Free 300-710 Exam Braindumps

- (Exam Topic 5)
What is the advantage of having Cisco Firepower devices send events to Cisco Threat Response via the security services exchange portal directly as opposed to using syslog?

1. A. All types of Cisco Firepower devices are supported.
2. B. An on-premises proxy server does not need to be set up and maintained.
3. C. Cisco Firepower devices do not need to be connected to the Internet.
4. D. Supports all devices that are running supported versions of Cisco Firepower.

Correct Answer: B

- (Exam Topic 5)
The event dashboard within the Cisco FMC has been inundated with low priority intrusion drop events, which are overshadowing high priority events. An engineer has been tasked with reviewing the policies and reducing the low priority events. Which action should be configured to accomplish this task?

1. A. generate events
2. B. drop packet
3. C. drop connection
4. D. drop and generate

Correct Answer: B
Reference”
https://www.cisco.com/c/en/us/td/docs/security/firepower/620/configuration/guide/fpmc-config-guide-v62/work

- (Exam Topic 5)
Refer to the exhibit.

An administrator is looking at some of the reporting capabilities for Cisco Firepower and noticed this section of the Network Risk report showing a lot of SSL activity that cloud be used for evasion. Which action will mitigate this risk?

1. A. Use SSL decryption to analyze the packets.
2. B. Use encrypted traffic analytics to detect attacks
3. C. Use Cisco AMP for Endpoints to block all SSL connection
4. D. Use Cisco Tetration to track SSL connections to servers.

Correct Answer: A

- (Exam Topic 1)
Which two deployment types support high availability? (Choose two.)

1. A. transparent
2. B. routed
3. C. clustered
4. D. intra-chassis multi-instance
5. E. virtual appliance in public cloud

Correct Answer: AB
Reference: https://www.cisco.com/c/en/us/td/docs/security/firepower/610/configuration/guide/fpmc-config- guide-v61/firepower_threat_defense_high_availability.html

- (Exam Topic 5)
A security engineer is configuring an Access Control Policy for multiple branch locations These locations share a common rule set and utilize a network object called INSIDE_NET which contains the locally significant internal network subnets at each location What technique will retain the policy consistency at each location but allow only the locally significant network subnet within the applicable rules?

1. A. utilizing policy inheritance
2. B. utilizing a dynamic ACP that updates from Cisco Talos
3. C. creating a unique ACP per device
4. D. creating an ACP with an INSIDE_NET network object and object overrides

Correct Answer: D