Ace Your 300-710 CCNP Security Exam

Securing Networks with Cisco Firepower (300-710 SNCF) Questions and Answers

Question 25

What must be implemented on Cisco Firepower to allow multiple logical devices on a single physical device to have access to external hosts?

Options:

Add at least two container instances from the same module.

Set up a cluster control link between all logical devices

Add one shared management interface on all logical devices.

Define VLAN subinterfaces for each logical device.

Question 26

An administrator is configuring their transparent Cisco FTD device to receive ERSPAN traffic from multiple switches on a passive port, but the Cisco FTD is not processing the traffic. What is the problem?

Options:

The switches do not have Layer 3 connectivity to the FTD device for GRE traffic transmission.

The switches were not set up with a monitor session ID that matches the flow ID defined on the Cisco

FTD.

The Cisco FTD must be in routed mode to process ERSPAN traffic.

The Cisco FTD must be configured with an ERSPAN port not a passive port.

Question 27

An engineer is configuring multiple Cisco FTD appliances (or use in the network. Which rule must the engineer follow while defining interface objects in Cisco FMC for use with interfaces across multiple devices?

Options:

An interface cannot belong to a security zone and an interface group

Interface groups can contain multiple interface types

Interface groups can contain interfaces from many devices.

Two security zones can contain the same interface

Question 28

Which firewall design will allow It to forward traffic at layers 2 and 3 for the same subnet?

Options:

Cisco Firepower Threat Defense mode

routed mode

Integrated routing and bridging

transparent mode

Labour Day Special - Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: top65certs

Securing Networks with Cisco Firepower (300-710 SNCF) Questions and Answers

Options:

Answer:

Options:

Answer:

Options:

Answer:

Options:

Answer:

Explanation: