CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. Fortinet
  5. NSE4_FGT-6.4

Free NSE4_FGT-6.4 Exam Braindumps (page: 7)

Page 7 of 24
PDF with 163 Questions

Refer to the exhibit.

Review the Intrusion Prevention System (IPS) profile signature settings. Which statement is correct in adding the FTP.Login.Failed signature to the IPS sensor profile?

  1. The signature setting uses a custom rating threshold.
  2. The signature setting includes a group of other signatures.
  3. Traffic matching the signature will be allowed and logged.
  4. Traffic matching the signature will be silently dropped and logged.

Answer(s): B



Refer to the exhibit.


The Root and To_Internet VDOMs are configured in NAT mode. The DMZ and Local VDOMs are configured in transparent mode.
The Root VDOM is the management VDOM. The To_Internet VDOM allows LAN users to access internet. TheTo_lnternet VDOM is the only VDOM with internet access and is directly connected to ISP modem.
Which two statements are true? (Choose two.)

  1. Inter-VDOM links are required to allow traffic between the Local and Root VDOMs.
  2. A static route is required on the To_Internet VDOM to allow LAN users to access the internet.
  3. Inter-VDOM links are required to allow traffic between the Local and DMZ VDOMs.
  4. Inter-VDOM links are not required between the Root and To_Internet VDOMs because the Root VDOM is used only as a management VDOM.

Answer(s): A,D



Which two statements ate true about the Security Fabric rating? (Choose two.)

  1. It provides executive summaries of the four largest areas of security focus.
  2. Many of the security issues can befixed immediately by click ng Apply where available.
  3. The Security Fabric rating must be run on the root FortiGate device in the Security Fabric.
  4. The Security Fabric rating is a free service that comes bundled with alt FortiGate devices.

Answer(s): A,C



Examine the network diagram shown in the exhibit, then answer the following question:


Which one of the following routes is the best candidate route for FGT1 to route traffic from the Workstation to the Web server?

  1. 172.16.0.0/16 [50/0] via 10.4.200.2, port2 [5/0]
  2. 0.0.0.0/0 [20/0] via 10.4.200.2, port2
  3. 10.4.200.0/30 is directly connected, port2
  4. 172.16.32.0/24 is directly connected, port1

Answer(s): D



Page 7 of 24



Post your Comments and Discuss Fortinet NSE4_FGT-6.4 exam with other Community members:

Masssy commented on July 03, 2021
Bohod Achhaa yar. Exact questions from real test.
INDIA
upvote

Danny commented on July 03, 2021
Well-put and very precise. It contains all the questions in real exam.
CANADA
upvote