CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. Fortinet
  5. NSE4_FGT-6.4

Free NSE4_FGT-6.4 Exam Braindumps (page: 3)

Page 2 of 24
PDF with 163 Questions

Which certificate value can FortiGate use to determine the relationship between the issuer and the certificate?

  1. Subject Key Identifiervalue
  2. SMMIE Capabilitiesvalue
  3. Subjectvalue
  4. Subject Alternative Namevalue

Answer(s): C



An administrator has configured the following settings:

What are the two results of this configuration? (Choose two.)

  1. Device detection on all interfaces is enforced for 30 minutes.
  2. Denied users are blocked for 30 minutes.
  3. A session for denied traffic is created.
  4. The number of logs generated by denied traffic is reduced.

Answer(s): C,D


Reference:

https://kb.fortinet.com/kb/documentLink.do?externalID=FD46328



Refer to the exhibit.


Given the security fabric topology shown in the exhibit, which two statements are true? (Choose two.)

  1. This security fabric topology is a logical topology view.
  2. There are 19 security recommendations for the security fabric.
  3. There are five devices that are part of the security fabric.
  4. Device detection is disabled on all FortiGate devices.

Answer(s): A,D



Which statements best describe auto discovery VPN (ADVPN). (Choose two.)

  1. It requires the use of dynamic routing protocols so that spokes can learn the routes to other spokes.
  2. ADVPN is only supported with IKEv2.
  3. Tunnels are negotiated dynamically between spokes.
  4. Every spoke requires a static tunnel to be configured to other spokes so that phase 1 and phase 2 proposals are defined in advance.

Answer(s): A,C






Post your Comments and Discuss Fortinet NSE4_FGT-6.4 exam with other Community members:

NSE4_FGT-6.4 Exam Discussions & Posts