Page: 1
/ 8
Total 36 questions
Which implementation is most suited for a deployment that must meet PCI DSS compliance criteria?
- A. SSL offloading with FortiWeb in reverse proxy mode
- B. SSL offloading with FortiWeb in PCI DSS mode
- C. SSL offloading with FortiWeb in transparency mode
- D. SSL offloading with FortiWeb in full transparent proxy mode
Answer : B
Review the following configuration:
What are two routing behaviors that you can expect on FortiWeb after this configuration change? (Choose two.)
- A. Non-HTTP traffic routed through the FortiWeb is allowed.
- B. IPv6 routing is enabled.
- C. Non-HTTP traffic destined to the FortiWeb virtual server IP address is dropped.
- D. Only ICMP traffic is allowed. All other traffic is dropped.
Answer : AC
An attacker attempts to send an SQL injection attack containing the known attack string 'root'; -- through an API call.
Which FortiWeb inspection feature will be able to detect this attack the quickest?
- A. API gateway rule
- B. Known signatures
- C. Machine learning (ML)-based API protection—anomaly detection
- D. ML-based API protection—threat detection
Answer : B
Refer to the exhibit.
What are two additional configuration elements that you must be configure for this API gateway? (Choose two.)
- A. You must define rate limits.
- B. You must define URL prefixes.
- C. You must select a setting in the Allow User Group field.
- D. You must enable and configure Host Status.
Answer : AB
31 days access 