Fortinet NSE6_FWB-6.1 Online Practice Questions and Exam Preparation

Fortinet NSE6_FWB-6.1 Online Questions & Answers

• Question 1:

  What benefit does Auto Learning provide?

  A. Automatically identifies and blocks suspicious IPs
  B. FortiWeb scans all traffic without taking action and makes recommendations on rules
  C. Automatically builds rules sets
  D. Automatically blocks all detected threats
  C. Automatically builds rules sets

• Question 2:

  Under which circumstances does FortiWeb use its own certificates? (Choose Two)

  A. Secondary HTTPS connection to server where FortiWeb acts as a client
  B. HTTPS to clients
  C. HTTPS access to GUI
  D. HTTPS to FortiGate
  A. Secondary HTTPS connection to server where FortiWeb acts as a client
  C. HTTPS access to GUI

• Question 3:

  An e-commerce web app is used by small businesses. Clients often access it from offices behind a router, where clients are on an IPv4 private network LAN. You need to protect the web application from denial of service attacks that use

  request floods.

  What FortiWeb feature should you configure?

  A. Enable "Shared IP" and configure the separate rate limits for requests from NATted source IPs.
  B. Configure FortiWeb to use "X-Forwarded-For:" headers to find each client's private network IP, and to block attacks using that.
  C. Enable SYN cookies.
  D. Configure a server policy that matches requests from shared Internet connections.
  C. Enable SYN cookies.

• Question 4:

  Reverse-proxy mode is best suited for use in which type of environment?

  A. New networks where infrastructure is not yet defined
  B. Environments where you cannot change your IP addressing scheme
  C. Flexible environments where you can easily change the IP addressing scheme
  D. Small Office/Home Office environments
  B. Environments where you cannot change your IP addressing scheme

• Question 5:

  What capability can FortiWeb add to your Web App that your Web App may or may not already have?

  A. Automatic backup and recovery
  B. High Availability
  C. HTTP/HTML Form Authentication
  D. SSL Inspection
  D. SSL Inspection

• Question 6:

  Which of the following FortiWeb features is part of the mitigation tools against OWASP A4 threats?

  A. Sensitive info masking
  B. Poison Cookie detection
  C. Session Management
  D. Brute Force blocking
  C. Session Management

• Question 7:

  Which implementation is best suited for a deployment that must meet compliance criteria?

  A. SSL Inspection with FortiWeb in Transparency mode
  B. SSL Offloading with FortiWeb in reverse proxy mode
  C. SSL Inspection with FrotiWeb in Reverse Proxy mode
  D. SSL Offloading with FortiWeb in Transparency Mode
  C. SSL Inspection with FrotiWeb in Reverse Proxy mode

• Question 8:

  Which operation mode does not require additional configuration in order to allow FTP traffic to your web server?

  A. Offline Protection
  B. Transparent Inspection
  C. True Transparent Proxy
  D. Reverse-Proxy
  B. Transparent Inspection

• Question 9:

  What role does FortiWeb play in ensuring PCI DSS compliance?

  A. PCI specifically requires a WAF
  B. Provides credit card processing capabilities
  C. Provide ability to securely process cash transactions
  D. Provides load balancing between multiple web servers
  B. Provides credit card processing capabilities

• Question 10:

  When integrating FortiWeb and FortiAnalyzer, why is the selection for FortiWeb Version critical? (Choose two)

  A. Defines Log file format
  B. Defines communication protocol
  C. Defines Database Schema
  D. Defines Log storage location
  A. Defines Log file format
  D. Defines Log storage location