[2023年07月10日] 最新をゲットせよ！NSE6_FWB-6.4認定練習テスト問題と試験問題集 [Q18-Q39]

[2023年07月10日] 最新をゲットせよ！NSE6_FWB-6.4認定練習テスト問題と試験問題集

リアルNSE6_FWB-6.4試験問題集解答で有効なNSE6_FWB-6.4問題集PDF

Fortinet NSE6_FWB-6.4試験は、Fortinetが提供する認定試験であり、別名Fortinet NSE 6 - FortiWeb 6.4とも呼ばれています。この試験は、FortiWebを使用してWebアプリケーションをSQLインジェクション、クロスサイトスクリプティング（XSS）攻撃などの脅威から保護するアプリケーションセキュリティソリューションに経験を持つITプロフェッショナルを対象としています。NSE6_FWB-6.4試験は、FortiWebをさまざまなネットワーク環境で展開、設定、管理する知識とスキルを評価します。

 

質問 # 18
When is it possible to use a self-signed certificate, rather than one purchased from a commercial certificate authority?

• A. If you are an enterprise whose computers all trust your active directory or other CA server
• B. If you are a small business or home office
• C. If you are an enterprise whose resources do not need security
• D. If you are an enterprise whose employees use only mobile devices

正解：A

質問 # 19
You are configuring FortiAnalyzer to store logs from FortiWeb.
Which is true?

• A. FortiAnalyzer will store antivirus and DLP archives from FortiWeb.
• B. FortiWeb will query FortiAnalyzer for reports, instead of generating them locally.
• C. You must enable ADOMs on FortiAnalyzer.
• D. To store logs from FortiWeb 6.4, on FortiAnalyzer, you must select "FrotiWeb 6.1".

正解：C

質問 # 20
What is one of the key benefits of the FortiGuard IP reputation feature?

• A. It maintains a list of private IP addresses.
• B. It provides a document of IP addresses that are suspect, so that administrators can manually update their blacklists.
• C. It maintains a list of public IPs with a bad reputation for participating in attacks.
• D. It is updated once per year.

正解：C

解説：
Explanation
FortiGuard IP Reputation service assigns a poor reputation, including virus-infected clients and malicious spiders/crawlers.

質問 # 21
Refer to the exhibits.


FortiWeb is configured in reverse proxy mode and it is deployed downstream to FortiGate. Based on the configuration shown in the exhibits, which of the following statements is true?

• A. You must disable the Preserve Client IP setting on FotriGate for this configuration to work.
• B. FortiGate should forward web traffic to virtual server IP address.
• C. The configuration is incorrect. FortiWeb should always be located upstream to FortiGate.
• D. FortiGate should forward web traffic to the server pool IP addresses.

正解：B

質問 # 22
You are deploying FortiWeb 6.4 in an Amazon Web Services cloud. Which 2 lines of this initial setup via CLI are incorrect? (Choose two.)

• A. 0
• B. 1
• C. 2
• D. 3

正解：C、D

質問 # 23
How does FortiWeb protect against defacement attacks?

• A. It keeps hashes of files and periodically compares them to the server.
• B. It keeps full copies of all files and directories.
• C. It keeps a live duplicate of the database.
• D. It keeps a complete backup of all files and the database.

正解：A

解説：
Explanation
The anti-defacement feature examines a web site's files for changes at specified time intervals. If it detects a change that could indicate a defacement attack, the FortiWeb appliance can notify you and quickly react by automatically restoring the web site contents to the previous backup.

質問 # 24
What capability can FortiWeb add to your Web App that your Web App may or may not already have?

• A. High Availability
• B. HTTP/HTML Form Authentication
• C. Automatic backup and recovery
• D. SSL Inspection

正解：B

質問 # 25
Which two statements about the anti-defacement feature on FortiWeb are true? (Choose two.)

• A. Anti-defacement does not make a backup copy of your databases.
• B. Anti-defacement downloads a copy of your website to RAM, in order to restore a clean image, if it detects defacement.
• C. Anti-defacement can redirect users to a backup web server, if it detects a change.
• D. FortiWeb will only check to see if there are changes on the web server; it will not download the whole file each time.

正解：A、D

解説：
Explanation
Anti-defacement backs up web pages only, not databases.
If it detects any file changes, the FortiWeb appliance will download a new backup revision.

質問 # 26
In which two operating modes can FortiWeb modify HTTP packets? (Choose two.)

• A. True transparent proxy
• B. Transparent inspection
• C. Reverse proxy
• D. Offline protection

正解：A、C

質問 # 27
What benefit does Auto Learning provide?

• A. Automatically identifies and blocks suspicious IPs
• B. Automatically builds rules sets
• C. Automatically blocks all detected threats
• D. FortiWeb scans all traffic without taking action and makes recommendations on rules

正解：B

質問 # 28
An e-commerce web app is used by small businesses. Clients often access it from offices behind a router, where clients are on an IPv4 private network LAN. You need to protect the web application from denial of service attacks that use request floods.
What FortiWeb feature should you configure?

• A. Enable "Shared IP" and configure the separate rate limits for requests from NATted source IPs.
• B. Configure a server policy that matches requests from shared Internet connections.
• C. Configure FortiWeb to use "X-Forwarded-For:" headers to find each client's private network IP, and to block attacks using that.
• D. Enable SYN cookies.

正解：D

質問 # 29
You are using HTTP content routing on FortiWeb. Requests for web app A should be forwarded to a cluster of web servers which all host the same web app. Requests for web app B should be forwarded to a different, single web server.
Which is true about the solution?

• A. You must put the single web server into a server pool in order to use it with HTTP content routing.
• B. Static or policy-based routes are not required.
• C. The server policy applies the same protection profile to all its protected web apps.
• D. To achieve HTTP content routing, you must chain policies: the first policy accepts all traffic, and forwards requests for web app A to the virtual server for policy A. It also forwards requests for web app B to the virtual server for policy B. Policy A and Policy B apply their app-specific protection profiles, and then distribute that app's traffic among all members of the server farm.

正解：D

質問 # 30
Which two statements about running a vulnerability scan are true? (Choose two.)

• A. You should run the vulnerability scan in a test environment.
• B. You should run the vulnerability scan on a live website to get accurate results.
• C. You should run the vulnerability scan during a maintenance window.
• D. Vulnerability scanning increases the load on FortiWeb, so it should be avoided.

正解：A、C

解説：
Explanation
Should the Vulnerability Scanner allow it, SVMS will set the scan schedule (or schedules) to run in a maintenance window. SVMS will advise Client of the scanner's ability to complete the scan(s) within the maintenance window.
Vulnerabilities on live web sites. Instead, duplicate the web site and its database in a test environment.

質問 # 31
Which implementation is best suited for a deployment that must meet compliance criteria?

• A. SSL Inspection with FortiWeb in Transparency mode
• B. SSL Inspection with FrotiWeb in Reverse Proxy mode
• C. SSL Offloading with FortiWeb in reverse proxy mode
• D. SSL Offloading with FortiWeb in Transparency Mode

正解：B

質問 # 32
Refer to the exhibit.

FortiADC is applying SNAT to all inbound traffic going to the servers. When an attack occurs, FortiWeb blocks traffic based on the 192.0.2.1 source IP address, which belongs to FortiADC. The setup is breaking all connectivity and genuine clients are not able to access the servers.
What must the administrator do to avoid this problem? (Choose two.)

• A. No Special configuration is required; connectivity will be re-established after the set timeout.
• B. Place FortiWeb in front of FortiADC.
• C. Enable the Add X-Forwarded-For setting on FortiWeb.
• D. Enable the Use X-Forwarded-For setting on FortiWeb.

正解：B、D

解説：
Explanation
Configure your load balancer to insert or append to an X-Forwarded-For:, X-Real-IP:, or other HTTP X-header. Also configure FortiWeb to find the original attacker's or client's IP address in that HTTP header

質問 # 33
Which of the following FortiWeb features is part of the mitigation tools against OWASP A4 threats?

• A. Brute Force blocking
• B. Session Management
• C. Sensitive info masking
• D. Poison Cookie detection

正解：B

質問 # 34
In which scenario might you want to use the compression feature on FortiWeb?

• A. When you want to reduce buffering of video streams
• B. Never, since most traffic today is already highly compressed
• C. When you are serving many corporate road warriors using 4G tablets and phones
• D. When you are offering a music streaming service

正解：C

解説：
Explanation
https://training.fortinet.com/course/view.php?id=3363
When might you want to use the compression feature on FortiWeb? When you are serving many road warriors who are using 4G tablets and phones

質問 # 35
Refer to the exhibit.

FortiWeb is configured to block traffic from Japan to your web application server. However, in the logs, the administrator is seeing traffic allowed from one particular IP address which is geo-located in Japan.
What can the administrator do to solve this problem? (Choose two.)

• A. If the IP address is configured as a geo reputation exception, remove it.
• B. Manually update the geo-location IP addresses for Japan.
• C. If the IP address is configured as an IP reputation exception, remove it.
• D. Configure the IP address as a blacklisted IP address.

正解：A、D

質問 # 36
How does offloading compression to FortiWeb benefit your network?

• A. reduces file size on the client's storage
• B. free up resources on the FortiGate
• C. free up resources on the database server
• D. Free up resources on the web server

正解：D

質問 # 37
What must you do with your FortiWeb logs to ensure PCI DSS compliance?

• A. Store in an off-site location
• B. Erase them every two weeks
• C. Enable masking of sensitive data
• D. Compress them into a .zip file format

正解：C

質問 # 38
When viewing the attack logs on FortiWeb, which client IP address is shown when you are using XFF header rules?

• A. FortiWeb IP
• B. FortiGate public IP
• C. FortiGate local IP
• D. Client real IP

正解：D

解説：
Explanation
When an XFF header reaches Alteon from a client, Alteon removes all the content from the header and injects the client IP address. Alteon then forwards the header to the server.

質問 # 39
......

Fortinet NSE6_FWB-6.4認定試験は、Fortinet FortiWeb 6.4を展開、構成、および維持する知識とスキルを検証する個人を対象として設計されています。この認定は、さまざまなサイバー脅威や攻撃からウェブアプリケーションを保護する責任があるセキュリティプロフェッショナルに最適です。試験は、FortiWeb展開、セキュリティポリシー、SSL / TLS検査、Webアプリケーションファイアウォールなど、さまざまなトピックをカバーしています。この試験に合格することで、候補者がFortiWebアプライアンスを効果的に管理し、さまざまなサイバー脅威からウェブアプリケーションを保護するために必要な専門知識を持っていることが証明されます。

 

NSE6_FWB-6.4試験問題集でPDF問題とテストエンジン：https://www.jpntest.com/shiken/NSE6_FWB-6.4-mondaishu