This page was exported from Lead2pass New Updated Exam Questions [ https://www.getfreevce.com ] Export date:Mon Dec 23 13:10:46 2024 / +0000 GMT ___________________________________________________ Title: [April 2018] New Lead2pass Fortinet NSE4 New Questions Free Download 562q --------------------------------------------------- New Released Exam NSE4 PDF Free From the Lead2pass: https://www.lead2pass.com/nse4.html QUESTION 11Which two web filtering inspection modes inspect the full URL? (Choose two.) A.    DNS-based.B.    Proxy-based.C.    Flow-based.D.    URL-based.  Answer: BC QUESTION 12Which web filtering inspection mode inspects DNS traffic? A.    DNS-based.B.    FQDN-based.C.    Flow-based.D.    URL-based. Answer: A QUESTION 13Which statements are correct regarding URL filtering on a FortiGate unit? (Choose two.) A.    The allowed actions for URL filtering include allow, block, monitor and exempt.B.    The allowed actions for URL filtering are Allow and Block only.C.    URL filters may be based on patterns using simple text, wildcards and regular expressions.D.    URL filters are based on simple text only and require an exact match. Answer: AC QUESTION 14Which of the following regular expression patterns make the terms "confidential data" case insensitive? A.    [confidential data]B.    /confidential data/iC.    i/confidential data/D.    "confidential data" Answer: B QUESTION 15Which statements are correct regarding application control? (Choose two.) A.    It is based on the IPS engine.B.    It is based on the AV engine.C.    It can be applied to SSL encrypted traffic.D.    Application control cannot be applied to SSL encrypted traffic. Answer: AC QUESTION 16How do you configure a FortiGate to apply traffic shaping to P2P traffic, such as BitTorrent? A.    Apply a traffic shaper to a BitTorrent entry in an application control list, which is then applied to a firewall policy.B.    Enable the shape option in a firewall policy with service set to BitTorrent.C.    Define a DLP rule to match against BitTorrent traffic and include the rule in a DLP sensor with traffic shaping enabled.D.    Apply a traffic shaper to a protocol options profile. Answer: A QUESTION 17Which statements are true regarding traffic shaping that is applied in an application sensor, and associated with a firewall policy? (Choose two.) A.    Shared traffic shaping cannot be used.B.    Only traffic matching the application control signature is shaped.C.    Can limit the bandwidth usage of heavy traffic applications.D.    Per-IP traffic shaping cannot be used. Answer: BC QUESTION 18A static route is configured for a FortiGate unit from the CLI using the following commands: config router staticedit 1set device "wan1"set distance 20set gateway 192.168.100.1nextend Which of the following conditions is NOT required for this static default route to be displayed in the FortiGate unit's routing table? A.    The Administrative Status of the wan1 interface is displayed as Up.B.    The Link Status of the wan1 interface is displayed as Up.C.    All other default routes should have an equal or higher distance.D.    You must disable DHCP client on that interface. Answer: D QUESTION 19When does a FortiGate load-share traffic between two static routes to the same destination subnet? A.    When they have the same cost and distance.B.    When they have the same distance and the same weight.C.    When they have the same distance and different priority.D.    When they have the same distance and same priority. Answer: D QUESTION 20Examine the static route configuration shown below; then answer the question following it. config router staticedit 1set dst 172.20.1.0 255.255.255.0set device port1set gateway 172.11.12.1set distance 10set weight 5nextedit 2set dst 172.20.1.0 255.255.255.0set blackhole enableset distance 5set weight 10nextend Which of the following statements correctly describes the static routing configuration provided? (Choose two.) A.    All traffic to 172.20.1.0/24 is dropped by the FortiGate.B.    As long as port1 is up, all traffic to 172.20.1.0/24 is routed by the static route number 1. If the interface port1 is down, the traffic is routed using the blackhole route.C.    The FortiGate unit does NOT create a session entry in the session table when the traffic is being routed by the blackhole route.D.    The FortiGate unit creates a session entry in the session table when the traffic is being routed by the blackhole route. Answer: AC NSE4 dumps full version (PDF&VCE): https://www.lead2pass.com/nse4.html Large amount of free NSE4 exam questions on Google Drive: https://drive.google.com/open?id=0B3Syig5i8gpDeFZLNEJDeDRQdlE You may also need: NSE5 exam dumps: https://drive.google.com/open?id=0B3Syig5i8gpDOTJuU1o1TTliNVk --------------------------------------------------- Images: --------------------------------------------------- --------------------------------------------------- Post date: 2018-04-17 09:59:40 Post date GMT: 2018-04-17 09:59:40 Post modified date: 2018-04-17 09:59:40 Post modified date GMT: 2018-04-17 09:59:40 ____________________________________________________________________________________________ Export of Post and Page as text file has been powered by [ Universal Post Manager ] plugin from www.gconverters.com