CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. Fortinet
  5. NSE4_FGT-6.4

Free NSE4_FGT-6.4 Exam Braindumps (page: 10)

Page 10 of 24
PDF with 163 Questions

Examine this FortiGate configuration:

Examine the output of the following debug command:



Based on the diagnostic outputs above, how is the FortiGate handling the traffic for new sessions that require inspection?

  1. It is allowed, but with no inspection
  2. It is allowed and inspected as long as the inspection is flow based
  3. It is dropped.
  4. It is allowed and inspected, as long as the only inspection required is antivirus.

Answer(s): C



View the exhibit.

Which of the following statements are correct? (Choose two.)

  1. This setup requires at least two firewall policies with the action set to IPsec.
  2. Dead peer detection must be disabled to support this type of IPsec setup.
  3. The TunnelB route is the primary route for reaching the remote site. The TunnelA route is used only if the TunnelB VPN is down.
  4. This is a redundant IPsec setup.

Answer(s): C,D



An administrator has configured two-factor authentication to strengthen SSL VPN access. Which additional best practice can an administrator implement?

  1. Configure Source IP Pools.
  2. Configure split tunneling in tunnel mode.
  3. Configure different SSL VPN realms.
  4. Configure host check.

Answer(s): D



Which of the following statements correctly describes FortiGates route lookup behavior when searching for a suitable gateway? (Choose two)

  1. Lookup is done on the first packet from the session originator
  2. Lookup is done on the last packet sent from the responder
  3. Lookup is done on every packet, regardless of direction
  4. Lookup is done on the trust reply packet from the responder

Answer(s): A,D



Page 10 of 24



Post your Comments and Discuss Fortinet NSE4_FGT-6.4 exam with other Community members:

Masssy commented on July 03, 2021
Bohod Achhaa yar. Exact questions from real test.
INDIA
upvote

Danny commented on July 03, 2021
Well-put and very precise. It contains all the questions in real exam.
CANADA
upvote