What methods can a web browser use to learn the URL where a web proxy PAC file is located?
(Choose two.)
Response:
A. Manually appending the PAC URL to the destination server URL.
B. Using WPAD.
C. Using the Forwarded HTTP header.
D. Manually configuring the PAC's URL in the browser settings.
正解:B,D
質問 2:
Why must you use aggressive mode when a local FortiGate IPsec gateway hosts multiple dialup tunnels?
Response:
A. The remote peers are able to provide their peer IDs in the first message with aggressive mode.
B. Main mode does not support XAuth for user authentication.
C. FortiClient supports aggressive mode.
D. The FortiGate is able to handle NATed connections only with aggressive mode.
正解:A
質問 3:
Which of the following statements about advanced AD access mode for the FSSO collector agent are true?
(Choose two.)
Response:
A. FortiGate can act as an LDAP client to configure the group filters.
B. It is only supported if DC agents are deployed.
C. It supports monitoring of nested groups.
D. It uses the Windows convention for naming; that is, Domain\Username.
正解:A,B
質問 4:
Which of the following statements are true regarding the SD-WAN feature on FortiGate?
(Choose two.)
Response:
A. SD-WAN provides route failover protection, but cannot load-balance traffic.
B. FortiGate supports only one SD-WAN interface per VDOM.
C. Each member interface requires its own firewall policy to allow traffic.
D. An SD-WAN static route does not require a next-hop gateway IP address.
正解:B,D
質問 5:
Which actions can be configured in an application control profile?
(Choose three.)
Response:
A. Quarantine
B. Block
C. Monitor
D. Warning
E. Authenticate
正解:A,B,C
質問 6:
Which statements are true regarding active authentication?
(Choose two.)
Response:
A. The firewall policy must allow the HTTP, HTTPS, FTP, and/or Telnet protocols.
B. Enabling authentication on a policy always enforces active authentication.
C. Active authentication is always used before passive authentication.
D. Active authentication prompts the user for login credentials.
正解:A,D
Kozue -
本当にのNSE4_FGT-5.6ひとつしか読みませんでしたが、記載内容への理解を深めることで合格しました。Pass4Testありがとう