Fortinet NSE4
Get real exam questions for NSE4 Fortinet Network Security Expert 4 Written Exam (400). 100% Free.
NSE4 Premium VCE File
Learn More
100% Pass Guarantee - Dumps Verified - Instant Download
150 Lectures, 20 Hours
Q1. - (Topic 14) In a high availability cluster operating in active-active mode, which of the following correctly describes the path taken by the SYN packet of an HTTP session that is offloaded to a slave unit? A. Request: internal host; slave FortiGate; master FortiGate; Internet; web server. B. Request: internal host; slave FortiGate; Internet; web server. C. Request: internal host; slave F
Q1. - (Topic 14) An administrator has formed a high availability cluster involving two FortiGate units. [ Multiple upstream Layer 2 switches] -- [ FortiGate HA Cluster ] -- [ Multiple downstream Layer 2 switches ] The administrator wishes to ensure that a single link failure will have minimal impact upon the overall throughput of traffic through this cluster. Which of the following options de
Q1. - (Topic 14) Two devices are in an HA cluster, the device hostnames are STUDENT and REMOTE. Exhibit A shows the command output of diagnose sys session stat for the STUDENT device. Exhibit B shows the command output of diagnose sys session stat for the REMOTE device. Exhibit A: Exhibit B: Given the information provided in the exhibits, which of the following statements are correct? (Choose
Q1. - (Topic 16) Examine the following log message for IPS: 2012-07-01 09:54:28 oid=2 log_id=18433 type=ips subtype=anomaly pri=alert vd=root severity="critical" src="192.168.3.168" dst="192.168.3.170" src_int="port2" serial=0 status="detected" proto=1 service="icmp" count=1 attack_name="icmp_flood" icmp_id="0xa8a4" icmp_type="0x08" icmp_code="0x00" attack_id=16777316 sensor="1" ref="http://www
Q1. - (Topic 12) A FortiGate is configured with multiple VDOMs. An administrative account on the device has been assigned a Scope value of VDOM:root. Which of the following settings will this administrator be able to configure? (Choose two.) A. Firewall addresses. B. DHCP servers. C. FortiGuard Distribution Network configuration. D. System hostname. View AnswerAnswer: A,B Q2. - (Topic 4
Q1. - (Topic 11) In the case of TCP traffic, which of the following correctly describes the routing table lookups performed by a FortiGate operating in NAT/Route mode, when searching for a suitable gateway? A. A lookup is done only when the first packet coming from the client (SYN) arrives. B. A lookup is done when the first packet coming from the client (SYN) arrives, and a second one is perf
Q1. - (Topic 17) Which statement describes what the CLI command diagnose debug authd fsso list is used for? A. Monitors communications between the FSSO collector agent and FortiGate unit. B. Displays which users are currently logged on using FSSO. C. Displays a listing of all connected FSSO collector agents. D. Lists all DC Agents installed on all domain controllers. View AnswerAnswer: B
Q1. - (Topic 20) Examine at the output below from the diagnose sys top command: # diagnose sys top 1 Run Time: 11 days, 3 hours and 29 minutes 0U, 0N, 1S, 99I; 971T, 528F, 160KF sshd 123 S 1.9 1.2 ipsengine 61 S < 0.0 5.2 miglogd 45 S 0.0 4.9 pyfcgid 75 S 0.0 4.5 pyfcgid 73 S 0.0 3.9 Which statements are true regarding the output above? (Choose two.) A. The sshd process is the one consumi
Q1. - (Topic 5) Regarding the use of web-only mode SSL VPN, which statement is correct? A. It supports SSL version 3 only. B. It requires a Fortinet-supplied plug-in on the web client. C. It requires the user to have a web browser that supports 64-bit cipher length. D. The JAVA run-time environment must be installed on the client. View AnswerAnswer: C Q2. - (Topic 6) What is IPsec Perfe
Q1. - (Topic 15) Review the IPsec diagnostics output of the command diagnose vpn tunnel list shown in the exhibit below. Which statements are correct regarding this output? (Choose two.) A. The connecting client has been allocated address 172.20.1.1. B. In the Phase 1 settings, dead peer detection is enabled. C. The tunnel is idle. D. The connecting client has been allocated address 10.200.
Q1. - (Topic 6) You are the administrator in charge of a FortiGate acting as an IPsec VPN gateway using route-based mode. Users from either side must be able to initiate new sessions. There is only 1 subnet at either end and the FortiGate already has a default route. Which two configuration steps are required to achieve these objectives? (Choose two.) A. Create one firewall policy. B. Create
Q1. - (Topic 2) What logging options are supported on a FortiGate unit? (Choose two.) A. LDAP B. Syslog C. FortiAnalyzer D. SNMP View AnswerAnswer: B,C Q2. - (Topic 7) A FortiGate is configured to receive push updates from the FortiGuard Distribution Network, however, updates are not being received. Which are two reasons for this problem? (Choose two.) A. The FortiGate is connected to
Q1. - (Topic 15) Review the IPsec diagnostics output of the command diagnose vpn tunnel list shown in the exhibit. Which statements is correct regarding this output? (Select one answer). A. One tunnel is rekeying. B. Two tunnels are rekeying. C. Two tunnels are up. D. One tunnel is up. View AnswerAnswer: C Q2. - (Topic 21) What functions can the IPv6 Neighbor Discovery protocol accompl
Q1. - (Topic 3) Examine the following CLI configuration: config system session-ttl set default 1800 end What statement is true about the effect of the above configuration line? A. Sessions can be idle for no more than 1800 seconds. B. The maximum length of time a session can be open is 1800 seconds. C. After 1800 seconds, the end user must re-authenticate. D. After a session has been open fo
Q1. - (Topic 1) What are valid options for handling DNS requests sent directly to a FortiGates interface IP? (Choose three.) A. Conditional-forward. B. Forward-only. C. Non-recursive. D. Iterative. E. Recursive. View AnswerAnswer: B,C,E Q2. - (Topic 16) Review the IPS sensor filter configuration shown in the exhibit Based on the information in the exhibit, which statements are correct
Q1. - (Topic 10) Which statements are true regarding traffic shaping that is applied in an application sensor, and associated with a firewall policy? (Choose two.) A. Shared traffic shaping cannot be used. B. Only traffic matching the application control signature is shaped. C. Can limit the bandwidth usage of heavy traffic applications. D. Per-IP traffic shaping cannot be used. View Answer
Q1. - (Topic 7) Examine the exhibit; then answer the question below. Which statement describes the green status indicators that appear next to the different FortiGuard Distribution Network services as illustrated in the exhibit? A. They indicate that the FortiGate has the latest updates available from the FortiGuard Distribution Network. B. They indicate that updates are available and should
Q1. - (Topic 1) Which network protocols are supported for administrative access to a FortiGate unit? (Choose three.) A. SNMP B. WINS C. HTTP D. Telnet E. SSH View AnswerAnswer: C,D,E Q2. - (Topic 14) Two devices are in an HA cluster, the device hostnames are STUDENT and REMOTE. Exhibit A shows the command output of diagnose sys session stat for the STUDENT device. Exhibit B shows the c
Q1. - (Topic 6) An administrator wants to create an IPsec VPN tunnel between two FortiGate devices. Which three configuration steps must be performed on both units to support this scenario? (Choose three.) A. Create firewall policies to allow and control traffic between the source and destination IP addresses. B. Configure the appropriate user groups to allow users access to the tunnel. C. S