Online Access Free FCP_FWB_AD-7.4 Exam Questions

How does your FortiWeb configuration differ if the FortiWeb is upstream of the SNAT device instead of downstream of the SNAT device?

• A.No special configuration required
• B.FortiWeb must be set for Transparent Mode
• C.You must enable "Add" X-Forwarded-For: instead of the "Use" X-Forwarded-For: option.
• D.You must enable the "Use" X-Forwarded-For: option.

You are using HTTP content routing on FortiWeb. You want requests for web application A to be forwarded to a cluster of web servers, which all host the same web application. You want requests for web application B to be forwarded to a different, single web server.
Which statement regarding this solution is true?

• A.The server policy always applies the same web protection profile to both web application A and web application B.
• B.You must create static routes on the FortiWebto allow these requests.
• C.You must chain policies so that all requests go to the virtual server for policy A first, and then redirect requests for web application B to go to the virtual server for policy B
• D.You must put the single web server for application B into a server pool and use it with HTTP content routing.

When viewing the attack logs on FortiWeb, which client IP address is shown when you are using XFF header rules?

• A.FortiGate public IP
• B.FortiGate local IP
• C.FortiWeb IP
• D.Client real IP

Which two FortiWeb operation modes support machine learning? (Choose two.)

• A.Transparent proxy
• B.Offline protection
• C.Reverse proxy
• D.True transparent proxy

In Reverse proxy mode, how does FortiWeb handle traffic that does not match any defined policies?

• A.non-Matching traffic is held in buffer
• B.Non-matching traffic is rerouted to FortiGate
• C.Non-matching traffic is Denied
• D.Non-matching traffic is allowed