• Home
  • Articles
  • NSE6_FWB-6.1 Certification - Valid Exam Dumps Questions Study Guide! (Updated 30 Questions) [Q18-Q38]

NSE6_FWB-6.1 Certification - Valid Exam Dumps Questions Study Guide! (Updated 30 Questions) [Q18-Q38]

Share

NSE6_FWB-6.1 Certification – Valid Exam Dumps Questions Study Guide! (Updated 30 Questions)

NSE6_FWB-6.1 Dumps are Available for Instant Access using  ExamTorrent 

NEW QUESTION 18
What must you do with your FortiWeb logs to ensure PCI DSS compliance?

  • A. Erase them every two weeks
  • B. Compress them into a .zip file format
  • C. Enable masking of sensitive data
  • D. Store in an off-site location

Answer: C

 

NEW QUESTION 19
What is one of the key benefits of the FortiGuard IP reputation feature?

  • A. It maintains a list of public IPs with a bad reputation for participating in attacks.
  • B. It maintains a list of private IP addresses.
  • C. It is updated once per year.
  • D. It provides a document of IP addresses that are suspect, so that administrators can manually update their blacklists.

Answer: A

Explanation:
FortiGuard IP Reputation service assigns a poor reputation, including virus-infected clients and malicious spiders/crawlers.

 

NEW QUESTION 20
Refer to the exhibit.

Many legitimate users are being identified as bots. FortiWeb bot detection has been configured with the settings shown in the exhibit. The FortiWeb administrator has already verified that the current model is accurate.
What can the administrator do to fix this problem, making sure that real bots are not allowed through FortiWeb?

  • A. Enable Bot Confirmation
  • B. Change Model Type to Strict
  • C. Change Action under Action Settings to Alert
  • D. Disable Dynamically Update Model

Answer: A

Explanation:
Bot Confirmation
If the number of anomalies from a user has reached the Anomaly Count, the system executes Bot Confirmation before taking actions.
The Bot Confirmation is to confirm if the user is indeed a bot. The system sends RBE (Real Browser Enforcement) JavaScript or CAPTCHA to the client to double check if it's a real bot.

 

NEW QUESTION 21
What key factor must be considered when setting brute force rate limiting and blocking?

  • A. Multiple clients connecting to multiple resources
  • B. Multiple clients sharing a single Internet connection
  • C. A single client contacting multiple resources
  • D. Multiple clients from geographically diverse locations

Answer: A

 

NEW QUESTION 22
Review the following configuration:

What is the expected result of this configuration setting?

  • A. When machine learning (ML) is in its collecting phase, FortiWeb will accept an unlimited number of samples from the same source IP address.
  • B. When machine learning (ML) is in its collecting phase, FortiWeb will not accept any samples from any source IP addresses.
  • C. When machine learning (ML) is in its running phase, FortiWeb will accept an unlimited number of samples from the same source IP address.
  • D. When machine learning (ML) is in its running phase, FortiWeb will accept a set number of samples from the same source IP address.

Answer: A

 

NEW QUESTION 23
What can an administrator do if a client has been incorrectly period blocked?

  • A. Manually release the ID address from the temporary blacklist.
  • B. Nothing, it is not possible to override a period block.
  • C. Force a new IP address to the client.
  • D. Disconnect the client from the network.

Answer: A

Explanation:
Block Period
Enter the number of seconds that you want to block the requests. The valid range is 1-3,600 seconds. The default value is 60 seconds.
This option only takes effect when you choose Period Block in Action.
Note: That's a temporary blacklist so you can manually release them from the blacklist.

 

NEW QUESTION 24
A client is trying to start a session from a page that would normally be accessible only after the client has logged in.
When a start page rule detects the invalid session access, what can FortiWeb do? (Choose three.)

  • A. Redirect the client to the login page
  • B. Display an access policy message, then allow the client to continue
  • C. Allow the page access, but log the violation
  • D. Prompt the client to authenticate
  • E. Reply with a 403 Forbidden HTTP error

Answer: A,C,E

 

NEW QUESTION 25
Refer to the exhibit.

There is only one administrator account configured on FortiWeb. What must an administrator do to restrict any brute force attacks that attempt to gain access to the FortiWeb management GUI?

  • A. The configuration changes must be made on the upstream device.
  • B. Change the Access Profile to Read_Only.
  • C. Configure IPv4 Trusted Host # 3 with a specific IP address.
  • D. Delete the built-in administrator user and create a new one.

Answer: D

 

NEW QUESTION 26
The FortiWeb machine learning (ML) feature is a two-phase analysis mechanism.
Which two functions does the first layer perform? (Choose two.)

  • A. Determines whether an anomaly is a real attack or just a benign anomaly that should be ignored
  • B. Builds a threat model behind every parameter and HTTP method
  • C. Determines if a detected threat is a false-positive or not
  • D. Determines whether traffic is an anomaly, based on observed application traffic over time

Answer: B,D

Explanation:
The first layer uses the Hidden Markov Model (HMM) and monitors access to the application and collects data to build a mathematical model behind every parameter and HTTP method.

 

NEW QUESTION 27
Which would be a reason to implement HTTP rewriting?

  • A. The original page has moved to a new URL
  • B. To send the request to secure channel
  • C. The original page has moved to a new IP address
  • D. To replace a vulnerable function in the requested URL

Answer: A

Explanation:
Create a new URL rewriting rule.

 

NEW QUESTION 28
True transparent proxy mode is best suited for use in which type of environment?

  • A. Small office to home office environments
  • B. Flexible environments where you can easily change the IP addressing scheme
  • C. New networks where infrastructure is not yet defined
  • D. Environments where you cannot change the IP addressing scheme

Answer: D

Explanation:
Does not require changes to the IP address scheme of the network. Requests are destined for a web server and not the FortiWeb appliance. This operation mode supports the same feature set as True Transparent Proxy mode.

 

NEW QUESTION 29
Which statement about local user accounts is true?

  • A. They are best suited for large environments with many users.
  • B. They must be assigned, regardless of any other authentication.
  • C. They cannot be used for site publishing.
  • D. They can be used for SSO.

Answer: D

Explanation:
You can configure the Remedy Single Sign-On server to authenticate TrueSight Capacity Optimization users as local users.

 

NEW QUESTION 30
......

Fortinet NSE6_FWB-6.1 Exam Practice Test Questions: https://www.examtorrent.com/NSE6_FWB-6.1-valid-vce-dumps.html

NSE6_FWB-6.1 Dumps 2022 - New Fortinet NSE6_FWB-6.1 Exam Questions: https://drive.google.com/open?id=1g0dgg7RTuab-HuWdMgFNwNy-qIH722K-

Related Articles

more
Fortinet NSE6_FWB-6.1 Certification Practice Exam

ExamTorrent offers you the best exam torrent, excellent test torrent and valid exam dumps. Choose us, 100% pass for sure! We provide one-stop service and full package of exam torrent that helps you pass exams and acquire the certificates successfully.

Latest Test Dump

Useful Links

Contact Us

Our Working Time: ( GMT 0:00-15:00 )
From Monday to Saturday

Support: Contact now 

If you have any question please leave me your email address, we will reply and send email to you in 12 hours.

Copyright © 2026 ExamTorrent NETWORK CO.,LIMITED. All Rights Reserved. All trademarks used are properties of their respective owners. Privacy Policy

Disclaimer:
CFA Institute does not endorse, promote or warrant the accuracy or quality of these questions. CFA® and Chartered Financial Analyst® are registered trademarks owned by CFA Institute.
ExamTorrent.com does not offer exam dumps or questions from actual exams. We offer learning material and practice tests created by subject matter experts to assist and help learners prepare for those exams. All certification brands used on the website are owned by the respective brand owners. ExamTorrent does not own or claim any ownership on any of the brands.