FCP_FWB_AD-7.4 Free Practice Test

What are two possible impacts of a DoS attack on your web server? (Choose two.)

1. A. The web application starts accepting unencrypted traffic.
2. B. The web application is unable to accept any more connections because of network socket exhaustion.
3. C. The web application server is unable to accept new client sessions due to memory exhaustion.
4. D. The web application server database is compromised with data theft.

Correct Answer: BC

Refer to the exhibit.

FortiADC is applying SNAT to all inbound traffic going to the servers.
When an attack occurs, FortiWeb blocks traffic based on the192.0.2.1source IP address, which belongs to FortiADC. This setup is breaking all connectivity and genuine clients are not able to access the servers.
What can the administrator do to avoid this problem? (Choose two.)

1. A. Enable and configure the Preserve Client IP setting on the client.
2. B. No special configuration is required; connectivity will be re-established for all clients after the set timeout.
3. C. Place FortiWeb in front of FortiADC.
4. D. Enable and configure the Use X-Forwarded-For setting on FortiWeb.

Correct Answer: CD

Refer to the exhibits.


What will happen when a client attempts a mousedown cross-site scripting (XSS) attack against the sitehttp://my.blog.org/userl1/blog.phpand FortiWeb is enforcing the highlighted signature?

1. A. The connection will be stripped of the mousedown JavaScript code.
2. B. The connection will be blocked as an XSS attack.
3. C. FortiWeb will report the new mousedown attack to FortiGuard.
4. D. The connection will be allowed.

Correct Answer: D

Which is an example of a cross-site scripting (XSS) attack?

1. A. SELECT username FROM accounts WHERE username='admin';-- ' AND password='password';
2. B.
3. C. SELECT username FROM accounts WHERE username='XSS' ' AND password='alert("http://badurl.com")';
4. D.

Correct Answer: B

Which two objects are required to configure a server policy in reverse proxy mode without content routing? (Choose two.)

1. A. Site publishing
2. B. Protected hostname
3. C. Virtual server
4. D. Server pool

Correct Answer: BC