Welcome to TestSimulate

Pass Your Next Certification Exam Fast!

Everything you need to prepare, learn & pass your certification exam easily.

365 days free updates. First attempt guaranteed success.

  • Home
  • Blogs
  • Pass Your NSE 6 Network Security Specialist NSE6_FWB-6.1 Exam on Jan 11, 2022 with 30 Questions [Q11-Q35]

Pass Your NSE 6 Network Security Specialist NSE6_FWB-6.1 Exam on Jan 11, 2022 with 30 Questions [Q11-Q35]

Share

Pass Your NSE 6 Network Security Specialist NSE6_FWB-6.1 Exam on Jan 11, 2022 with 30 Questions

NSE6_FWB-6.1 Free Exam Study Guide! (Updated 30 Questions)

NEW QUESTION 11
Refer to the exhibit.

FortiWeb is configured to block traffic from Japan to your web application server. However, in the logs, the administrator is seeing traffic allowed from one particular IP address which is geo-located in Japan.
What can the administrator do to solve this problem? (Choose two.)

  • A. If the IP address is configured as an IP reputation exception, remove it.
  • B. If the IP address is configured as a geo reputation exception, remove it.
  • C. Manually update the geo-location IP addresses for Japan.
  • D. Configure the IP address as a blacklisted IP address.

Answer: C,D

Explanation:
IP reputation leverages many techniques for accurate, early, and frequently updated identification of compromised and malicious clients so you can block attackers before they target your servers.
IP blacklisting is a method used to filter out illegitimate or malicious IP addresses from accessing your networks. Blacklists are lists containing ranges of or individual IP addresses that you want to block.
Reference:
https://www.imperva.com/learn/application-security/ip-blacklist/

 

NEW QUESTION 12
Which two statements about the anti-defacement feature on FortiWeb are true? (Choose two.)

  • A. Anti-defacement does not make a backup copy of your databases.
  • B. FortiWeb will only check to see if there are changes on the web server; it will not download the whole file each time.
  • C. Anti-defacement downloads a copy of your website to RAM, in order to restore a clean image, if it detects defacement.
  • D. Anti-defacement can redirect users to a backup web server, if it detects a change.

Answer: A,B

Explanation:
Anti-defacement backs up web pages only, not databases.
If it detects any file changes, the FortiWeb appliance will download a new backup revision.

 

NEW QUESTION 13
How does FortiWeb protect against defacement attacks?

  • A. It keeps a live duplicate of the database.
  • B. It keeps a complete backup of all files and the database.
  • C. It keeps full copies of all files and directories.
  • D. It keeps hashes of files and periodically compares them to the server.

Answer: D

Explanation:
The anti-defacement feature examines a web site's files for changes at specified time intervals. If it detects a change that could indicate a defacement attack, the FortiWeb appliance can notify you and quickly react by automatically restoring the web site contents to the previous backup.

 

NEW QUESTION 14
Which would be a reason to implement HTTP rewriting?

  • A. To send the request to secure channel
  • B. The original page has moved to a new IP address
  • C. To replace a vulnerable function in the requested URL
  • D. The original page has moved to a new URL

Answer: D

Explanation:
Create a new URL rewriting rule.

 

NEW QUESTION 15
Refer to the exhibit.

Many legitimate users are being identified as bots. FortiWeb bot detection has been configured with the settings shown in the exhibit. The FortiWeb administrator has already verified that the current model is accurate.
What can the administrator do to fix this problem, making sure that real bots are not allowed through FortiWeb?

  • A. Change Model Type to Strict
  • B. Change Action under Action Settings to Alert
  • C. Enable Bot Confirmation
  • D. Disable Dynamically Update Model

Answer: C

Explanation:
Bot Confirmation
If the number of anomalies from a user has reached the Anomaly Count, the system executes Bot Confirmation before taking actions.
The Bot Confirmation is to confirm if the user is indeed a bot. The system sends RBE (Real Browser Enforcement) JavaScript or CAPTCHA to the client to double check if it's a real bot.

 

NEW QUESTION 16
In which scenario might you want to use the compression feature on FortiWeb?

  • A. When you are offering a music streaming service
  • B. Never, since most traffic today is already highly compressed
  • C. When you want to reduce buffering of video streams
  • D. When you are serving many corporate road warriors using 4G tablets and phones

Answer: B

Explanation:
FortiWeb might expend resources compressing responses that have already been compressed by the server.

 

NEW QUESTION 17
When is it possible to use a self-signed certificate, rather than one purchased from a commercial certificate authority?

  • A. If you are an enterprise whose computers all trust your active directory or other CA server
  • B. If you are an enterprise whose resources do not need security
  • C. If you are a small business or home office
  • D. If you are an enterprise whose employees use only mobile devices

Answer: B

Explanation:
This can include SSL/TLS certificates, code signing certificates, and S/MIME certificates. The reason why they're considered different from traditional certificate-authority signed certificates is that they're created, issued, and signed by the company or developer who is responsible for the website or software being signed. This is why self-signed certificates are considered unsafe for public-facing websites and applications.

 

NEW QUESTION 18
What can an administrator do if a client has been incorrectly period blocked?

  • A. Manually release the ID address from the temporary blacklist.
  • B. Disconnect the client from the network.
  • C. Nothing, it is not possible to override a period block.
  • D. Force a new IP address to the client.

Answer: A

Explanation:
Block Period
Enter the number of seconds that you want to block the requests. The valid range is 1-3,600 seconds. The default value is 60 seconds.
This option only takes effect when you choose Period Block in Action.
Note: That's a temporary blacklist so you can manually release them from the blacklist.

 

NEW QUESTION 19
Which algorithm is used to build mathematical models for bot detection?

  • A. SVM
  • B. HMM
  • C. HCM
  • D. SVN

Answer: A

Explanation:
FortiWeb uses SVM (Support Vector Machine) algorithm to build up the bot detection model

 

NEW QUESTION 20
FortiWeb offers the same load balancing algorithms as FortiGate.
Which two Layer 7 switch methods does FortiWeb also offer? (Choose two.)

  • A. Round robin
  • B. HTTP session-based round robin
  • C. HTTP user-based round robin
  • D. HTTP content routes

Answer: A,D

Explanation:
Reference:
http://fortinet.globalgate.com.ar/pdfs/FortiWeb/FortiWeb_DS.pdf

 

NEW QUESTION 21
You are using HTTP content routing on FortiWeb. You want requests for web application A to be forwarded to a cluster of web servers, which all host the same web application. You want requests for web application B to be forwarded to a different, single web server.
Which statement about this solution is true?

  • A. You must chain policies so that requests for web application A go to the virtual server for policy A, and requests for web application B go to the virtual server for policy B.
  • B. You must put the single web server in to a server pool, in order to use it with HTTP content routing.
  • C. The server policy applies the same protection profile to all of its protected web applications.
  • D. Static or policy-based routes are not required.

Answer: D

 

NEW QUESTION 22
What is one of the key benefits of the FortiGuard IP reputation feature?

  • A. It provides a document of IP addresses that are suspect, so that administrators can manually update their blacklists.
  • B. It is updated once per year.
  • C. It maintains a list of public IPs with a bad reputation for participating in attacks.
  • D. It maintains a list of private IP addresses.

Answer: C

Explanation:
FortiGuard IP Reputation service assigns a poor reputation, including virus-infected clients and malicious spiders/crawlers.

 

NEW QUESTION 23
......

NSE6_FWB-6.1 Dumps for NSE 6 Network Security Specialist Certified Exam Questions & Answer: https://www.testsimulate.com/NSE6_FWB-6.1-study-materials.html

Related Blogs

more
Go To NSE6_FWB-6.1 Questions

Copyright © 2026 TESTSIMULATE.COM. All rights reserved. All trademarks are the property of their respective owners and we don't provide actual questions from any vendor.