ExamGecko
Home / Cisco / 350-701 / List of questions
Ask Question

Cisco 350-701 Practice Test - Questions Answers, Page 5

List of questions

Question 41

Report
Export
Collapse

On Cisco Firepower Management Center, which policy is used to collect health modules alerts from managed devices?

health policy

health policy

system policy

system policy

correlation policy

correlation policy

access control policy

access control policy

health awareness policy

health awareness policy

Suggested answer: A
asked 10/10/2024
saharat pinsaran
43 questions

Question 42

Report
Export
Collapse

Which license is required for Cisco Security Intelligence to work on the Cisco Next Generation Intrusion Prevention System?

control

control

malware

malware

URL filtering

URL filtering

protect

protect

Suggested answer: D
asked 10/10/2024
Arthur Khaha
43 questions

Question 43

Report
Export
Collapse

Which two are valid suppression types on a Cisco Next Generation Intrusion Prevention System?

(Choose two)

Port

Port

Rule

Rule

Source

Source

Application

Application

Protocol

Protocol

Suggested answer: B, C
asked 10/10/2024
Empire Cybersecurity
30 questions

Question 44

Report
Export
Collapse

Which feature is configured for managed devices in the device platform settings of the Firepower Management Center?

quality of service

quality of service

time synchronization

time synchronization

network address translations

network address translations

intrusion policy

intrusion policy

Suggested answer: B
asked 10/10/2024
Mahmoud Ismail
34 questions

Question 45

Report
Export
Collapse

Which information is required when adding a device to Firepower Management Center?

username and password

username and password

encryption method

encryption method

device serial number

device serial number

registration key

registration key

Suggested answer: D
asked 10/10/2024
B Erol
57 questions

Question 46

Report
Export
Collapse

Which two deployment modes does the Cisco ASA FirePower module support? (Choose two)

transparent mode

transparent mode

routed mode

routed mode

inline mode

inline mode

active mode

active mode

passive monitor-only mode

passive monitor-only mode

Suggested answer: C, D

Explanation:

You can configure your ASA FirePOWER module using one of the following deployment models:

You can configure your ASA FirePOWER module in either an inline or a monitor-only (inline tap or passive) deployment.

Reference: https://www.cisco.com/c/en/us/td/docs/security/asa/asa92/asdm72/firewall/asafirewall-asdm/modules-sfr.html

asked 10/10/2024
Aung Zin
41 questions

Question 47

Report
Export
Collapse

The Cisco ASA must support TLS proxy for encrypted Cisco Unified Communications traffic. Where must the ASA be added on the Cisco UC Manager platform?

Certificate Trust List

Certificate Trust List

Endpoint Trust List

Endpoint Trust List

Enterprise Proxy Service

Enterprise Proxy Service

Secured Collaboration Proxy

Secured Collaboration Proxy

Suggested answer: A
asked 10/10/2024
leonie lira
39 questions

Question 48

Report
Export
Collapse

Which statement about the configuration of Cisco ASA NetFlow v9 Secure Event Logging is true?

To view bandwidth usage for NetFlow records, the QoS feature must be enabled.

To view bandwidth usage for NetFlow records, the QoS feature must be enabled.

A sysopt command can be used to enable NSEL on a specific interface.

A sysopt command can be used to enable NSEL on a specific interface.

NSEL can be used without a collector configured.

NSEL can be used without a collector configured.

A flow-export event type must be defined under a policy

A flow-export event type must be defined under a policy

Suggested answer: D
asked 10/10/2024
ola adekanbi
38 questions

Question 49

Report
Export
Collapse

Which feature is supported when deploying Cisco ASAv within AWS public cloud?

multiple context mode

multiple context mode

user deployment of Layer 3 networks

user deployment of Layer 3 networks

IPv6

IPv6

clustering

clustering

Suggested answer: B

Explanation:

The ASAv on AWS supports the following features:

+ Support for Amazon EC2 C5 instances, the next generation of the Amazon EC2 Compute Optimized instance family.

+ Deployment in the Virtual Private Cloud (VPC)

+ Enhanced networking (SR-IOV) where available

+ Deployment from Amazon Marketplace

+ Maximum of four vCPUs per instance

+ User deployment of L3 networks

+ Routed mode (default)

Note: The Cisco Adaptive Security Virtual Appliance (ASAv) runs the same software as physical Cisco ASAs to deliver proven security functionality in a virtual form factor. The ASAv can be deployed in the public AWS cloud.

It can then be configured to protect virtual and physical data center workloads that expand, contract, or shift their location over time. Reference:

https://www.cisco.com/c/en/us/td/docs/security/asa/asa96/asav/quick-start-book/asav-96qsg/asavaws.html

asked 10/10/2024
Norm Scott
31 questions

Question 50

Report
Export
Collapse

Which statement describes a traffic profile on a Cisco Next Generation Intrusion Prevention System?

It allows traffic if it does not meet the profile.

It allows traffic if it does not meet the profile.

It defines a traffic baseline for traffic anomaly deduction.

It defines a traffic baseline for traffic anomaly deduction.

It inspects hosts that meet the profile with more intrusion rules.

It inspects hosts that meet the profile with more intrusion rules.

It blocks traffic if it does not meet the profile.

It blocks traffic if it does not meet the profile.

Suggested answer: B
asked 10/10/2024
Sumit Dhar
47 questions
Total 631 questions
Go to page: of 64

Related questions