)

Which command allows you to temporarily terminate a process that is consuming excessive amounts of resources?

Which two statements about the anti-defacement feature on FortiWeb are true? (Choose two.)

What must you do with your FortiWeb logs to ensure PCI DSS compliance?

What role does FortiWeb play in ensuring PCI DSS compliance?

Refer to the exhibit. There is only one administrator account configured on FortiWeb. What must an administrator do to restrict any brute force attacks that attempt to gain access...