300-710 exam

What is a functionality of port objects in Cisco FMC?A . to mix transport protocols when setting both source and destination port conditions in a rule B. to represent protocols other than TCP, UDP, and ICMP C. to represent all protocols in the same way D. to add any protocol...

Which policy rule is included in the deployment of a local DMZ during the initial deployment of a Cisco NGFW through the Cisco FMC GUI?A . a default DMZ policy for which only a user can change the IP addresses. B. deny ip any C. no policy rule is included...

An organization has a Cisco FTD that uses bridge groups to pass traffic from the inside interfaces to the outside interfaces. They are unable to gather information about neighbouring Cisco devices or use multicast in their environment. What must be done to resolve this issue?A . Create a firewall rule...

Which Firepower feature allows users to configure bridges in routed mode and enables devices to perform Layer 2 switching between interfaces?A . FlexConfig B. BDI C. SGT D. IRBView AnswerAnswer: D Explanation: Reference: https://www.cisco.com/c/en/us/td/docs/security/firepower/620/relnotes/Firepower_System_Release_Notes_Version_620/new_features_and_functionality.html

Which group within Cisco does the Threat Response team use for threat analysis and research?A . Cisco Deep Analytics B. OpenDNS Group C. Cisco Network Response D. Cisco TalosView AnswerAnswer: D Explanation: Reference: https://www.cisco.com/c/en/us/products/security/threat-response.html#~benefits

On the advanced tab under inline set properties, which allows interfaces to emulate a passive interface?A . transparent inline mode B. TAP mode C. strict TCP enforcement D. propagate link stateView AnswerAnswer: B Explanation: Reference: https://www.cisco.com/c/en/us/td/docs/security/firepower/640/configuration/guide/fpmc-config-guide-v64/inline_sets_and_passive_interfaces_for_firepower_threat_defense.html

When creating a report template, how can the results be limited to show only the activity of a specific subnet?A . Create a custom search in Firepower Management Center and select it in each section of the report. B. Add an Input Parameter in the Advanced Settings of the report,...

Which two statements about bridge-group interfaces in Cisco FTD are true? (Choose two.)A . The BVI IP address must be in a separate subnet from the connected network. B. Bridge groups are supported in both transparent and routed firewall modes. C. Bridge groups are supported only in transparent firewall mode....

Which two deployment types support high availability? (Choose two.)A . transparent B. routed C. clustered D. intra-chassis multi-instance E. virtual appliance in public cloudView AnswerAnswer: AB Explanation: Reference: https://www.cisco.com/c/en/us/td/docs/security/firepower/610/configuration/guide/fpmc-config-guide-v61/firepower_threat_defense_high_availability.html

With Cisco Firepower Threat Defense software, which interface mode must be configured to passively receive traffic that passes through the appliance?A . inline set B. passive C. routed D. inline tapView AnswerAnswer: D Explanation: Reference: https://www.cisco.com/c/en/us/td/docs/security/firepower/640/configuration/guide/fpmc-config-guide-v64/interface_overview_for_firepower_threat_defense.html