
Sep-2021 Latest Free4Torrent NSE6_FWB-6.0 Exam Dumps with PDF and Exam Engine Free Updated Today!
Following are some new NSE6_FWB-6.0 Real Exam Questions!
NEW QUESTION 10
In which operation mode(s) can FortiWeb modify HTTP packets? (Choose two.)
- A. Transparent Inspection
- B. Reverse proxy
- C. Offlineprotection
- D. True transparent proxy
Answer: B
NEW QUESTION 11
An e-commerce web app is used by small businesses. Clients often access it from offices behind a router, where clients are on an IPv4 privatenetwork LAN. You need to protect the web application from denial of service attacks that use request floods.
What FortiWeb feature should you configure?
- A. Configure FortiWeb to use "X-Forwarded-For:" headers to find each client's private network IP, and to block attacks using that.
- B. Enable "Shared IP" and configure the separate rate limits for requests from NATted source IPs.
- C. Enable SYN cookies.
- D. Configure a server policy that matches requests from shared Internet connections.
Answer: C
NEW QUESTION 12
What other consideration must you take into account when configuring Defacement protection
- A. Configure the FortiGate to perform Anti-Defacement as well
- B. Also incorporate a FortiADC into your network
- C. None. FortiWeb completely secures the site against defacement attacks
- D. Use FortiWeb to block SQL Injections and keep regular backups of the Database
Answer: A
NEW QUESTION 13
Which is true about HTTPS on FortiWeb? (Choose three.)
- A. In true transparent mode, the TLS session terminator is a protected web server.
- B. In transparent inspection mode, you select which certificate that FortiWeb will present in the server pool, not in the server policy.
- C. Enabling RC4 protects against the BEAST attack, but is not recommended if you configure FortiWeb to only offer TLS 1.2.
- D. After enabling HSTS, redirects to HTTPS are no longer necessary.
- E. For SNI, you select the certificate that FortiWeb will present in the server pool, not in the server policy.
Answer: A,B,E
NEW QUESTION 14
Which of the following FortiWeb features is part of the mitigation tools against OWASP A4 threats?
- A. Session Management
- B. Sensitive info masking
- C. Poison Cookie detection
- D. Brute Force blocking
Answer: A
NEW QUESTION 15
A client is trying tostart a session from a page that should normally be accessible only after they have logged in.
When a start page rule detects the invalid session access, what can FortiWeb do? (Choose three.)
- A. Allow the page access, but log the violation
- B. Automatically redirect the client to the login page
- C. Prompt the client to authenticate
- D. Display an access policy message, then allow the client to continue, redirecting them to their requested page
- E. Reply with a "403 Forbidden" HTTP error
Answer: A,B,E
NEW QUESTION 16
When integrating FortiWeb and FortiAnalyzer, why is the selection for FortiWebVersion critical? (Choose two)
- A. Defines communication protocol
- B. Defines Log storage location
- C. Defines Database Schema
- D. Defines Log file format
Answer: B,D
NEW QUESTION 17
You've configured an authentication rule with delegation enabled on FortiWeb.
Whathappens when a user tries to access the web application?
- A. ForitWeb redirects the user tothe web app's authentication page
- B. FrotiWeb redirects users to a FortiAuthenticator page, then if the user authenticates successfully, FortiGate signals to FortiWeb to allow access to the web app
- C. FortiWeb replies with a HTTP challenge of behalf of the server, theif the user authenticates successfully, FortiWeb allows the request and also includes credentials in the request that it forwards to the web app
- D. FortiWeb forwards the HTTP challenge from the server to the client, then monitors the reply, allowing access if the user authenticates successfully
Answer: B
NEW QUESTION 18
Which implementation is bestsuited for a deployment that must meet compliance criteria?
- A. SSL Inspection with FortiWeb in Transparency mode
- B. SSL Offloading with FortiWeb inTransparency Mode
- C. SSL Inspection with FrotiWeb in Reverse Proxy mode
- D. SSL Offloading with FortiWeb in reverse proxy mode
Answer: C
NEW QUESTION 19
When viewing the attack logs on your FortiWeb, which IP Address is shown for the client when using XFF Header rules?
- A. Client's real IP
- B. FortiGate's local IP
- C. FortiWeb's IP
- D. FortiGate's public IP
Answer: A
NEW QUESTION 20
Which operationmode does not require additional configuration in order to allow FTP traffic to your web server?
- A. Transparent Inspection
- B. Offline Protection
- C. Reverse-Proxy
- D. True Transparent Proxy
Answer: A
NEW QUESTION 21
How does offloadingcompression to FortiWeb benefit your network?
- A. reduces file size on the client's storage
- B. free up resources on the database server
- C. free up resources on the FortiGate
- D. Free up resources on the web server
Answer: D
NEW QUESTION 22
......
Resources From:
- 2021 Latest Free4Torrent NSE6_FWB-6.0 Exam Dumps (PDF & Exam Engine) Free Share: https://www.free4torrent.com/NSE6_FWB-6.0-braindumps-torrent.html
Free Resources from Free4Torrent, We Devoted to Helping You 100% Pass All Exams!