How Many Questions Of 300-710 Sample Question

NEW QUESTION 1

An organization is implementing Cisco FTD using transparent mode in the network. Which rule in the default Access Control Policy ensures that this deployment does not create a loop in the network?

• A. ARP inspection is enabled by default.
• B. Multicast and broadcast packets are denied by default.
• C. STP BPDU packets are allowed by default.
• D. ARP packets are allowed by default.

Answer: B

NEW QUESTION 2

A security engineer is adding three Cisco FTD devices to a Cisco FMC. Two of the devices have successfully registered to the Cisco FMC. The device that is unable to register is located behind a router that translates all outbound traffic to the router's WAN IP address. Which two steps are required for this device to register to the Cisco FMC? (Choose two.)

• A. Reconfigure the Cisco FMC lo use the device's private IP address instead of the WAN address.
• B. Configure a NAT ID on both the Cisco FMC and the device.
• C. Add the port number being used for PAT on the router to the device's IP address in the Cisco FMC.
• D. Reconfigure the Cisco FMC to use the device's hostname instead of IP address.
• E. Remove the IP address defined for the device in the Cisco FMC.

Answer: BE

NEW QUESTION 3

An engineer is setting up a remote access VPN on a Cisco FTD device and wants to define which traffic gets sent over the VPN tunnel. Which named object type in Cisco FMC must be used to accomplish this task?

• A. split tunnel
• B. crypto map
• C. access list
• D. route map

Answer: A

NEW QUESTION 4

A connectivity issue is occurring between a client and a server which are communicating through a Cisco Firepower device While troubleshooting, a network administrator sees that traffic is reaching the server, but the client is not getting a response Which step must be taken to resolve this issue without initiating traffic from the client?

• A. Use packet-tracer to ensure that traffic is not being blocked by an access list.
• B. Use packet capture to ensure that traffic is not being blocked by an access list.
• C. Use packet capture to validate that the packet passes through the firewall and is NATed to the corrected IP address.
• D. Use packet-tracer to validate that the packet passes through the firewall and is NATed to the correctedIP address.

Answer: D

NEW QUESTION 5

In which two ways do access control policies operate on a Cisco Firepower system? (Choose two.)

• A. Traffic inspection can be interrupted temporarily when configuration changes are deployed.
• B. The system performs intrusion inspection followed by file inspection.
• C. They can block traffic based on Security Intelligence data.
• D. File policies use an associated variable set to perform intrusion prevention.
• E. The system performs a preliminary inspection on trusted traffic to validate that it matches the trusted parameters.

Answer: AC

Explanation:
Reference:
https://www.cisco.com/c/en/us/td/docs/security/firepower/60/configuration/guide/fpmc-config-guide-v60/Acces

NEW QUESTION 6

An engineer has been asked to show application usages automatically on a monthly basis and send the information to management What mechanism should be used to accomplish this task?

• A. event viewer
• B. reports
• C. dashboards
• D. context explorer

Answer: B

NEW QUESTION 7

An engineer is configuring Cisco FMC and wants to allow multiple physical interfaces to be part of the same VLAN. The managed devices must be able to perform Layer 2 switching between interfaces, including
sub-interfaces. What must be configured to meet these requirements?

• A. interface-based VLAN switching
• B. inter-chassis clustering VLAN
• C. integrated routing and bridging
• D. Cisco ISE Security Group Tag

Answer: C

NEW QUESTION 8

Which CLI command is used to generate firewall debug messages on a Cisco Firepower?

• A. system support firewall-engine-debug
• B. system support ssl-debug
• C. system support platform
• D. system support dump-table

Answer: A

Explanation:
Reference: https://www.cisco.com/c/en/us/support/docs/security/firepower-ngfw/212330-firepower- management-center-display-acc.html

NEW QUESTION 9

With Cisco FTD integrated routing and bridging, which interface does the bridge group use to communicate with a routed interface?

• A. switch virtual
• B. bridge group member
• C. bridge virtual
• D. subinterface

Answer: C

Explanation:
Reference:
https://www.cisco.com/c/en/us/td/docs/security/firepower/640/configuration/guide/fpmc-config-guide-v64/trans

NEW QUESTION 10

A Cisco FMC administrator wants to configure fastpathing of trusted network traffic to increase performance. In which type of policy would the administrator configure this feature?

• A. Identity policy
• B. Prefilter policy
• C. Network Analysis policy
• D. Intrusion policy

Answer: B

NEW QUESTION 11

Which firewall design will allow It to forward traffic at layers 2 and 3 for the same subnet?

• A. Cisco Firepower Threat Defense mode
• B. routed mode
• C. Integrated routing and bridging
• D. transparent mode

Answer: C

Explanation:
Integrated routing and bridging (IRB) is a feature of Cisco Firepower Threat Defense (FTD) that allows the firewall to forward traffic at both layers 2 and 3 for the same subnet. In this mode, the firewall can act as a switch or a bridge to forward traffic at layer 2 and as a router to forward traffic at layer 3. This allows the firewall to maintain full control over the traffic, while still allowing it to forward traffic at both layers.
https://www.cisco.com/c/en/us/td/docs/security/firepower/ftd-config-guide/FTD-Config-Guide-v6/Integrated-Ro

NEW QUESTION 12

The event dashboard within the Cisco FMC has been inundated with low priority intrusion drop events, which are overshadowing high priority events. An engineer has been tasked with reviewing the policies and reducing the low priority events. Which action should be configured to accomplish this task?

• A. generate events
• B. drop packet
• C. drop connection
• D. drop and generate

Answer: B

Explanation:
Reference”
https://www.cisco.com/c/en/us/td/docs/security/firepower/620/configuration/guide/fpmc-config-guide-v62/work

NEW QUESTION 13

A VPN user is unable to conned lo web resources behind the Cisco FTD device terminating the connection. While troubleshooting, the network administrator determines that the DNS responses are not getting through the Cisco FTD What must be done to address this issue while still utilizing Snort IPS rules?

• A. Uncheck the "Drop when Inline" box in the intrusion policy to allow the traffic.
• B. Modify the Snort rules to allow legitimate DNS traffic to the VPN users.
• C. Disable the intrusion rule threshes to optimize the Snort processing.
• D. Decrypt the packet after the VPN flow so the DNS queries are not inspected

Answer: B

NEW QUESTION 14

Refer to the exhibit.

And engineer is analyzing the Attacks Risk Report and finds that there are over 300 instances of new operating systems being seen on the network How is the Firepower configuration updated to protect these new operating systems?

• A. Cisco Firepower automatically updates the policies.
• B. The administrator requests a Remediation Recommendation Report from Cisco Firepower
• C. Cisco Firepower gives recommendations to update the policies.
• D. The administrator manually updates the policies.

Answer: C

Explanation:
Ref:
https://www.cisco.com/c/en/us/td/docs/security/firepower/60/configuration/guide/fpmc-config-guide-v60/Tailor

NEW QUESTION 15

Which CLI command is used to control special handling of clientHello messages?

• A. system support ssl-client-hello-tuning
• B. system support ssl-client-hello-display
• C. system support ssl-client-hello-force-reset
• D. system support ssl-client-hello-reset

Answer: D

NEW QUESTION 16

Which feature within the Cisco FMC web interface allows for detecting, analyzing and blocking malware in network traffic?

• A. intrusion and file events
• B. Cisco AMP for Endpoints
• C. Cisco AMP for Networks
• D. file policies

Answer: C

NEW QUESTION 17

An engineer has been tasked with providing disaster recovery for an organization's primary Cisco FMC. What must be done on the primary and secondary Cisco FMCs to ensure that a copy of the original corporate policy is available if the primary Cisco FMC fails?

• A. Restore the primary Cisco FMC backup configuration to the secondary Cisco FMC device when the primary device fails.
• B. Configure high-availability in both the primary and secondary Cisco FMCs.
• C. Connect the primary and secondary Cisco FMC devices with Category 6 cables of not more than 10 meters in length.
• D. Place the active Cisco FMC device on the same trusted management network as the standby device.

Answer: A

NEW QUESTION 18

An engineer wants to add an additional Cisco FTD Version 6.2.3 device to their current 6.2.3 deployment to create a high availability pair.
The currently deployed Cisco FTD device is using local management and identical hardware including the available port density to enable the failover and stateful links required in a proper high availability deployment. Which action ensures that the environment is ready to pair the new Cisco FTD with the old one?

• A. Change from Cisco FDM management to Cisco FMC management on both devices and register them to FMC.
• B. Ensure that the two devices are assigned IP addresses from the 169 254.0.0/16 range for failover interfaces.
• C. Factory reset the current Cisco FTD so that it can synchronize configurations with the new Cisco FTD device.
• D. Ensure that the configured DNS servers match on the two devices for name resolution.

Answer: A

NEW QUESTION 19

Which Firepower feature allows users to configure bridges in routed mode and enables devices to perform Layer 2 switching between interfaces?

• A. FlexConfig
• B. BDI
• C. SGT
• D. IRB

Answer: D

Explanation:
Reference: https://www.cisco.com/c/en/us/td/docs/security/firepower/620/relnotes/ Firepower_System_Release_Notes_Version_620/new_features_and_functionality.html

NEW QUESTION 20
......