An organization has implemented Cisco Firepower without IPS capabilities and now wants to enable inspection for their traffic.
They need to be able to detect protocol anomalies and utilize the Snort rule sets to detect malicious behavior. How is this accomplished?
A.Modify the network discovery policy to detect new hosts to inspect.
B.Modify the access control policy to redirect interesting traffic to the engine.
C.Modify the intrusion policy to determine the minimum severity of an event to inspect.
D.Modify the network analysis policy to process the packets for inspection.
A hospital network needs to upgrade their Cisco FMC managed devices and needs to ensure that a disaster recovery process is in place. What must be done in order to minimize downtime on the network?
A.Configure a second circuit to an ISP for added redundancy
B.Keep a copy of the current configuration to use as backup
C.Configure the Cisco FMCs for failover
D.Configure the Cisco FMC managed devices for clustering.
An engineer is monitoring network traffic from their sales and product development departments, which are on two separate networks.
What must be configured in order to maintain data privacy for both departments?
A.Use a dedicated IPS inline set for each department to maintain traffic separation
B.Use 802 1Q mime set Trunk interfaces with VLANs to maintain logical traffic separation
C.Use passive IDS ports for both departments
D.Use one pair of inline set in TAP mode for both departments
With Cisco FTD software, which interface mode must be configured to passively receive traffic that passes through the appliance?
A Cisco FTD device is running in transparent firewall mode with a VTEP bridge group member ingress interface.
What must be considered by an engineer tasked with specifying a destination MAC address for a packet trace?
A.The destination MAC address is optional if a VLAN ID value is entered
B.Only the UDP packet type is supported
C.The output format option for the packet logs unavailable
D.The VLAN ID and destination MAC address are optional
What is a characteristic of bridge groups on a Cisco FTD?
A.In routed firewall mode, routing between bridge groups must pass through a routed interface.
B.In routed firewall mode, routing between bridge groups is supported.
C.In transparent firewall mode, routing between bridge groups is supported
D.Routing between bridge groups is achieved only with a router-on-a-stick configuration on a connected router
Network traffic coining from an organization's CEO must never be denied.
Which access control policy configuration option should be used if the deployment engineer is not permitted to create a rule to allow all traffic?
A.Configure firewall bypass.
B.Change the intrusion policy from security to balance.
C.Configure a trust policy for the CEO.
D.Create a NAT policy just for the CEO.
An organization has a compliancy requirement to protect servers from clients, however, the clients and servers all reside on the same Layer 3 network.
Without readdressing IP subnets for clients or servers, how is segmentation achieved?
A.Deploy a firewall in transparent mode between the clients and servers.
B.Change the IP addresses of the clients, while remaining on the same subnet.
C.Deploy a firewall in routed mode between the clients and servers
D.Change the IP addresses of the servers, while remaining on the same subnet
In a multi-tenant deployment where multiple domains are in use. Which update should be applied outside of the Global Domain?
B.local import of intrusion rules
C.Cisco Geolocation Database
D.local import of major upgrade
A mid-sized company is experiencing higher network bandwidth utilization due to a recent acquisition. The network operations team is asked to scale up their one Cisco FTD appliance deployment to higher capacities due to the increased network bandwidth.
Which design option should be used to accomplish this goal?
A.Deploy multiple Cisco FTD appliances in firewall clustering mode to increase performance.
B.Deploy multiple Cisco FTD appliances using VPN load-balancing to scale performance.
C.Deploy multiple Cisco FTD HA pairs to increase performance
D.Deploy multiple Cisco FTD HA pairs in clustering mode to increase performance
An organization has seen a lot of traffic congestion on their links going out to the internet There is a Cisco Firepower device that processes all of the traffic going to the internet prior to leaving the enterprise. How is the congestion alleviated so that legitimate business traffic reaches the destination?
A.Create a flexconfig policy to use WCCP for application aware bandwidth limiting
B.Create a VPN policy so that direct tunnels are established to the business applications
C.Create a NAT policy so that the Cisco Firepower device does not have to translate as many addresses
D.Create a QoS policy rate-limiting high bandwidth applications
An engineer configures an access control rule that deploys file policy configurations to security zone or tunnel zones, and it causes the device to restart. What is the reason for the restart?
A.Source or destination security zones in the access control rule matches the security zones that are associated with interfaces on the target devices.
B.The source tunnel zone in the rule does not match a tunnel zone that is assigned to a tunnel rule in the destination policy.
C.Source or destination security zones in the source tunnel zone do not match the security zones that are associated with interfaces on the target devices.
D.The source tunnel zone in the rule does not match a tunnel zone that is assigned to a tunnel rule in the source policy.
An engineer is attempting to create a new dashboard within the Cisco FMC to have a single view with widgets from many of the other dashboards. The goal is to have a mixture of threat and security related widgets along with Cisco Firepower device health information.
Which two widgets must be configured to provide this information? (Choose two.)
An organization is setting up two new Cisco FTD devices to replace their current firewalls and cannot have any network downtime. During the setup process, the synchronization between the two devices is failing.
What action is needed to resolve this issue?
A.Confirm that both devices have the same port-channel numbering
B.Confirm that both devices are running the same software version
C.Confirm that both devices are configured with the same types of interfaces
D.Confirm that both devices have the same flash memory sizes
There is an increased amount of traffic on the network and for compliance reasons, management needs visibility into the encrypted traffic.
What is a result of enabling TLS'SSL decryption to allow this visibility?
A.It prompts the need for a corporate managed certificate
B.It has minimal performance impact
C.It is not subject to any Privacy regulations
D.It will fail if certificate pinning is not enforced
An organization wants to secure traffic from their branch office to the headquarter building using Cisco Firepower devices, They want to ensure that their Cisco Firepower devices are not wasting resources on inspecting the VPN traffic. What must be done to meet these requirements?
A.Configure the Cisco Firepower devices to ignore the VPN traffic using prefilter policies
B.Enable a flexconfig policy to re-classify VPN traffic so that it no longer appears as interesting traffic
C.Configure the Cisco Firepower devices to bypass the access control policies for VPN traffic.
D.Tune the intrusion policies in order to allow the VPN traffic through without inspection
A network administrator is seeing an unknown verdict for a file detected by Cisco FTD.
Which malware policy configuration option must be selected in order to further analyse the file in the Talos cloud?
An engineer has been tasked with providing disaster recovery for an organization's primary Cisco FMC. What must be done on the primary and secondary Cisco FMCs to ensure that a copy of the original corporate policy is available if the primary Cisco FMC fails?
A.Configure high-availability in both the primary and secondary Cisco FMCs
B.Connect the primary and secondary Cisco FMC devices with Category 6 cables of not more than 10 meters in length.
C.Place the active Cisco FMC device on the same trusted management network as the standby device
D.Restore the primary Cisco FMC backup configuration to the secondary Cisco FMC device when the primary device fails
An engineer is attempting to add a new FTD device to their FMC behind a NAT device with a NAT ID of ACME001 and a password of Cisco388267669.
Which command set must be used in order to accomplish this?
A.configure manager add ACME001 <registration key> <FMC IP>
B.configure manager add <FMC IP> ACME0O1 <registration key>
C.configure manager add DONTRESOLVE <FMC IP> AMCE001 <registration key>
D.configure manager add <FMC IP> registration key> ACME001
Refer to the exhibit. An organization has an access control rule with the intention of sending all social media traffic for inspection. After using the rule for some time, the administrator notices that the traffic is not being inspected, but is being automatically allowed.
What must be done to address this issue?
A.Modify the selected application within the rule
B.Change the intrusion policy to connectivity over security.
C.Modify the rule action from trust to allow
D.Add the social network URLs to the block list
A user within an organization opened a malicious file on a workstation which in turn caused a ransomware attack on the network.
What should be configured within the Cisco FMC to ensure the file is tested for viruses on a sandbox system?
B.Local malware analysis
An engineer configures a network discovery policy on Cisco FMC. Upon configuration, it is noticed that excessive and misleading events filing the database and overloading the Cisco FMC. A monitored NAT device is executing multiple updates of its operating system in a short period of time. What configuration change must be made to alleviate this issue?
A.Leave default networks.
B.Change the method to TCP/SYN.
C.Increase the number of entries on the NAT device.
D.Exclude load balancers and NAT devices.
administrator is configuring SNORT inspection policies and is seeing failed deployment messages in Cisco FMC. What information should the administrator generate for Cisco TAC to help troubleshoot?
A.A Troubleshoot" file for the device in question.
B.A "show tech" file for the device in question
C.A "show tech" for the Cisco FMC.
D.A "troubleshoot" file for the Cisco FMC
2021 Latest Braindump2go 300-710 PDF and 300-710 VCE Dumps Free Share: