- All Exams Instant Download
Which action must be taken to meet these requirements?
An engineer is building a new access control policy using Cisco FMC. The policy must inspect a unique IPS policy as well as log rule matching. Which action must be taken to meet these requirements?A . Configure an IPS policy and enable per-rule logging. B. Disable the default IPS policy...
Which two actions can be used in an access control policy rule? (Choose two.)
Which two actions can be used in an access control policy rule? (Choose two.)A . Block with Reset B. Monitor C. Analyze D. Discover E. Block ALLView AnswerAnswer: AB Explanation: Reference: https://www.cisco.com/c/en/us/td/docs/security/firesight/541/firepower-module-user-guide/asa-firepower-module-user-guide-v541/AC-Rules-Tuning-Overview.html#71854
What are two application layer preprocessors? (Choose two.)
What are two application layer preprocessors? (Choose two.)A . CIFS B. IMAP C. SSL D. DNP3 E. ICMPView AnswerAnswer: BC Explanation: Reference: https://www.cisco.com/c/en/us/td/docs/security/firepower/60/configuration/guide/fpmc-config-guide-v60/Application_Layer_Preprocessors.html
Which CLI command is used to control special handling of ClientHello messages?
Which CLI command is used to control special handling of ClientHello messages?A . system support ssl-client-hello-tuning B. system support ssl-client-hello-display C. system support ssl-client-hello-force-reset D. system support ssl-client-hello-enabledView AnswerAnswer: A
Which protocol establishes network redundancy in a switched Firepower device deployment?
Which protocol establishes network redundancy in a switched Firepower device deployment?A . STP B. HSRP C. GLBP D. VRRPView AnswerAnswer: A Explanation: Reference: https://www.cisco.com/c/en/us/td/docs/security/firepower/620/configuration/guide/fpmc-config-guide-v62/firepower_threat_defense_high_availability.html
Which two conditions are necessary for high availability to function between two Cisco FTD devices? (Choose two.)
Which two conditions are necessary for high availability to function between two Cisco FTD devices? (Choose two.)A . The units must be the same version B. Both devices can be part of a different group that must be in the same domain when configured within the FMC. C. The units...
Which two packet captures does the FTD LINA engine support? (Choose two.)
Which two packet captures does the FTD LINA engine support? (Choose two.)A . Layer 7 network ID B. source IP C. application ID D. dynamic firewall importing E. protocolView AnswerAnswer: BE Explanation: Reference: https://www.cisco.com/c/en/us/support/docs/security/firepower-ngfw/212474-working-with-firepower-threat-defense-f.html
In which two places can thresholding settings be configured? (Choose two.)
In which two places can thresholding settings be configured? (Choose two.)A . on each IPS rule B. globally, within the network analysis policy C. globally, per intrusion policy D. on each access control rule E. per preprocessor, within the network analysis policyView AnswerAnswer: AC Explanation: Reference: https://www.cisco.com/c/en/us/td/docs/security/firesight/541/firepower-module-user-guide/asa-firepower-module-user-guide-v541/Intrusion-Global-Threshold.pdf
What is the result of specifying of QoS rule that has a rate limit that is greater than the maximum throughput of an interface?
What is the result of specifying of QoS rule that has a rate limit that is greater than the maximum throughput of an interface?A . The rate-limiting rule is disabled. B. Matching traffic is not rate limited. C. The system rate-limits all traffic. D. The system repeatedly generates warnings.View AnswerAnswer:...
What configuration change must be made to alleviate this issue?
An engineer configures a network discovery policy on Cisco FMC. Upon configuration, it is noticed that excessive and misleading events filing the database and overloading the Cisco FMC. A monitored NAT device is executing multiple updates of its operating system in a short period of time. What configuration change must...
