- All Exams Instant Download
In which two ways do access control policies operate on a Cisco Firepower system? (Choose two.)
In which two ways do access control policies operate on a Cisco Firepower system? (Choose two.)A . Traffic inspection can be interrupted temporarily when configuration changes are deployed.B . The system performs intrusion inspection followed by file inspection.C . They can block traffic based on Security Intelligence data.D . File...
Which two actions can be used in an access control policy rule? (Choose two.)
Which two actions can be used in an access control policy rule? (Choose two.)A . Block with ResetB . MonitorC . AnalyzeD . DiscoverE . Block ALLView AnswerAnswer: AB Explanation: Reference: https://www.cisco.com/c/en/us/td/docs/security/firesight/541/firepower-module-user-guide/asa-firepower-module-user-guide-v541/AC-Rules-Tuning-Overview.html#71854
Which two deployment types support high availability? (Choose two.)
Which two deployment types support high availability? (Choose two.)A . transparentB . routedC . clusteredD . intra-chassis multi-instanceE . virtual appliance in public cloudView AnswerAnswer: AB Explanation: Reference: https://www.cisco.com/c/en/us/td/docs/security/firepower/610/configuration/guide/fpmc-config-guide-v61/firepower_threat_defense_high_availability.html
How should this be addressed to block the traffic while allowing legitimate user traffic?
An organization is using a Cisco FTD and Cisco ISE to perform identity-based access controls. A network administrator is analyzing the Cisco FTD events and notices that unknown user traffic is being allowed through the firewall. How should this be addressed to block the traffic while allowing legitimate user traffic?A...
Which firewall mode is the Cisco FTD set up to support?
A Cisco FTD has two physical interfaces assigned to a BVI. Each interface is connected to a different VLAN on the same switch. Which firewall mode is the Cisco FTD set up to support?A . active/active failoverB . transparentC . routedD . high availability clusteringView AnswerAnswer: B
What is a behavior of a Cisco FMC database purge?
What is a behavior of a Cisco FMC database purge?A . User login and history data are removed from the database if the User Activity check box is selected.B . Data can be recovered from the device.C . The appropriate process is restarted.D . The specified data is removed from...
How many report templates does the Cisco Firepower Management Center support?
How many report templates does the Cisco Firepower Management Center support?A . 20B . 10C . 5D . unlimitedView AnswerAnswer: D Explanation: Reference: https://www.cisco.com/c/en/us/td/docs/security/firepower/60/configuration/guide/fpmc-config-guide- v60/Working_with_Reports.html
Which command is run at the CLI when logged in to an FTD unit, to determine whether the unit is managed locally or by a remote FMC server?
Which command is run at the CLI when logged in to an FTD unit, to determine whether the unit is managed locally or by a remote FMC server?A . system generate-troubleshootB . show configuration sessionC . show managersD . show running-config | include managerView AnswerAnswer: C Explanation: Reference: https://www.cisco.com/c/en/us/td/docs/security/firepower/command_ref/b_Command_Reference_for_Firepower_Threat_Defense/c_3.html
What is the reason for this failure?
An administrator is creating interface objects to better segment their network but is having trouble adding interfaces to the objects. What is the reason for this failure?A . The interfaces are being used for NAT for multiple networks.B . The administrator is adding interfaces of multiple types.C . The administrator...
How is this accomplished on an FTD device in routed mode?
A network engineer is extending a user segment through an FTD device for traffic inspection without creating another IP subnet. How is this accomplished on an FTD device in routed mode?A . by leveraging the ARP to direct traffic through the firewallB . by assigning an inline set interfaceC ....
