300-710 Exam Questions
437 real 300-710 exam questions with expert-verified answers and explanations. Page 1 of 9.
- Question #1Management and Troubleshooting
Which CLI command is used to control special handling of ClientHello messages?
Firepower CLISSL/TLS DecryptionClientHello TuningTroubleshooting Commands - Question #2Management and Troubleshooting
Which command is typed at the CLI on the primary Cisco FTD unit to temporarily stop running high-availability?
Cisco FTD HAHigh Availability managementCLI commandsFTD administration - Question #3Management and Troubleshooting
Which command must be run to generate troubleshooting files on an FTD?
FTD TroubleshootingCLI CommandsDiagnostic Files - Question #4Management and Troubleshooting
When do you need the file-size command option during troubleshooting with packet capture?
Packet CaptureTroubleshooting ToolsCisco CLIFile Size Management - Question #5Configuration
What is a functionality of port objects in Cisco FMC?
FMC Port ObjectsNetwork ProtocolsAccess Control PolicyFirewall Configuration - Question #6Management and Troubleshooting
Within Cisco Firepower Management Center, where does a user add or modify widgets?
Cisco Firepower Management CenterDashboardWidgetsGUI navigation - Question #7Configuration
A network engineer is configuring URL Filtering on Firepower Threat Defense. Which two port requirements on the Firepower Management Center must be validated to allow communication...
URL FilteringFMC Cloud ConnectivityNetwork PortsFirepower Configuration - Question #8Configuration
What is the maximum bit size that Cisco FMC supports for HTTPS certificates?
FMCCertificatesKey SizeSecurity Configuration - Question #9Management and Troubleshooting
Which limitation applies to Cisco Firepower Management Center dashboards in a multidomain environment?
Cisco Firepower Management CenterMultidomainDashboardsManagement - Question #10Management and Troubleshooting
An engineer is troubleshooting a file that is being blocked by a Cisco FTD device on the network. The user is reporting that the file is not malicious. Which action does the engine...
File BlockingThreat AnalysisFirepower FTDTroubleshooting - Question #11Management and Troubleshooting
What is a behavior of a Cisco FMC database purge?
Cisco FMCDatabase ManagementData PurgeSystem Operations - Question #12Management and Troubleshooting
Which two packet captures does the FTD LINA engine support? (Choose two.)
Packet CaptureFTD LINAFirewall FeaturesTroubleshooting - Question #13Configuration
Which two features of Cisco AMP for Endpoints allow for an uploaded file to be blocked? (Choose two.)
Cisco AMP for EndpointsEndpoint SecurityFile BlockingCustom Detections - Question #14Management and Troubleshooting
Which action should you take when Cisco Threat Response notifies you that AMP has identified a file as malware?
Cisco Threat ResponseAMPMalware RemediationBlock List Management - Question #15Configuration
Which Cisco Advanced Malware Protection for Endpoints policy is used only for monitoring endpoint actively?
Cisco Secure EndpointEndpoint Security PoliciesAMP for EndpointsAudit Policy - Question #16Management and Troubleshooting
What is a valid Cisco AMP file disposition?
Cisco AMPFile dispositionMalware analysis - Question #17Management and Troubleshooting
In a Cisco AMP for Networks deployment, which disposition is returned if the cloud cannot be reached?
Cisco AMPCloud connectivityFile dispositionOffline behavior - Question #18Integration
Which two remediation options are available when Cisco FMC is integrated with Cisco ISE? (Choose two.)
FMC ISE IntegrationSecurity RemediationNetwork Access ControlpxGrid - Question #19Integration
Which connector is used to integrate Cisco ISE with Cisco FMC for Rapid Threat Containment?
pxGridCisco ISECisco FMCRapid Threat Containment - Question #20Configuration
What is the maximum SHA level of filtering that Threat Intelligence Director supports?
Threat Intelligence DirectorSHASecurity filteringCisco Secure Network Analytics - Question #22Integration
Which protocol is needed to exchange threat details in rapid threat containment on Cisco FMC?
pxGridThreat ContainmentCisco FMCSecurity Integration - Question #23Configuration
Which description of a correlation policy configuration in the Cisco Firepower Management Center is true?
Cisco FirepowerCorrelation PolicyFMCRule Configuration - Question #24Management and Troubleshooting
What is a result of enabling Cisco FTD clustering?
FTD ClusteringSite-to-site VPNHigh AvailabilityOperational Limitations - Question #25Deployment
Which two conditions are necessary for high availability to function between two Cisco FTD devices? (Choose two.)
High AvailabilityCisco FTD HAFTD PrerequisitesNetwork Device Pairing - Question #26Configuration
On the advanced tab under inline set properties, which allows interfaces to emulate a passive interface?
Inline Set PropertiesTAP modeFirepower ConfigurationPassive Interface - Question #27Deployment
What are the minimum requirements to deploy a managed device inline?
Inline DeploymentNetwork Device ConfigurationMTUInterface Configuration - Question #28Deployment
What is the difference between inline and inline tap on Cisco Firepower?
Cisco Firepower DeploymentInline ModeInline Tap ModeSecurity Enforcement - Question #29Configuration
With Cisco Firepower Threat Defense software, which interface mode must be configured to passively receive traffic that passes through the appliance?
Firepower Threat Defense (FTD)Interface ModesPassive MonitoringInline Tap - Question #30Deployment
Which two deployment types support high availability? (Choose two.)
Firewall deploymentHigh Availability (HA)Routed modeTransparent mode - Question #31Configuration
What are 2 types or forms of suppression on a FirePower policy (or FTD)?
Firepower FTDIPS SuppressionPolicy Configuration - Question #32Deployment
Which two dynamic routing protocols are supported in FirePower Threat Defense v6.0? (Choose Two)
Firepower Threat DefenseDynamic RoutingOSPFBGP - Question #33Deployment
Which protocol establishes network redundancy in a switched Firepower device deployment?
Network RedundancySTPSwitched NetworksLayer 2 Redundancy - Question #34Deployment
Which interface type allows packets to be dropped?
Inline DeploymentPacket DroppingNetwork Security DeploymentInterface Types - Question #35Configuration
Which Cisco Firepower Threat Defense, which two interface settings are required when configuring a routed interface? (Choose two.)
Firepower Threat DefenseInterface ConfigurationRouted InterfacePhysical Interface Settings - Question #36Configuration
Which two dynamic routing protocols are supported in Firepower Threat Defense without using FlexConfig? (Choose two.)
Firepower Threat DefenseDynamic RoutingOSPFBGP - Question #37Deployment
Which policy rule is included in the deployment of a local DMZ during the initial deployment of a Cisco NGFW through the Cisco FMC GUI?
Cisco NGFWFMC GUIDMZ configurationDefault policies - Question #38Configuration
What are two application layer preprocessors? (Choose two.)
Application Layer ProtocolsSecurity PreprocessorsProtocol InspectionSSL/TLS - Question #39Configuration
Which two OSPF routing features are configured in Cisco FMC and propagated to Cisco FTD? (Choose two.)
OSPFCisco FTDCisco FMCRouting Configuration - Question #40Deployment
With Cisco FirePOWER Threat Defense software, which interface mode do you configure for an IPS deployment, where traffic passes through the appliance but does not require VLAN rewr...
Cisco FTDIPS DeploymentInterface ModesInline Set - Question #41Deployment
What Software can be installed on the Cisco 4100 series appliance? (Choose two)
Firepower AppliancesFTD SoftwareFMC SoftwareCisco Security - Question #42Configuration
Which two field can be used to create a new email alert within the Cisco Firepower Management center under Policies > Actions > Alerts tab? (Choose two.)
Cisco Firepower Management Center (FMC)Email AlertsSecurity Policy ConfigurationAlert Actions - Question #43Configuration
When creating a report template, how can the results be limited to show only the activity of a specific subnet?
Firepower Management CenterReportingReport TemplatesFiltering - Question #44Management and Troubleshooting
What is the disadvantage of setting up a site-to-site VPN in a clustered-units environment?
Site-to-site VPNClusteringHigh AvailabilityVPN connection re-establishment - Question #45Configuration
Which two statements about bridge-group interfaces in Cisco FTD are true? (Choose two.)
FTD Bridge GroupTransparent ModeRouted ModeNetwork Interfaces - Question #46Deployment
Which command is run on an FTD unit to associate the unit to an FMC manager that is at IP address 10.0.0.10, and that has the registration key Cisco123?
FTD RegistrationFMC ManagementCLI CommandsFirepower Deployment - Question #47Configuration
Which two actions can be used in an access control policy rule? (Choose two.)
Access Control PolicyFirepower Threat DefenseSecurity PolicyRule Actions - Question #48Configuration
Which two routing options are valid with Cisco Firepower Threat Defense? (Choose two.)
FTD RoutingBGPECMPNetwork Configuration - Question #49Configuration
Which description of a correlation, policy configuration in the Cisco Firepower Management Center, is true?
Correlation PolicyFirepower Management CenterMalware EventHost Profile - Question #50Integration
Which two TCP ports can allow the Cisco Firepower Management Center to communication with FireAMP cloud for file disposition information? (Choose two.)
Firepower Management CenterFireAMP CloudNetwork PortsCloud Communication - Question #51Configuration
Which object type supports object overrides?
Firepower Management CenterObject OverridesNetwork ObjectsPolicy Management