Cisco 300-710 Practice Test - Questions Answers, Page 6

List of questions
Question 51

A network administrator reviews the file report for the last month and notices that all file types, except exe. show a disposition of unknown. What is the cause of this issue?
The malware license has not been applied to the Cisco FTD.
The Cisco FMC cannot reach the Internet to analyze files.
A file policy has not been applied to the access policy.
Only Spero file analysis is enabled.
A file policy defines the actions that the Cisco Firepower Threat Defense (FTD) device should take whenit encounters different types of files. The file policy is applied as part of an access control policy. If anaccess control policy does not include a file policy, the FTD device will not take any action on the files itencounters, resulting in a disposition of 'unknown' for all file types except exe
Question 52

What is the benefit of selecting the trace option for packet capture?
The option indicates whether the packet was dropped or successful.
The option indicated whether the destination host responds through a different path.
The option limits the number of packets that are captured.
The option captures details of each packet.
Question 53

After deploying a network-monitoring tool to manage and monitor networking devices in your organization, you realize that you need to manually upload an MIB for the Cisco FMC. In which folder should you upload the MIB file?
/etc/sf/DCMIB.ALERT
/sf/etc/DCEALERT.MIB
/etc/sf/DCEALERT.MIB
system/etc/DCEALERT.MIB
Reference: https://www.cisco.com/c/en/us/td/docs/security/firesight/541/firepower-module-userguide/asa- firepower-module-user-guide-v541/Intrusion-External-Responses.pdf
Question 54

Which command is run at the CLI when logged in to an FTD unit, to determine whether the unit is managed locally or by a remote FMC server?
system generate-troubleshoot
show configuration session
show managers
show running-config | include manager
Reference: https://www.cisco.com/c/en/us/td/docs/security/firepower/command_ref/b_Command_Reference_for_Firepower_Threat_Defense/c_3.html
Question 55

Which command should be used on the Cisco FTD CLI to capture all the packets that hit an interface?
configure coredump packet-engine enable
capture-traffic
capture
capture WORD
Reason: the command "capture-traffic" is used for SNORT Engine Captures. To capture a LINA Engine Capture, you use the "capture" command. Since the Lina Engine represents the actual physical interface of the device, "capture" is the only reasonable choice Reference:
https://www.cisco.com/c/en/us/support/docs/security/firepower-ngfw/212474-working-withfirepower-threat-defense-f.html#anc10The command isfirepower# capture DMZ interface dmz trace detail match ip host 192.168.76.14 host 192.168.76.100firepower# capture INSIDE interface inside trace detail match ip host 192.168.76.14 host192.168.75.14
Question 56

How many report templates does the Cisco Firepower Management Center support?
20
10
5
unlimited
Reference:
https://www.cisco.com/c/en/us/td/docs/security/firepower/60/configuration/guide/fpmc-configguide-v60/Working_with_Reports.html
Question 57

Which action should be taken after editing an object that is used inside an access control policy?
Delete the existing object in use.
Refresh the Cisco FMC GUI for the access control policy.
Redeploy the updated configuration.
Create another rule using a different object name.
Reference:
https://www.cisco.com/c/en/us/td/docs/security/firepower/630/configuration/guide/fpmc-configguide-v63/reusable_objects.html
Question 58

Which Cisco Firepower feature is used to reduce the number of events received in a period of time?
rate-limiting
suspending
correlation
thresholding
Reference: https://www.cisco.com/c/en/us/td/docs/security/firesight/541/firepower-module-userguide/asa- firepower-module-user-guide-v541/Intrusion-Global-Threshold.html
Question 59

Which report template field format is available in Cisco FMC?
box lever chart
arrow chart
bar chart
benchmark chart
Reference:
https://www.cisco.com/c/en/us/td/docs/security/firepower/60/configuration/guide/fpmc-configguide-v60/Working_with_Reports.html
Question 60

Which group within Cisco does the Threat Response team use for threat analysis and research?
Cisco Deep Analytics
OpenDNS Group
Cisco Network Response
Cisco Talos
Reference: https://www.cisco.com/c/en/us/products/security/threat-response.html#~benefits
Question