ExamGecko
Login
Home / Cisco / 300-710 / List of questions
Ask Question

Cisco 300-710 Practice Test - Questions Answers, Page 3

Add to Whishlist

List of questions

Question 21

Report Export Collapse

Within an organization's high availability environment where both firewalls are passing traffic, traffic must be segmented based on which department it is destined for. Each department is situated on a different LAN. What must be configured to meet these requirements?

span EtherChannel clustering

span EtherChannel clustering

redundant interfaces

redundant interfaces

high availability active/standby firewalls

high availability active/standby firewalls

multi-instance firewalls

multi-instance firewalls

Suggested answer: D
asked 07/10/2024
Nazarii Bybyk
38 questions

Question 22

Report Export Collapse

An engineer is configuring a Cisco IPS to protect the network and wants to test a policy before deploying it. A copy of each incoming packet needs to be monitored while traffic flow remains constant. Which IPS mode should be implemented to meet these requirements?

Inline tap

Inline tap

passive

passive

transparent

transparent

routed

routed

Suggested answer: A
asked 07/10/2024
Hariett Mambo
48 questions

Question 23

Report Export Collapse

A network security engineer must replace a faulty Cisco FTD device in a high availability pair. Which action must be taken while replacing the faulty unit?

Shut down the Cisco FMC before powering up the replacement unit.

Shut down the Cisco FMC before powering up the replacement unit.

Ensure that the faulty Cisco FTD device remains registered to the Cisco FMC.

Ensure that the faulty Cisco FTD device remains registered to the Cisco FMC.

Unregister the faulty Cisco FTD device from the Cisco FMC

Unregister the faulty Cisco FTD device from the Cisco FMC

Shut down the active Cisco FTD device before powering up the replacement unit.

Shut down the active Cisco FTD device before powering up the replacement unit.

Suggested answer: C
asked 07/10/2024
Maurizio Budicin
38 questions

Question 24

Report Export Collapse

An administrator is optimizing the Cisco FTD rules to improve network performance, and wants to bypass inspection for certain traffic types to reduce the load on the Cisco FTD. Which policy must be configured to accomplish this goal?

prefilter

prefilter

intrusion

intrusion

identity

identity

URL filtering

URL filtering

Suggested answer: A
asked 07/10/2024
Pungava Gowda
35 questions

Question 25

Report Export Collapse

A Cisco FTD has two physical interfaces assigned to a BVI. Each interface is connected to a different VLAN on the same switch. Which firewall mode is the Cisco FTD set up to support?

active/active failover

active/active failover

transparent

transparent

routed

routed

high availability clustering

high availability clustering

Suggested answer: B
asked 07/10/2024
Ibrahim SACCA
38 questions

Question 26

Report Export Collapse

An organization is migrating their Cisco ASA devices running in multicontext mode to Cisco FTD devices. Which action must be taken to ensure that each context on the Cisco ASA is logically separated in the Cisco FTD devices?

Add a native instance to distribute traffic to each Cisco FTD context.

Add a native instance to distribute traffic to each Cisco FTD context.

Add the Cisco FTD device to the Cisco ASA port channels.

Add the Cisco FTD device to the Cisco ASA port channels.

Configure a container instance in the Cisco FTD for each context in the Cisco ASA.

Configure a container instance in the Cisco FTD for each context in the Cisco ASA.

Configure the Cisco FTD to use port channels spanning multiple networks.

Configure the Cisco FTD to use port channels spanning multiple networks.

Suggested answer: C
asked 07/10/2024
Bassem Louati
37 questions

Question 27

Report Export Collapse

Which firewall design allows a firewall to forward traffic at layer 2 and layer 3 for the same subnet?

Cisco Firepower Threat Defense mode

Cisco Firepower Threat Defense mode

transparent mode

transparent mode

routed mode

routed mode

integrated routing and bridging

integrated routing and bridging

Suggested answer: B
Explanation:

Topic 2, Configuration

asked 07/10/2024
Khalfan KAABI
42 questions

Question 28

Report Export Collapse

Which two OSPF routing features are configured in Cisco FMC and propagated to Cisco FTD? (Choose two.)

OSPFv2 with IPv6 capabilities

OSPFv2 with IPv6 capabilities

virtual links

virtual links

SHA authentication to OSPF packets

SHA authentication to OSPF packets

area boundary router type 1 LSA filtering

area boundary router type 1 LSA filtering

MD5 authentication to OSPF packets

MD5 authentication to OSPF packets

Suggested answer: B, E
Explanation:

Reference:

https://www.cisco.com/c/en/us/td/docs/security/firepower/620/configuration/guide/fpmc-configguide-v62/ospf_for_firepower_threat_defense.html

asked 07/10/2024
John Shelby
43 questions

Question 29

Report Export Collapse

When creating a report template, how can the results be limited to show only the activity of a specific subnet?

Create a custom search in Firepower Management Center and select it in each section of the report.

Create a custom search in Firepower Management Center and select it in each section of the report.

Add an Input Parameter in the Advanced Settings of the report, and set the type to Network/IP.

Add an Input Parameter in the Advanced Settings of the report, and set the type to Network/IP.

Add a Table View section to the report with the Search field defined as the network in CIDR format.

Add a Table View section to the report with the Search field defined as the network in CIDR format.

Select IP Address as the X-Axis in each section of the report.

Select IP Address as the X-Axis in each section of the report.

Suggested answer: B
Explanation:

Reference: https://www.cisco.com/c/en/us/td/docs/security/firesight/541/user-guide/FireSIGHTSystem-UserGuide-v5401/Reports.html#87267

asked 07/10/2024
AARON MCCOMBS
53 questions

Question 30

Report Export Collapse

What is the disadvantage of setting up a site-to-site VPN in a clustered-units environment?

VPN connections can be re-established only if the failed master unit recovers.

VPN connections can be re-established only if the failed master unit recovers.

Smart License is required to maintain VPN connections simultaneously across all cluster units.

Smart License is required to maintain VPN connections simultaneously across all cluster units.

VPN connections must be re-established when a new master unit is elected.

VPN connections must be re-established when a new master unit is elected.

Only established VPN connections are maintained when a new master unit is elected.

Only established VPN connections are maintained when a new master unit is elected.

Suggested answer: C
Explanation:

Reference: https://www.cisco.com/c/en/us/td/docs/security/firepower/fxos/clustering/ftd-clustersolution.html#concept_g32_yml_y2b

asked 07/10/2024
Adrian Mark
36 questions
Total 326 questions
Go to page: of 33
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

A network administrator reviews the file report for the last month and notices that all file types, except exe. show a disposition of unknown. What is the cause of this issue?
When an engineer captures traffic on a Cisco FTD to troubleshoot a connectivity problem, they receive a large amount of output data in the GUI tool. The engineer found that viewing the Captures this way is time-consuming and difficult lo son and filter. Which file type must the engineer export the data in so that it can be reviewed using a tool built for this type of analysis?
What is a result of enabling Cisco FTD clustering?
A company is deploying Cisco Secure Endpoint private cloud. The Secure Endpoint private cloud instance has already been deployed by the server administrator. The server administrator provided the hostname of the private cloud instance to the network engineer via email. What additional information does the network engineer require from the server administrator to be able to make the connection to Secure Endpoint private cloud in Cisco Secure Firewall Management Centre?
A network administrator needs to create a policy on Cisco Firepower to fast-path traffic to avoid Layer 7 inspection. The rate at which traffic is inspected must be optimized. What must be done to achieve this goal?
Which two conditions are necessary for high availability to function between two Cisco FTD devices? (Choose two.)
A network administrator is configuring Snort inspection policies and is seeing failed deployment messages in Cisco FMC. What information should the administrator generate for Cisco TAC to help troubleshoot?
An engineer is configuring Cisco FMC and wants to limit the time allowed for processing packets through the interface However if the time is exceeded the configuration must allow packets to bypass detection What must be configured on the Cisco FMC to accomplish this task?
A network administrator is concerned about (he high number of malware files affecting users' machines. What must be done within the access control policy in Cisco FMC to address this concern?
An engineer is implementing Cisco FTD in the network and is determining which Firepower mode to use. The organization needs to have multiple virtual Firepower devices working separately inside of the FTD appliance to provide traffic segmentation Which deployment mode should be configured in the Cisco Firepower Management Console to support these requirements?