Home / Cisco / 300-710

Cisco 300-710 Practice Test - Questions Answers, Page 4

Question list

List of questions

Question 31

(0)

Which two statements about bridge-group interfaces in Cisco FTD are true? (Choose two.)

Question 32

(0)

Which command is run on an FTD unit to associate the unit to an FMC manager that is at IP address 10.0.0.10, and that has the registration key Cisco123?

Question 33

(0)

Which two actions can be used in an access control policy rule? (Choose two.)

Question 34

(0)

Which two routing options are valid with Cisco Firepower Threat Defense? (Choose two.)

Question 35

(0)

Which object type supports object overrides?

Question 36

(0)

Which Cisco Firepower rule action displays an HTTP warning page?

Question 37

(0)

What is the result of specifying of QoS rule that has a rate limit that is greater than the maximum throughput of an interface?

Question 38

(0)

Which Firepower feature allows users to configure bridges in routed mode and enables devices to perform Layer 2 switching between interfaces?

Question 39

(0)

In which two places can thresholding settings be configured? (Choose two.)

Question 40

(0)

In which two ways do access control policies operate on a Cisco Firepower system? (Choose two.)

Related questions

An engineer must integrate a thud-party security Intelligence teed with Cisco Secure Firewall Management Center. Secure Firewall Management Center is running Version 6.2 3 and has 8 GB of memory. Which two actions must be taken to implement Throat Intelligence Director? (Choose two.)

Which two conditions are necessary for high availability to function between two Cisco FTD devices? (Choose two.)

A company has many Cisco FTD devices managed by a Cisco FMC. The security model requires that access control rule logs be collected for analysis. The security engineer is concerned that the Cisco FMC will not be able to process the volume of logging that will be generated. Which configuration addresses this concern?

What is the difference between inline and inline tap on Cisco Firepower?

An engineer has been tasked with performing an audit of network projects to determine which objects are duplicated across the various firewall models (Cisco Secure Firewall Threat Defense Cisco Secure firewall ASA, and Meraki MX Series) deployed throughout the company Which tool will assist the engineer in performing that audit?

A network engineer must configure an existing firewall to have a NAT configuration. The now configuration must support more than two interlaces per context. The firewall has previously boon operating transparent mode. The Cisco Secure Firewall Throat Defense (FTD) device has been deregistered from Cisco Secure Firewall Management Center (FMC). Which set of configuration actions must the network engineer take next to meet the requirements?

A software development company hosts the website http:dev.company.com for contractors to share code for projects they are working on with internal developers. The web server is on premises and is protected by a Cisco Secure Firewall Threat Defense appliance. The network administrator is worried about someone trying to transmit infected files to internal users via this site. Which type of policy must be able associated with an access control policy to enable Cisco Secure Firewall Malware Defense to detect and block malware?

An engineer is troubleshooting an intermittent connectivity issue on a Cisco Secure Firewall Threat Defense appliance and must collect 24 hours' worth of data. The engineer started a packet capture. Whenever it stops prematurely during this time period. The engineer notices that the packet capture butter size is set to the default of 32 MB Which butter S170 is the maximum that the engineer must sot to able the packet capture to run successfully?

Which command is run on an FTD unit to associate the unit to an FMC manager that is at IP address 10.0.0.10, and that has the registration key Cisco123?

What is a result of enabling Cisco FTD clustering?

Question 31

Which two statements about bridge-group interfaces in Cisco FTD are true? (Choose two.)

The BVI IP address must be in a separate subnet from the connected network.

Bridge groups are supported in both transparent and routed firewall modes.

Bridge groups are supported only in transparent firewall mode.

Bidirectional Forwarding Detection echo packets are allowed through the FTD when using bridgegroup members.

Each directly connected network must be on the same subnet.

Show Answer Comment (0)

Question 32

Which command is run on an FTD unit to associate the unit to an FMC manager that is at IP address 10.0.0.10, and that has the registration key Cisco123?

configure manager local 10.0.0.10 Cisco123

configure manager add Cisco123 10.0.0.10

configure manager local Cisco123 10.0.0.10

configure manager add 10.0.0.10 Cisco123

Show Answer Comment (0)

Question 33

Which two actions can be used in an access control policy rule? (Choose two.)

Block with Reset

Monitor

Analyze

Discover

Block ALL

Show Answer Comment (0)

Question 34

Which two routing options are valid with Cisco Firepower Threat Defense? (Choose two.)

BGPv6

ECMP with up to three equal cost paths across multiple interfaces

ECMP with up to three equal cost paths across a single interface

BGPv4 in transparent firewall mode

BGPv4 with nonstop forwarding

Show Answer Comment (0)

Question 35

Which object type supports object overrides?

time range

security group tag

network object

DNS server group

Show Answer Comment (0)

Question 36

Which Cisco Firepower rule action displays an HTTP warning page?

Monitor

Block

Interactive Block

Allow with Warning

Show Answer Comment (0)

Question 37

What is the result of specifying of QoS rule that has a rate limit that is greater than the maximum throughput of an interface?

The rate-limiting rule is disabled.

Matching traffic is not rate limited.

The system rate-limits all traffic.

The system repeatedly generates warnings.

Show Answer Comment (0)

Question 38

Which Firepower feature allows users to configure bridges in routed mode and enables devices to perform Layer 2 switching between interfaces?

FlexConfig

BDI

SGT

IRB

Show Answer Comment (0)

Question 39

In which two places can thresholding settings be configured? (Choose two.)

on each IPS rule

globally, within the network analysis policy

globally, per intrusion policy

on each access control rule

per preprocessor, within the network analysis policy

Show Answer Comment (0)

Question 40

In which two ways do access control policies operate on a Cisco Firepower system? (Choose two.)

Traffic inspection can be interrupted temporarily when configuration changes are deployed.

The system performs intrusion inspection followed by file inspection.

They can block traffic based on Security Intelligence data.

File policies use an associated variable set to perform intrusion prevention.

The system performs a preliminary inspection on trusted traffic to validate that it matches the trusted parameters.

Show Answer Comment (0)

Total 326 questions

2 3 4 5 6

Go to page: of 33