Cisco®
CompTIA
Checkpoint
ISC
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
ISC2
Splunk®
Scrum
All Vendors
  2. Home
  3. Exams
  4. Fortinet
  5. NSE4_FGT-6.0

Free NSE4_FGT-6.0 Exam Braindumps (page: 5)

Page 4 of 33
PDF with 127 Questions

Which statement is true regarding SSL VPN timers? (Choose two.)

  1. Allow to mitigate DoS attacks from partial HTTP requests.
  2. SSL VPN settings do not have customizable timers.
  3. Disconnect idle SSL VPN users when a firewall policy authentication timeout occurs.
  4. Prevent SSL VPN users from being logged out because of high network latency.

Answer(s): A,D



Which of the following conditions must be met in order for a web browser to trust a web server certificate signed by a third-party CA?

  1. The public key of the web server certificate must be installed on the browser.
  2. The web-server certificate must be installed on the browser.
  3. The CA certificate that signed the web-server certificate must be installed on the browser.
  4. The private key of the CA certificate that signed the browser certificate must be installed on the browser.

Answer(s): C



When using SD-WAN, how do you configure the next-hop gateway address for a member interface so that FortiGate can forward Internet traffic?

  1. It must be configured in a static route using the sdwan virtual interface.
  2. It must be provided in the SD-WAN member interface configuration.
  3. It must be configured in a policy-route using the sdwan virtual interface.
  4. It must be learned automatically through a dynamic routing protocol.

Answer(s): A



Which of the following services can be inspected by the DLP profile? (Choose three.)

  1. NFS
  2. FTP
  3. IMAP
  4. CIFS
  5. HTTP-POST

Answer(s): B,C,E






Post your Comments and Discuss Fortinet NSE4_FGT-6.0 exam with other Community members:

Exam Discussions & Posts