Welcome to ExamTopics
ExamTopics Logo
- Expert Verified, Online, Free.
Mail Us [email protected]
Menu
sale

Want to Unlock All Questions for this Exam?

Full Exam Access, Discussions, No Robots Checks

27
Students signed up in the last 24H

Fortinet NSE4_FGT-6.4 Exam Actual Questions

The questions for NSE4_FGT-6.4 were last updated on April 7, 2024.
  • Viewing page 1 out of 31 pages.
  • Viewing questions 1-4 out of 128 questions
 

Topic 1 - Single Topic

Question #1 Topic 1

Which two statements are true when FortiGate is in transparent mode? (Choose two.)

  • A. By default, all interfaces are part of the same broadcast domain.
  • B. The existing network IP schema must be changed when installing a transparent mode FortiGate in the network.
  • C. Static routes are required to allow traffic to the next hop.
  • D. FortiGate forwards frames without changing the MAC address.
Reveal Solution Hide Solution   Discussion   12

Correct Answer: AD 🗳️
Reference:
https://kb.fortinet.com/kb/viewAttachment.do?
attachID=Fortigate_Transparent_Mode_Technical_Guide_FortiOS_4_0_version1.2.pdf&documentID=FD33113

Question #2 Topic 1

What inspection mode does FortiGate use if it is configured as a policy-based next-generation firewall (NGFW)?

  • A. Full Content inspection
  • B. Proxy-based inspection
  • C. Certificate inspection
  • D. Flow-based inspection
Reveal Solution Hide Solution   Discussion   13

Correct Answer: D 🗳️

Question #3 Topic 1

Which two statements about IPsec authentication on FortiGate are correct? (Choose two.)

  • A. For a stronger authentication, you can also enable extended authentication (XAuth) to request the remote peer to provide a username and password.
  • B. FortiGate supports pre-shared key and signature as authentication methods.
  • C. Enabling XAuth results in a faster authentication because fewer packets are exchanged.
  • D. A certificate is not required on the remote peer when you set the signature as the authentication method.
Reveal Solution Hide Solution   Discussion   9

Correct Answer: AB 🗳️
Reference:
https://docs.fortinet.com/document/fortigate/6.0.0/handbook/100552/using-xauth-authentication

Question #4 Topic 1

Which scanning technique on FortiGate can be enabled only on the CLI?

  • A. Heuristics scan
  • B. Trojan scan
  • C. Antivirus scan
  • D. Ransomware scan
Reveal Solution Hide Solution   Discussion   14

Correct Answer: A 🗳️
Reference:
https://docs.fortinet.com/document/fortigate/6.0.0/handbook/927086/examples

Next Questions

Get IT Certification

Unlock free, top-quality video courses on ExamTopics with a simple registration. Elevate your learning journey with our expertly curated content. Register now to access a diverse range of educational resources designed for your success. Start learning today with ExamTopics!

Start Learning for free
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel