Cisco®
CompTIA
Checkpoint
ISC
EC-Council
EXIN
Fortinet
ITIL®
Juniper
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
ISC2
Splunk®
MuleSoft
All Vendors
  2. Home
  3. Exams
  4. Fortinet
  5. NSE4_FGT-6.0

Free NSE4_FGT-6.0 Exam Braindumps (page: 11)

Page 3 of 33
PDF with 127 Questions

An administrator is investigating a report of users having intermittent issues with browsing the web. The administrator ran diagnostics and received the output shown in the exhibit.



Examine the diagnostic output shown exhibit.
Which of the following options is the most likely cause of this issue?

  1. NAT port exhaustion
  2. High CPU usage
  3. High memory usage
  4. High session timeout value

Answer(s): A



An administrator has configured central DNAT and virtual IPs.
Which of the following can be selected in the firewall policy Destination field?

  1. A VIP group
  2. The mapped IP address object of the VIP object
  3. A VIP object
  4. An IP pool

Answer(s): C



An administrator needs to strengthen the security for SSL VPN access.
Which of the following statements are best practices to do so? (Choose three.)

  1. Configure split tunneling for content inspection.
  2. Configure host restrictions by IP or MAC address.
  3. Configure two-factor authentication using security certificates.
  4. Configure SSL offloading to a content processor (FortiASIC).
  5. Configure a client integrity check (host-check).

Answer(s): C,D,E



Which statement about FortiGuard services for FortiGate is true?

  1. The web filtering database is downloaded locally on FortiGate.
  2. Antivirus signatures are downloaded locally on FortiGate.
  3. FortiGate downloads IPS updates using UDP port 53 or 8888.
  4. FortiAnalyzer can be configured as a local FDN to provide antivirus and IPS updates.

Answer(s): B






Post your Comments and Discuss Fortinet NSE4_FGT-6.0 exam prep with other Community members:

NSE4_FGT-6.0 Exam Discussions & Posts