300-710 exam

With Cisco Firepower Threat Defense software, which interface mode must be configured to passively receive traffic that passes through the appliance?A . inline setB . passiveC . routedD . inline tapView AnswerAnswer: B Explanation: Reference: https://www.cisco.com/c/en/us/td/docs/security/firepower/640/configuration/guide/fpmc-config-guide-v64/interface_overview_for_firepower_threat_defense.html

Within an organization's high availability environment where both firewalls are passing traffic, traffic must be segmented based on which department it is destined for. Each department is situated on a different LAN . What must be configured to meet these requirements?A . span EtherChannel clusteringB . redundant interfacesC . high...

A Cisco FTD has two physical interfaces assigned to a BVI. Each interface is connected to a different VLAN on the same switch . Which firewall mode is the Cisco FTD set up to support?A . active/active failoverB . transparentC . routedD . high availability clusteringView AnswerAnswer: C

An administrator is creating interface objects to better segment their network but is having trouble adding interfaces to the objects . What is the reason for this failure?A . The interfaces are being used for NAT for multiple networks.B . The administrator is adding interfaces of multiple types.C . The...

When deploying a Cisco ASA Firepower module, an organization wants to evaluate the contents of the traffic without affecting the network. It is currently configured to have more than one instance of the same device on the physical appliance. Which deployment mode meets the needs of the organization? A. inline...

Which action should you take when Cisco Threat Response notifies you that AMP has identified a file as malware?A . Add the malicious file to the block list.B . Send a snapshot to Cisco for technical support.C . Forward the result of the investigation to an external threat-analysis engine.D ....

What are the minimum requirements to deploy a managed device inline?A . inline interfaces, security zones, MTU, and modeB . passive interface, MTU, and modeC . inline interfaces, MTU, and modeD . passive interface, security zone, MTU, and modeView AnswerAnswer: C Explanation: Reference: https://www.cisco.com/c/en/us/td/docs/security/firepower/650/configuration/guide/fpmc-config-guide-v65/ips_device_deployments_and_configuration.html

Which two dynamic routing protocols are supported in Firepower Threat Defense without using FlexConfig? (Choose two.)A . EIGRPB . OSPFC . static routingD . IS-ISE . BGPView AnswerAnswer: B,E Explanation: Reference: https://www.cisco.com/c/en/us/td/docs/security/firepower/660/fdm/fptd-fdm-config-guide-660/fptd-fdm-routing.html

When creating a report template, how can the results be limited to show only the activity of a specific subnet?A . Create a custom search in Firepower Management Center and select it in each section of the report.B . Add an Input Parameter in the Advanced Settings of the report,...

A network security engineer must replace a faulty Cisco FTD device in a high availability pair . Which action must be taken while replacing the faulty unit?A . Shut down the Cisco FMC before powering up the replacement unit.B . Ensure that the faulty Cisco FTD device remains registered to...