300-710 Exam Questions
437 real 300-710 exam questions with expert-verified answers and explanations. Page 2 of 9.
- Question #52Configuration
Which Cisco Firepower rule action displays an HTTP warning page?
Cisco FirepowerAccess Control PolicyRule ActionsInteractive Block - Question #53Configuration
What is the result of specifying of QoS rule that has a rate limit that is greater than the maximum throughput of an interface?
QoSRate LimitingInterface Throughput - Question #54Configuration
Which Firepower feature allows users to configure bridges in routed mode and enables devices to perform Layer 2 switching between interfaces?
FirepowerIRBLayer 2 SwitchingBridging - Question #55Configuration
In which two places can thresholding settings be configured? (Choose two.)
IPS ThresholdingIntrusion PolicyFirepower ConfigurationSnort Rules - Question #56Configuration
In which two ways do access control policies operate on a Cisco Firepower system? (Choose two.)
Access Control PoliciesSecurity IntelligencePolicy DeploymentFirepower Operations - Question #57Integration
Which function is the primary function of Cisco AMP threat Grid?
Cisco AMP Threat GridMalware AnalysisSandboxingThreat Intelligence - Question #58Deployment
Which two feature does Cisco Trust Anchor support? (Choose two.)
Cisco Trust AnchorSecure BootImage SigningHardware Security - Question #59Configuration
Which two types of objects are reusable and supported by Cisco FMC? (Choose two.)
FMC ObjectsReusable ObjectsNetwork ObjectsReputation Objects - Question #60Management and Troubleshooting
What is the benefit of selecting the trace option for packet capture?
Packet CaptureTroubleshootingFirewall DiagnosticsPacket Flow Analysis - Question #61Integration
After deploying a network-monitoring tool to manage and monitor networking devices in your organization, you realize that you need to manually upload an MIB for the Cisco FMC. In w...
Cisco FMCMIBFile PathsNetwork Monitoring - Question #62Management and Troubleshooting
Which command is run at the CLI when logged in to an FTD unit, to determine whether the unit is managed locally or by a remote FMC server?
FTD CLIFMC ManagementDevice ManagementCommand-line Interface - Question #63Management and Troubleshooting
Which command should be used on the Cisco FTD CLI to capture all the packets that hit an interface?
Packet CaptureCisco FTD CLINetwork Diagnostics - Question #64Management and Troubleshooting
How many report templates does the Cisco Firepower Management Center support?
Cisco Firepower Management CenterReportingReport TemplatesFMC Management - Question #65Deployment
Which action should be taken after editing an object that is used inside an access control policy?
Cisco FMCAccess Control PolicyConfiguration DeploymentObject Management - Question #66Deployment
Which two characteristics represent a Cisco device operating in tap mode? (Choose two.)
Tap ModeNetwork Security DeploymentIPS/IDS Modes - Question #67Configuration
When using Cisco AMP for Networks, which feature copies a file to the Cisco AMP cloud for analysis?
Cisco AMPDynamic analysisFile analysisCloud security - Question #68Management and Troubleshooting
Which Cisco Firepower feature is used to reduce the number of events received in a period of time?
Cisco FirepowerEvent ManagementThresholdingEvent Volume - Question #69Management and Troubleshooting
Which report template field format is available in Cisco FMC?
Cisco FMCReportingReport templatesChart types - Question #70Integration
Which group within Cisco does the Threat Response team use for threat analysis and research?
Cisco TalosThreat IntelligenceSecurity ResearchThreat Analysis - Question #71Management and Troubleshooting
Which CLI command is used to generate firewall debug messages on a Cisco Firepower?
Firepower CLIDebuggingFirewall engineTroubleshooting - Question #72Configuration
Which command-line mode is supported from the Cisco Firepower Management Center CLI?
Cisco Firepower Management Center (FMC)CLI modesFMC CLIAppliance Configuration - Question #73Management and Troubleshooting
Which command is entered in the Cisco FMC CLI to generate a troubleshooting file?
FMC CLITroubleshootingDiagnostic FilesCommand Line Interface - Question #74Deployment
While configuring FTD, a network engineer wants to ensure that traffic passing through the appliance does not require routing or Vlan rewriting. Which interface mode should the eng...
FTD Interface ModesInline SetLayer 2 DeploymentTransparent Firewall - Question #75Configuration
With Cisco FTD integrated routing and bridging, which interface does the bridge group use to communicate with a routed interface?
FTD InterfacesBridgingRoutingBridge Virtual Interface (BVI) - Question #76Configuration
A network engineer is extending a user segment through an FTD device for traffic inspection without creating another IP subnet. How is this accomplished on an FTD device in routed...
FTDBridged Virtual Interface (BVI)Network ConfigurationRouted Mode - Question #77Management and Troubleshooting
Refer to the exhibit. And engineer is analyzing the Attacks Risk Report and finds that there are over 300 instances of new operating systems being seen on the network. How is the F...
Firepower ReportsSecurity Policy RecommendationsOperating System DetectionRisk Management - Question #78Configuration
A security engineer is configuring an Access Control Policy for multiple branch locations. These locations share a common rule set and utilize a network object called INSIDE_NET wh...
Access Control PolicyNetwork ObjectsObject OverridesCisco Firepower - Question #79Configuration
An administrator is working on a migration from Cisco ASA to the Cisco FTD appliance and needs to test the rules without disrupting the traffic. Which policy type should be used to...
Cisco FTDPrefilter PolicyASA MigrationPolicy Configuration - Question #80Management and Troubleshooting
An engineer currently has a Cisco FTD device registered to the Cisco FMC and is assigned the address of 10 10.50.12. The organization is upgrading the addressing schemes and there...
FTD Management IPFMC Device RegistrationNetwork Address ChangeDevice Re-registration - Question #81Management and Troubleshooting
After using Firepower for some time and learning about how it interacts with the network, an administrator is trying to correlate malicious activity with a user. Which widget shoul...
Cisco FirepowerFirepower DashboardsEvent CorrelationSecurity Monitoring - Question #82Management and Troubleshooting
An administrator is attempting to remotely log into a switch in the data centre using SSH and is unable to connect. How does the administrator confirm that traffic is reaching the...
Network TroubleshootingPacket CaptureFirewall DiagnosticsSSH Connectivity - Question #83Deployment
An engineer is configuring a second Cisco FMC as a standby device but is unable to register with the active unit. What is causing this issue?
Cisco FMCHigh Availability (HA)Version CompatibilityRegistration Issues - Question #84Configuration
The event dashboard within the Cisco FMC has been inundated with low priority intrusion drop events, which are overshadowing high priority events. An engineer has been tasked with...
FMCIntrusion PolicyIPS ActionsEvent Tuning - Question #85Deployment
An engineer is implementing Cisco FTD in the network and is determining which Firepower mode to use. The organization needs to have multiple virtual Firepower devices working separ...
FTD deployment modesMulti-instance FTDVirtual firewallTraffic segmentation - Question #86Management and Troubleshooting
Which two considerations must be made when deleting and re-adding devices while managing them via Cisco FMC? (Choose two).
Cisco FMCDevice ManagementPolicy DeploymentFirepower Operations - Question #87Configuration
An engineer is configuring a cisco FTD appliance in IPS-only mode and needs to utilize fail-to- wire interfaces. Which interface mode should be used to meet these requirements?
FTD Interface ModesFail-to-wireIPS-only ConfigurationCisco Firepower - Question #88Management and Troubleshooting
An engineer is troubleshooting application failures through a FTD deployment. While using the FMC CLI. it has been determined that the traffic in question is not matching the desir...
FTD TroubleshootingAccess Control PolicyCLI DebuggingFirewall Engine - Question #89Integration
What is the advantage of having Cisco Firepower devices send events to Cisco Threat response via the security services exchange portal directly as opposed to using syslog?
Firepower IntegrationCisco Threat ResponseSecurity Services ExchangeEvent Forwarding - Question #90Management and Troubleshooting
An engineer has been asked to show application usages automatically on a monthly basis and send the information to management. What mechanism should be used to accomplish this task...
ReportingApplication UsageAutomated TasksManagement Tools - Question #91Configuration
An organization has noticed that malware was downloaded from a website that does not currently have a known bad reputation. How will this issue be addresses globally in the quickes...
URL filteringMalware preventionSecurity policy managementContent filtering - Question #92Configuration
An engineer is setting up a new Firepower deployment and is looking at the default FMC policies to start the implementation. During the initial trial phase, the organization wants...
FMC Default PoliciesIntrusion Policy SelectionSnort RulesInitial Firepower Deployment - Question #93Configuration
An organization has implemented Cisco Firepower without IPS capabilities and now wants to enable inspection for their traffic. They need to be able to detect protocol anomalies and...
Firepower PoliciesAccess Control PolicyIPS/IDSSnort Rules - Question #94Management and Troubleshooting
A hospital network needs to upgrade their Cisco FMC managed devices and needs to ensure that a disaster recovery process is in place. What must be done in order to minimize downtim...
Disaster RecoveryConfiguration BackupDowntime MinimizationUpgrade Best Practices - Question #95Configuration
An engineer is monitoring network traffic from their sales and product development departments, which are on two separate networks. What must be configured in order to maintain dat...
VLANs802.1Q TrunkingNetwork SegmentationData Privacy - Question #96Configuration
With Cisco FTD software, which interface mode must be configured to passively receive traffic that passes through the appliance?
Cisco FTDInterface modesTap modePassive monitoring - Question #97Management and Troubleshooting
A Cisco FTD device is running in transparent firewall mode with a VTEP bridge group member ingress interface. What must be considered by an engineer tasked with specifying a destin...
FTD Transparent ModePacket TracerVLANsLayer 2 Troubleshooting - Question #98Configuration
What is a characteristic of bridge groups on a Cisco FTD?
Cisco FTDBridge GroupsFirewall ModesRouting - Question #99Configuration
Network traffic coining from an organization's CEO must never be denied. Which access control policy configuration option should be used if the deployment engineer is not permitted...
Access Control PolicyTrust PolicyFirewall ConfigurationTraffic Exemptions - Question #100Deployment
An organization has a compliancy requirement to protect servers from clients, however, the clients and servers all reside on the same Layer 3 network. Without readdressing IP subne...
Firewall DeploymentTransparent ModeNetwork SegmentationLayer 2 Security - Question #101Management and Troubleshooting
In a multi-tenant deployment where multiple domains are in use. Which update should be applied outside of the Global Domain?
Firepower Multi-tenancyDomain ManagementIntrusion RulesSecurity Policy Updates