300-710試験無料問題集「Cisco Securing Networks with Cisco Firepower 認定」

ページ: 1 / 21
トータル 397 問

サインアップ、ログインされた後に、試験全体を無料で表示できるようになります。

出題：1

An administrator is adding a new URL-based category feed to the Cisco FMC for use within the policies.
The intelligence source does not use STIX. but instead uses a .txt file format.
Which action ensures that regular updates are provided?

A. Add a TAXII feed source and input the URL for the feed.

B. Upload the .txt file and configure automatic updates using the embedded URL.

C. Add a URL source and select the flat file type within Cisco FMC.

D. Convert the .txt file to STIX and upload it to the Cisco FMC.

正解：C 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：2

An administrator needs to configure Cisco FMC to send a notification email when a data transfer larger than 10 MB is initiated from an internal host outside of standard business hours. Which Cisco FMC feature must be configured to accomplish this task?

A. file and malware policy

B. intrusion policy

C. correlation policy

D. application detector

正解：C 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：3

A network administrator is reviewing a monthly advanced malware risk report and notices a host that is listed as CnC Connected. Where must the administrator look within Cisco FMC to further determine if this host is infected with malware?

A. Analysis > Hosts > Host Attributes

B. Analysis > Files > Network File Trajectory

C. Analysis > Hosts > Indications of Compromise

D. Analysis > Files > Malware Events

正解：C 解答を投票する

出題：4

Which two types of objects are reusable and supported by Cisco FMC? (Choose two.)

A. reputation-based objects, such as URL categories

B. network-based objects that represent FQDN mappings and networks, port/protocol pairs, VXLAN tags, security zones and origin/destination country

C. dynamic key mapping objects that help link HTTP and HTTPS GET requests to Layer 7 application protocols.

D. network-based objects that represent IP address and networks, port/protocols pairs, VLAN tags, security zones, and origin/destination country

E. reputation-based objects that represent Security Intelligence feeds and lists, application filters based on category and reputation, and file lists

正解：D,E 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：5

With a recent summer time change, system logs are showing activity that occurred to be an hour behind real time. Which action should be taken to resolve this issue?

A. Configure the system clock settings to use NTP

B. Configure the system clock settings to use NTP with Daylight Savings checked

C. Manually adjust the time to the correct hour on the Cisco FMC.

D. Manually adjust the time to the correct hour on all managed devices

正解：A 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：6

An engineer is attempting to create a new dashboard within the Cisco FMC to have a single view with widgets from many of the other dashboards. The goal is to have a mixture of threat and security related widgets along with Cisco Firepower device health information.
Which two widgets must be configured to provide this information? (Choose two.)

A. Appliance Status

B. Intrusion Events

C. Current Sessions

D. Correlation Information

E. Network Compliance

正解：A,B 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：7

An administrator is configuring a transparent Cisco FTD device to receive ERSPAN traffic from multiple switches on a passive port but the FTD is not processing the traffic What is the problem?

A. The switches were not set up with a monitor session ID (hat matches the flow ID defined on the FTD

B. The FTD must be configured with an ERSPAN port, not a passive port.

C. The FTD must &e in routed mode to process ERSPAN traffic.

D. The switches do not have Layer 3 connectivity to the FTD device for GRE traffic transmission.

正解：C 解答を投票する

出題：8

An engineer has been tasked with using Cisco FMC to determine if files being sent through the network are malware.
Which two configuration tasks must be performed to achieve this file lookup? (Choose two.)

A. The Cisco FMC needs to include a file inspection policy for malware lookup.

B. The Cisco FMC needs to include a SSL decryption policy.

C. The Cisco FMC needs to connect with the FireAMP Cloud.

D. The Cisco FMC needs to connect to the Cisco AMP for Endpoints service.

E. The Cisco FMC needs to connect to the Cisco ThreatGrid service directly for sandboxing.

正解：A,B 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：9

A network administrator wants to configure a Cisco Secure Firewall Threat Defense instance managed by Cisco Secure Firewall Management Center to block traffic to known cryptomining networks. Which system settings must the administrator configure in Secure Firewall Management Center to meet the requirement?

A. Access Policy, Rules

B. Intrusion Policy, Security Intelligence

C. Access Policy, Security Intelligence

D. Malware Policy, Rules

正解：C 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：10

A security engineer must add a new policy to block UDP traffic to one server. The engineer adds a new object. Which action must the engineer take next to identify all the UDP ports?

A. Add the corresponding IP protocol number for UDP and TCP.

B. Add the transport number and specify the type and code.

C. Specify the transport protocol and leave the port number empty.

D. Define the transport protocol and the mandatory port range.

正解：C 解答を投票する

出題：11

Which two remediation options are available when Cisco FMC is integrated with Cisco ISE?
(Choose two.)

A. port shutdown

B. dynamic null route configured

C. quarantine

D. host shutdown

E. DHCP pool disablement

正解：A,C 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：12

An engineer is setting up a new Cisco Secure Firewall Threat Defense appliance to replace the current firewall. The company requests that inline sets be used and that when one interface in an inline set goes down, the second interface in the inline set goes down. What must the engineer configure to meet the deployment requirements?

A. propagate link state

B. inline tap mode

C. strict TCP enforcement

D. Snort fail open

正解：A 解答を投票する

出題：13

Which interface type allows packets to be dropped?

A. inline

B. ERSPAN

C. TAP

D. passive

正解：A 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：14

An engineer is working on a LAN switch and has noticed that its network connection to the mime Cisco IPS has gone down.
Upon troubleshooting it is determined that the switch is working as expected. What must have been implemented for this failure to occur?

A. Link-state propagation is enabled

B. The upstream router has a misconfigured routing protocol

C. The Cisco IPS is configured in detection mode

D. The Cisco IPS has been configured to be in fail-open mode

正解：A 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：15

An organization is setting up two new Cisco FTD devices to replace their current firewalls and cannot have any network downtime. During the setup process, the synchronization between the two devices is failing.
What action is needed to resolve this issue?

A. Confirm that both devices are running the same software version

B. Confirm that both devices are configured with the same types of interfaces

C. Confirm that both devices have the same port-channel numbering

D. Confirm that both devices have the same flash memory sizes

正解：D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：16

An engineer must configure a Cisco FMC dashboard in a multidomain deployment Which action must the engineer take to edit a report template from an ancestor domain?

A. Change the document attributes.

B. Assign themselves ownership of it

C. Add it as a separate widget.

D. Copy it to the current domain

正解：D 解答を投票する

出題：17

When a Cisco FTD device is configured in transparent firewall mode, on which two interface types can an IP address be configured? (Choose two.)

A. Diagnostic

B. Physical

C. EtherChannel

D. Subinterface

E. BVI

正解：A,E 解答を投票する

出題：18

Cisco Security Analytics and Logging SaaS licenses come with how many days of data retention by default?

A. 365

B. 90

C. 60

D. 120

正解：B 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：19

An engineer is configuring a second Cisco FMC as a standby device but is unable to register with the active unit.
What is causing this issue?

A. There is only 10 Mbps of bandwidth between the two devices.

B. The licensing purchased does not include high availability

C. The code versions running on the Cisco FMC devices are different

D. The primary FMC currently has devices connected to it.

正解：C 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

ページ: 1 / 21
トータル 397 問

300-710 の機能をすべて解除する

キャプチャ不要
365日無料更新サービス
希望する合格率を設定できる
時間の割り当てられる（時間：分）
300-710 に2つの練習用モード
サポートサービス対応

完全版を入手する

弊社のサイトにはあなたの試験合格を助けるために研究された効果的な知能問題集を提供しています。材料はすべてのユーザーによって称賛されています。弊社のサイトは、最短時間で多くの証明書を取得するのに役立つ学習プラットフォームになります。

掲示板

試験PMI-ACP-JPN トピック1 問題121 スレッド
試験CIS-Discovery トピック4 問題53 スレッド
試験CIS-Discovery-JPN トピック1 問題53 スレッド
試験MuleSoft-Integration-Architect-I トピック8 問題200 スレッド
試験Development-Lifecycle-and-Deployment-Architect-JPN トピック7 問題3 スレッド
試験MuleSoft-Integration-Architect-I トピック9 問題191 スレッド
試験Development-Lifecycle-and-Deployment-Architect-JPN トピック5 問題114 スレッド

弊社を連絡する

我々の働いている時間：( UTC+9 ) 9:00-24:00

月曜日から土曜日まで

サポート：現在連絡

我々は１２時間以内ですべてのお問い合わせを答えます。