The latest update of Leap4Pass Fortinet NSE4_FGT-6.4 test dumps contains PDF and VCE, all test questions are from the test room and real test cracking. All Fortinet NSE4_FGT-6.4 test questions are provided by Lead4Pass test experts.
You can get the latest exam questions and answers here. Get the complete dumps of NSE4_FGT-6.4: https://www.leads4pass.com/nse4_fgt-6-4.html (Q&A: 155).
All Fortinet NSE4_FGT-6.4 test questions have been updated and the answers have been corrected! Make sure your exam questions are true and valid to help you pass the first exam!
[2021.8] Fortinet NSE4_FGT-6.4 exam PDF uploaded from google drive, online download provided by the latest update of Lead4pass:
https://drive.google.com/file/d/1sdQTHGXctPnoMZc9SUsB9bOxcj1Fu5O8/
Free sharing of Fortinet NSE4_FGT-6.4 exam questions and answers online practice test
QUESTION 1
Examine the following web filtering log. 
Which statement about the log message is true?
A. The action for the category Games is set to block.
B. The usage quota for the IP address 10.0.1.10 has expired
C. The name of the applied web filter profile is default.
D. The web site miniclip.com matches a static URL filter whose action is set to Warning.
Correct Answer: C
QUESTION 2
An administrator must disable RPF check to investigate an issue. Which method is best suited to disable RPF without
affecting features like antivirus and intrusion prevention system?
A. Enable asymmetric routing, so the RPF check will be bypassed.
B. Disable the RPF check at the FortiGate interface level for the source check.
C. Disable the RPF check at the FortiGate interface level for the reply check.
D. Enable asymmetric routing at the interface level.
Correct Answer: D
Reference: https://kb.fortinet.com/kb/documentLink.do?externalID=FD33955
QUESTION 3
Refer to the exhibit.
Which contains a session diagnostic output. Which statement is true about the session diagnostic output?
A. The session is in SYN_SEXT state.
B. The session is in FIN_ACK state.
C. The session is in FTN_WAIT state.
D. The session is in ESTABLISHED state.
Correct Answer: D
QUESTION 4
Which two actions can you perform only from the root FortiGate in a Security Fabric? (Choose two.)
A. Shut down/reboot a downstream FortiGate device.
B. Disable FortiAnalyzer logging for a downstream FortiGate device.
C. Log in to a downstream FortiSwitch device.
D. Ban or unban compromised hosts.
Correct Answer: A
QUESTION 5
Which two statements are true when FortiGate is in transparent mode? (Choose two.)
A. By default, all interfaces are part of the same broadcast domain.
B. The existing network IP schema must be changed when installing a transparent mode.
C. Static routes are required to allow traffic to the next hop.
D. FortiGate forwards frames without changing the MAC address.
Correct Answer: AD
Reference: https://kb.fortinet.com/kb/viewAttachment.do?
attachID=Fortigate_Transparent_Mode_Technical_Guide_FortiOS_4_0_version1.2.pdfanddocumentID= FD33113
QUESTION 6
Which two statements are true about the RPF check? (Choose two.)
A. The RPF check is run on the first sent packet of any new session.
B. The RPF check is run on the first reply packet of any new session.
C. The RPF check is run on the first sent and reply packet of any new session.
D. RPF is a mechanism that protects FortiGuard and your network from IP spoofing attacks.
Correct Answer: AD
Reference: https://www.programmersought.com/article/16383871634/
QUESTION 7
An administrator is running the following sniffer command:
Which three pieces of Information will be Included in me sniffer output? (Choose three.)
A. Interface name B. Packet payload
C. Ethernet header
D. IP header
E. Application header
Correct Answer: BCE
QUESTION 8
An administrator wants to configure Dead Peer Detection (DPD) on IPSEC VPN for detecting dead tunnels. The
requirement is that FortiGate sends DPD probes only when no traffic is observed in the tunnel.
Which DPD mode on FortiGate will meet the above requirement?
A. Disabled
B. On Demand
C. Enabled
D. On Idle
Correct Answer: D
QUESTION 9
Refer to the exhibit to view the application control profile.
Users who use Apple FaceTime video conferences are unable to set up meetings. In this scenario, which statement is
true?
A. Apple FaceTime belongs to the custom monitored filter.
B. The category of Apple FaceTime is being monitored.
C. Apple FaceTime belongs to the custom blocked filter.
D. The category of Apple FaceTime is being blocked.
Correct Answer: A
QUESTION 10
Refer to the exhibit.
The exhibit contains a network diagram, central SNAT policy, and IP pool configuration. The WAN (port1) interface has
the IP address 10.200.1.1/24. The LAN (port3) interface has the IP address 10.0.1.254/24. A firewall policy is configured
to allow to destinations from LAN (port3) to WAN (port1). Central NAT is enabled, so NAT settings from matching
Central SNAT policies will be applied. Which IP address will be used to source NAT the traffic, if the user on LocalClient (10.0.1.10) pings the IP address of Remote-FortiGate (10.200.3.1)?
A. 10.200.1.149
B. 10.200.1.1
C. 10.200.1.49
D. 10.200.1.99
Correct Answer: B
QUESTION 11
Refer to the exhibit.
In the network shown in the exhibit, the web client cannot connect to the HTTP web server. The administrator runs the
FortiGate built-in sniffer and gets the output as shown in the exhibit. What should the administrator do next to
troubleshoot the problem?
A. Run a sniffer on the web server.
B. Capture the traffic using an external sniffer connected to port1.
C. Execute another sniffer in the FortiGate, this time with the filter “host 10.0.1.10”
D. Execute a debug flow.
Correct Answer: D
QUESTION 12
What is the limitation of using a URL list and application control on the same firewall policy, in NGFW policy-based
mode?
A. It limits the scope of application control to the browser-based technology category only.
B. It limits the scope of application control to scan application traffic based on application category only.
C. It limits the scope of application control to scan application traffic using parent signatures only
D. It limits the scope of application control to scan application traffic on DNS protocol only.
Correct Answer: B
QUESTION 13
If Internet Service is already selected as Source in a firewall policy, which other configuration objects can be added to
the Source filed of a firewall policy?
A. IP address
B. Once Internet Service is selected, no other object can be added
C. User or User Group
D. FQDN address
Correct Answer: A
Reference: https://docs.fortinet.com/document/fortigate/6.2.5/cookbook/179236/using-internet-service-inpolicy
Share in August! Fortinet NSE4_FGT-6.4 exam pdf, NSE4_FGT-6.4 exam questions and answers,
And get the complete NSE4_FGT-6.4 exam dumps. The latest updated effective NSE4_FGT-6.4 brain dumps come from Lead4pass’s NSE4_FGT-6.4 Dumps (including PDF and VCE): https://www.leads4pass.com/nse4_fgt-6-4.html (155 Q&A)
ps. [Part] Get free Fortinet NSE4_FGT-6.4 dumps PDF online: https://drive.google.com/file/d/1sdQTHGXctPnoMZc9SUsB9bOxcj1Fu5O8/