ExamGecko
Login
Home / Cisco / 350-701 / List of questions
Ask Question

Cisco 350-701 Practice Test - Questions Answers, Page 5

List of questions

Question 41

Report
Export
Collapse

On Cisco Firepower Management Center, which policy is used to collect health modules alerts from managed devices?

health policy

health policy

system policy

system policy

correlation policy

correlation policy

access control policy

access control policy

health awareness policy

health awareness policy
Suggested answer: A
asked 10/10/2024
saharat pinsaran
43 questions

Question 42

Report
Export
Collapse

Which license is required for Cisco Security Intelligence to work on the Cisco Next Generation Intrusion Prevention System?

control

control

malware

malware

URL filtering

URL filtering

protect

protect
Suggested answer: D
asked 10/10/2024
Arthur Khaha
43 questions

Question 43

Report
Export
Collapse

Which two are valid suppression types on a Cisco Next Generation Intrusion Prevention System?

(Choose two)

Port

Port

Rule

Rule

Source

Source

Application

Application

Protocol

Protocol
Suggested answer: B, C
asked 10/10/2024
Empire Cybersecurity
30 questions

Question 44

Report
Export
Collapse

Which feature is configured for managed devices in the device platform settings of the Firepower Management Center?

quality of service

quality of service

time synchronization

time synchronization

network address translations

network address translations

intrusion policy

intrusion policy
Suggested answer: B
asked 10/10/2024
Mahmoud Ismail
34 questions

Question 45

Report
Export
Collapse

Which information is required when adding a device to Firepower Management Center?

username and password

username and password

encryption method

encryption method

device serial number

device serial number

registration key

registration key
Suggested answer: D
asked 10/10/2024
B Erol
57 questions

Question 46

Report
Export
Collapse

Which two deployment modes does the Cisco ASA FirePower module support? (Choose two)

transparent mode

transparent mode

routed mode

routed mode

inline mode

inline mode

active mode

active mode

passive monitor-only mode

passive monitor-only mode
Suggested answer: C, D

Explanation:

You can configure your ASA FirePOWER module using one of the following deployment models:

You can configure your ASA FirePOWER module in either an inline or a monitor-only (inline tap or passive) deployment.

Reference: https://www.cisco.com/c/en/us/td/docs/security/asa/asa92/asdm72/firewall/asafirewall-asdm/modules-sfr.html

asked 10/10/2024
Aung Zin
41 questions

Question 47

Report
Export
Collapse

The Cisco ASA must support TLS proxy for encrypted Cisco Unified Communications traffic. Where must the ASA be added on the Cisco UC Manager platform?

Certificate Trust List

Certificate Trust List

Endpoint Trust List

Endpoint Trust List

Enterprise Proxy Service

Enterprise Proxy Service

Secured Collaboration Proxy

Secured Collaboration Proxy
Suggested answer: A
asked 10/10/2024
leonie lira
39 questions

Question 48

Report
Export
Collapse

Which statement about the configuration of Cisco ASA NetFlow v9 Secure Event Logging is true?

To view bandwidth usage for NetFlow records, the QoS feature must be enabled.

To view bandwidth usage for NetFlow records, the QoS feature must be enabled.

A sysopt command can be used to enable NSEL on a specific interface.

A sysopt command can be used to enable NSEL on a specific interface.

NSEL can be used without a collector configured.

NSEL can be used without a collector configured.

A flow-export event type must be defined under a policy

A flow-export event type must be defined under a policy
Suggested answer: D
asked 10/10/2024
ola adekanbi
38 questions

Question 49

Report
Export
Collapse

Which feature is supported when deploying Cisco ASAv within AWS public cloud?

multiple context mode

multiple context mode

user deployment of Layer 3 networks

user deployment of Layer 3 networks

IPv6

IPv6

clustering

clustering
Suggested answer: B

Explanation:

The ASAv on AWS supports the following features:

+ Support for Amazon EC2 C5 instances, the next generation of the Amazon EC2 Compute Optimized instance family.

+ Deployment in the Virtual Private Cloud (VPC)

+ Enhanced networking (SR-IOV) where available

+ Deployment from Amazon Marketplace

+ Maximum of four vCPUs per instance

+ User deployment of L3 networks

+ Routed mode (default)

Note: The Cisco Adaptive Security Virtual Appliance (ASAv) runs the same software as physical Cisco ASAs to deliver proven security functionality in a virtual form factor. The ASAv can be deployed in the public AWS cloud.

It can then be configured to protect virtual and physical data center workloads that expand, contract, or shift their location over time. Reference:

https://www.cisco.com/c/en/us/td/docs/security/asa/asa96/asav/quick-start-book/asav-96qsg/asavaws.html

asked 10/10/2024
Norm Scott
31 questions

Question 50

Report
Export
Collapse

Which statement describes a traffic profile on a Cisco Next Generation Intrusion Prevention System?

It allows traffic if it does not meet the profile.

It allows traffic if it does not meet the profile.

It defines a traffic baseline for traffic anomaly deduction.

It defines a traffic baseline for traffic anomaly deduction.

It inspects hosts that meet the profile with more intrusion rules.

It inspects hosts that meet the profile with more intrusion rules.

It blocks traffic if it does not meet the profile.

It blocks traffic if it does not meet the profile.
Suggested answer: B
asked 10/10/2024
Sumit Dhar
47 questions
Total 631 questions
Go to page: of 64
Open VPLUS File
Convert VPLUS to PDF

Related questions

Which Cisco platform onboards the endpoint and can issue a CA signed certificate while also automatically configuring endpoint network settings to use the signed endpoint certificate, allowing the endpoint to gain network access?
How is Cisco Umbrella configured to log only security events?
An engineer is configuring device-hardening on a router in order to prevent credentials from being seen if the router configuration was compromised. Which command should be used?
Which two application layer preprocessors are used by Firepower Next Generation Intrusion Prevention System? (Choose two)
Which Cisco cloud security software centrally manages policies on multiple platforms such as Cisco ASA, Cisco Firepower, Cisco Meraki, and AWS?
DRAG DROP Refer to the exhibit. An engineer must configure a Cisco switch to perform PPP authentication via a TACACS server located at IP address 10.1.1.10. Authentication must fall back to the local database using the username LocalUser and password C1Sc0451069341l if the TACACS server is unreachable. Drag and drop the commands from the left onto the corresponding configuration steps on the right.
An engineer wants to generate NetFlow records on traffic traversing the Cisco ASA. Which Cisco ASA command must be used?
Which compliance status is shown when a configured posture policy requirement is not met?
A university policy must allow open access to resources on the Internet for research, but internal workstations are exposed to malware. Which Cisco AMP feature allows the engineering team to determine whether a file is installed on a selected few workstations?
DRAG DROP Drag and drop the capabilities of Cisco Firepower versus Cisco AMP from the left into the appropriate category on the right.