300-710 Exam Questions
437 real 300-710 exam questions with expert-verified answers and explanations. Page 9 of 9.
- Question #408Deployment
A network engineer must configure the cabling between a Cisco Secure Firewall Threat Defense appliance and a network so the Secure Firewall Threat Defense appliance performs inline...
Secure Firewall Threat DefenseDeployment ModesTap ModeIPS Analysis - Question #409Integration
What is a method used by Cisco Rapid Threat Containment to contain the threat in the network?
Rapid Threat ContainmentNetwork SegmentationThreat Containment - Question #410Configuration
An engineer must configure email notifications on Cisco Secure Firewall Management Center. TLS encryption must be used to protect the messages from unauthorized access. The enginee...
Cisco Secure Firewall Management CenterEmail notificationsTLS encryptionSMTP ports - Question #411Deployment
An engineer wants to add Cisco Secure Firewall Thread Defense to Cisco Secure Firewall Management Center with the real IP address hidden behind firewall. Engineer configured the co...
FTD RegistrationFMC ManagementNAT TraversalCLI Configuration - Question #412Management and Troubleshooting
Refer to the exhibit. An engineer is analyzing a Network Risk Report generated in Cisco Secure Firewall Management Center. Against which application must immediate action be taken...
Network Risk AnalysisApplication Visibility and Control (AVC)Firepower Management Center (FMC)Peer-to-Peer (P2P) Protocols - Question #413Management and Troubleshooting
After a network security breach, an engineer must strengthen the security of the corporate network. Upper management must be regularly updated with a high-level overview of any occ...
Cisco Secure Firewall Management CenterReportingManagement ReportingNetwork Risk - Question #414Management and Troubleshooting
An engineer is troubleshooting the upgrade of a Cisco Secure Firewall Threat Defense device on the Secure Firewall Management Center 7.0 GUI. The engineer wants to collect the upgr...
FTD Upgrade TroubleshootingFMC ManagementLog CollectionDevice Health Monitoring - Question #415Deployment
An engineer is configuring two new Cisco Secure Firewall Threat Defense devices to replace the existing firewalls. Network traffic must be analyzed for intrusion events without imp...
Cisco Secure Firewall Threat DefenseDeployment ModesPassive ModeIntrusion Detection - Question #416Management and Troubleshooting
Refer to the exhibit. An engineer analyzes a Cisco Firepower Management Center dashboard. Which action must be taken by the user to decrease the risk of data loss?
FMC ManagementData Loss PreventionApplication ControlSecurity Monitoring - Question #417Configuration
An engineer is configuring a multidomain instance of Cisco Secure Firewall Management Center. The instance must be integrated with Cisco Secure Endpoint. What must the engineer con...
FMC MultidomainSecure Endpoint IntegrationLeaf DomainIdentity Resolution - Question #418Configuration
Refer to the exhibit. An engineer must import three network objects into the Cisco Secure Firewall Management Center by using a CSV file. Which header must be configured in the CSV...
Cisco FMCNetwork ObjectsCSV ImportConfiguration - Question #419Configuration
An administrator configures a Cisco Secure Firewall Threat Defense device in transparent mode. To configure the BVI (Bridge Virtual Interface), the administrator must: - Add a brid...
Cisco Secure Firewall Threat DefenseTransparent ModeBridge Virtual Interface (BVI)Interface Configuration - Question #420Configuration
An engineer must implement static route tracking on a Cisco Secure Firewall Threat Defense appliance. Static route and IP SLA operation has already been configured. Static route mu...
Static Route TrackingIP SLACisco FTDRouting Redundancy - Question #421Management and Troubleshooting
Which two solutions are used to access and view aggregated log data from the firewalls using Cisco Security Analytics and Logging? (Choose two.)
Cisco Security AnalyticsLog ManagementFirewall MonitoringNetwork Security Visibility - Question #422Configuration
An engineer is configuring Cisco Secure Firewall Threat Defense managed by a Secure Firewall Management Center appliance. The company wants remote access VPN users to be reachable...
FTD NATRemote Access VPNNAT ExemptionNAT Policy Order - Question #423Deployment
An engineer is deploying Cisco Secure Endpoint for the first time and on endpoint with MAC address 50:54:15:04:0:AB. The engineer must make sure that during the testing phase no fi...
Secure Endpoint PoliciesAudit ModeEndpoint DeploymentPolicy Configuration - Question #424Management and Troubleshooting
What is an attribute of the risk reporting capability in Cisco Secure Firewall Management Center?
FMCRisk ReportingMulti-domain ManagementReporting Scope - Question #425Management and Troubleshooting
Refer to the exhibit. A Cisco Secure Firewall Management Center, 7.0 device fails to receive intelligence feed updates. The Cisco Secure Firewall Management Center is configured to...
Intelligence feedsProxy serverSSL inspectionUpdate management - Question #426Configuration
Refer to the exhibit. Users attempt to connect to numerous external resources on various TCP ports. If the users mistype the port, their connection closes immediately, and it takes...
Firewall RulesICMP ProtocolTCP Connection FailuresNetwork Troubleshooting - Question #427Management and Troubleshooting
A network administrator manages a network with multiple firewalls in a datacenter using Cisco Secure Firepower Management Center. The administrator must change a next-generation fi...
Firepower Management Center (FMC)Firewall ModesDevice ManagementFTD Reconfiguration - Question #428Configuration
An engineer is setting up two new Cisco Secure Firewall Threat Defense appliances as a high- availability pair. The company needs the high-availability pair to detect a failure on...
FTD High AvailabilityFailover TimersHA ConfigurationFailover Link Monitoring - Question #429Configuration
What is the purpose of the IRB feature in next-generation firewall?
IRBTransparent BridgingNext-Generation FirewallLayer 2 Security - Question #430Deployment
A network engineer must deploy a Cisco ASA to an existing network without changing any IP addresses or networking settings. The external devices connected to the firewall will be o...
Cisco ASATransparent firewallFirewall deploymentLayer 2 security - Question #431Configuration
Which communication is blocked from the bridge groups when multiple are configured in transparent mode on a Cisco Secure Firewall Threat Defense appliance?
Cisco FTDTransparent ModeBridge GroupsTraffic Segmentation - Question #432Deployment
How should a high-availability pair of Cisco Secure Firewall Threat Defense Virtual appliances be deployed to Cisco Secure Firewall Management Center?
Cisco FTD High AvailabilityFMC Device ManagementDeployment Workflow - Question #433Configuration
An engineer is implementing clustering in Cisco Secure Firewall Management Center. The configuration must ensure that the cluster has a designated control unit node with more resou...
Cisco Secure Firewall Management CenterClusteringControl UnitNode Priority - Question #434Configuration
An engineer is configuring a Cisco Secure Firewall Threat Defense device to operate in transparent mode between two switch stacks. VLAN 10 is used for in-band management on both sw...
FTD Transparent ModeBridge GroupBVIIn-band Management - Question #435Configuration
An engineer must configure a new identity policy in Cisco Firepower Management Center. Active authentication must be configured by using a Kerberos connection. Which two realms mus...
Firepower Management Center (FMC)Identity PolicyKerberosActive Directory Integration - Question #437Configuration
An engineer must configure an ERSPAN passive interface on a Cisco Secure IPS by using the Cisco Secure Firewall Management Center. These configurations have been performed already:...
ERSPANCisco Secure IPSFMCInterface Configuration - Question #439Configuration
An engineer must configure the encrypted visibility engine for a Cisco Secure Firewall Threat Defense device in Cisco Secure Firewall Management Center. The engineer already config...
Encrypted Visibility EngineSecure Firewall Threat DefenseSSL/TLS PolicyEncrypted Traffic Inspection - Question #440Management and Troubleshooting
Refer to the exhibit. A security engineer views the health alerts in Cisco Secure Firewall Management Center by using the Health Monitor in the web interface. One of the alerts sho...
NTPTroubleshootingSecure Firewall Management CenterHealth Monitoring - Question #441Management and Troubleshooting
An engineer is analyzing a risk report generated by using Cisco Secure Firewall Management Center. The report contains these fields: - Total Attacks - Events Requiring Attention -...
Cisco Secure Firewall Management CenterRisk ReportingHost SecuritySecurity Monitoring - Question #442Management and Troubleshooting
An engineer is reviewing an existing custom server fingerprint on a Cisco Secure Firewall because the current information is inaccurate. Which action must the engineer take to impr...
Cisco Secure FirewallNetwork DiscoveryServer FingerprintingFirepower Management Center - Question #443Configuration
An engineer is configuring Cisco Security Devices by using Cisco Secure Firewall Management Center. Which configuration command must be run to compare the CA certificate bundle on...
Cisco FMCCertificate ManagementCA BundlesConfiguration Commands - Question #444Integration
Which Cisco Rapid Threat Containment mitigation action is enabled by integrating pxGrid Adaptive Network Control with Cisco ISE and Cisco Secure Firewall Management Center?
Rapid Threat ContainmentpxGridAdaptive Network ControlThreat Mitigation - Question #445Management and Troubleshooting
How does Cisco Secure Cloud Analytics handle information about network traffic?
Cisco Secure Cloud AnalyticsNetwork traffic analysisBehavioral analysisSecurity monitoring - Question #446Integration
Which action occurs in the Rapid Threat Containment workflow when an infected endpoint with the MAC address 05:19:75:64.65:EA is detected to isolate the infected endpoint?
Rapid Threat ContainmentCisco Secure Firewall Management CentreCisco ISEEndpoint Isolation