300-710無料問題集「Cisco Securing Networks with Cisco Firepower」

質問 1

An engineer is setting up a new Firepower deployment and is looking at the default FMC policies to start the implementation During the initial trial phase, the organization wants to test some common Snort rules while still allowing the majority of network traffic to pass Which default policy should be used?

（A）Security Over Connectivity

（B）Connectivity Over Security

（C）Balanced Security and Connectivity

（D）Maximum Detection

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 2

An engineer is monitoring network traffic from their sales and product development departments, which are on two separate networks What must be configured in order to maintain data privacy for both departments?

（A）Use passive IDS ports for both departments

（B）Use one pair of inline set in TAP mode for both departments

（C）Use a dedicated IPS inline set for each department to maintain traffic separation

（D）Use 802 1Q mime set Trunk interfaces with VLANs to maintain logical traffic separation

正解：D 解答を投票する

質問 3

A network administrator must create an EtherChannel Interface on a new Cisco Firepower 9300 appliance registered with an FMC tor high availability. Where must the administrator create the EtherChannel interface?

（A）FMC CLI

（B）FXOS CLI

（C）FTD CLI

（D）FMC GUI

正解：B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 4

When deploying a Cisco ASA Firepower module, an organization wants to evaluate the contents of the traffic without affecting the network. It is currently configured to have more than one instance of the same device on the physical appliance Which deployment mode meets the needs of the organization?

（A）passive tap monitor-only mode

（B）passive monitor-only mode

（C）inline tap monitor-only mode

（D）inline mode

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 5

When using Cisco Threat Response, which phase of the Intelligence Cycle publishes the results of the investigation?

（A）dissemination

（B）direction

（C）analysis

（D）processing

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 6

The network administrator wants to enhance the network security posture by enabling machine learning tor malware detection due to a concern with suspicious Microsoft executable file types that were seen while creating monthly security reports for the CIO. Which feature must be enabled to accomplish this goal?

（A）static analysis

（B）dynamic analysis

（C）Ethos

（D）Spero

正解：D 解答を投票する

質問 7

Which two considerations must be made when deleting and re-adding devices while managing them via Cisco FMC (Choose two).

（A）Before re-adding the device In Cisco FMC, the manager must be added back.

（B）There is no option to re-apply NAT and VPN policies during registration is available, so users need to re-apply the policies after registration is completed.

（C）Once a device has been deleted, It must be reconfigured before it is re-added to the Cisco FMC.

（D）An option to re-apply NAT and VPN policies during registration is available, so users do not need to re-apply the polices after registration is completed.

（E）The Cisco FMC web interface prompts users to re-apply access control policies.

正解：B、E 解答を投票する

質問 8

An organization has noticed that malware was downloaded from a website that does not currently have a known bad reputation. How will this issue be addresses globally in the quickest way possible and with the least amount of impact?

（A）by creating a URL object in the policy to block the website

（B）by Isolating the endpoint

（C）by denying outbound web access

（D）Cisco Talos will automatically update the policies.

正解：A 解答を投票する

質問 9

Which command should be used on the Cisco FTD CLI to capture all the packets that hit an interface?

（A）configure coredump packet-engine enable

（B）capture WORD

（C）capture

（D）capture-traffic

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 10

What is the difference between inline and inline tap on Cisco Firepower?

（A）Inline tap mode does full packet capture.

（B）Inline mode cannot do SSL decryption.

（C）Inline mode can drop malicious traffic.

（D）Inline tap mode can send a copy of the traffic to another device.

正解：D 解答を投票する

質問 11

Refer to the exhibit.
A systems administrator conducts a connectivity test to their SCCM server from a host machine and gets no response from the server. Which action ensures that the ping packets reach the destination and that the host receives replies?

（A）Create an access control policy rule that allows ICMP traffic.

（B）Create an ICMP allow list and add the ICMP destination to remove it from the implicit deny list.

（C）Modify the Snort rules to allow ICMP traffic.

（D）Configure a custom Snort signature to allow ICMP traffic after Inspection.

正解：A 解答を投票する

質問 12

A network administrator is trying to configure an access rule to allow access to a specific banking site over HTTPS. Which method must the administrator use to meet the requirement?

（A）Enable SSL decryption and specify the URL.

（B）Define the URL to be blocked and set the application to HTTP.

（C）Block the category of banking and define the application of WWW.

（D）Define the URL to be blocked and disable SSL inspection.

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 13

An administrator Is setting up a Cisco PMC and must provide expert mode access for a security engineer. The engineer Is permitted to use only a secured out-of-band network workstation with a static IP address to access the Cisco FMC. What must be configured to enable this access?

（A）Enable SCP under the Access List section.

（B）Enable HTTP and define an access list.

（C）Enable SSH and define an access list.

（D）Enable HTTPS and SNMP under the Access List section.

正解：C 解答を投票する

質問 14

In which two places can thresholding settings be configured? (Choose two.)

（A）on each IPS rule

（B）globally, per intrusion policy

（C）globally, within the network analysis policy

（D）on each access control rule

（E）per preprocessor, within the network analysis policy

正解：A、B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

300-710 無料問題集「Cisco Securing Networks with Cisco Firepower」

弊社を連絡する

関連リンク

トップ試験