350-701 · Question #462
350-701 Question #462: Real Exam Question with Answer & Explanation
The correct answer is A: The module is operating in IDS mode.. sfr {fail-open | fail-close [monitor-only]} <- There's a couple different options here. The first one is fail-open which means that if the Firepower software module is unavailable, the ASA will continue to forward traffic. fail-close means that if the Firepower module fails, the
Question
Refer to the exhibit. What are two indications of the Cisco Firepower Services Module configuration? (Choose two.)
Options
- AThe module is operating in IDS mode.
- BThe module fails to receive redirected traffic
- CTraffic is blocked if the module fails.
- DTraffic continues to flow if the module fails.
- EThe module is operating in IPS mode.
Explanation
sfr {fail-open | fail-close [monitor-only]} <- There's a couple different options here. The first one is fail-open which means that if the Firepower software module is unavailable, the ASA will continue to forward traffic. fail-close means that if the Firepower module fails, the traffic will stop flowing. While this doesn't seem ideal, there might be a use case for it when securing highly regulated environments. The monitor-only switch can be used with both and basically puts the Firepower services into IDS-mode only. This might be useful for initial testing or setup.
Topics
Community Discussion
No community discussion yet for this question.