Weekend Sale Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: xmas50

Fortinet NSE6_FWB-6.4 - Fortinet NSE 6 - FortiWeb 6.4

Fortinet NSE6_FWB-6.4 Premium Access     Download Demo    
Page: 2 / 2
Total 56 questions

An e-commerce web app is used by small businesses. Clients often access it from offices behind a router, where clients are on an IPv4 private network LAN. You need to protect the web application from denial of service attacks that use request floods.

What FortiWeb feature should you configure?

A.

Enable “Shared IP” and configure the separate rate limits for requests from NATted source IPs.

B.

Configure FortiWeb to use “X-Forwarded-For:” headers to find each client’s private network IP, and to block attacks using that.

C.

Enable SYN cookies.

D.

Configure a server policy that matches requests from shared Internet connections.

Refer to the exhibit.

There is only one administrator account configured on FortiWeb. What must an administrator do to restrict any brute force attacks that attempt to gain access to the FortiWeb management GUI?

A.

Delete the built-in administrator user and create a new one.

B.

Configure IPv4 Trusted Host # 3 with a specific IP address.

C.

The configuration changes must be made on the upstream device.

D.

Change the Access Profile to Read_Only.

What must you do with your FortiWeb logs to ensure PCI DSS compliance?

A.

Store in an off-site location

B.

Erase them every two weeks

C.

Enable masking of sensitive data

D.

Compress them into a .zip file format

When FortiWeb triggers a redirect action, which two HTTP codes does it send to the client to inform the browser of the new URL? (Choose two.)

A.

403

B.

302

C.

301

D.

404

In which two operating modes can FortiWeb modify HTTP packets? (Choose two.)

A.

Offline protection

B.

Transparent inspection

C.

True transparent proxy

D.

Reverse proxy

Which two statements about running a vulnerability scan are true? (Choose two.)

A.

You should run the vulnerability scan during a maintenance window.

B.

You should run the vulnerability scan in a test environment.

C.

Vulnerability scanning increases the load on FortiWeb, so it should be avoided.

D.

You should run the vulnerability scan on a live website to get accurate results.