- All Exams Instant Download
Which action accomplishes this task?
A company is in the process of deploying intrusion prevention with Cisco FTDs managed by a Cisco FMC. An engineer must configure policies to detect potential intrusions but not block the suspicious traffic. Which action accomplishes this task?A . Configure IDS mode when creating or editing a policy rule under...
In which two places can thresholding settings be configured? (Choose two.)
In which two places can thresholding settings be configured? (Choose two.)A . on each IPS rule B. globally, within the network analysis policy C. globally, per intrusion policy D. on each access control rule E. per preprocessor, within the network analysis policyView AnswerAnswer: AC Explanation: Reference: https://www.cisco.com/c/en/us/td/docs/security/firesight/541/firepower-module-user-guide/asa-firepower-module-user-guide-v541/Intrusion-Global-Threshold.pdf
Which two features of Cisco AMP for Endpoints allow for an uploaded file to be blocked? (Choose two.)
Which two features of Cisco AMP for Endpoints allow for an uploaded file to be blocked? (Choose two.)A . application blocking B. simple custom detection C. file repository D. exclusions E. application whitelistingView AnswerAnswer: AB
Which action must be taken while replacing the faulty unit?
A network security engineer must replace a faulty Cisco FTD device in a high availability pair. Which action must be taken while replacing the faulty unit?A . Shut down the Cisco FMC before powering up the replacement unit. B. Ensure that the faulty Cisco FTD device remains registered to the...
Which interface type allows packets to be dropped?
Which interface type allows packets to be dropped?A . passive B. inline C. ERSPAN D. TAPView AnswerAnswer: B Explanation: Reference: https://www.cisco.com/c/en/us/support/docs/security/firepower-ngfw/200908-configuring-firepower-threat-defense-int.html
Which two deployment types support high availability? (Choose two.)
Which two deployment types support high availability? (Choose two.)A . transparent B. routed C. clustered D. intra-chassis multi-instance E. virtual appliance in public cloudView AnswerAnswer: AB Explanation: Reference: https://www.cisco.com/c/en/us/td/docs/security/firepower/610/configuration/guide/fpmc-config-guide-v61/firepower_threat_defense_high_availability.html
Which CLI command is used to control special handling of ClientHello messages?
Which CLI command is used to control special handling of ClientHello messages?A . system support ssl-client-hello-tuning B. system support ssl-client-hello-display C. system support ssl-client-hello-force-reset D. system support ssl-client-hello-enabledView AnswerAnswer: A
Which two conditions are necessary for high availability to function between two Cisco FTD devices? (Choose two.)
Which two conditions are necessary for high availability to function between two Cisco FTD devices? (Choose two.)A . The units must be the same version B. Both devices can be part of a different group that must be in the same domain when configured within the FMC. C. The units...
How many report templates does the Cisco Firepower Management Center support?
How many report templates does the Cisco Firepower Management Center support?A . 20 B. 10 C. 5 D. unlimitedView AnswerAnswer: D Explanation: Reference: https://www.cisco.com/c/en/us/td/docs/security/firepower/60/configuration/guide/fpmc-config-guide-v60/Working_with_Reports.html
With Cisco Firepower Threat Defense software, which interface mode must be configured to passively receive traffic that passes through the appliance?
With Cisco Firepower Threat Defense software, which interface mode must be configured to passively receive traffic that passes through the appliance?A . inline set B. passive C. routed D. inline tapView AnswerAnswer: D Explanation: Reference: https://www.cisco.com/c/en/us/td/docs/security/firepower/640/configuration/guide/fpmc-config-guide-v64/interface_overview_for_firepower_threat_defense.html
