300-710 exam

Which CLI command is used to generate firewall debug messages on a Cisco Firepower?A . system support firewall-engine-debugB . system support ssl-debugC . system support platformD . system support dump-tableView AnswerAnswer: A Explanation: Reference: https://www.cisco.com/c/en/us/support/docs/security/firepower-ngfw/212330-firepower-management-center-display-acc.html

What is the disadvantage of setting up a site-to-site VPN in a clustered-units environment?A . VPN connections can be re-established only if the failed master unit recovers.B . Smart License is required to maintain VPN connections simultaneously across all cluster units.C . VPN connections must be re-established when a new...

Which two statements about bridge-group interfaces in Cisco FTD are true? (Choose two.)A . The BVI IP address must be in a separate subnet from the connected network.B . Bridge groups are supported in both transparent and routed firewall modes.C . Bridge groups are supported only in transparent firewall mode.D...

Which command-line mode is supported from the Cisco Firepower Management Center CLI?A . privilegedB . userC . configurationD . adminView AnswerAnswer: C Explanation: Reference: https://www.cisco.com/c/en/us/td/docs/security/firepower/660/configuration/guide/fpmc-config-guide-v66/command_line_reference.pdf

What is a behavior of a Cisco FMC database purge?A . User login and history data are removed from the database if the User Activity check box is selected.B . Data can be recovered from the device.C . The appropriate process is restarted.D . The specified data is removed from...

How many report templates does the Cisco Firepower Management Center support?A . 20B . 10C . 5D . unlimitedView AnswerAnswer: D Explanation: Reference: https://www.cisco.com/c/en/us/td/docs/security/firepower/60/configuration/guide/fpmc-config-guide-v60/Working_with_Reports.html

Which two remediation options are available when Cisco FMC is integrated with Cisco ISE? (Choose two.)A . dynamic null route configuredB . DHCP pool disablementC . quarantineD . port shutdownE . host shutdownView AnswerAnswer: C,D Explanation: Reference: https://www.cisco.com/c/en/us/support/docs/security/identity-services-engine/210524-configure-firepower-6-1-pxgrid-remediati.html

Which command should be used on the Cisco FTD CLI to capture all the packets that hit an interface?A . configure coredump packet-engine enableB . capture-trafficC . captureD . capture WORDView AnswerAnswer: C Explanation: Reason: the command "capture-traffic" is used for SNORT Engine Captures. To capture a LINA Engine Capture,...

Which two conditions must be met to enable high availability between two Cisco FTD devices? (Choose two.)A . same flash memory sizeB . same NTP configurationC . same DHCP/PPoE configurationD . same host nameE . same number of interfacesView AnswerAnswer: B,E Explanation: https://www.cisco.com/c/en/us/support/docs/security/firepower-management-center/212699-configure-ftd-high-availability-on-firep.html Conditions In order to create an HA...

DRAG DROP Drag and drop the steps to restore an automatic device registration failure on the standby Cisco FMC from the left into the correct order on the right. Not all options are used. View AnswerAnswer: