Download Certifications: CCNP Security, Cisco Certified Specialist - Network Security Firepower.300-710.CertDumps.2021-12-27.79q.vcex

Vendor: Cisco
Exam Code: 300-710
Exam Name: Certifications: CCNP Security, Cisco Certified Specialist - Network Security Firepower
Date: Dec 27, 2021
File Size: 282 KB
Downloads: 2

How to open VCEX files?

Files with VCEX extension can be opened by ProfExam Simulator.

Purchase
Coupon: EXAM_HUB

Discount: 20%

Demo Questions

Question 1
What is a result of enabling Cisco FTD clustering?
  1. For the dynamic routing feature, if the master unit fails, the newly elected master unit maintains all existing connections.
  2. Integrated Routing and Bridging is supported on the master unit.
  3. Site-to-site VPN functionality is limited to the master unit, and all VPN connections are dropped if the master unit fails.
  4. All Firepower appliances can support Cisco FTD clustering.
Correct answer: C
Explanation:
Reference: https://www.cisco.com/c/en/us/td/docs/security/firepower/640/configuration/guide/fpmc-config-guide-v64/clustering_for_the_firepower_threat_defense.html
Reference: https://www.cisco.com/c/en/us/td/docs/security/firepower/640/configuration/guide/fpmc-config-guide-v64/clustering_for_the_firepower_threat_defense.html
Question 2
Which two conditions are necessary for high availability to function between two Cisco FTD devices?  
(Choose two.)
  1. The units must be the same version
  2. Both devices can be part of a different group that must be in the same domain when configured within the FMC.
  3. The units must be different models if they are part of the same series.
  4. The units must be configured only for firewall routed mode.
  5. The units must be the same model.
Correct answer: AE
Explanation:
Reference: https://www.cisco.com/c/en/us/support/docs/security/firepower-management-center/212699-configure-ftd-high-availability-on-firep.html
Reference: https://www.cisco.com/c/en/us/support/docs/security/firepower-management-center/212699-configure-ftd-high-availability-on-firep.html
Question 3
On the advanced tab under inline set properties, which allows interfaces to emulate a passive interface?
  1. transparent inline mode
  2. TAP mode
  3. strict TCP enforcement
  4. propagate link state
Correct answer: D
Explanation:
Reference: https://www.cisco.com/c/en/us/td/docs/security/firepower/640/configuration/guide/fpmc-config-guide-v64/inline_sets_and_passive_interfaces_for_firepower_threat_defense.html
Reference: https://www.cisco.com/c/en/us/td/docs/security/firepower/640/configuration/guide/fpmc-config-guide-v64/inline_sets_and_passive_interfaces_for_firepower_threat_defense.html
Question 4
What are the minimum requirements to deploy a managed device inline?
  1. inline interfaces, security zones, MTU, and mode
  2. passive interface, MTU, and mode
  3. inline interfaces, MTU, and mode
  4. passive interface, security zone, MTU, and mode
Correct answer: C
Explanation:
Reference: https://www.cisco.com/c/en/us/td/docs/security/firepower/650/configuration/guide/fpmc-config-guide-v65/ips_device_deployments_and_configuration.html
Reference: https://www.cisco.com/c/en/us/td/docs/security/firepower/650/configuration/guide/fpmc-config-guide-v65/ips_device_deployments_and_configuration.html
Question 5
What is the difference between inline and inline tap on Cisco Firepower?
  1. Inline tap mode can send a copy of the traffic to another device.
  2. Inline tap mode does full packet capture.
  3. Inline mode cannot do SSL decryption.
  4. Inline mode can drop malicious traffic.
Correct answer: D
Question 6
With Cisco Firepower Threat Defense software, which interface mode must be configured to passively receive traffic that passes through the appliance?
  1. inline set
  2. passive
  3. routed
  4. inline tap
Correct answer: D
Question 7
Which two deployment types support high availability? (Choose two.)
  1. transparent
  2. routed
  3. clustered
  4. intra-chassis multi-instance
  5. virtual appliance in public cloud
Correct answer: AB
Explanation:
Reference: https://www.cisco.com/c/en/us/td/docs/security/firepower/610/configuration/guide/fpmc-config-guide-v61/firepower_threat_defense_high_availability.html
Reference: https://www.cisco.com/c/en/us/td/docs/security/firepower/610/configuration/guide/fpmc-config-guide-v61/firepower_threat_defense_high_availability.html
Question 8
Which protocol establishes network redundancy in a switched Firepower device deployment?
  1. STP
  2. HSRP
  3. GLBP
  4. VRRP
Correct answer: A
Explanation:
Reference: https://www.cisco.com/c/en/us/td/docs/security/firepower/620/configuration/guide/fpmc-config-guide-v62/firepower_threat_defense_high_availability.html
Reference: https://www.cisco.com/c/en/us/td/docs/security/firepower/620/configuration/guide/fpmc-config-guide-v62/firepower_threat_defense_high_availability.html
Question 9
Which interface type allows packets to be dropped?
  1. passive
  2. inline
  3. ERSPAN
  4. TAP
Correct answer: B
Explanation:
Reference: https://www.cisco.com/c/en/us/support/docs/security/firepower-ngfw/200908-configuring-firepower-threat-defense-int.html
Reference: https://www.cisco.com/c/en/us/support/docs/security/firepower-ngfw/200908-configuring-firepower-threat-defense-int.html
Question 10
With Cisco Firepower Threat Defense, which two interface settings are required when configuring a routed interface? (Choose two.)
  1. Redundant Interface
  2. EtherChannel
  3. Speed
  4. Media Type
  5. Duplex
Correct answer: CE
Explanation:
https://www.cisco.com/c/en/us/td/docs/security/firepower/610/fdm/fptd-fdm-config-guide-610/fptd-fdm-interfaces.html
https://www.cisco.com/c/en/us/td/docs/security/firepower/610/fdm/fptd-fdm-config-guide-610/fptd-fdm-interfaces.html
HOW TO OPEN VCE FILES

Use VCE Exam Simulator to open VCE files
Avanaset

HOW TO OPEN VCEX AND EXAM FILES

Use ProfExam Simulator to open VCEX and EXAM files
ProfExam Screen

ProfExam
ProfExam at a 20% markdown

You have the opportunity to purchase ProfExam at a 20% reduced price

Get Now!