1. Home
  2. Fortinet
  3. NSE4_FGT-6.2

Fortinet NSE4_FGT-6.2 Online Practice Questions and Exam Preparation

NSE4_FGT-6.2 Exam Details

  • Exam Code
    :NSE4_FGT-6.2
  • Exam Name
    :Fortinet NSE 4 - FortiOS 6.2
  • Certification
    :Fortinet Certifications
  • Vendor
    :Fortinet
  • Total Questions
    :142 Q&As
  • Last Updated
    :Jul 10, 2023

Fortinet NSE4_FGT-6.2 Online Questions & Answers

  • Question 101:

    Which of the following static routes are not maintained in the routing table?

    A. Named Address routes
    B. Dynamic routes
    C. ISDB routes
    D. Policy routes

  • Question 102:

    An administrator is configuring an Ipsec between site A and siteB. The Remotes Gateway setting in both sites has been configured as Static IP Address. For site A, the local quick mode selector is 192.168.1.0/24 and the remote quick mode selector is 192.168.2.0/24. How must the administrator configure the local quick mode selector for site B?

    A. 192.168.3.0/24
    B. 192.168.2.0/24
    C. 192.168.1.0/24
    D. 192.168.0.0/8

  • Question 103:

    What is the limitation of using a URL list and application control on the same firewall policy, in NGFW policy-based mode?

    A. It limits the scope of application control to the browser-based technology category only.
    B. It limits the scope of application control to scan application traffic based on application category only.
    C. It limits the scope of application control to scan application traffic using parent signatures only
    D. It limits the scope of application control to scan application traffic on DNS protocol only.

  • Question 104:

    Which statements about the firmware upgrade process on an active-active HA cluster are true? (Choose two.)

    A. The firmware image must be manually uploaded to each FortiGate.
    B. Only secondary FortiGate devices are rebooted.
    C. Uninterruptable upgrade is enabled by default.
    D. Traffic load balancing is temporally disabled while upgrading the firmware.

  • Question 105:

    When using SD-WAN, how do you configure the next-hop gateway address for a member interface so that FortiGate can forward Internet traffic?

    A. It must be configured in a static route using the sdwan virtual interface.
    B. It must be provided in the SD-WAN member interface configuration.
    C. It must be configured in a policy-route using the sdwan virtual interface.
    D. It must be learned automatically through a dynamic routing protocol.

  • Question 106:

    Examine the exhibit, which shows the output of a web filtering real time debug.

    Why is the site www.bing.com being blocked?

    A. The web site www.bing.com is categorized by FortiGuard as Malicious Websites.
    B. The user has not authenticated with the FortiGate yet.
    C. The web server IP address 204.79.197.200 is categorized by FortiGuard as Malicious Websites.
    D. The rating for the web site www.bing.com has been locally overridden to a category that is being blocked.

  • Question 107:

    On a FortiGate with a hard disk, how can you upload logs to FortiAnalyzer or FortiManager? (Choose two.)

    A. hourly
    B. real time
    C. on-demand
    D. store-and-upload

  • Question 108:

    Which statements about HA for FortiGate devices are true? (Choose two.)

    A. Sessions handled by proxy-based security profiles cannot be synchronized.
    B. Virtual clustering can be configured between two FortiGate devices that have multiple VDOMs.
    C. HA management interface settings are synchronized between cluster members.
    D. Heartbeat interfaces are not required on the primary device.

  • Question 109:

    The FSSO Collector Agent set to advanced access mode for the Windows Active Directory uses which of the following?

    A. LDAP convention
    B. NTLM convention
    C. Windows convention ?NetBios\Username
    D. RSSO convention

  • Question 110:

    What three FortiGate components are tested during the hardware test? (Choose three.)

    A. CPU
    B. Administrative access
    C. HA heartbeat
    D. Hard disk
    E. Network interfaces

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Fortinet exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your NSE4_FGT-6.2 exam preparations and Fortinet certification application, do not hesitate to visit our Vcedump.com to find your solutions here.