Practice Exams:

Free 300-710 Exam Braindumps

Pass your Securing Networks with Cisco Firepower (SNCF) exam with these free Questions and Answers

Page 12 of 52
PDF with 260 Questions
QUESTION 51

- (Exam Topic 5)
A security engineer is deploying a pair of primary and secondary Cisco FMC devices. The secondary must also receive updates from Cisco Talos. Which action achieves this goal?

  1. A. Force failover for the secondary Cisco FMC to synchronize the rule updates from the primary.
  2. B. Configure the secondary Cisco FMC so that it receives updates from Cisco Talos.
  3. C. Manually import rule updates onto the secondary Cisco FMC device.
  4. D. Configure the primary Cisco FMC so that the rules are updated.

Correct Answer: D

QUESTION 52

- (Exam Topic 5)
An administrator is configuring a transparent Cisco FTD device to receive ERSPAN traffic from multiple switches on a passive port but the FTD is not processing the traffic What is the problem?

  1. A. The switches do not have Layer 3 connectivity to the FTD device for GRE traffic transmission.
  2. B. The FTD must be configured with an ERSPAN port, not a passive port.
  3. C. The FTD must &e in routed mode to process ERSPAN traffic.
  4. D. The switches were not set up with a monitor session ID (hat matches the flow ID defined on the FTD

Correct Answer: C

QUESTION 53

- (Exam Topic 1)
An engineer is building a new access control policy using Cisco FMC. The policy must inspect a unique IPS policy as well as log rule matching. Which action must be taken to meet these requirements?

  1. A. Configure an IPS policy and enable per-rule logging.
  2. B. Disable the default IPS policy and enable global logging.
  3. C. Configure an IPS policy and enable global logging.
  4. D. Disable the default IPS policy and enable per-rule logging.

Correct Answer: C

QUESTION 54

- (Exam Topic 3)
Which report template field format is available in Cisco FMC?

  1. A. box lever chart
  2. B. arrow chart
  3. C. bar chart
  4. D. benchmark chart

Correct Answer: C
Reference:
https://www.cisco.com/c/en/us/td/docs/security/firepower/60/configuration/guide/fpmc-config-guide- v60/Working_with_Reports.html

QUESTION 55

- (Exam Topic 5)
Refer to the exhibit.
300-710 dumps exhibit
What must be done to fix access to this website while preventing the same communication to all other websites?

  1. A. Create an intrusion policy rule to have Snort allow port 80 to only 172.1.1 50.
  2. B. Create an access control policy rule to allow port 80 to only 172.1.1 50.
  3. C. Create an intrusion policy rule to have Snort allow port 443 to only 172.1.1.50
  4. D. Create an access control policy rule to allow port 443 to only 172.1.1 50

Correct Answer: B

Page 12 of 52
PDF with 260 Questions

Post your Comments and Discuss Cisco 300-710 exam with other Community members: