NSE 4 – FortiGate 6.0 — Question 30

What types of traffic and attacks can be blocked by a web application firewall (WAF) profile? (Choose three.)

Answer options

• A. Traffic to botnetservers
• B. Traffic to inappropriate web sites
• C. Server information disclosure attacks
• D. Credit card data leaks
• E. SQL injection attacks

Correct answer: A, C, E

Explanation

A web application firewall (WAF) is designed to filter and monitor HTTP traffic to and from a web application. It can effectively block traffic to botnet servers, prevent server information disclosure attacks, and defend against SQL injection attacks. However, it is not primarily intended to block traffic to inappropriate websites or to stop credit card data leaks.