Summer Certification Special Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: force70

Pass the Fortinet NSE 5 Network Security Analyst NSE5_FWB_AD-8.0 Questions and answers with CertsForce

Viewing page 1 out of 1 pages
Viewing questions 1-10 out of questions
Questions # 1:

You are setting up a FortiWeb policy to protect a customer login portal. Users connect to https://login.training.lab, and you want FortiWeb to forward those requests to a load-balanced pool of back-end servers.

Which three components must you configure to complete the server policy?

Options:

A.

Virtual server, server pool, and port settings (service).


B.

Web application firewall (WAF) profile, DoS policy, and server name indication (SNI)-based certificate.


C.

DNS resolver, URL rewrite rule, and HTTP health check.


D.

Real server, IPsec tunnel, and static route.


Expert Solution
Questions # 2:

A FortiWeb administrator wants to create a machine learning (ML)-based bot detection system.

Which three actions must the administrator take to build and activate this ML model? (Choose three.)

Options:

A.

Collect traffic samples for training.


B.

Verify the model manually on test data only.


C.

Apply Bayesian analysis to the model output.


D.

Build the detection model using collected data.


E.

Run the model in the live environment.


Expert Solution
Questions # 3:

Which URL should you rewrite to reduce security risk?

Options:

A.

https://www.example.com/about/team


B.

https://www.example.com/wordpress/?feed=rss2


C.

https://www.example.com/products/today


D.

https://www.example.com/25.3.6/Browse/MediaData


Expert Solution
Questions # 4:

You are configuring the FortiWeb client-side protection feature to defend against browser-based attacks.

Based on the layered defense strategy, drag and drop each control to the corresponding stage of defense.

Question # 4


Expert Solution
Questions # 5:

Refer to the exhibit.

Question # 5

You are a FortiWeb administrator reviewing the biometrics-based detection rule shown in the exhibit. Your goal is to configure a rule that detects bots that avoid typical human interactions like using a mouse or clicking. You also want to log the detection event and apply a high-severity alert.

Based on the current configuration, which settings should you change to meet this goal?

Options:

A.

Select Screen Touch and Page Focus , set the severity to Low , and keep action as Deny (no log) .


B.

Select Keyboard and Scroll , change the action to Alert , and set the severity to High .


C.

Select Mouse Movement and Click , change the action to Alert , and set the severity to High .


D.

Do not select any client events to monitor, enable Bot Trait Checking , keep the current severity, and keep the action as Deny (no log) .


Expert Solution
Questions # 6:

You are hosting multiple secure web applications behind a single public IP address on FortiWeb.

When a client connects to a service, FortiWeb needs to:

    Identify the correct SSL certificate.

    Decrypt the request.

    Route the request to the correct back-end server.

Match each FortiWeb function to the request handling step that performs the function.

Question # 6


Expert Solution
Questions # 7:

You are reviewing a report from your FortiWeb logs and notice a JavaScript payload like < script > document.cookie < /script > is submitted through a product review form. The page doesn’t filter the script, and when users view the review, their session cookies are exposed.

Why is this attack dangerous?

Options:

A.

It executes code in the victim’s browser.


B.

It leaks back-end database information.


C.

It bypasses login pages.


D.

It forces a victim to click malicious links.


Expert Solution
Questions # 8:

A FortiWeb administrator is reviewing issues found during a security audit. The audit lists shortcomings based on behavior, configuration, and data protection.

The administrator must break down the findings and match them with the correct FortiWeb feature.

Select each FortiWeb feature in the left column, hold and drag it to the blank space next to the OWASP issue in the column on the right. Once you match a FortiWeb

feature to the OWASP issue, you can move it again if you want to change your answer by clicking on the FortiWeb feature. You need to match five FortiWeb features to

the OWASP issue in the work area.

Question # 8


Expert Solution
Questions # 9:

How should a FortiWeb administrator configure behavior-based bot detection to identify traffic from nonhuman users?

Options:

A.

Set request rate limits and enable mouse movement tracking.


B.

Block all traffic that doesn’t come from known devices.


C.

Disable JavaScript execution for anonymous users.


D.

Create IP blocklists based on login failures.


Expert Solution
Questions # 10:

You are reviewing the FortiWeb integration with the Advanced Bot Protection (ABP) service.

Match each step in the ABP flow with its description.

Question # 10


Expert Solution
Viewing page 1 out of 1 pages
Viewing questions 1-10 out of questions