• Home
  • Articles
  • [Dec-2021] NSE6_FWB-6.1 Pre-Exam Practice Tests Exam Questions and Answers for NSE 6 Network Security Specialist Study Guide [Q13-Q30]

[Dec-2021] NSE6_FWB-6.1 Pre-Exam Practice Tests Exam Questions and Answers for NSE 6 Network Security Specialist Study Guide [Q13-Q30]

Share

[Dec-2021] NSE6_FWB-6.1 Pre-Exam Practice Tests | Exam Questions and Answers for NSE 6 Network Security Specialist Study Guide

Fortinet NSE 6 - FortiWeb 6.1 Certification Sample Questions

NEW QUESTION 13
In which scenario might you want to use the compression feature on FortiWeb?

  • A. When you are offering a music streaming service
  • B. Never, since most traffic today is already highly compressed
  • C. When you want to reduce buffering of video streams
  • D. When you are serving many corporate road warriors using 4G tablets and phones

Answer: B

Explanation:
FortiWeb might expend resources compressing responses that have already been compressed by the server.

 

NEW QUESTION 14
What can an administrator do if a client has been incorrectly period blocked?

  • A. Manually release the ID address from the temporary blacklist.
  • B. Disconnect the client from the network.
  • C. Nothing, it is not possible to override a period block.
  • D. Force a new IP address to the client.

Answer: A

Explanation:
Block Period
Enter the number of seconds that you want to block the requests. The valid range is 1-3,600 seconds. The default value is 60 seconds.
This option only takes effect when you choose Period Block in Action.
Note: That's a temporary blacklist so you can manually release them from the blacklist.

 

NEW QUESTION 15
Which statement about local user accounts is true?

  • A. They can be used for SSO.
  • B. They must be assigned, regardless of any other authentication.
  • C. They cannot be used for site publishing.
  • D. They are best suited for large environments with many users.

Answer: A

Explanation:
You can configure the Remedy Single Sign-On server to authenticate TrueSight Capacity Optimization users as local users.

 

NEW QUESTION 16
When viewing the attack logs on FortiWeb, which client IP address is shown when you are using XFF header rules?

  • A. FortiWeb IP
  • B. FortiGate public IP
  • C. Client real IP
  • D. FortiGate local IP

Answer: C

Explanation:
When an XFF header reaches Alteon from a client, Alteon removes all the content from the header and injects the client IP address. Alteon then forwards the header to the server.

 

NEW QUESTION 17
What key factor must be considered when setting brute force rate limiting and blocking?

  • A. Multiple clients from geographically diverse locations
  • B. A single client contacting multiple resources
  • C. Multiple clients connecting to multiple resources
  • D. Multiple clients sharing a single Internet connection

Answer: C

 

NEW QUESTION 18
Which algorithm is used to build mathematical models for bot detection?

  • A. SVM
  • B. HMM
  • C. HCM
  • D. SVN

Answer: A

Explanation:
FortiWeb uses SVM (Support Vector Machine) algorithm to build up the bot detection model

 

NEW QUESTION 19
What must you do with your FortiWeb logs to ensure PCI DSS compliance?

  • A. Compress them into a .zip file format
  • B. Erase them every two weeks
  • C. Store in an off-site location
  • D. Enable masking of sensitive data

Answer: D

 

NEW QUESTION 20
When FortiWeb triggers a redirect action, which two HTTP codes does it send to the client to inform the browser of the new URL? (Choose two.)

  • A. 0
  • B. 1
  • C. 2
  • D. 3

Answer: B,C

 

NEW QUESTION 21
You are using HTTP content routing on FortiWeb. You want requests for web application A to be forwarded to a cluster of web servers, which all host the same web application. You want requests for web application B to be forwarded to a different, single web server.
Which statement about this solution is true?

  • A. You must chain policies so that requests for web application A go to the virtual server for policy A, and requests for web application B go to the virtual server for policy B.
  • B. You must put the single web server in to a server pool, in order to use it with HTTP content routing.
  • C. The server policy applies the same protection profile to all of its protected web applications.
  • D. Static or policy-based routes are not required.

Answer: D

 

NEW QUESTION 22
Refer to the exhibit.

Many legitimate users are being identified as bots. FortiWeb bot detection has been configured with the settings shown in the exhibit. The FortiWeb administrator has already verified that the current model is accurate.
What can the administrator do to fix this problem, making sure that real bots are not allowed through FortiWeb?

  • A. Change Model Type to Strict
  • B. Change Action under Action Settings to Alert
  • C. Enable Bot Confirmation
  • D. Disable Dynamically Update Model

Answer: C

Explanation:
Bot Confirmation
If the number of anomalies from a user has reached the Anomaly Count, the system executes Bot Confirmation before taking actions.
The Bot Confirmation is to confirm if the user is indeed a bot. The system sends RBE (Real Browser Enforcement) JavaScript or CAPTCHA to the client to double check if it's a real bot.

 

NEW QUESTION 23
Refer to the exhibit.

FortiWeb is configured to block traffic from Japan to your web application server. However, in the logs, the administrator is seeing traffic allowed from one particular IP address which is geo-located in Japan.
What can the administrator do to solve this problem? (Choose two.)

  • A. If the IP address is configured as an IP reputation exception, remove it.
  • B. If the IP address is configured as a geo reputation exception, remove it.
  • C. Manually update the geo-location IP addresses for Japan.
  • D. Configure the IP address as a blacklisted IP address.

Answer: C,D

Explanation:
IP reputation leverages many techniques for accurate, early, and frequently updated identification of compromised and malicious clients so you can block attackers before they target your servers.
IP blacklisting is a method used to filter out illegitimate or malicious IP addresses from accessing your networks. Blacklists are lists containing ranges of or individual IP addresses that you want to block.
Reference:
https://www.imperva.com/learn/application-security/ip-blacklist/

 

NEW QUESTION 24
A client is trying to start a session from a page that would normally be accessible only after the client has logged in.
When a start page rule detects the invalid session access, what can FortiWeb do? (Choose three.)

  • A. Redirect the client to the login page
  • B. Reply with a 403 Forbidden HTTP error
  • C. Display an access policy message, then allow the client to continue
  • D. Prompt the client to authenticate
  • E. Allow the page access, but log the violation

Answer: A,B,E

 

NEW QUESTION 25
......

Fortinet Exam Practice Test To Gain Brilliante Result: https://www.dumpstorrent.com/NSE6_FWB-6.1-exam-dumps-torrent.html

Related Articles

more
Fortinet NSE6_FWB-6.1 Certification Practice Exam

Copyright © 2026 DumpsTorrent NETWORK CO.,LIMITED. All Rights Reserved. All trademarks used are properties of their respective owners. Privacy Policy