[Sep-2021] NSE6_FWB-6.0 Free PDF from Free4Torrent [Q10-Q32]

Share

Sep-2021 Latest Free4Torrent NSE6_FWB-6.0 Exam Dumps with PDF and Exam Engine Free Updated Today!

Following are some new NSE6_FWB-6.0 Real Exam Questions!

NEW QUESTION 10
In which operation mode(s) can FortiWeb modify HTTP packets? (Choose two.)

  • A. Transparent Inspection
  • B. Reverse proxy
  • C. Offlineprotection
  • D. True transparent proxy

Answer: B

 

NEW QUESTION 11
An e-commerce web app is used by small businesses. Clients often access it from offices behind a router, where clients are on an IPv4 privatenetwork LAN. You need to protect the web application from denial of service attacks that use request floods.
What FortiWeb feature should you configure?

  • A. Configure FortiWeb to use "X-Forwarded-For:" headers to find each client's private network IP, and to block attacks using that.
  • B. Enable "Shared IP" and configure the separate rate limits for requests from NATted source IPs.
  • C. Enable SYN cookies.
  • D. Configure a server policy that matches requests from shared Internet connections.

Answer: C

 

NEW QUESTION 12
What other consideration must you take into account when configuring Defacement protection

  • A. Configure the FortiGate to perform Anti-Defacement as well
  • B. Also incorporate a FortiADC into your network
  • C. None. FortiWeb completely secures the site against defacement attacks
  • D. Use FortiWeb to block SQL Injections and keep regular backups of the Database

Answer: A

 

NEW QUESTION 13
Which is true about HTTPS on FortiWeb? (Choose three.)

  • A. In true transparent mode, the TLS session terminator is a protected web server.
  • B. In transparent inspection mode, you select which certificate that FortiWeb will present in the server pool, not in the server policy.
  • C. Enabling RC4 protects against the BEAST attack, but is not recommended if you configure FortiWeb to only offer TLS 1.2.
  • D. After enabling HSTS, redirects to HTTPS are no longer necessary.
  • E. For SNI, you select the certificate that FortiWeb will present in the server pool, not in the server policy.

Answer: A,B,E

 

NEW QUESTION 14
Which of the following FortiWeb features is part of the mitigation tools against OWASP A4 threats?

  • A. Session Management
  • B. Sensitive info masking
  • C. Poison Cookie detection
  • D. Brute Force blocking

Answer: A

 

NEW QUESTION 15
A client is trying tostart a session from a page that should normally be accessible only after they have logged in.
When a start page rule detects the invalid session access, what can FortiWeb do? (Choose three.)

  • A. Allow the page access, but log the violation
  • B. Automatically redirect the client to the login page
  • C. Prompt the client to authenticate
  • D. Display an access policy message, then allow the client to continue, redirecting them to their requested page
  • E. Reply with a "403 Forbidden" HTTP error

Answer: A,B,E

 

NEW QUESTION 16
When integrating FortiWeb and FortiAnalyzer, why is the selection for FortiWebVersion critical? (Choose two)

  • A. Defines communication protocol
  • B. Defines Log storage location
  • C. Defines Database Schema
  • D. Defines Log file format

Answer: B,D

 

NEW QUESTION 17
You've configured an authentication rule with delegation enabled on FortiWeb.
Whathappens when a user tries to access the web application?

  • A. ForitWeb redirects the user tothe web app's authentication page
  • B. FrotiWeb redirects users to a FortiAuthenticator page, then if the user authenticates successfully, FortiGate signals to FortiWeb to allow access to the web app
  • C. FortiWeb replies with a HTTP challenge of behalf of the server, theif the user authenticates successfully, FortiWeb allows the request and also includes credentials in the request that it forwards to the web app
  • D. FortiWeb forwards the HTTP challenge from the server to the client, then monitors the reply, allowing access if the user authenticates successfully

Answer: B

 

NEW QUESTION 18
Which implementation is bestsuited for a deployment that must meet compliance criteria?

  • A. SSL Inspection with FortiWeb in Transparency mode
  • B. SSL Offloading with FortiWeb inTransparency Mode
  • C. SSL Inspection with FrotiWeb in Reverse Proxy mode
  • D. SSL Offloading with FortiWeb in reverse proxy mode

Answer: C

 

NEW QUESTION 19
When viewing the attack logs on your FortiWeb, which IP Address is shown for the client when using XFF Header rules?

  • A. Client's real IP
  • B. FortiGate's local IP
  • C. FortiWeb's IP
  • D. FortiGate's public IP

Answer: A

 

NEW QUESTION 20
Which operationmode does not require additional configuration in order to allow FTP traffic to your web server?

  • A. Transparent Inspection
  • B. Offline Protection
  • C. Reverse-Proxy
  • D. True Transparent Proxy

Answer: A

 

NEW QUESTION 21
How does offloadingcompression to FortiWeb benefit your network?

  • A. reduces file size on the client's storage
  • B. free up resources on the database server
  • C. free up resources on the FortiGate
  • D. Free up resources on the web server

Answer: D

 

NEW QUESTION 22
......


Resources From:

  1. 2021 Latest Free4Torrent NSE6_FWB-6.0 Exam Dumps (PDF & Exam Engine) Free Share: https://www.free4torrent.com/NSE6_FWB-6.0-braindumps-torrent.html

Free Resources from Free4Torrent, We Devoted to Helping You 100% Pass All Exams!