ExamGecko
Search Search Login
Home Home / Cisco / 300-710

Cisco 300-710 Practice Test - Questions Answers, Page 9

Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

An engineer must integrate a thud-party security Intelligence teed with Cisco Secure Firewall Management Center. Secure Firewall Management Center is running Version 6.2 3 and has 8 GB of memory. Which two actions must be taken to implement Throat Intelligence Director? (Choose two.)
Which two conditions are necessary for high availability to function between two Cisco FTD devices? (Choose two.)
What is a result of enabling Cisco FTD clustering?
A company has many Cisco FTD devices managed by a Cisco FMC. The security model requires that access control rule logs be collected for analysis. The security engineer is concerned that the Cisco FMC will not be able to process the volume of logging that will be generated. Which configuration addresses this concern?
What is the difference between inline and inline tap on Cisco Firepower?
A network engineer must configure an existing firewall to have a NAT configuration. The now configuration must support more than two interlaces per context. The firewall has previously boon operating transparent mode. The Cisco Secure Firewall Throat Defense (FTD) device has been deregistered from Cisco Secure Firewall Management Center (FMC). Which set of configuration actions must the network engineer take next to meet the requirements?
Which command is run on an FTD unit to associate the unit to an FMC manager that is at IP address 10.0.0.10, and that has the registration key Cisco123?
Which policy rule is included in the deployment of a local DMZ during the initial deployment of a Cisco NGFW through the Cisco FMC GUI?
A security engineer must create a malware and file policy on a Cisco Secure Firewall Threat Defense device. The solution must ensure that PDF. DOCX, and XLSX files are not sent lo Cisco Secure Malware analytics. What must do configured to meet the requirements''
An engineer has been tasked with performing an audit of network projects to determine which objects are duplicated across the various firewall models (Cisco Secure Firewall Threat Defense Cisco Secure firewall ASA, and Meraki MX Series) deployed throughout the company Which tool will assist the engineer in performing that audit?

Question 81

Report
Export
Collapse

In a Cisco AMP for Networks deployment, which disposition is returned if the cloud cannot be reached?

A.

unavailable

A.

unavailable

Answers
B.

unknown

B.

unknown

Answers
C.

clean

C.

clean

Answers
D.

disconnected

D.

disconnected

Answers
Suggested answer: A

Question 82

Report
Export
Collapse

Which two remediation options are available when Cisco FMC is integrated with Cisco ISE? (Choose two.)

A.

dynamic null route configured

A.

dynamic null route configured

Answers
B.

DHCP pool disablement

B.

DHCP pool disablement

Answers
C.

quarantine

C.

quarantine

Answers
D.

port shutdown

D.

port shutdown

Answers
E.

host shutdown

E.

host shutdown

Answers
Suggested answer: C, D

Explanation:

Reference: https://www.cisco.com/c/en/us/support/docs/security/identity-services-engine/210524-configure- firepower-6-1-pxgrid-remediati.html

Question 83

Report
Export
Collapse

Which connector is used to integrate Cisco ISE with Cisco FMC for Rapid Threat Containment?

A.

pxGrid

A.

pxGrid

Answers
B.

FTD RTC

B.

FTD RTC

Answers
C.

FMC RTC

C.

FMC RTC

Answers
D.

ISEGrid

D.

ISEGrid

Answers
Suggested answer: A

Question 84

Report
Export
Collapse

What is the maximum SHA level of filtering that Threat Intelligence Director supports?

A.

SHA-1024

A.

SHA-1024

Answers
B.

SHA-4096

B.

SHA-4096

Answers
C.

SHA-512

C.

SHA-512

Answers
D.

SHA-256

D.

SHA-256

Answers
Suggested answer: D

Explanation:

Reference:

https://www.cisco.com/c/en/us/td/docs/security/firepower/623/configuration/guide/fpmc-configguide-v623/cisco_threat_intelligence_directortid_.html

Topic 5, Misc. Questions

Question 85

Report
Export
Collapse

Refer to the exhibit.

And engineer is analyzing the Attacks Risk Report and finds that there are over 300 instances of new operating systems being seen on the network How is the Firepower configuration updated to protect these new operating systems?

A.

Cisco Firepower automatically updates the policies.

A.

Cisco Firepower automatically updates the policies.

Answers
B.

The administrator requests a Remediation Recommendation Report from Cisco Firepower

B.

The administrator requests a Remediation Recommendation Report from Cisco Firepower

Answers
C.

Cisco Firepower gives recommendations to update the policies.

C.

Cisco Firepower gives recommendations to update the policies.

Answers
D.

The administrator manually updates the policies.

D.

The administrator manually updates the policies.

Answers
Suggested answer: C

Explanation:

Ref: https://www.cisco.com/c/en/us/td/docs/security/firepower/60/configuration/guide/fpmcQuestions& Answers PDF P-35config-guide-v60/Tailoring_Intrusion_Protection_to_Your_Network_Assets.html

Question 86

Report
Export
Collapse

An engineer is implementing Cisco FTD in the network and is determining which Firepower mode to use. The organization needs to have multiple virtual Firepower devices working separately inside of the FTD appliance to provide traffic segmentation Which deployment mode should be configured in the Cisco Firepower Management Console to support these requirements?

A.

multiple deployment

A.

multiple deployment

Answers
B.

single-context

B.

single-context

Answers
C.

single deployment

C.

single deployment

Answers
D.

multi-instance

D.

multi-instance

Answers
Suggested answer: D

Question 87

Report
Export
Collapse

A network engineer is extending a user segment through an FTD device for traffic inspection without creating another IP subnet How is this accomplished on an FTD device in routed mode?

A.

by leveraging the ARP to direct traffic through the firewall

A.

by leveraging the ARP to direct traffic through the firewall

Answers
B.

by assigning an inline set interface

B.

by assigning an inline set interface

Answers
C.

by using a BVI and create a BVI IP address in the same subnet as the user segment

C.

by using a BVI and create a BVI IP address in the same subnet as the user segment

Answers
D.

by bypassing protocol inspection by leveraging pre-filter rules

D.

by bypassing protocol inspection by leveraging pre-filter rules

Answers
Suggested answer: C

Explanation:

https://www.cisco.com/c/en/us/td/docs/security/firepower/640/configuration/guide/fpmc-configguide-v64/transparent_or_routed_firewall_mode_for_firepower_threat_defense.html

Question 88

Report
Export
Collapse

An engineer is configuring a second Cisco FMC as a standby device but is unable to register with the active unit. What is causing this issue?

A.

The primary FMC currently has devices connected to it.

A.

The primary FMC currently has devices connected to it.

Answers
B.

The code versions running on the Cisco FMC devices are different

B.

The code versions running on the Cisco FMC devices are different

Answers
C.

The licensing purchased does not include high availability

C.

The licensing purchased does not include high availability

Answers
D.

There is only 10 Mbps of bandwidth between the two devices.

D.

There is only 10 Mbps of bandwidth between the two devices.

Answers
Suggested answer: B

Explanation:

https://www.cisco.com/c/en/us/td/docs/security/firepower/620/configuration/guide/fpmc-configguide-v62/firepower_management_center_high_availability.html

Question 89

Report
Export
Collapse

After using Firepower for some time and learning about how it interacts with the network, an administrator is trying to correlate malicious activity with a user Which widget should be configured to provide this visibility on the Cisco Firepower dashboards?

A.

Custom Analysis

A.

Custom Analysis

Answers
B.

Current Status

B.

Current Status

Answers
C.

Current Sessions

C.

Current Sessions

Answers
D.

Correlation Events

D.

Correlation Events

Answers
Suggested answer: A

Question 90

Report
Export
Collapse

An engineer has been asked to show application usages automatically on a monthly basis and send the information to management What mechanism should be used to accomplish this task?

A.

event viewer

A.

event viewer

Answers
B.

reports

B.

reports

Answers
C.

dashboards

C.

dashboards

Answers
D.

context explorer

D.

context explorer

Answers
Suggested answer: B
Total 326 questions
Go to page: of 33
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms