NSE4_FGT-6.4試験無料問題集（165題）「Fortinet NSE 4

出題：1

Refer to the exhibits.

Exhibit A shows system performance output. Exhibit B shows a FortiGate configured with the default configuration of high memory usage thresholds. Based on the system performance output, which two statements are correct? (Choose two.)

A. FortiGate will start sending all files to FortiSandbox for inspection.

B. Administrators can access FortiGate only through the console port.

C. Administrators cannot change the configuration.

D. FortiGate has entered conserve mode.

正解：C,D 解答を投票する

出題：2

Which three statements are true regarding session-based authentication? (Choose three.)

A. It requires more resources.

B. HTTP sessions are treated as a single user.

C. It is not recommended if multiple users are behind the source NAT

D. IP sessions from the same source IP address are treated as a single user.

E. It can differentiate among multiple clients behind the same source IP address.

正解：A,B,E 解答を投票する

出題：3

An administrator needs to increase network bandwidth and provide redundancy.
What interface type must the administrator select to bind multiple FortiGate interfaces?

A. Software Switch interface

B. Aggregate interface

C. Redundant interface

D. VLAN interface

正解：B 解答を投票する

出題：4

Examine this FortiGate configuration:

How does the FortiGate handle web proxy traffic coming from the IP address 10.2.1.200 that requires authorization?

A. It always authorizes the traffic without requiring authentication.

B. It authenticates the traffic using the authentication scheme SCHEME1.

C. It authenticates the traffic using the authentication scheme SCHEME2.

D. It drops the traffic.

正解：B 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：5

Which of the following are valid actions for FortiGuard category based filter in a web filter profile ui proxy-based inspection mode? (Choose two.)

A. Allow

B. Warning

C. Exempt

D. Learn

正解：A,B 解答を投票する

出題：6

Which three criteria can a FortiGate use to look for a matching firewall policy to process traffic? (Choose three.)

A. Services defined in the firewall policy.

B. Lowest to highest policy ID number.

C. Destination defined as Internet Services in the firewall policy.

D. Highest to lowest priority defined in the firewall policy.

E. Source defined as Internet Services in the firewall policy.

正解：A,C,E 解答を投票する

出題：7

Refer to the exhibit to view the application control profile.

Users who use Apple FaceTime video conferences are unable to set up meetings.
In this scenario, which statement is true?

A. The category of Apple FaceTime is being blocked.

B. The category of Apple FaceTime is being monitored.

C. Apple FaceTime belongs to the custom monitored filter.

D. Apple FaceTime belongs to the custom blocked filter.

正解：D 解答を投票する

出題：8

What is the primary FortiGate election process when the HA override setting is disabled?

A. Connected monitored ports > Priority > System uptime > FortiGate Serial number

B. Connected monitored ports > System uptime > Priority > FortiGate Serial number

C. Connected monitored ports > Priority > HA uptime > FortiGate Serial number

D. Connected monitored ports > HA uptime > Priority > FortiGate Serial number

正解：D 解答を投票する

出題：9

To complete the final step of a Security Fabric configuration, an administrator must authorize all the devices on which device?

A. FortiAnalyzer

B. Downstream FortiGate

C. FortiManager

D. Root FortiGate

正解：D 解答を投票する

出題：10

An administrator is configuring an Ipsec between site A and siteB. The Remotes Gateway setting in both sites has been configured as Static IP Address. For site A, the local quick mode selector is 192.16.1.0/24 and the remote quick mode selector is 192.16.2.0/24. How must the administrator configure the local quick mode selector for site B?

A. 192.168.3.0/24

B. 192.168.2.0/24

C. 192.168.1.0/24

D. 192.168.0.0/8

正解：B 解答を投票する

NSE4_FGT-6.4試験無料問題集「Fortinet NSE 4 - FortiOS 6.4 認定」