NSE6_FWB-6.4 Online Practice Questions and Answers

How does an ADOM differ from a VDOM?

A. ADOMs do not have virtual networking

B. ADOMs improve performance by offloading some functions.

C. ADOMs only affect specific functions, and do not provide full separation like VDOMs do.

D. Allows you to have 1 administrator for multiple tenants

Which of the following FortiWeb features is part of the mitigation tools against OWASP A4 threats?

A. Sensitive info masking

B. Poison Cookie detection

C. Session Management

D. Brute Force blocking

A client is trying to start a session from a page that would normally be accessible only after the client has logged in. When a start page rule detects the invalid session access, what can FortiWeb do? (Choose three.)

A. Display an access policy message, then allow the client to continue

B. Redirect the client to the login page

C. Allow the page access, but log the violation

D. Prompt the client to authenticate

E. Reply with a 403 Forbidden HTTP error

Refer to the exhibit.

Many legitimate users are being identified as bots. FortiWeb bot detection has been configured with the settings shown in the exhibit. The FortiWeb administrator has already verified that the current model is accurate.

What can the administrator do to fix this problem, making sure that real bots are not allowed through FortiWeb?

A. Change Model Type to Strict

B. Change Action under Action Settings to Alert

C. Disable Dynamically Update Model

D. Enable Bot Confirmation

Refer to the exhibit.

Based on the configuration, what would happen if this FortiWeb were to lose power? (Choose two.)

A. Traffic that passes between port5 and port6 will be inspected.

B. Traffic will be interrupted between port3 and port4.

C. All traffic will be interrupted.

D. Traffic will pass between port5 and port6 uninspected.

What role does FortiWeb play in ensuring PCI DSS compliance?

A. It provides the ability to securely process cash transactions.

B. It provides the required SQL server protection.

C. It provides the WAF required by PCI.

D. It provides credit card processing capabilities.

You've configured an authentication rule with delegation enabled on FortiWeb. What happens when a user tries to access the web application?

A. FrotiWeb redirects users to a FortiAuthenticator page, then if the user authenticates successfully, FortiGate signals to FortiWeb to allow access to the web app

B. ForitWeb redirects the user to the web app's authentication page

C. FortiWeb forwards the HTTP challenge from the server to the client, then monitors the reply, allowing access if the user authenticates successfully

D. FortiWeb replies with a HTTP challenge of behalf of the server, the if the user authenticates successfully, FortiWeb allows the request and also includes credentials in the request that it forwards to the web app

What role does FortiWeb play in ensuring PCI DSS compliance?

A. PCI specifically requires a WAF

B. Provides credit card processing capabilities

C. Provide ability to securely process cash transactions

D. Provides load balancing between multiple web servers

Which of the following would be a reason for implementing rewrites?

A. Page has been moved to a new URL

B. Page has been moved to a new IP address

C. Replace vulnerable functions.

D. Send connection to secure channel

True transparent proxy mode is best suited for use in which type of environment?

A. New networks where infrastructure is not yet defined

B. Flexible environments where you can easily change the IP addressing scheme

C. Small office to home office environments

D. Environments where you cannot change the IP addressing scheme