• Home
  • Articles
  • NSE 6 Network Security Specialist NSE6_FWB-6.1 Dumps Updated Aug 29, 2021 - ExamsLabs [Q12-Q27]

NSE 6 Network Security Specialist NSE6_FWB-6.1 Dumps Updated Aug 29, 2021 - ExamsLabs [Q12-Q27]

Share

NSE 6 Network Security Specialist NSE6_FWB-6.1 Dumps | Updated  Aug 29, 2021 - ExamsLabs

Master 2021 Latest The Questions NSE 6 Network Security Specialist and Pass NSE6_FWB-6.1  Real Exam!

NEW QUESTION 12
What role does FortiWeb play in ensuring PCI DSS compliance?

  • A. It provides the ability to securely process cash transactions.
  • B. It provides the required SQL server protection.
  • C. It provides credit card processing capabilities.
  • D. It provides the WAF required by PCI.

Answer: C

Explanation:
FortiWeb protects against attacks that lead to sensitive data exposure such as SQL Injection and other injection types. Additionally, FortiWeb inspects all web server outgoing traffic for sensitive data such as Social Security numbers, credit card numbers and other predefined or custom based sensitive data.

 

NEW QUESTION 13
The FortiWeb machine learning (ML) feature is a two-phase analysis mechanism.
Which two functions does the first layer perform? (Choose two.)

  • A. Builds a threat model behind every parameter and HTTP method
  • B. Determines if a detected threat is a false-positive or not
  • C. Determines whether traffic is an anomaly, based on observed application traffic over time
  • D. Determines whether an anomaly is a real attack or just a benign anomaly that should be ignored

Answer: A,C

Explanation:
The first layer uses the Hidden Markov Model (HMM) and monitors access to the application and collects data to build a mathematical model behind every parameter and HTTP method.

 

NEW QUESTION 14
Which three statements about HTTPS on FortiWeb are true? (Choose three.)

  • A. In true transparent mode, the TLS session terminator is a protected web server.
  • B. In transparent inspection mode, you select the certificate that FortiWeb presents in the server pool, not in the server policy.
  • C. For SNI, you select the certificate that FortiWeb presents in the server pool, not in the server policy.
  • D. After enabling HSTS, redirects to HTTPS are never needed.
  • E. Enabling RC4 protects against the BEAST attack, but is not recommended if you configure FortiWeb to offer only TLS 1.2.

Answer: A,B,C

 

NEW QUESTION 15
A client is trying to start a session from a page that would normally be accessible only after the client has logged in.
When a start page rule detects the invalid session access, what can FortiWeb do? (Choose three.)

  • A. Allow the page access, but log the violation
  • B. Display an access policy message, then allow the client to continue
  • C. Reply with a 403 Forbidden HTTP error
  • D. Redirect the client to the login page
  • E. Prompt the client to authenticate

Answer: A,C,D

 

NEW QUESTION 16
When is it possible to use a self-signed certificate, rather than one purchased from a commercial certificate authority?

  • A. If you are a small business or home office
  • B. If you are an enterprise whose resources do not need security
  • C. If you are an enterprise whose employees use only mobile devices
  • D. If you are an enterprise whose computers all trust your active directory or other CA server

Answer: B

Explanation:
This can include SSL/TLS certificates, code signing certificates, and S/MIME certificates. The reason why they're considered different from traditional certificate-authority signed certificates is that they're created, issued, and signed by the company or developer who is responsible for the website or software being signed. This is why self-signed certificates are considered unsafe for public-facing websites and applications.

 

NEW QUESTION 17
What is one of the key benefits of the FortiGuard IP reputation feature?

  • A. It maintains a list of private IP addresses.
  • B. It provides a document of IP addresses that are suspect, so that administrators can manually update their blacklists.
  • C. It maintains a list of public IPs with a bad reputation for participating in attacks.
  • D. It is updated once per year.

Answer: C

Explanation:
FortiGuard IP Reputation service assigns a poor reputation, including virus-infected clients and malicious spiders/crawlers.

 

NEW QUESTION 18
Refer to the exhibit.

Based on the configuration, what would happen if this FortiWeb were to lose power? (Choose two.)

  • A. Traffic will pass between port5 and port6 uninspected.
  • B. All traffic will be interrupted.
  • C. Traffic will be interrupted between port3 and port4.
  • D. Traffic that passes between port5 and port6 will be inspected.

Answer: A,C

 

NEW QUESTION 19
In which two operating modes can FortiWeb modify HTTP packets? (Choose two.)

  • A. True transparent proxy
  • B. Transparent inspection
  • C. Offline protection
  • D. Reverse proxy

Answer: A,C

Explanation:
FortiWeb appliances operating in offline protection mode or either of the transparent modes

 

NEW QUESTION 20
When viewing the attack logs on FortiWeb, which client IP address is shown when you are using XFF header rules?

  • A. FortiGate public IP
  • B. Client real IP
  • C. FortiWeb IP
  • D. FortiGate local IP

Answer: B

Explanation:
When an XFF header reaches Alteon from a client, Alteon removes all the content from the header and injects the client IP address. Alteon then forwards the header to the server.

 

NEW QUESTION 21
Review the following configuration:

What is the expected result of this configuration setting?

  • A. When machine learning (ML) is in its collecting phase, FortiWeb will not accept any samples from any source IP addresses.
  • B. When machine learning (ML) is in its running phase, FortiWeb will accept an unlimited number of samples from the same source IP address.
  • C. When machine learning (ML) is in its collecting phase, FortiWeb will accept an unlimited number of samples from the same source IP address.
  • D. When machine learning (ML) is in its running phase, FortiWeb will accept a set number of samples from the same source IP address.

Answer: C

 

NEW QUESTION 22
Which two statements about running a vulnerability scan are true? (Choose two.)

  • A. Vulnerability scanning increases the load on FortiWeb, so it should be avoided.
  • B. You should run the vulnerability scan during a maintenance window.
  • C. You should run the vulnerability scan in a test environment.
  • D. You should run the vulnerability scan on a live website to get accurate results.

Answer: B,C

Explanation:
Should the Vulnerability Scanner allow it, SVMS will set the scan schedule (or schedules) to run in a maintenance window. SVMS will advise Client of the scanner's ability to complete the scan(s) within the maintenance window.
Vulnerabilities on live web sites. Instead, duplicate the web site and its database in a test environment.
Reference:
https://help.fortinet.com/fweb/552/Content/FortiWeb/fortiweb-admin/vulnerability_scans.htm

 

NEW QUESTION 23
True transparent proxy mode is best suited for use in which type of environment?

  • A. Flexible environments where you can easily change the IP addressing scheme
  • B. New networks where infrastructure is not yet defined
  • C. Environments where you cannot change the IP addressing scheme
  • D. Small office to home office environments

Answer: C

Explanation:
Does not require changes to the IP address scheme of the network. Requests are destined for a web server and not the FortiWeb appliance. This operation mode supports the same feature set as True Transparent Proxy mode.

 

NEW QUESTION 24
......

A fully updated 2021 NSE6_FWB-6.1 Exam Dumps exam guide from training expert ExamsLabs: https://www.examslabs.com/Fortinet/NSE-6-Network-Security-Specialist/best-NSE6_FWB-6.1-exam-dumps.html

Related Articles

more
Go To NSE6_FWB-6.1 Questions