Practice Exams:

Free 300-710 Exam Braindumps

Pass your Securing Networks with Cisco Firepower (SNCF) exam with these free Questions and Answers

Page 13 of 52
PDF with 260 Questions
QUESTION 56

- (Exam Topic 1)
Which policy rule is included in the deployment of a local DMZ during the initial deployment of a Cisco NGFW through the Cisco FMC GUI?

  1. A. a default DMZ policy for which only a user can change the IP addresses.
  2. B. deny ip any
  3. C. no policy rule is included
  4. D. permit ip any

Correct Answer: C

QUESTION 57

- (Exam Topic 5)
Which two routing options are valid with Cisco FTD? (Choose Two)

  1. A. BGPv6
  2. B. ECMP with up to three equal cost paths across multiple interfaces
  3. C. ECMP with up to three equal cost paths across a single interface
  4. D. BGPv4 in transparent firewall mode
  5. E. BGPv4 with nonstop forwarding

Correct Answer: AC
Reference: https://www.cisco.com/c/en/us/td/docs/security/firepower/601/configuration/guide/fpmc-config- guide-v601/fpmc-config-guide-v60_chapter_01100011.html#ID-2101-0000000e

QUESTION 58

- (Exam Topic 5)
Refer to the exhibit.
300-710 dumps exhibit
A systems administrator conducts a connectivity test to their SCCM server from a host machine and gets no response from the server. Which action ensures that the ping packets reach the destination and that the host receives replies?

  1. A. Create an access control policy rule that allows ICMP traffic.
  2. B. Configure a custom Snort signature to allow ICMP traffic after Inspection.
  3. C. Modify the Snort rules to allow ICMP traffic.
  4. D. Create an ICMP allow list and add the ICMP destination to remove it from the implicit deny list.

Correct Answer: A

QUESTION 59

- (Exam Topic 1)
Which Cisco Firepower Threat Defense, which two interface settings are required when configuring a routed interface? (Choose two.)

  1. A. Redundant Interface
  2. B. EtherChannel
  3. C. Speed
  4. D. Media Type
  5. E. Duplex

Correct Answer: CE
https://www.cisco.com/c/en/us/td/docs/security/firepower/610/fdm/fptd-fdm-config-guide-610/fptd-fdm- interfaces.html

QUESTION 60

- (Exam Topic 5)
A mid-sized company is experiencing higher network bandwidth utilization due to a recent acquisition The network operations team is asked to scale up their one Cisco FTD appliance deployment to higher capacities due to the increased network bandwidth. Which design option should be used to accomplish this goal?

  1. A. Deploy multiple Cisco FTD appliances in firewall clustering mode to increase performance.
  2. B. Deploy multiple Cisco FTD appliances using VPN load-balancing to scale performance.
  3. C. Deploy multiple Cisco FTD HA pairs to increase performance
  4. D. Deploy multiple Cisco FTD HA pairs in clustering mode to increase performance

Correct Answer: A

Page 13 of 52
PDF with 260 Questions

Post your Comments and Discuss Cisco 300-710 exam with other Community members: