This page was exported from Braindump2go Free Exam Dumps with PDF and VCE Collection [ https://www.mcitpdump.com ] Export date:Thu Apr 25 4:11:07 2024 / +0000 GMT ___________________________________________________ Title: [2017-July-News]Braindump2go NSE4 PDF Dumps Instant Download[311-321] --------------------------------------------------- 2017/July New NSE4 Exam Dumps with PDF and VCE Free Updated in www.Braindump2go.com  Today!100% NSE4 Real Exam Questions! 100% NSE4 Exam Pass Guaranteed! 1.|2017 New NSE4 Exam Dumps (PDF & VCE) 360Q&As Download:https://www.braindump2go.com/nse4.html 2.|2017 New NSE4 Exam Questions & Answers Download:https://drive.google.com/drive/folders/0B75b5xYLjSSNVi1ISU1vQUxBOTg?usp=sharing QUESTION 311View the example routing table. Which route will be selected when trying to reach 10.20.30.254?  A.    10.20.30.0/26 [10/0] via 172.20.168.254, port2B.    The traffic will be dropped because it cannot be routed.C.    10.20.30.0/24 [10/0] via 172.20.167.254, port3D.    0.0.0.0/0 [10/0] via 172.20.121.2, port1 Answer: A QUESTION 312When browsing to an internal web server using a web-mode SSL VPN bookmark, which IP address is used as the source of the HTTP request? A.    The FortiGate unit's public IP addressB.    The FortiGate unit's internal IP addressC.    The remote user's virtual IP addressD.    The remote user's public IP address Answer: B QUESTION 313What is FortiGate's behavior when local disk logging is disabled? A.    Only real-time logs appear on the FortiGate dashboard.B.    No logs are generated.C.    Alert emails are disabled.D.    Remote logging is automatically enabled. Answer: A QUESTION 314What traffic and attacks can be blocked by a web application firewall (WAF) profile? (Choose three.) A.    Traffic to inappropriate web sitesB.    SQL injection attacksC.    Server information disclosure attacksD.    Credit card data leaksE.    Traffic to botnet command and control (C&C) servers Answer: BCE QUESTION 315Which statements about One-to-One IP pool are true? (Choose two.) A.    It allows configuration of ARP replies.B.    It allows fixed mapping of an internal address range to an external address range.C.    It is used for destination NAT.D.    It does not use port address translation. Answer: BC QUESTION 316Which statements correctly describe transparent mode operation? (Choose three.) A.    All interfaces of the transparent mode FortiGate device must be on different IP subnets.B.    The transparent FortiGate is visible to network hosts in an IP traceroute.C.    It permits inline traffic inspection and firewalling without changing the IP scheme of the network.D.    Ethernet packets are forwarded based on destination MAC addresses, not IP addresses.E.    The FortiGate acts as transparent bridge and forwards traffic at Layer-2. Answer: CDE QUESTION 317View the exhibit. What is the effect of the Disconnect Cluster Member operation as shown in the exhibit? (Choose two.)  A.    The HA mode changes to standalone.B.    The firewall policies are deleted on the disconnected member.C.    The system hostname is set to the FortiGate serial number.D.    The port3 is configured with an IP address for management access. Answer: AD QUESTION 318What step is required an SSL VPN to access to an internal server using port forward mode? A.    Configure the virtual IP addresses to be assigned to the SSL VPN users.B.    Install FortiClient SSL VPN clientC.    Create a SSL VPN realm reserved for clients using port forward mode.D.    Configure the client application to forward IP traffic to a Java applet proxy. Answer: D QUESTION 319View the exhibit. This is a sniffer output of a telnet connection request from 172.20.120.186 to the port1 interface of FGT1.  In this scenario. FGT1 has the following routing table: Assuming telnet service is enabled for port1, which of the following statements correctly describes why FGT1 is not responding? A.    The port1 cable is disconnected.B.    The connection is dropped due to reverse path forwarding check.C.    The connection is denied due to forward policy check.D.    FGT1's port1 interface is administratively down. Answer: B QUESTION 320An administrator needs to be able to view logs for application usage on your network. What configurations are required to ensure that FortiGate generates logs for application usage activity? (Choose two.) A.    Enable a web filtering profile on the firewall policy.B.    Create an application control policy.C.    Enable logging on the firewall policy.D.    Enable an application control security profile on the firewall policy. Answer: BD QUESTION 321A company needs to provide SSL VPN access to two user groups. The company also needs to display different welcome messages on the SSL VPN login screen for both user groups.What is required in the SSL VPN configuration to meet these requirements? A.    Two separated SSL VPNs in different interfaces of the same VDOMB.    Different SSL VPN realms for each groupC.    Different virtual SSLVPN IP addresses for each groupD.    Two firewall policies with different captive portals Answer: D !!!RECOMMEND!!!1.|2017 New NSE4 Exam Dumps (PDF & VCE) 360Q&As Download:https://www.braindump2go.com/nse4.html 2.|2017 New NSE4 Study Gudie Video: YouTube Video: YouTube.com/watch?v=lcPSEfJYR0M --------------------------------------------------- Images: --------------------------------------------------- --------------------------------------------------- Post date: 2017-07-18 09:30:45 Post date GMT: 2017-07-18 09:30:45 Post modified date: 2017-07-18 09:30:45 Post modified date GMT: 2017-07-18 09:30:45 ____________________________________________________________________________________________ Export of Post and Page as text file has been powered by [ Universal Post Manager ] plugin from www.gconverters.com