Free Cisco 300-710 Exam Questions

Become Cisco Certified with updated 300-710 exam questions and correct answers

Page: 1 / 66

Total 330 Questions | Updated On: Mar 17, 2020

Add To Cart

Question 1

A security engineer must deploy a Cisco FTD appliance as a bump in the wire to detect intrusion events without disrupting the flow of network traffic. Which two features must be configured to accomplish the task? (Choose two.)

A : line set pair

B : ansparent mode

C : pemode

D : ive interfaces

E : idged mode

Answer: B,C

Question 2

An engineer configures an access control rule that deploys file policy configurations to security zones or tunnel zones, and it causes the device to restart. What is the reason for the restart?

A : urce or destination security zones in the access control rule matches the security zones that are associated with interfaces on the target devices.

B : source tunnel zone in the rule does not match a tunnel zone that is assigned to a tunnel rule in the destination policy.

C : urce or destination security zones in the source tunnel zone do not match the security zones that are associated with interfaces on the target devices.

D : source tunnel zone in the rule does not match a tunnel zone that is assigned to a tunnel rule in the source policy.

Answer: A

Question 3

An engineer must replace a Cisco Secure Firewall high-availability device due to a failure. When the replacement device arrives, the engineer must separate the high-availability pair from Cisco Secure Firewall Management Center Which action must the engineer take first to restore high availability?

A : Register the secondary device

B : Force a break between the devices.

C : Unregister the secondary device.

D : Configure NTP time synchronization.

Answer: C

Question 4

A network engineer must provide redundancy between two Cisco FTD devices. The redundancy configuration must include automatic configuration, translation, and connection updates. After the initial configuration of the two appliances, which two steps must be taken to proceed with the redundancy configuration? (Choose two.)

A : nfigure the virtual MAC address on the failover link.

B : able hellos on the inside interface.

C : nfigure the standby IP addresses.

D : ure the high availability license is enabled.

E : nfigure the failover link with stateful properties.

Answer: A,C

Question 5

A network engineer is planning on replacing an Active/Standby pair of physical Cisco Secure Firewall ASAs with a pair of Cisco Secure Firewall Threat Defense Virtual appliances. Which two virtual environments support the current High Availability configuration? (Choose two.)

A : ESXi

B : Azure

C : Openstack

D : KVM

E : AWS

Answer: A,D

Page: 1 / 66

Total 330 Questions | Updated On: Mar 17, 2020

Add To Cart