CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. Fortinet
  5. NSE6_FWB-6.4

Free NSE6_FWB-6.4 Exam Braindumps (page: 4)

Page 3 of 15
PDF with 56 Questions

A client is trying to start a session from a page that would normally be accessible only after the client has logged in.
When a start page rule detects the invalid session access, what can FortiWeb do? (Choose three.)

  1. Display an access policy message, then allow the client to continue
  2. Redirect the client to the login page
  3. Allow the page access, but log the violation
  4. Prompt the client to authenticate
  5. Reply with a 403 Forbidden HTTP error

Answer(s): B,C,E


Reference:

https://help.fortinet.com/fweb/607/Content/FortiWeb/fortiweb- admin/specify_urls_to_initiate.htm



Refer to the exhibit.



Many legitimate users are being identified as bots. FortiWeb bot detection has been configured with the settings shown in the exhibit. The FortiWeb administrator has already verified that the current model is accurate.
What can the administrator do to fix this problem, making sure that real bots are not allowed through FortiWeb?

  1. Change Model Type to Strict
  2. Change Action under Action Settings to Alert
  3. Disable Dynamically Update Model
  4. Enable Bot Confirmation

Answer(s): D

Explanation:

Bot Confirmation
If the number of anomalies from a user has reached the Anomaly Count, the system executes Bot Confirmation before taking actions.
The Bot Confirmation is to confirm if the user is indeed a bot. The system sends RBE (Real Browser Enforcement) JavaScript or CAPTCHA to the client to double check if it's a real bot.


Reference:

https://docs.fortinet.com/document/fortiweb/6.3.1/administration- guide/600188/configuring-bot-detection-profiles



What can an administrator do if a client has been incorrectly period blocked?

  1. Nothing, it is not possible to override a period block.
  2. Manually release the ID address from the temporary blacklist.
  3. Force a new IP address to the client.
  4. Disconnect the client from the network.

Answer(s): B

Explanation:

Block Period
Enter the number of seconds that you want to block the requests. The valid range is 1­3,600 seconds. The default value is 60 seconds.
This option only takes effect when you choose Period Block in Action.
Note: That's a temporary blacklist so you can manually release them from the blacklist.


Reference:

https://docs.fortinet.com/document/fortiweb/6.3.1/administration- guide/600188/configuring-bot-detection-profiles



Which regex expression is the correct format for redirecting the URL http://www.example.com?

  1. www\.example\.com
  2. www.example.com
  3. www\example\com
  4. www/.example/.com

Answer(s): B

Explanation:

\1://www.company.com/\2/\3


Reference:

https://learn.akamai.com/en-us/webhelp/edge-redirector/edge-redirector-guide/GUID- 0C22DFC2-DCC4-42AF-BDB2-9537FBEE03FD.html






Post your Comments and Discuss Fortinet NSE6_FWB-6.4 exam with other Community members:

NSE6_FWB-6.4 Discussions & Posts