Fortinet Exam NSE6_FWB-6.1 Topic 1 Question 11 Discussion

Actual exam question for Fortinet's NSE6_FWB-6.1 exam

Question #: 11
Topic #: 1

Refer to the exhibit.

FortiADC is applying SNAT to all inbound traffic going to the servers. When an attack occurs, FortiWeb blocks traffic based on the 192.0.2.1 source IP address, which belongs to FortiADC. The setup is breaking all connectivity and genuine clients are not able to access the servers.

What must the administrator do to avoid this problem? (Choose two.)

AEnable the Use X-Forwarded-For setting on FortiWeb.

BNo Special configuration is required; connectivity will be re-established after the set timeout.

CPlace FortiWeb in front of FortiADC.

DEnable the Add X-Forwarded-For setting on FortiWeb.

Show Suggested Answer

Suggested Answer: A, D

Configure your load balancer to insert or append to anX-Forwarded-For:,X-Real-IP:, or other HTTP X-header. Also configureFortiWebto find the original attacker's or client's IP address in that HTTP header

by Cheryl at May 05, 2022, 10:04 PM

Limited Time Offer

25%

Off

Get Premium NSE6_FWB-6.1 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Currently there are no comments in this discussion, be the first to comment!