300-710 Exam Results

Securing Networks with Cisco Firepower (300-710 SNCF) Questions and Answers

Question 97

Refer to the exhibit An engineer is modifying an access control pokey to add a rule to inspect all DNS traffic that passes through the firewall After making the change and deploying thepokey they see that DNS traffic is not bang inspected by the Snort engine What is the problem?

Options:

The rule must specify the security zone that originates the traffic

The rule must define the source network for inspection as well as the port

The action of the rule is set to trust instead of allow.

The rule is configured with the wrong setting for the source port

Question 98

Which two deployment types support high availability? (Choose two.)

Options:

transparent

routed

clustered

intra-chassis multi-instance

virtual appliance in public cloud

Question 99

Refertothe exhibit. An engineer is analyzing a Network Risk Report from Cisco FMC. Which application must the engineer take immediate action against to prevent unauthorized network use?

Options:

Kerberos

YouTube

Chrome

TOR

Question 100

An engineer is configuring a Cisco Secure Firewall Threat Defense device and warns to create a new intrusion rule based on the detection of a specific pattern in the data payload for a new zero-day exploit. Which keyword type must be used to add a Line that identifies the author of the rule and the date it was created?

Options:

metadata

content

reference

gtp_info

Big Cyber Monday Sale 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: save70

Securing Networks with Cisco Firepower (300-710 SNCF) Questions and Answers

Options:

Answer:

Options:

Answer:

Explanation:

Options:

Answer:

Options:

Answer:

Explanation:

CompTIA

Fortinet

Microsoft

Salesforce