최신 300-710 무료덤프 - Cisco Securing Networks with Cisco Firepower

문제1

Which object type supports object overrides?

A. security group tag

B. DNS server group

C. network object

D. time range

정답: C

설명: (DumpTOP 회원만 볼 수 있음)

문제2

Which component simplifies incident investigation with Cisco Threat Response?

A. browser plug-in

B. local CVE database

C. Cisco AMP client

D. Cisco Secure Firewall appliance

정답: A

설명: (DumpTOP 회원만 볼 수 있음)

문제3

A network administrator discovers that a user connected to a file server and downloaded a malware file. The Cisc FMC generated an alert for the malware event, however the user still remained connected. Which Cisco APM file rule action within the Cisco FMC must be set to resolve this issue?

A. Malware Cloud Lookup

B. Reset Connection

C. Detect Files

D. Local Malware Analysis

정답: B

문제4

An engineer is configuring a second Cisco FMC as a standby device but is unable to register with the active unit. What is causing this issue?

A. There is only 10 Mbps of bandwidth between the two devices.

B. The licensing purchased does not include high availability

C. The primary FMC currently has devices connected to it.

D. The code versions running on the Cisco FMC devices are different

정답: D

설명: (DumpTOP 회원만 볼 수 있음)

문제5

An administrator configures the interfaces of a Cisco Secure Firewall Threat Defence device in an inline IPS deployment. The administrator completes these actions:
* identifies the device and the interfaces
* sets the interface mode to inline
* enables the interlaces
Which configuration step must the administrator take next to complete the implementation?

A. Enable spanning-tree PortFast on the interfaces.

B. Set the interface to Transparent mode.

C. Configure an inline set

D. Set the interface to routed mode.

정답: C

설명: (DumpTOP 회원만 볼 수 있음)

문제6

An engineer has been tasked with using Cisco FMC to determine if files being sent through the network are malware. Which two configuration takes must be performed to achieve this file lookup? (Choose two.)

A. The Cisco FMC needs to connect to the Cisco ThreatGrid service directly for sandboxing.

B. The Cisco FMC needs to connect with the FireAMP Cloud.

C. The Cisco FMC needs to include a SSL decryption policy.

D. The Cisco FMC needs to include a file inspection policy for malware lookup.

E. The Cisco FMC needs to connect to the Cisco AMP for Endpoints service.

정답: B,D

문제7

A security engineer must configure a Cisco FTD appliance to inspect traffic coming from the internet. The Internet traffic will be mirrored from the Cisco Catalyst 9300 Switch. Which configuration accomplishes the task?

A. Set the firewall mode to routed.

B. Set the firewall mode to transparent.

C. Set interface configuration mode to passive.

D. Set interface configuration mode to none.

정답: C

문제8

Which Cisco Advanced Malware Protection for Endpoints policy is used only for monitoring endpoint actively?

A. triage

B. Windows domain controller

C. audit

D. protection

정답: C

설명: (DumpTOP 회원만 볼 수 있음)

문제9

A network administrator is troubleshooting access to a website hosted behind a Cisco FTD device External clients cannot access the web server via HTTPS The IP address configured on the web server is 192 168 7.46 The administrator is running the command capture CAP interface outside match ip any 192.168.7.46
255.255.255.255 but cannot see any traffic in the capture Why is this occurring?

A. The capture must use the public IP address of the web server.

B. The packet capture shows only blocked traffic

C. The access policy is blocking the traffic.

D. The FTD has no route to the web server.

정답: A

문제10

administrator is configuring SNORT inspection policies and is seeing failed deployment messages in Cisco FMC . What information should the administrator generate for Cisco TAC to help troubleshoot?

A. A Troubleshoot" file for the device in question.

B. A "troubleshoot" file for the Cisco FMC

C. A "show tech" for the Cisco FMC.

D. A "show tech" file for the device in question

정답: A

문제11

An organization created a custom application that is being flagged by Cisco Secure Endpoint. The application must be exempt from being flagged. What is the process to meet the requirement?

A. Add the custom application to the DFC 1st and update the policy.

B. Modify the custom detection list to exclude me custom application.

C. Preculculate the hash value of the custom application and add it to the allowed applications.

D. Configure the custom application to use the information-store paths.

정답: C

설명: (DumpTOP 회원만 볼 수 있음)

문제12

Within Cisco Firepower Management Center, where does a user add or modify widgets?

A. dashboard

B. context explorer

C. reporting

D. summary tool

정답: A

설명: (DumpTOP 회원만 볼 수 있음)

문제13

A security engineer must create a malware and file policy on a Cisco Secure Firewall Threat Defense device.
The solution must ensure that PDF. DOCX, and XLSX files are not sent lo Cisco Secure Malware analytics.
What must do configured to meet the requirements''

A. local malware analysis

B. capacity handling

C. dynamic analysis

D. Spero analysis

정답: A

설명: (DumpTOP 회원만 볼 수 있음)

문제14

What is the result of specifying of QoS rule that has a rate limit that is greater than the maximum throughput of an interface?

A. The system rate-limits all traffic.

B. The system repeatedly generates warnings.

C. The rate-limiting rule is disabled.

D. Matching traffic is not rate limited.

정답: D

설명: (DumpTOP 회원만 볼 수 있음)

최신 300-710 무료덤프 - Cisco Securing Networks with Cisco Firepower

우리와 연락하기

유용한 링크

최신 업데이트