CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. Fortinet
  5. NSE4_FGT-6.0

Free NSE4_FGT-6.0 Exam Braindumps (page: 16)

Page 15 of 32
PDF with 127 Questions

Which action can be applied to each filter in the application control profile?

  1. Block, monitor, warning, and quarantine
  2. Allow, monitor, block and learn
  3. Allow, block, authenticate, and warning
  4. Allow, monitor, block, and quarantine

Answer(s): D



View the exhibit.



Based on the configuration shown in the exhibit, what statements about application control behavior are true? (Choose two.)

  1. Access to all unknown applications will be allowed.
  2. Access to browser-based Social.Media applications will be blocked.
  3. Access to mobile social media applications will be blocked.
  4. Access to all applications in Social.Media category will be blocked.

Answer(s): A,B



HTTP Public Key Pinning (HPKP) can be an obstacle to implementing full SSL inspection.
What solutions could resolve this problem? (Choose two.)

  1. Enable Allow Invalid SSL Certificates for the relevant security profile.
  2. Change web browsers to one that does not support HPKP.
  3. Exempt those web sites that use HPKP from full SSL inspection.
  4. Install the CA certificate (that is required to verify the web server certificate) stores of users' computers.

Answer(s): B,C


Reference:



View the exhibit.





What does this raw log indicate? (Choose two.)

  1. FortiGate blocked the traffic.
  2. type indicates that a security event was recorded.
  3. 10.0.1.20 is the IP address for lavito.tk.
  4. policyid indicates that traffic went through the IPS firewall policy.

Answer(s): B,D






Post your Comments and Discuss Fortinet NSE4_FGT-6.0 exam with other Community members:

NSE4_FGT-6.0 Discussions & Posts