What must be done to meet these requirements?

An engineer has been tasked with configuring a Cisco FTD to analyze protocol fields and detect anomalies in the traffic from industrial systems.

What must be done to meet these requirements?
A . Implement pre-filter policies for the CIP preprocessor.
B . Enable traffic analysis in the Cisco FT
D . Configure intrusion rules for the DNP3 preprocessor.
E . Modify the access control policy to trust the industrial traffic.

Answer: B

Latest 350-701 Dumps Valid Version with 327 Q&As

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund

Subscribe
Notify of
guest
1 Comment
Inline Feedbacks
View all comments
flavia
flavia
2 years ago

Answer D

The Modbus, DNP3, and CIP SCADA preprocessors detect traffic anomalies and provide data to intrusion rules. Supervisory Control and Data Acquisition (SCADA) protocols monitor, control, and acquire data from industrial, infrastructure, and facility processes such as manufacturing, production, water treatment, electric power distribution, airport and shipping systems, and so on.

https://www.cisco.com/c/en/us/td/docs/security/firepower/630/configuration/guide/fpmc-config-guide-v63/overview_of_network_analysis_and_intrusion_policies.html