Summer Certification Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code = getmirror

Home
Cisco
CCNP Security
300-710
Securing Networks with Cisco Firepower (300-710 SNCF) Questions and Answers

Pass the Cisco CCNP Security 300-710 Questions and answers with ExamsMirror

Practice at least 50% of the questions to maximize your chances of passing.

Exam 300-710 Premium Access

View all detail and faqs for the 300-710 exam

Go to Exam

737 Students Passed

85% Average Score

91% Same Questions

Viewing page 5 out of 12 pages

Viewing questions 41-50 out of questions

Questions # 41:

An engineer is attempting to create a new dashboard within the Cisco FMC to have a single view with widgets from many of the other dashboards. The goal is to have a mixture of threat and security related widgets along with Cisco Firepower device health information. Which two widgets must be configured to provide this information? (Choose two).

Options:

Intrusion Events

Correlation Information

Appliance Status

Current Sessions

Network Compliance

Answer

A, E

Questions # 42:

An administrator configures a Cisco Secure Firewall Threat Defense device in transparent mode. To configure the BVI (Bridge Virtual Interface), the administrator must:

Add a bridge-group interface

Configure a bridge-group ID

Configure the bridge-group interface description

Add bridge-group member interfaces

How must the engineer perform these actions?

Options:

Configure a name for the bridge-group interface

Set a security zone for the bridge-group interface

Set the bridge-group interface mode to transparent

Configure an IP address for the bridge-group interface

Answer

Questions # 43:

Which component simplifies incident investigation with Cisco Threat Response?

Options:

Cisco AMP client

local CVE database

Cisco Secure Firewall appliance

browser plug-in

Answer

Explanation

Cisco Threat Response (CTR) is a security solution that helps simplify incident investigation and threat hunting. One of its components that significantly simplifies the investigation process is the browser plug-in. The browser plug-in integrates with CTR to provide contextual information directly within the browser, allowing security analysts to quickly view threat details, pivot to related information, and take appropriate actions without switching between multiple tools.

Features of the browser plug-in:

Provides real-time threat intelligence and context from various Cisco security products.

Allows security analysts to investigate incidents directly from web-based consoles.

Enhances efficiency by streamlining the workflow and reducing the time needed to gather and correlate information.

[References:Cisco Threat Response Documentation, Browser Plug-in Section., , ]

Questions # 44:

Question # 44

Refer to the exhibit. An engineer must configure a connection on a Cisco ASA Firewall with a Cisco Secure Firewall Services Module to ensure that the secondary interface takes over all the functions of the primary interface if the primary interface fails. Drag and drop the code snippets from the bottom onto the boxes in the CLI commands to configure the failover. Not all options are used.

Question # 44

Options:

Answer

Answer:

Explanation

A screenshot of a computer AI-generated content may be incorrect.

Questions # 45:

A network administrator is seeing an unknown verdict for a file detected by Cisco FTD. Which malware policy configuration option must be selected in order to further analyse the file in the Talos cloud?

Options:

Spero analysis

Malware analysis

Dynamic analysis

Sandbox analysis

Answer

Questions # 46:

Which firewall design will allow It to forward traffic at layers 2 and 3 for the same subnet?

Options:

Cisco Firepower Threat Defense mode

routed mode

Integrated routing and bridging

transparent mode

Answer

Explanation

Transparent mode is a firewall configuration in which the firewall acts as a “bump in the wire” or a “stealth firewall” and is not seen as a router hop to connected devices. In transparent mode, the firewall can forward traffic at both layer 2 and layer 3 for the same subnet, as it does not perform any address translation or routing. The firewall inspects the traffic and applies security policies based on the source and destination IP addresses, ports, and protocols. Transparent mode is useful when you want to deploy a firewall without changing the existing network topology or addressing scheme1.

Questions # 47:

Which two remediation options are available when Cisco FMC is integrated with Cisco ISE? (Choose two.)

Options:

dynamic null route configured

DHCP pool disablement

quarantine

port shutdown

host shutdown

Answer

C, D

Explanation

[Reference: https://www.cisco.com/c/en/us/support/docs/security/identity-services-engine/210524-configure- firepower-6-1-pxgrid-remediati.html, ]

Questions # 48:

Which two features of Cisco AMP for Endpoints allow for an uploaded file to be blocked? (Choose two.)

Options:

application blocking

simple custom detection

file repository

exclusions

application whitelisting

Answer

A, B

Questions # 49:

Which action should you take when Cisco Threat Response notifies you that AMP has identified a file as malware?

Options:

Add the malicious file to the block list.

Send a snapshot to Cisco for technical support.

Forward the result of the investigation to an external threat-analysis engine.

Wait for Cisco Threat Response to automatically block the malware.

Answer

Questions # 50:

What is the maximum SHA level of filtering that Threat Intelligence Director supports?

Options:

SHA-1024

SHA-4096

SHA-512

SHA-256

Answer

Explanation

[Reference: https://www.cisco.com/c/en/us/td/docs/security/firepower/623/configuration/guide/fpmc-config-guide-v623/cisco_threat_intelligence_directortid_.html, ]

Viewing page 5 out of 12 pages

Viewing questions 41-50 out of questions