ExamGecko
Home / Cisco / 300-710 / List of questions
Ask Question

Cisco 300-710 Practice Test - Questions Answers, Page 3

Add to Whishlist

List of questions

Question 21

Report Export Collapse

Within an organization's high availability environment where both firewalls are passing traffic, traffic must be segmented based on which department it is destined for. Each department is situated on a different LAN. What must be configured to meet these requirements?

span EtherChannel clustering

span EtherChannel clustering

redundant interfaces

redundant interfaces

high availability active/standby firewalls

high availability active/standby firewalls

multi-instance firewalls

multi-instance firewalls

Suggested answer: D
asked 07/10/2024
Nazarii Bybyk
38 questions

Question 22

Report Export Collapse

An engineer is configuring a Cisco IPS to protect the network and wants to test a policy before deploying it. A copy of each incoming packet needs to be monitored while traffic flow remains constant. Which IPS mode should be implemented to meet these requirements?

Inline tap

Inline tap

passive

passive

transparent

transparent

routed

routed

Suggested answer: A
asked 07/10/2024
Hariett Mambo
47 questions

Question 23

Report Export Collapse

A network security engineer must replace a faulty Cisco FTD device in a high availability pair. Which action must be taken while replacing the faulty unit?

Shut down the Cisco FMC before powering up the replacement unit.

Shut down the Cisco FMC before powering up the replacement unit.

Ensure that the faulty Cisco FTD device remains registered to the Cisco FMC.

Ensure that the faulty Cisco FTD device remains registered to the Cisco FMC.

Unregister the faulty Cisco FTD device from the Cisco FMC

Unregister the faulty Cisco FTD device from the Cisco FMC

Shut down the active Cisco FTD device before powering up the replacement unit.

Shut down the active Cisco FTD device before powering up the replacement unit.

Suggested answer: C
asked 07/10/2024
Maurizio Budicin
37 questions

Question 24

Report Export Collapse

An administrator is optimizing the Cisco FTD rules to improve network performance, and wants to bypass inspection for certain traffic types to reduce the load on the Cisco FTD. Which policy must be configured to accomplish this goal?

prefilter

prefilter

intrusion

intrusion

identity

identity

URL filtering

URL filtering

Suggested answer: A
asked 07/10/2024
Pungava Gowda
35 questions

Question 25

Report Export Collapse

A Cisco FTD has two physical interfaces assigned to a BVI. Each interface is connected to a different VLAN on the same switch. Which firewall mode is the Cisco FTD set up to support?

active/active failover

active/active failover

transparent

transparent

routed

routed

high availability clustering

high availability clustering

Suggested answer: B
asked 07/10/2024
Ibrahim SACCA
37 questions

Question 26

Report Export Collapse

An organization is migrating their Cisco ASA devices running in multicontext mode to Cisco FTD devices. Which action must be taken to ensure that each context on the Cisco ASA is logically separated in the Cisco FTD devices?

Add a native instance to distribute traffic to each Cisco FTD context.

Add a native instance to distribute traffic to each Cisco FTD context.

Add the Cisco FTD device to the Cisco ASA port channels.

Add the Cisco FTD device to the Cisco ASA port channels.

Configure a container instance in the Cisco FTD for each context in the Cisco ASA.

Configure a container instance in the Cisco FTD for each context in the Cisco ASA.

Configure the Cisco FTD to use port channels spanning multiple networks.

Configure the Cisco FTD to use port channels spanning multiple networks.

Suggested answer: C
asked 07/10/2024
Bassem Louati
37 questions

Question 27

Report Export Collapse

Which firewall design allows a firewall to forward traffic at layer 2 and layer 3 for the same subnet?

Cisco Firepower Threat Defense mode

Cisco Firepower Threat Defense mode

transparent mode

transparent mode

routed mode

routed mode

integrated routing and bridging

integrated routing and bridging

Suggested answer: B
Explanation:

Topic 2, Configuration

asked 07/10/2024
Khalfan KAABI
42 questions

Question 28

Report Export Collapse

Which two OSPF routing features are configured in Cisco FMC and propagated to Cisco FTD? (Choose two.)

OSPFv2 with IPv6 capabilities

OSPFv2 with IPv6 capabilities

virtual links

virtual links

SHA authentication to OSPF packets

SHA authentication to OSPF packets

area boundary router type 1 LSA filtering

area boundary router type 1 LSA filtering

MD5 authentication to OSPF packets

MD5 authentication to OSPF packets

Suggested answer: B, E
Explanation:

Reference:

https://www.cisco.com/c/en/us/td/docs/security/firepower/620/configuration/guide/fpmc-configguide-v62/ospf_for_firepower_threat_defense.html

asked 07/10/2024
John Shelby
43 questions

Question 29

Report Export Collapse

When creating a report template, how can the results be limited to show only the activity of a specific subnet?

Create a custom search in Firepower Management Center and select it in each section of the report.

Create a custom search in Firepower Management Center and select it in each section of the report.

Add an Input Parameter in the Advanced Settings of the report, and set the type to Network/IP.

Add an Input Parameter in the Advanced Settings of the report, and set the type to Network/IP.

Add a Table View section to the report with the Search field defined as the network in CIDR format.

Add a Table View section to the report with the Search field defined as the network in CIDR format.

Select IP Address as the X-Axis in each section of the report.

Select IP Address as the X-Axis in each section of the report.

Suggested answer: B
Explanation:

Reference: https://www.cisco.com/c/en/us/td/docs/security/firesight/541/user-guide/FireSIGHTSystem-UserGuide-v5401/Reports.html#87267

asked 07/10/2024
AARON MCCOMBS
53 questions

Question 30

Report Export Collapse

What is the disadvantage of setting up a site-to-site VPN in a clustered-units environment?

VPN connections can be re-established only if the failed master unit recovers.

VPN connections can be re-established only if the failed master unit recovers.

Smart License is required to maintain VPN connections simultaneously across all cluster units.

Smart License is required to maintain VPN connections simultaneously across all cluster units.

VPN connections must be re-established when a new master unit is elected.

VPN connections must be re-established when a new master unit is elected.

Only established VPN connections are maintained when a new master unit is elected.

Only established VPN connections are maintained when a new master unit is elected.

Suggested answer: C
Explanation:

Reference: https://www.cisco.com/c/en/us/td/docs/security/firepower/fxos/clustering/ftd-clustersolution.html#concept_g32_yml_y2b

asked 07/10/2024
Adrian Mark
36 questions
Total 326 questions
Go to page: of 33
Search

Related questions