50%(2)1 out of 2 people found this document helpful
This preview shows page 1 - 3 out of 10 pages.
Fortinet.NSE4_FGT-6.2.v2020-01-26.q30Exam Code:NSE4_FGT-6.2Exam Name:Fortinet NSE 4 - FortiOS 6.2Certification Provider:FortinetFree Question Number:30Version:v2020-01-26# of views:119# of Questions views:419NEW QUESTION: 1An administrator is attempting to allow access to through a firewall policy thatis configured with a web filter and an SSL inspection profile configured for deep inspection. Whichof the following are possible actions to eliminate the certificate error generated by deepinspection? (Choose two.)A.Configure fortinet.com access to bypass the IPS engine.B.Configure an SSL-inspection exemption for fortinet.com.C.Implement firewall authentication for all users that need access to fortinet.com.D.Manually install the FortiGate deep inspection certificate as a trusted CA.Answer: B,CNEW QUESTION: 2What FortiGate configuration is required to actively prompt users for credentials?NEW QUESTION: 3Which of the following statements about central NAT are true? (Choose two.)NEW QUESTION: 4
An administrator has configured two VLAN interfaces:A DHCP server is connected to the VLAN10 interface. A DHCP client is connected to the VLAN5interface.However, the DHCP client cannot get a dynamic IP address from the DHCP server. What is thecause of the problem?NEW QUESTION: 5Which of the following statements correctly describes FortiGates route lookup behavior whensearching for a suitable gateway? (Choose two)A.Lookup is done on every packet, regardless of directionB.Lookup is done on the first packet from the session originatorC.Lookup is done on the last packet sent from the responderD.Lookup is done on the trust reply packet from the responderAnswer: B,C