Certbus > Fortinet > Fortinet Certifications > NSE6_FAD-6.2 > NSE6_FAD-6.2 Online Practice Questions and Answers

NSE6_FAD-6.2 Online Practice Questions and Answers

Questions 4

A FortiADC administrator wants to offload SSL encryption and decryption of web traffic to lessen overhead on the real servers, while maintaining SSL encryption with the client.

Which must be true to allow FortiADC to provide this capability?

A. The real server pool must be configured for SSL

B. The virtual server must be configured to perform content routing

C. The real server certificate and private key must be installed on FortiADC

D. The virtual server must use a TCPS application profile

Browse 30 Q&As
Questions 5

When configuring aFortiADC configuration backup, which two options are available for designating a storage location for the configuration file? (Choose two.)

A. DSSH

B. FortiADC local storage

C. Local PC/Server

D. FortiCloud

Browse 30 Q&As
Questions 6

In global load balancing, why might an administrator configure the response rate limit in FortiADC?

A. To redirect requests from a blocked county

B. To prevent FortiADG from being used in DNS amplification DoS attacks

C. To protect back-end servers from SYN flood attacks D. To prioritize outgoing traffic by sending it through the link with the lowed response time

Browse 30 Q&As
Questions 7

An organization has decided to automate specific tasks by leveraging the fortiADC REST API. The tasks will perform updates to existing items. Which REST API method should you use to update existing items on FortiADC?

A. PATCH

B. POST

C. GET

D. PUT

Browse 30 Q&As
Questions 8

Which two statements about Layer 7 application delivery control are true? (Choose two.)

A. It provides more intelligent traffic distribution decisions

B. It provides the fastest traffic processing

C. It supports only IPv4

D. It requires more packets to make a decision

Browse 30 Q&As
Questions 9

An administrator wants to implement load balancing persistence by configuring FortiADC to prefix the server ID to an existing cookie sent by the back-end servers. Which persistence method should the administrator use?

A. Hash cookie

B. Insert cookie

C. Persistence cookie

D. Embedded cookie

Browse 30 Q&As
Questions 10

An administrator has learned that some of the corporate web servers were exploited using SQL injection attacks. What should the administrator do to verify their web servers are not susceptible to the exploits?

A. Configure WVS

B. Configure a database health check

C. Configure DNSSEC

D. Configure SSLi

Browse 30 Q&As
Questions 11

Which two statements about FortiADC logs are true? (Choose two.)

A. They can be stored on FortiCloud.

B. They can be uploaded automatically to an FTP server.

C. Only logs with seventy level equal to or greater than that configured log Severity level are generated.

D. They can record events related to security features.

Browse 30 Q&As
Questions 12

Refer to the exhibits.

Which show the HA configurations for two FortiADC devices

If both FortiADC devices are operational, which FortiADC is the active device in the cluster?

A. The FortiADC with the highest HA uptime value

B. The FortiADC with the highest sorting serial number

C. FortiADC-1

D. FortiADC-2

Browse 30 Q&As
Questions 13

An administrator is running the following sniffer on FortiADC:

Diagnose sniffer packet any `'port80'' 2

What two pieces of information are included in the output of the sniffer? (Choose two.)

A. IP payload

B. Ethernet headers

C. Port names

D. IP headers

Browse 30 Q&As
Questions 14

Which two statements about virtual tunneling for outbound link load balancing are true? (Choose two.)

A. Link policies are used to specify which traffic is sent through each virtual tunnel.

B. Each virtual tunnel can contain no more than three IP tunnel.

C. Two dispatch algorithms are supported weighted round robin and source destination hash.

D. A virtual tunnel can combine point to point and multipoint IP tunnels.

Browse 30 Q&As
Questions 15

An administrator has been assigned the task of protecting their company application delivery servers from OWASP top- 10 threats.

How must they configure FortiADC to provide this capability?

A. Configure advanced health checks

B. Configure Layer 7 custom rates

C. Configure the advanced WAF

D. Configure IPv4 firewall policies

Browse 30 Q&As
Questions 16

Which two configuration actions are possible when protecting application delivery servers from clients with IP addresses in the IP reputation database? (Choose two.)

A. Automatically create a WAF profile based on the traffic

B. Redirect the traffic to a different URL

C. Block the traffic.

D. Analyze the traffic using WVS rules

Browse 30 Q&As
Questions 17

Which two actions can FortiADC take with the GeoIP block list when receiving requests from a blocked country's address space? (Choose two.)

A. Deny access

B. Redirect the request

C. Apply an HTTP protocol constraint

D. Send a 404 Not Found message

Browse 30 Q&As
Questions 18

Which load balancing method requires the use of an SNMP health check?

A. Destination IP hash

B. Round robin

C. Dynamic load

D. Least connection

Browse 30 Q&As
Exam Code: NSE6_FAD-6.2
Exam Name: Fortinet NSE 6 - FortiADC 6.2
Last Update: Mar 17, 2025
Questions: 30 Q&As

PDF

$49.99

VCE

$55.99

PDF + VCE

$65.99