Microsoft
Amazon
CompTIA
Salesforce
Cisco®
SAP
PMI
ISC
ISACA
VMware
HP
Palo Alto Networks
EC-Council
LPI
Google
Fortinet
All Vendors
  2. Home
  3. Exam List
  4. Fortinet
  5. NSE6_WCS-6.4

Fortinet NSE 6 - Securing AWS with Fortinet Cloud Security 6.4
NSE6_WCS-6.4 Exam

An administrator has deployed an environment in AWS and is now trying to send outbound traffic from the web servers to the internet through FortiGate. The FortiGate policies are configured to allow all outbound traffic. however. the traffic is not reaching the FortiGate internal interface.

Which two statements Can be the reasons for this behavior? (Choose two )

  1. FortiGate is not configured as a default gateway tor web servers.
  2. Internet Gateway (IGW) is not configured for VPC.
  3. AWS security groups are blocking the traffic.
  4. AWS source destination checks are enabled on the FortiGate internal interfaces.

Answer(s): C,D



You are network connectivity issues between two VMS deployed in AWS. One VM is a FortiGate located on subnet ·LAN- that is part Of the VPC "Encryption". The Other VM is a Windows server located on the subnet "servers" Which is also in the "Encryption" VPC. You are unable to ping the Windows server from FortiGate.

What is the reason for this?

  1. You have not created a VPN to allow traffic between those subnets.
  2. By default. AWS does not allow ICMP traffic between subnets.
  3. The default AWS Network Access Control List (NACL) does not allow this traffic.
  4. The firewall in the Windows VM is blocking the traffic.

Answer(s): D



Your company deployed a FortiSandb0X for AWS.

Which statement is correct about FortiSandbox for AWS?

  1. FortiSandbox for AWS does not need more resources because it performs only management and analysis tasks.
  2. The FortiSandbox manager is installed on AWS platform and analyzes the results of the sandboxing process received from on-premises Windows instances.
  3. FortiSandbox for AWS comes as hybrid solution. The FortiSandb0X manager is installed on- premises and analyzes the results Of the sandboxing process received from AWS EC2 instances
  4. FortiSandbox deploys new EC2 instances with the custom Windows and Linux VMS, then it sends malware, runs it, and captures the results for analysis.

Answer(s): A



An organization has created a VPC and deployed a FortiGate-VM (VM04 /c4.xlarge) in AWS, FortiGate-VM is initially configured With two Elastic Network Interfaces (ENIs). The primary ENI of FortiGate-VM is configured for a public subnet. and the second ENI is configured for a private subnet. In order to provide internet access. they now want to add an EIP to the primary ENI of FortiGate, but the EIP assignment is failing.

Which action would allow the EIP assignment to be successful?

  1. Shut down the FortiGate VM. if it is running. assign the EIP to the primary ENI. and then power it on.
  2. Create and associate a public subnet With the primary ENI Of FortiGate, and then assign the EIP to the primary ENI.
  3. Create and attach a public routing table to the public subnet, associate the public subnet With the primary ENI Of FortiGate. and then assign the EP to the primary ENI.
  4. Create and attach an Internet gateway to the VPC. and then assign the EIP to the primary ENI Of FortiGate.

Answer(s): D




Micheal C.
I have used your Exams for preparation for 70-290, 70-291, 70-292, 70-296, 70-298, 70- 299, 70-300, 70-305, 70-310, 70-315, 70-316,70-320. I also passed all those on the first round. I'm currently preparing for the CCNA.
- ON
Upvote


kris J.
Now my dream has come true. I thank you a million times for the best study guides that you provided to a poor kid like me....I got it. Finally MCSE. Best regards,
- GERMANY
Upvote


Jason
I passed my CCNA exam yesterday. I would like to make some comments. "Excellent Study Guide, Excellent Support Service, Excellent Examination Web Site" Best Regards
- UNITED STATES
Upvote


Micheal
Thanks for your study guides, i have passed it. All questions in your material, we study this only 2 days. Thanks very very much!!!!!
- UNITED STATES
Upvote


L. Woo
Thanks very much for your study guides, with your help i only use 3 weeks to take the MCSE. Your study guides are very very good.
- China
Upvote


Mick H.
I passed the CCIE Written exam 350-001 last Friday, Thanks very much for your study guide and your help.
- UNITED STATES
Upvote


Hagit
i ust wanted to thank you folks at braindumgalaxy.com for your assistance. I used your CCNP exams for practice and to identify my weak areas. Passed the CCNP recert on Tuesday without any big problems.
- Israel
Upvote


Cisco Engineer
I have found that your resources are probably the best on the market...and I work at Cisco.
- UNITED STATES
Upvote


Koshani
A well Good morning Dear braindumpgalaxy.com Team I wanna say that I passed the 000-888 yesterday and i am happy
- UNITED STATES
Upvote


Aized
I took the A+ hardware exam yesterday and thanks to your excellent and helping preparation material. I got a nice score.
- Pakistan
Upvote

Read more ...