1. Home
  2. Fortinet
  3. NSE4_FGT-6.4

Fortinet NSE4_FGT-6.4 Online Practice Questions and Exam Preparation

NSE4_FGT-6.4 Exam Details

  • Exam Code
    :NSE4_FGT-6.4
  • Exam Name
    :Fortinet NSE 4 - FortiOS 6.4
  • Certification
    :Fortinet Certifications
  • Vendor
    :Fortinet
  • Total Questions
    :163 Q&As
  • Last Updated
    :May 31, 2026

Fortinet NSE4_FGT-6.4 Online Questions & Answers

  • Question 141:

    Which two statements are true when FortiGate is in transparent mode? (Choose two.)

    A. By default, all interfaces are part of the same broadcast domain.
    B. The existing network IP schema must be changed when installing a transparent mode.
    C. Static routes are required to allow traffic to the next hop.
    D. FortiGate forwards frames without changing the MAC address.

  • Question 142:

    What types of traffic and attacks can be blocked by a web application firewall (WAF) profile? (Choose three.)

    A. Traffic to botnetservers
    B. Traffic to inappropriate web sites
    C. Server information disclosure attacks
    D. Credit card data leaks
    E. SQL injection attacks

  • Question 143:

    Which three security features require the intrusion prevention system (IPS) engine to function? (Choose three.)

    A. Web filter in flow-based inspection
    B. Antivirus in flow-based inspection
    C. DNS filter
    D. Web application firewall
    E. Application control

  • Question 144:

    Refer to the exhibit.

    According to the certificate values shown in the exhibit, which type of entity was the certificate issued to?

    A. A user
    B. A root CA
    C. A bridge CA
    D. A subordinate

  • Question 145:

    An administrator does not want to report the logon events of service accounts to FortiGate. What setting on the collector agent is required to achieve this?

    A. Add the support of NTLM authentication.
    B. Add user accounts to Active Directory (AD).
    C. Add user accounts to the FortiGate group fitter.
    D. Add user accounts to the Ignore User List.

  • Question 146:

    Examine the two static routes shown in the exhibit, then answer the following question.

    Which of the following is the expected FortiGate behavior regarding these two routes to the same destination?

    A. FortiGate will load balance all traffic across both routes.
    B. FortiGate will use the port1 route as the primary candidate.
    C. FortiGate will route twice as much traffic to the port2 route
    D. FortiGate will only actuate the port1 route in the routing table

  • Question 147:

    Refer to the exhibit.

    Given the routing database shown in the exhibit, which two statements are correct? (Choose two.)

    A. The port3 default route has the highest distance.
    B. The port3 default route has the lowest metric.
    C. There will be eight routes active in the routing table.
    D. The port1 and port2 default routes are active in the routing table.

  • Question 148:

    Refer to the exhibit.

    Given the interfaces shown in the exhibit. which two statements are true? (Choose two.)

    A. Traffic between port2 and port2-vlan1 is allowed by default.
    B. port1-vlan10 and port2-vlan10 are part of the same broadcast domain.
    C. port1 is a native VLAN.
    D. port1-vlan and port2-vlan1 can be assigned in the same VDOM or to different VDOMs.

  • Question 149:

    When browsing to an internal web server using a web-mode SSL VPN bookmark, which IP address is used as the source of the HTTP request?

    A. remote user's public IP address
    B. The public IP address of the FortiGate device.
    C. The remote user's virtual IP address.
    D. The internal IP address of the FortiGate device.

  • Question 150:

    Which two inspection modes can you use to configure a firewall policy on a profile-based next-generation firewall (NGFW)? (Choose two.)

    A. Proxy-based inspection
    B. Certificate inspection
    C. Flow-based inspection
    D. Full Content inspection

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Fortinet exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your NSE4_FGT-6.4 exam preparations and Fortinet certification application, do not hesitate to visit our Vcedump.com to find your solutions here.