• Home
  • Articles
  • Fortinet Certified NSE6_FML-6.4 Dumps Questions Valid NSE6_FML-6.4 Materials [Q18-Q36]

Fortinet Certified NSE6_FML-6.4 Dumps Questions Valid NSE6_FML-6.4 Materials [Q18-Q36]

Share

Fortinet Certified NSE6_FML-6.4  Dumps Questions Valid NSE6_FML-6.4 Materials

Current NSE6_FML-6.4 Exam Dumps [2023] Complete Fortinet Exam Smoothly

NEW QUESTION 18
A FortiMail administrator is investigating a sudden increase in DSNs being delivered to the protected domain for undeliverable email messages. After searching the logs, the administrator identifies that the DSNs were not generated as a result of any outbound email sent from the protected domain.
Which FortiMail antispam technique can the administrator use to prevent this scenario?

  • A. FortiGuard IP Reputation
  • B. Bounce address tag validation
  • C. Spam outbreak protection
  • D. Spoofed header detection

Answer: C

 

NEW QUESTION 19
Examine the access receive rule shown in the exhibit; then answer the question below.

Which of the following statements are true? (Choose two.)

  • A. Email from any host in the 10.0.1.0/24 subnet can match this rule
  • B. Email must originate from an example.com email address to match this rule
  • C. Senders must be authenticated to match this rule
  • D. Email matching this rule will be relayed

Answer: B,D

 

NEW QUESTION 20
Examine the FortiMail IBE users shown in the exhibit; then answer the question below

Which one of the following statements describes the Pre-registered status of the IBE user [email protected]?

  • A. The user account has been de-activated, and the user must register again the next time they receive an IBE email
  • B. The user has completed the IBE registration process but has not yet accessed their IBE email
  • C. The user was registered by an administrator in anticipation of IBE participation
  • D. The user has received an IBE notification email, but has not accessed the HTTPS URL or attachment yet

Answer: D

 

NEW QUESTION 21
An administrator sees that an excessive amount of storage space on a FortiMail device is being used up by quarantine accounts for invalid users. The FortiMail is operating in transparent mode.
Which two FortiMail features can the administrator configure to tackle this issue? (Choose two.)

  • A. Sender address rate control
  • B. Bounce address tag verification
  • C. Recipient address verification
  • D. Automatic removal of quarantine accounts

Answer: A,D

 

NEW QUESTION 22
Which of the following antispam techniques queries FortiGuard for rating information? (Choose two.)

  • A. SURBL
  • B. URI filter
  • C. IP reputation
  • D. DNSBL

Answer: B,C

 

NEW QUESTION 23
Which statement about how impersonation analysis identifies spoofed email addresses is correct?

  • A. It uses behavior analysis to detect spoofed addresses.
  • B. It uses DMARC validation to detect spoofed addresses.
  • C. It maps the display name to the correct recipient email address.
  • D. It uses SPF validation to detect spoofed addresses.

Answer: A

 

NEW QUESTION 24
Examine the FortiMail user webmail interface shown in the exhibit; then answer the question below.

Which one of the following statements is true regarding this server mode FortiMail's configuration?

  • A. This user's account has a customized access profile applied that allows access to the personal address book
  • B. The administrator has configured an inbound recipient policy with a customized resource profile
  • C. The protected domain-level service settings have been modified to allow access to the domain address book
  • D. The administrator has not made any changes to the default address book access privileges

Answer: B

Explanation:
domain address book can be enabled under resource profile which is applied to inbound recipient policy

 

NEW QUESTION 25
Refer to the exhibit.

Which two statements about email messages sent from User A to User B are correct? (Choose two.)

  • A. The DNS server will act as an intermediary MTA.
  • B. User B will retrieve the email message using either POP3 or IMAP.
  • C. mx.example1.org will forward the email message to the MX record that has the lowest preference.
  • D. User A's MUA will perform a DNS MX record lookup to send the email message.

Answer: A,D

 

NEW QUESTION 26
Refer to the exhibit.

Which two statements about how the transparent mode FortiMail device routes email for the example.com domain are true? (Choose two.)

  • A. If incoming email messages are undeliverable, FML-1 can queue them to retry later
  • B. FML-1 will use the transparent proxy for incoming sessions
  • C. If outgoing email messages are undeliverable, FM-1 can queue them to retry later
  • D. FML-1 will use the built-in MTA for outgoing sessions

Answer: B,C

 

NEW QUESTION 27
Examine the message column of a log cross search result of an inbound email shown in the exhibit; then answer the question below

Based on logs, which of the following statements are true? (Choose two.)

  • A. The logs were generated by a server mode FortiMail
  • B. The FortiMail is experiencing issues accepting the connection from the remote sender
  • C. The logs were generated by a gateway or transparent mode FortiMail
  • D. The FortiMail is experiencing issues delivering the email to the back-end mail server

Answer: C,D

 

NEW QUESTION 28
Refer to the exhibit.

What IP address should the DNS MX record for this deployment resolve to?

  • A. 172.16.32.56
  • B. 172.16.32.1
  • C. 172.16.32.57
  • D. 172.16.32.55

Answer: D

 

NEW QUESTION 29
Which of the following statements are true regarding FortiMail's behavior when using the built-in MTA to process email in transparent mode? (Choose two.)

  • A. If you disable the built-in MTA, FortiMail will use its transparent proxies to deliver email
  • B. FortiMail can queue undeliverable messages and generate DSNs
  • C. MUAs need to be configured to connect to the built-in MTA to send email
  • D. FortiMail ignores the destination set by the sender and uses its own MX record lookup to deliver email

Answer: B,D

 

NEW QUESTION 30
Refer to the exhibit.

Which two statements about the MTAs of the domain example.com are true? (Choose two.)

  • A. The higher preference value is used to load balance more email to the mx.example.com MTA
  • B. The PriNS server should receive all email for the example.com domain
  • C. The primary MTA for the example.com domain is mx.hosted.com
  • D. The external MTAs will send email to mx.example.com only if mx.hosted.com is unreachable

Answer: C,D

 

NEW QUESTION 31
A FortiMail administrator is concerned about cyber criminals attempting to get sensitive information from employees using whaling phishing attacks.
What option can the administrator configure to prevent these types of attacks?

  • A. Impersonation analysis
  • B. Content disarm and reconstruction
  • C. Bounce tag verification
  • D. Dictionary profile with predefined smart identifiers

Answer: A

 

NEW QUESTION 32
Refer to the exhibit.

Which statement describes the impact of setting the User inactivity expiry time option to 90 days?

  • A. Registered IBE users have 90 days from the time they receive a notification email message to access their IBE email
  • B. IBE user accounts will expire after 90 days of inactivity, and must register again to access new IBE email message
  • C. First time IBE users must register to access their email within 90 days of receiving the notification email message
  • D. After initial registration, IBE users can access the secure portal without authenticating again for 90 days

Answer: B

 

NEW QUESTION 33
What are the configuration steps to enable DKIM signing for outbound messages on FortiMail? (Choose three.)

  • A. Enable DKIM check in a matching antispam profile
  • B. Publish the public key as a TXT record in a public DNS server
  • C. Enable DKIM check in a matching session profile
  • D. Enable DKIM signing for outgoing messages in a matching session profile
  • E. Generate a public/private key pair in the protected domain configuration

Answer: B,D,E

Explanation:
DKIM Signing for Outbound Email
* To configure DKIM signing for outgoing messages, you must first generate a public and private key pair for the domain
* DKIM signatures are domain specific
* FortiMail generates and stores the private key, and uses it to generate the DKIM signature
- Download the public key and publish to your external DNS server
- Enable sign outgoing messages with a DKIM signature

 

NEW QUESTION 34
Examine the FortiMail recipient-based policy shown in the exhibit; then answer the question below.

After creating the policy, an administrator discovered that clients are able to send unauthenticated email using SMTP. What must be done to ensure clients cannot send unauthenticated email?

  • A. Configure an access receive rule to verify authentication status
  • B. Configure a matching IP policy with SMTP authentication and exclusive flag enabled
  • C. Move the recipient policy to the top of the list
  • D. Configure an access delivery rule to enforce authentication

Answer: D

 

NEW QUESTION 35
Refer to the exhibit.

Which two statements about the access receive rule are true? (Choose two.)

  • A. Email from any host in the 10.0.1.0/24 subnet can match this rule
  • B. Email must originate from an example.com email address to match this rule
  • C. Senders must be authenticated to match this rule
  • D. Email matching this rule will be relayed

Answer: B,D

 

NEW QUESTION 36
......

NSE6_FML-6.4 Premium PDF & Test Engine Files with 57 Questions & Answers: https://passleader.free4dump.com/NSE6_FML-6.4-real-dump.html

Related Articles

more
Fortinet NSE6_FML-6.4 Certification Practice Exam