Free Download NSE4_FGT-6.4 Examp Dump: Fortinet.NSE4_FGT-6.4.VCEplus.2021-12-24.60q.tqb

File Info

Exam	Fortinet NSE 4 - FortiOS 6.4
Number	NSE4_FGT-6.4
File Name	Fortinet.NSE4_FGT-6.4.VCEplus.2021-12-24.60q.tqb
Size	7 MB
Posted	Dec 24, 2021
Download	Fortinet.NSE4_FGT-6.4.VCEplus.2021-12-24.60q.tqb

How to open VCEX & EXAM Files?

Files with VCEX & EXAM extensions can be opened by ProfExam Simulator.

Download
ProfExam Simulator

Purchase

Coupon: MASTEREXAM
With discount: 20%

Demo Questions

Question 1

Which two statements are true when FortiGate is in transparent mode?(Choose two.)

By default, all interfaces are part of the same broadcast domain.
The existing network IP schema must be changed when installing a transparent mode.
Static routes are required to allow traffic to the next hop.
FortiGate forwards frames without changing the MAC address.

Correct answer: AD

Explanation:

Reference: https://kb.fortinet.com/kb/viewAttachment.do?attachID=Fortigate_Transparent_Mode_Technical_Guide_FortiOS_4_0_version1.2.pdf&documentID=FD33113

Question 2

What inspection mode does FortiGate use if it is configured as a policy-based next-generation firewall (NGFW)?

Full Content inspection
Proxy-based inspection
Certificate inspection
Flow-based inspection

Correct answer: B

Question 3

Which two statements about IPsec authentication on FortiGate are correct? (Choose two.)

For a stronger authentication, you can also enable extended authentication (XAuth) to request the remote peer to provide a username and password
FortiGate supports pre-shared key and signature as authentication methods.
Enabling XAuth results in a faster authentication because fewer packets are exchanged.
A certificate is not required on the remote peer when you set the signature as the authentication method.

Correct answer: BD

Explanation:

Reference: https://docs.fortinet.com/document/fortigate/6.2.0/cookbook/913287/ipsec-vpn-authenticating-a-remote-fortigate-peer-with-a-pre-shared-key