300-710 Exam Dumps - Securing Networks with Cisco Firepower (300-710 SNCF)

Searching for workable clues to ace the Cisco 300-710 Exam? You’re on the right place! ExamCert has realistic, trusted and authentic exam prep tools to help you achieve your desired credential. ExamCert’s 300-710 PDF Study Guide, Testing Engine and Exam Dumps follow a reliable exam preparation strategy, providing you the most relevant and updated study material that is crafted in an easy to learn format of questions and answers. ExamCert’s study tools aim at simplifying all complex and confusing concepts of the exam and introduce you to the real exam scenario and practice it with the help of its testing engine and real exam dumps

Go to page:

<< First
Prev
1
2
3
4
5
6
7
8
9
10
Next
Last >>

Question # 41

A VPN administrator converted an instance of Cisco Secure Firewall Threat Defense, which is managed by Cisco Secure Firewall Management Center, from using LDAP to LDAPS for

remote access VPN authentication. Which certificate must be added to allow for remote users to authenticate over the VPN?

LDAPS server certificate must be added to Secure Firewall Management Center realms.

Secure Firewall Management Center certificate must be added to the LDAPS server.

LDAPS server certificate must be added to Secure Firewall Threat Defense.

Secure Firewall Threat Defense certificate must be added to the LDAPS server.

Full Access

Question # 42

An engineer must create a basic access control policy in the Cisco Secure Firewall Management Center to block all traffic by default. Drag and drop the configuration actions from the left into sequence on the right.

Full Access

Question # 43

An engineer is configuring a new dashboard within Cisco Secure Firewall Management Center and is having trouble implementing a custom widget. When a custom analysis widget is configured which option is mandatory for the system to display the information?

table

filter

title

results

Full Access

Question # 44

A network engineer is extending a user segment through an FTD device for traffic inspection without creating another IP subnet How is this accomplished on an FTD device in routed mode?

by leveraging the ARP to direct traffic through the firewall

by assigning an inline set interface

by using a BVI and create a BVI IP address in the same subnet as the user segment

by bypassing protocol inspection by leveraging pre-filter rules

Full Access

Question # 45

An organization is installing a new Cisco FTD appliance in the network. An engineer is tasked with configuring access between two network segments within the same IP subnet. Which step is needed to accomplish this task?

Assign an IP address to the Bridge Virtual Interface.

Permit BPDU packets to prevent loops.

Specify a name for the bridge group.

Add a separate bridge group for each segment.

Full Access

Question # 46

Which two dynamic routing protocols are supported in Firepower Threat Defense without using FlexConfig? (Choose two.)

EIGRP

OSPF

static routing

IS-IS

BGP

Full Access

Question # 47

A network engineer must provide redundancy between two Cisco FTD devices. The redundancy configuration must include automatic configuration, translation, and connection updates. After the initial configuration of the two appliances, which two steps must be taken to proceed with the redundancy configuration? (Choose two.)

Configure the virtual MAC address on the failover link.

Disable hellos on the inside interface.

Configure the standby IP addresses.

Ensure the high availability license is enabled.

Configure the failover link with stateful properties.

Full Access

Question # 48

An engineer must configure high availability for the Cisco Firepower devices. The current network topology does not allow for two devices to pass traffic concurrently. How must the devices be implemented in this environment?

in active/active mode

in a cluster span EtherChannel

in active/passive mode

in cluster interface mode

Full Access

Go to page: