Free Securing Networks with Cisco Firepower Exam 300-710 Exam Practice Test

An engainer must add DNS-specific rules to me Cisco FTD intrusion policy. The engineer wants to use the rules currently in the Cisco FTD Snort database that are not already enabled but does not want to enable more than are needed. Which action meets these requirements?

• Change the dynamic state of the rule within the policy.
• Change the base policy to Security over Connectivity.
• Change the rule state within the policy being used.
• Change the rules using the Generate and Use Recommendations feature.

A VPN user is unable to conned lo web resources behind the Cisco FTD device terminating the connection. While troubleshooting, the network administrator determines that the DNS responses are not getting through the Cisco FTD What must be done to address this issue while still utilizing Snort IPS rules?

• Uncheck the 'Drop when Inline' box in the intrusion policy to allow the traffic.
• Modify the Snort rules to allow legitimate DNS traffic to the VPN users.
• Disable the intrusion rule threshes to optimize the Snort processing.
• Decrypt the packet after the VPN flow so the DNS queries are not inspected

Which Cisco Firepower Threat Defense, which two interface settings are required when configuring a routed interface? (Choose two.)

• Redundant Interface
• EtherChannel
• Speed
• Media Type
• Duplex

Which component is needed to perform rapid threat containment with Cisco FMC?

• ISE
• RESTful API
• SIEM
• DDI

Which file format can standard reports from Cisco Secure Firewall Management Center be downloaded in?

• ppt
• csv
• xis
• doc

An engineer is troubleshooting a file that is being blocked by a Cisco FTD device on the network.The user is reporting that the file is not malicious.Which action does the engineer take to identify the file and validate whether or not it is malicious?

• identify the file in the intrusion events and submit it to Threat Grid for analysis.
• Use FMC file analysis to look for the file and select Analyze to determine its disposition.
• Use the context explorer to find the file and download it to the local machine for investigation.
• Right click the connection event and send the file to AMP for Endpoints to see if the hash is malicious.

An engineer has been tasked with providing disaster recovery for an organization's primary Cisco FMC. What must be done on the primary and secondary Cisco FMCs to ensure that a copy of the original corporate policy is available if the primary Cisco FMC fails?

• Configure high-availability in both the primary and secondary Cisco FMCs
• Connect the primary and secondary Cisco FMC devices with Category 6 cables of not more than 10 meters in length.
• Place the active Cisco FMC device on the same trusted management network as the standby device
• Restore the primary Cisco FMC backup configuration to the secondary Cisco FMC device when the primary device fails

Which command is run at the CLI when logged in to an FTD unit, to determine whether the unit is managed locally or by a remote FMC server?

• system generate-troubleshoot
• show configuration session
• show managers
• show running-config | include manager

What is a characteristic of bridge groups on a Cisco FTD?

• In routed firewall mode, routing between bridge groups must pass through a routed interface.
• In routed firewall mode, routing between bridge groups is supported.
• In transparent firewall mode, routing between bridge groups is supported
• Routing between bridge groups is achieved only with a router-on-a-stick configuration on a connected router

A connectivity issue is occurring between a client and a server which are communicating through a Cisco Firepower device While troubleshooting, a network administrator sees that traffic is reaching the server, but the client is not getting a response Which step must be taken to resolve this issue without initiating traffic from the client?

• Use packet-tracer to ensure that traffic is not being blocked by an access list.
• Use packet capture to ensure that traffic is not being blocked by an access list.
• Use packet capture to validate that the packet passes through the firewall and is NATed to the corrected IP address.
• Use packet-tracer to validate that the packet passes through the firewall and is NATed to the corrected IP address.