The Most Recent Guide To 300-710 Free Draindumps

NEW QUESTION 1

An engineer must configure high availability for the Cisco Firepower devices. The current network topology does not allow for two devices to pass traffic concurrently. How must the devices be implemented in this environment?

• A. in active/active mode
• B. in a cluster span EtherChannel
• C. in active/passive mode
• D. in cluster interface mode

Answer: C

NEW QUESTION 2

Which limitation applies to Cisco Firepower Management Center dashboards in a multidomain environment?

• A. Child domains can view but not edit dashboards that originate from an ancestor domain.
• B. Child domains have access to only a limited set of widgets from ancestor domains.
• C. Only the administrator of the top ancestor domain can view dashboards.
• D. Child domains cannot view dashboards that originate from an ancestor domain.

Answer: D

Explanation:
Reference:
https://www.cisco.com/c/en/us/td/docs/security/firepower/60/configuration/guide/fpmc-config-guide- v60/Using_Dashboards.html

NEW QUESTION 3

A network engineer is configuring URL Filtering on Firepower Threat Defense. Which two port requirements on the Firepower Management Center must be validated to allow communication with the cloud service? (Choose two.)

• A. outbound port TCP/443
• B. inbound port TCP/80
• C. outbound port TCP/8080
• D. inbound port TCP/443
• E. outbound port TCP/80

Answer: AE

Explanation:
Reference:
https://www.cisco.com/c/en/us/td/docs/security/firepower/60/configuration/guide/fpmc-config-guide-v60/Securi

NEW QUESTION 4

Which two actions can be used in an access control policy rule? (Choose two.)

• A. Block with Reset
• B. Monitor
• C. Analyze
• D. Discover
• E. Block ALL

Answer: AB

Explanation:
Reference: https://www.cisco.com/c/en/us/td/docs/security/firesight/541/firepower-module-user-guide/asa- firepower-module-user-guide-v541/AC-Rules-Tuning-Overview.html#71854

NEW QUESTION 5

A Cisco FTD device is running in transparent firewall mode with a VTEP bridge group member ingress interface. What must be considered by an engineer tasked with specifying a destination MAC address for a packet trace?

• A. Only the UDP packet type is supported.
• B. The output format option for the packet logs is unavailable.
• C. The destination MAC address is optional if a VLAN ID value is entered.
• D. The VLAN ID and destination MAC address are optional.

Answer: C

NEW QUESTION 6

Which command should be used on the Cisco FTD CLI to capture all the packets that hit an interface?

• A. configure coredump packet-engine enable
• B. capture-traffic
• C. capture
• D. capture WORD

Answer: C

Explanation:
Reason: the command "capture-traffic" is used for SNORT Engine Captures. To capture a LINA Engine Capture, you use the "capture" command. Since the Lina Engine represents the actual physical interface of the device, "capture" is the only reasonable choice Reference: https://www.cisco.com/c/en/us/support/docs/security/firepower-ngfw/212474-working-with-firepower-threat-de
The command is firepower# capture DMZ interface dmz trace detail match ip host 192.168.76.14 host 192.168.76.100 firepower# capture INSIDE interface inside trace detail match ip host 192.168.76.14 host 192.168.75.14

NEW QUESTION 7

Which connector is used to integrate Cisco ISE with Cisco FMC for Rapid Threat Containment?

• A. pxGrid
• B. FTD RTC
• C. FMC RTC
• D. ISEGrid

Answer: A

NEW QUESTION 8

A security engineer must deploy a Cisco FTD appliance as a bump in the wire to detect intrusion events without disrupting the flow of network traffic. Which two features must be configured to accomplish the task? (Choose two.)

• A. inline set pair
• B. transparent mode
• C. tapemode
• D. passive interfaces
• E. bridged mode

Answer: BC

NEW QUESTION 9

A network administrator notices that SI events are not being updated The Cisco FTD device is unable to load all of the SI event entries and traffic is not being blocked as expected. What must be done to correct this issue?

• A. Restart the affected devices in order to reset the configurations
• B. Manually update the SI event entries to that the appropriate traffic is blocked
• C. Replace the affected devices with devices that provide more memory
• D. Redeploy configurations to affected devices so that additional memory is allocated to the SI module

Answer: D

NEW QUESTION 10

What is a behavior of a Cisco FMC database purge?

• A. User login and history data are removed from the database if the User Activity check box is selected.
• B. Data can be recovered from the device.
• C. The appropriate process is restarted.
• D. The specified data is removed from Cisco FMC and kept for two weeks.

Answer: C

Explanation:
Reference: https://www.cisco.com/c/en/us/td/docs/security/firepower/620/configuration/guide/fpmc-config- guide-v62/management_center_database_purge.pdf

NEW QUESTION 11

What is the RTC workflow when the infected endpoint is identified?

• A. Cisco ISE instructs Cisco AMP to contain the infected endpoint.
• B. Cisco ISE instructs Cisco FMC to contain the infected endpoint.
• C. Cisco AMP instructs Cisco FMC to contain the infected endpoint.
• D. Cisco FMC instructs Cisco ISE to contain the infected endpoint.

Answer: D

NEW QUESTION 12

An engineer integrates Cisco FMC and Cisco ISE using pxGrid. Which role is assigned for Cisco FMC?

• A. controller
• B. publisher
• C. client
• D. server

Answer: C

NEW QUESTION 13

Which command must be run to generate troubleshooting files on an FTD?

• A. system support view-files
• B. sudo sf_troubleshoot.pl
• C. system generate-troubleshoot all
• D. show tech-support

Answer: C

Explanation:
Reference: https://www.cisco.com/c/en/us/support/docs/security/sourcefire-defense-center/117663-technote- SourceFire-00.html

NEW QUESTION 14

Refer to the exhibit.

What is the effect of the existing Cisco FMC configuration?

• A. The remote management port for communication between the Cisco FMC and the managed device changes to port 8443.
• B. The managed device is deleted from the Cisco FMC.
• C. The SSL-encrypted communication channel between the Cisco FMC and the managed device becomes plain-text communication channel.
• D. The management connection between the Cisco FMC and the Cisco FTD is disabled.

Answer: D

NEW QUESTION 15

How many report templates does the Cisco Firepower Management Center support?

• A. 20
• B. 10
• C. 5
• D. unlimited

Answer: D

Explanation:
Reference:
https://www.cisco.com/c/en/us/td/docs/security/firepower/60/configuration/guide/fpmc-config-guide- v60/Working_with_Reports.html

NEW QUESTION 16

A security engineer must integrate an external feed containing STIX/TAXII data with Cisco FMC. Which feature must be enabled on the Cisco FMC to support this connection?

• A. Cisco Success Network
• B. Cisco Secure Endpoint Integration
• C. Threat Intelligence Director
• D. Security Intelligence Feeds

Answer: C

NEW QUESTION 17

Which protocol is needed to exchange threat details in rapid threat containment on Cisco FMC?

• A. SGT
• B. SNMP v3
• C. BFD
• D. pxGrid

Answer: D

NEW QUESTION 18

Upon detecting a flagrant threat on an endpoint, which two technologies instruct Cisco Identity Services Engine to contain the infected endpoint either manually or automatically? (Choose two.)

• A. Cisco ASA 5500 Series
• B. Cisco FMC
• C. Cisco AMP
• D. Cisco Stealthwatch
• E. Cisco ASR 7200 Series

Answer: CD

NEW QUESTION 19

A security engineer is configuring an Access Control Policy for multiple branch locations These locations share a common rule set and utilize a network object called INSIDE_NET which contains the locally significant internal network subnets at each location What technique will retain the policy consistency at each location but allow only the locally significant network subnet within the applicable rules?

• A. utilizing policy inheritance
• B. utilizing a dynamic ACP that updates from Cisco Talos
• C. creating a unique ACP per device
• D. creating an ACP with an INSIDE_NET network object and object overrides

Answer: D

NEW QUESTION 20
......