- All Exams Instant Download
What is the result of specifying of QoS rule that has a rate limit that is greater than the maximum throughput of an interface?
What is the result of specifying of QoS rule that has a rate limit that is greater than the maximum throughput of an interface?A . The rate-limiting rule is disabled.B . Matching traffic is not rate limited.C . The system rate-limits all traffic.D . The system repeatedly generates warnings.View AnswerAnswer:...
How should this be implemented?
A network engineer implements a new Cisco Firepower device on the network to take advantage of its intrusion detection functionality. There is a requirement to analyze the traffic going across the device, alert on any malicious traffic, and appear as a bump in the wire. How should this be implemented?A...
Which firewall mode is the Cisco FTD set up to support?
A Cisco FTD has two physical interfaces assigned to a BVI. Each interface is connected to a different VLAN on the same switch. Which firewall mode is the Cisco FTD set up to support?A . active/active failoverB . transparentC . routedD . high availability clusteringView AnswerAnswer: C
What is the maximum bit size that Cisco FMC supports for HTTPS certificates?
What is the maximum bit size that Cisco FMC supports for HTTPS certificates?A . 1024B . 8192C . 4096D . 2048View AnswerAnswer: C Explanation: Reference: https://www.cisco.com/c/en/us/td/docs/security/firepower/610/configuration/guide/fpmc-config-guide-v61/system_configuration.html
Which firewall design allows a firewall to forward traffic at layer 2 and layer 3 for the same subnet?
Which firewall design allows a firewall to forward traffic at layer 2 and layer 3 for the same subnet?A . Cisco Firepower Threat Defense modeB . transparent modeC . routed modeD . integrated routing and bridgingView AnswerAnswer: B
Which two conditions are necessary for high availability to function between two Cisco FTD devices? (Choose two.)
Which two conditions are necessary for high availability to function between two Cisco FTD devices? (Choose two.)A . The units must be the same versionB . Both devices can be part of a different group that must be in the same domain when configuredwithin the FMD . The units must...
Which configuration addresses this concern?
A company has many Cisco FTD devices managed by a Cisco FMC. The security model requires that access control rule logs be collected for analysis. The security engineer is concerned that the Cisco FMC will not be able to process the volume of logging that will be generated. Which configuration...
What is the difference between inline and inline tap on Cisco Firepower?
What is the difference between inline and inline tap on Cisco Firepower?A . Inline tap mode can send a copy of the traffic to another device.B . Inline tap mode does full packet capture.C . Inline mode cannot do SSL decryption.D . Inline mode can drop malicious traffic.View AnswerAnswer: A
Which command is run on an FTD unit to associate the unit to an FMC manager that is at IP address 10.0.0.10, and that has the registration key Cisco123?
Which command is run on an FTD unit to associate the unit to an FMC manager that is at IP address 10.0.0.10, and that has the registration key Cisco123?A . configure manager local 10.0.0.10 Cisco123B . configure manager add Cisco123 10.0.0.10C . configure manager local Cisco123 10.0.0.10D . configure manager...
Which command is typed at the CLI on the primary Cisco FTD unit to temporarily stop running high-availability?
Which command is typed at the CLI on the primary Cisco FTD unit to temporarily stop running high-availability?A . configure high-availability resumeB . configure high-availability disableC . system support network-optionsD . configure high-availability suspendView AnswerAnswer: B Explanation: Reference: https://www.cisco.com/c/en/us/td/docs/security/firepower/610/configuration/guide/fpmc-config-guide-v61/firepower_threat_defense_high_availability.html
