Practice NSE 6 Network Security Specialist NSE6_FWB-6.1 exam. Online Exam Practice Tests with detailed explanations! Pass NSE6_FWB-6.1 with confidence!
NSE6_FWB-6.1 - Fortinet NSE 6 - FortiWeb 6.1 Practice Tests 2021 | Free4Torrent
NEW QUESTION 15
Which regex expression is the correct format for redirecting the URL http://www.example.com?
- A. www\.example\.com
- B. www.example.com
- C. www/.example/.com
- D. www\example\com
Answer: B
Explanation:
\1://www.company.com/\2/\3
NEW QUESTION 16
What can an administrator do if a client has been incorrectly period blocked?
- A. Nothing, it is not possible to override a period block.
- B. Manually release the ID address from the temporary blacklist.
- C. Force a new IP address to the client.
- D. Disconnect the client from the network.
Answer: B
Explanation:
Block Period
Enter the number of seconds that you want to block the requests. The valid range is 1-3,600 seconds. The default value is 60 seconds.
This option only takes effect when you choose Period Block in Action.
Note: That's a temporary blacklist so you can manually release them from the blacklist.
NEW QUESTION 17
In which scenario might you want to use the compression feature on FortiWeb?
- A. When you are serving many corporate road warriors using 4G tablets and phones
- B. Never, since most traffic today is already highly compressed
- C. When you want to reduce buffering of video streams
- D. When you are offering a music streaming service
Answer: B
Explanation:
FortiWeb might expend resources compressing responses that have already been compressed by the server.
NEW QUESTION 18
Refer to the exhibits.

FortiWeb is configured in reverse proxy mode and it is deployed downstream to FortiGate. Based on the configuration shown in the exhibits, which of the following statements is true?
- A. FortiGate should forward web traffic to virtual server IP address.
- B. FortiGate should forward web traffic to the server pool IP addresses.
- C. The configuration is incorrect. FortiWeb should always be located upstream to FortiGate.
- D. You must disable the Preserve Client IP setting on FotriGate for this configuration to work.
Answer: A
NEW QUESTION 19
When viewing the attack logs on FortiWeb, which client IP address is shown when you are using XFF header rules?
- A. FortiGate public IP
- B. Client real IP
- C. FortiWeb IP
- D. FortiGate local IP
Answer: B
Explanation:
When an XFF header reaches Alteon from a client, Alteon removes all the content from the header and injects the client IP address. Alteon then forwards the header to the server.
NEW QUESTION 20
Which three statements about HTTPS on FortiWeb are true? (Choose three.)
- A. In true transparent mode, the TLS session terminator is a protected web server.
- B. In transparent inspection mode, you select the certificate that FortiWeb presents in the server pool, not in the server policy.
- C. For SNI, you select the certificate that FortiWeb presents in the server pool, not in the server policy.
- D. After enabling HSTS, redirects to HTTPS are never needed.
- E. Enabling RC4 protects against the BEAST attack, but is not recommended if you configure FortiWeb to offer only TLS 1.2.
Answer: A,B,C
NEW QUESTION 21
When FortiWeb triggers a redirect action, which two HTTP codes does it send to the client to inform the browser of the new URL? (Choose two.)
- A. 0
- B. 1
- C. 2
- D. 3
Answer: A,B
NEW QUESTION 22
FortiWeb offers the same load balancing algorithms as FortiGate.
Which two Layer 7 switch methods does FortiWeb also offer? (Choose two.)
- A. HTTP user-based round robin
- B. Round robin
- C. HTTP session-based round robin
- D. HTTP content routes
Answer: B,D
Explanation:
Reference:
http://fortinet.globalgate.com.ar/pdfs/FortiWeb/FortiWeb_DS.pdf
NEW QUESTION 23
Refer to the exhibit.
FortiWeb is configured to block traffic from Japan to your web application server. However, in the logs, the administrator is seeing traffic allowed from one particular IP address which is geo-located in Japan.
What can the administrator do to solve this problem? (Choose two.)
- A. Manually update the geo-location IP addresses for Japan.
- B. If the IP address is configured as an IP reputation exception, remove it.
- C. If the IP address is configured as a geo reputation exception, remove it.
- D. Configure the IP address as a blacklisted IP address.
Answer: A,D
Explanation:
IP reputation leverages many techniques for accurate, early, and frequently updated identification of compromised and malicious clients so you can block attackers before they target your servers.
IP blacklisting is a method used to filter out illegitimate or malicious IP addresses from accessing your networks. Blacklists are lists containing ranges of or individual IP addresses that you want to block.
Reference:
https://www.imperva.com/learn/application-security/ip-blacklist/
NEW QUESTION 24
Which statement about local user accounts is true?
- A. They must be assigned, regardless of any other authentication.
- B. They are best suited for large environments with many users.
- C. They cannot be used for site publishing.
- D. They can be used for SSO.
Answer: D
Explanation:
You can configure the Remedy Single Sign-On server to authenticate TrueSight Capacity Optimization users as local users.
NEW QUESTION 25
How does FortiWeb protect against defacement attacks?
- A. It keeps a live duplicate of the database.
- B. It keeps a complete backup of all files and the database.
- C. It keeps hashes of files and periodically compares them to the server.
- D. It keeps full copies of all files and directories.
Answer: C
Explanation:
The anti-defacement feature examines a web site's files for changes at specified time intervals. If it detects a change that could indicate a defacement attack, the FortiWeb appliance can notify you and quickly react by automatically restoring the web site contents to the previous backup.
NEW QUESTION 26
Refer to the exhibit.
There is only one administrator account configured on FortiWeb. What must an administrator do to restrict any brute force attacks that attempt to gain access to the FortiWeb management GUI?
- A. Change the Access Profile to Read_Only.
- B. Configure IPv4 Trusted Host # 3 with a specific IP address.
- C. The configuration changes must be made on the upstream device.
- D. Delete the built-in administrator user and create a new one.
Answer: D
NEW QUESTION 27
......
Get instant access to NSE6_FWB-6.1 practice exam questions: https://drive.google.com/open?id=1S0-1soWyyusj88LzgQexjierYVREH5WN
The best NSE6_FWB-6.1 exam study material and preparation tool is here: https://www.free4torrent.com/NSE6_FWB-6.1-braindumps-torrent.html