nerdexam
Exams350-701Questions#87
CiscoCisco

350-701 · Question #87

350-701 Question #87: Real Exam Question with Answer & Explanation

The correct answer is C: They correlate data about intrusions and vulnerability.. Cisco Firepower impact flags are a core feature designed to correlate intrusion events with known vulnerabilities on specific assets, providing a prioritized view of threats. This correlation helps administrators focus on the most critical security incidents that pose an actual r

Submitted by priya_blr· Mar 30, 2026

Question

Which option is the main function of Cisco Firepower impact flags?

Options

  • AThey alert administrators when critical events occur.
  • BThey highlight known and suspected malicious IP addresses in reports.
  • CThey correlate data about intrusions and vulnerability.
  • DThey identify data that the ASA sends to the Firepower module.

Explanation

Cisco Firepower impact flags are a core feature designed to correlate intrusion events with known vulnerabilities on specific assets, providing a prioritized view of threats. This correlation helps administrators focus on the most critical security incidents that pose an actual risk to their network.

Common mistakes.

  • A. While impact flags contribute to understanding critical events, their main function is correlation and prioritization, not just generating alerts.
  • B. Highlighting malicious IP addresses is a function of threat intelligence and reputation services, not the primary function of impact flags, which specifically deal with intrusion/vulnerability correlation.
  • D. Impact flags do not identify data sent from the ASA to the Firepower module; they are an analysis feature within the Firepower management center for threat intelligence.

Concept tested. Cisco Firepower impact flags functionality

Reference. https://www.cisco.com/c/en/us/td/docs/security/firepower/640/configuration/guide/fpmc-config-guide-v64/intrusion_events_and_rule_management.html

Topics

#Cisco Firepower#impact flags#intrusion correlation

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full 350-701 PracticeBrowse All 350-701 Questions