Practice Free 300-710 Exam Online Questions
There is an increased amount of traffic on the network and for compliance reasons, management needs visibility into the encrypted traffic.
What is a result of enabling TLS’SSL decryption to allow this visibility?
- A . It prompts the need for a corporate managed certificate
- B . It has minimal performance impact
- C . It is not subject to any Privacy regulations
- D . It will fail if certificate pinning is not enforced
An administrator is adding a new URL-based category feed to the Cisco FMC for use within the policies. The intelligence source does not use STIX. but instead uses a .txt file format.
Which action ensures that regular updates are provided?
- A . Add a URL source and select the flat file type within Cisco FMC.
- B . Upload the .txt file and configure automatic updates using the embedded URL.
- C . Add a TAXII feed source and input the URL for the feed.
- D . Convert the .txt file to STIX and upload it to the Cisco FMC.
A network administrator has converted a Cisco FTD from using LDAP to LDAPS for VPN authentication. The Cisco FMC can connect to the LDAPS server, but the Cisco FTD is not connecting.
Which configuration must be enabled on the Cisco FTD?
- A . SSL must be set to a use TLSv1.2 or lower.
- B . The LDAPS must be allowed through the access control policy.
- C . DNS servers must be defined for name resolution.
- D . The RADIUS server must be defined.
A network administrator is migrating from a Cisco ASA to a Cisco FTD. EIGRP is configured on the Cisco ASA but it is not available in the Cisco FMC.
Which action must the administrator take to enable this feature on the Cisco FTD?
- A . Configure EIGRP parameters using FlexConfig objects.
- B . Add the command feature eigrp via the FTD CLI.
- C . Create a custom variable set and enable the feature in the variable set.
- D . Enable advanced configuration options in the FMC.
What must be implemented on Cisco Firepower to allow multiple logical devices on a single physical device to have access to external hosts?
- A . Add at least two container instances from the same module.
- B . Set up a cluster control link between all logical devices
- C . Add one shared management interface on all logical devices.
- D . Define VLAN subinterfaces for each logical device.
A security engineer must create a malware and file policy on a Cisco Secure Firewall Threat Defense device. The solution must ensure that PDF. DOCX, and XLSX files are not sent lo Cisco Secure Malware analytics.
What must do configured to meet the requirements”
- A . capacity handling
- B . Spero analysis
- C . dynamic analysis
- D . local malware analysis
Cisco Security Analytics and Logging SaaS licenses come with how many days of data retention by default?
- A . 60
- B . 365
- C . 90
- D . 120
An engineer plans to reconfigure an existing Cisco FTD from transparent mode to routed mode.
Which additional action must be taken to maintain communication Between me two network segments?
- A . Configure a NAT rule so mat traffic between the segments is exempt from NAT.
- B . Update the IP addressing so that each segment is a unique IP subnet.
- C . Deploy inbound ACLs on each interface to allow traffic between the segments.
- D . Assign a unique VLAN ID for the interface in each segment.
Network traffic coining from an organization’s CEO must never be denied.
Which access control policy configuration option should be used if the deployment engineer is not permitted to create a rule to allow all traffic?
- A . Configure firewall bypass.
- B . Change the intrusion policy from security to balance.
- C . Configure a trust policy for the CEO.
- D . Create a NAT policy just for the CEO.
Which limitation applies to Cisco Firepower Management Center dashboards in a multidomain environment?
- A . Child domains can view but not edit dashboards that originate from an ancestor domain.
- B . Child domains have access to only a limited set of widgets from ancestor domains.
- C . Only the administrator of the top ancestor domain can view dashboards.
- D . Child domains cannot view dashboards that originate from an ancestor domain.