QUESTION: 9

Examine this output from a debug flow:

Which statements about the output are correct? (Choose two.)

FortiGate received a TCP SYN/ACK packet.
The source IP address of the packet was translated to 10.0.1.10.
FortiGate routed the packet through port 3.
The packet was allowed by the firewall policy with the ID 00007fc0.

Answer(s): A,C

QUESTION: 10

Examine this FortiGate configuration:

How does the FortiGate handle web proxy traffic coming from the IP address 10.2.1.200 that requires authorization?

It always authorizes the traffic without requiring authentication.
It drops the traffic.
It authenticates the traffic using the authentication scheme SCHEME2.
It authenticates the traffic using the authentication scheme SCHEME1.

Answer(s): C

Reveal Solution Next Question

QUESTION: 11

Which of the following statements are best practices for troubleshooting FSSO? (Choose two.)

Include the group of guest users in a policy.
Extend timeout timers.
Guarantee at least 34 Kbps bandwidth between FortiGate and domain controllers.
Ensure all firewalls allow the FSSO required ports.

Answer(s): A,D

Reveal Solution Next Question

QUESTION: 12

Which statements about antivirus scanning mode are true? (Choose two.)

In proxy-based inspection mode antivirus buffers the whole file for scarring before sending it to the client.
In flow-based inspection mode, you can use the CLI to configure antivirus profiles to use protocol option profiles.
In proxy-based inspection mode, if a virus is detected, a replacement message may not be displayed immediately.
In quick scan mode, you can configure antivirus profiles to use any of the available signature data bases.

Answer(s): B,D

Reveal Solution Next Question

Free NSE4_FGT-6.2 Exam Braindumps (page: 4)

QUESTION: 9

QUESTION: 10

QUESTION: 11

QUESTION: 12

NSE4_FGT-6.2 Discussions & Posts