Cisco 300-710 SNCF Exam Questions Instant Access

Question 1

An engineer must investigate a connectivity issue and decides to use the packet capture feature on Cisco FTD. The goal is to see the real packet going through the Cisco FTD device and see the Snort detection actions as a part of the output. After the capture-traffic command is issued, only the packets are displayed. Which action resolves this issue?

AUse the verbose option as a part of the capture-traffic command

BUse the capture command and specify the trace option to get the required information.

CSpecify the trace using the -T option after the capture-traffic command.

DPerform the trace within the Cisco FMC GUI instead of the Cisco FTD CLI.

Answer : B

Question 2

A network administrator reviews the file report for the last month and notices that all file types, except exe. show a disposition of unknown. What is the cause of this issue?

AThe malware license has not been applied to the Cisco FTD.

BThe Cisco FMC cannot reach the Internet to analyze files.

CA file policy has not been applied to the access policy.

DOnly Spero file analysis is enabled.

Answer : C

A file policy defines the actions that the Cisco Firepower Threat Defense (FTD) device should take when it encounters different types of files. The file policy is applied as part of an access control policy. If an access control policy does not include a file policy, the FTD device will not take any action on the files it encounters, resulting in a disposition of 'unknown' for all file types except exe.

Topic 3, Management and Troubleshooting

Question 3

An engineer is setting up a new Cisco Secure Firewall Threat Defense appliance to replace the current firewall. The company requests that inline sets be used and that when one interface in

an inline set goes down, the second interface in the inline set goes down. What must the engineer configure to meet the deployment requirements?

Astrict TCP enforcement

Bpropagate link state

CSnort fail open

Dinline tap mode

Answer : C

Question 4

A hospital network needs to upgrade their Cisco FMC managed devices and needs to ensure that a disaster recovery process is in place. What must be done in order to minimize downtime on the network?

AConfigure a second circuit to an ISP for added redundancy

BKeep a copy of the current configuration to use as backup

CConfigure the Cisco FMCs for failover

DConfigure the Cisco FMC managed devices for clustering.

Answer : B

Question 5

An engineer is setting up a new Firepower deployment and is looking at the default FMC policies to start the implementation During the initial trial phase, the organization wants to test some common Snort rules while still allowing the majority of network traffic to pass Which default policy should be used?

AMaximum Detection

BSecurity Over Connectivity

CBalanced Security and Connectivity

DConnectivity Over Security

Answer : C

https://www.cisco.com/c/en/us/td/docs/security/firepower/623/fdm/fptd-fdm-config-guide-623/fptd-fdm-intrusion.html

Question 6

A network administrator is configuring Snort inspection policies and is seeing failed deployment messages in Cisco FMC. What information should the administrator generate for Cisco TAC to help troubleshoot?

AA 'show tech' file for the device in question.

BA 'troubleshoot' file for the device in question.

CA 'troubleshoot' file for the Cisco FMC.

DA 'show tech' for the Cisco FMC.

Answer : B

Question 7

Which two types of objects are reusable and supported by Cisco FMC? (Choose two.)

Adynamic key mapping objects that help link HTTP and HTTPS GET requests to Layer 7 application protocols.

Breputation-based objects that represent Security Intelligence feeds and lists, application filters based on category and reputation, and file lists

Cnetwork-based objects that represent IP address and networks, port/protocols pairs, VLAN tags, security zones, and origin/destination country

Dnetwork-based objects that represent FQDN mappings and networks, port/protocol pairs, VXLAN tags, security zones and origin/destination country

Ereputation-based objects, such as URL categories

Answer : B, C

Cisco Securing Networks with Cisco Firepower 300-710 SNCF Exam Questions