nerdexam
Exams350-701Questions#120
CiscoCisco

350-701 · Question #120

350-701 Question #120: Real Exam Question with Answer & Explanation

The correct answer is B: Rule. This question asks to identify two valid suppression types available on a Cisco Next Generation Intrusion Prevention System.

Submitted by cyberguy42· Mar 30, 2026DOMAIN_LIST_NOT_PROVIDED

Question

Which two are valid suppression types on a Cisco Next Generation Intrusion Prevention System?

Options

  • APort
  • BRule
  • CSource
  • DApplication
  • EProtocol

Explanation

This question asks to identify two valid suppression types available on a Cisco Next Generation Intrusion Prevention System.

Common mistakes.

  • A. While traffic can be filtered by port, 'Port' is not a primary, explicit suppression type in Cisco NGIPS policies in the same way as Rule or Source.
  • D. Application suppression is not a standard, explicit suppression type in Cisco NGIPS compared to Rule, Source, or Destination.
  • E. Protocol suppression is not a standard, explicit suppression type in Cisco NGIPS for event suppression.

Concept tested. Cisco NGIPS Intrusion Event Suppression

Reference. https://www.cisco.com/c/en/us/td/docs/security/firepower/60/configuration/guide/fpmc-config-guide-v60/Policies_Intrusion.html#ID-2253-00000302

Topics

#Cisco NGIPS#IPS suppression types

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full 350-701 PracticeBrowse All 350-701 Questions