Fortinet NSE6_FWB-6.4 Exam Questions Instant Access

Question 1

Which two statements about running a vulnerability scan are true? (Choose two.)

AYou should run the vulnerability scan during a maintenance window.

BYou should run the vulnerability scan in a test environment.

CVulnerability scanning increases the load on FortiWeb, so it should be avoided.

DYou should run the vulnerability scan on a live website to get accurate results.

Answer : A, B

Should the Vulnerability Scanner allow it, SVMS will set the scan schedule (or schedules) to run in a maintenance window. SVMS will advise Client of the scanner's ability to complete the scan(s) within the maintenance window.

Vulnerabilities on live web sites. Instead, duplicate the web site and its database in a test environment.

https://help.fortinet.com/fweb/552/Content/FortiWeb/fortiweb-admin/vulnerability_scans.htm

Question 2

In which scenario might you want to use the compression feature on FortiWeb?

AWhen you are serving many corporate road warriors using 4G tablets and phones

BWhen you are offering a music streaming service

CWhen you want to reduce buffering of video streams

DNever, since most traffic today is already highly compressed

Answer : A

https://training.fortinet.com/course/view.php?id=3363

When might you want to use the compression feature on FortiWeb? When you are serving many road warriors who are using 4G tablets and phones

Question 3

What must you do with your FortiWeb logs to ensure PCI DSS compliance?

AStore in an off-site location

BErase them every two weeks

CEnable masking of sensitive data

DCompress them into a .zip file format

Answer : C

Question 4

Which regex expression is the correct format for redirecting the URL http://www.example.com?

Awww\.example\.com

Bwww.example.com

Cwww\example\com

Dwww/.example/.com

Answer : B

\1://www.company.com/\2/\3

Question 5

Under what circumstances would you want to use the temporary uncompress feature of FortiWeb?

AIn the case of compression being done on the FortiWeb, to inspect the content of the compressed file

BIn the case of the file being a .MP3 music file

CIn the case of compression being done on the web server, to inspect the content of the compressed file.

DIn the case of the file being an .MP4 video

Answer : C

Question 6

Which three statements about HTTPS on FortiWeb are true? (Choose three.)

AFor SNI, you select the certificate that FortiWeb will present in the server pool, not in the server policy.

BAfter enabling HSTS, redirects to HTTPS are no longer necessary.

CIn true transparent mode, the TLS session terminator is a protected web server.

DEnabling RC4 protects against the BEAST attack, but is not recommended if you configure FortiWeb to only offer TLS 1.2.

EIn transparent inspection mode, you select which certificate that FortiWeb will present in the server pool, not in the server policy.

Answer : C, D, E

Question 7

Which of the following FortiWeb features is part of the mitigation tools against OWASP A4 threats?

ASensitive info masking

BPoison Cookie detection

CSession Management

DBrute Force blocking

Answer : C

Fortinet NSE 6 - FortiWeb 6.4 NSE6_FWB-6.4 Exam Questions