Estas tarjetas aún no se han guardado — desaparecerán cuando salgas. Crea una cuenta gratuita para conservarlas y desbloquear todo lo de abajo.
What action must be taken to install a backup route within Cisco FTD using Cisco FMC?
Configure EIGRP routing on the FMC to ensure that dynamic routes are always updated.
Use a default route on the FMC instead of having multiple routes contending for priority.
Install the static backup route and modify the metric to be less than the primary route.
Create the backup route and use route tracking on both routes to a destination IP address in the network.
What action must be taken to install a backup route within Cisco FTD using Cisco FMC?
Configure EIGRP routing on the FMC to ensure that dynamic routes are always updated.
Use a default route on the FMC instead of having multiple routes contending for priority.
Install the static backup route and modify the metric to be less than the primary route.
Create the backup route and use route tracking on both routes to a destination IP address in the network.
Revisa tus tarjetas aquí, o sign up to study with spaced repetition.
Which statement about QoS policies is true?
You can activate only one QoS policy on a threat defense at any given time.
You can add multiple QoS rules within a single QoS policy.
You can define the QoS rule conditions based on application and URL.
All of these answers are correct.
Which statement about QoS policies is true?
You can activate only one QoS policy on a threat defense at any given time.
You can add multiple QoS rules within a single QoS policy.
You can define the QoS rule conditions based on application and URL.
All of these answers are correct.
Revisa tus tarjetas aquí, o sign up to study with spaced repetition.
Can Packet Capture and Packet Tracer be run in either the CLI of the device or the FMC's GUI?
False
True
Can Packet Capture and Packet Tracer be run in either the CLI of the device or the FMC's GUI?
False
True
Revisa tus tarjetas aquí, o sign up to study with spaced repetition.
Which firewall provides application visibility and control (AVC)?
Stateful firewall
Stateless firewall
Management Center
Next-generation firewall
Which firewall provides application visibility and control (AVC)?
Stateful firewall
Stateless firewall
Management Center
Next-generation firewall
Revisa tus tarjetas aquí, o sign up to study with spaced repetition.
What does 'Dynamic Analysis' analyze?
Requires a malware license
Analyzes the structural metadata and header of files and submits them in the form of a Spero signature to the malware analytics cloud
Submits a captured file to the Cisco malware analytics sandbox for sandbox analysis
None of the above
What does 'Dynamic Analysis' analyze?
Requires a malware license
Analyzes the structural metadata and header of files and submits them in the form of a Spero signature to the malware analytics cloud
Submits a captured file to the Cisco malware analytics sandbox for sandbox analysis
None of the above
Revisa tus tarjetas aquí, o sign up to study with spaced repetition.
Which of the following statements is true about a DNS policy?
A new DNS policy comes with two built-in rules: Global Do-Not-Block List for DNS and Global Block List for DNS.
All of these answers are correct.
A DNS policy needs to be invoked within an access control policy to activate it on a threat defense.
The default DNS policy is modifiable but not removable.
Which of the following statements is true about a DNS policy?
A new DNS policy comes with two built-in rules: Global Do-Not-Block List for DNS and Global Block List for DNS.
All of these answers are correct.
A DNS policy needs to be invoked within an access control policy to activate it on a threat defense.
The default DNS policy is modifiable but not removable.
Revisa tus tarjetas aquí, o sign up to study with spaced repetition.
Which policies can play a critical role in normalizing SCADA networking traffic?
Intrusion Policy
File & Malware Policy
Access Control Policy
Network Analysis Policy
Which policies can play a critical role in normalizing SCADA networking traffic?
Intrusion Policy
File & Malware Policy
Access Control Policy
Network Analysis Policy
Revisa tus tarjetas aquí, o sign up to study with spaced repetition.
What type of rule action allows an administrator to send a message to the user before blocking a request with a reset packet?
Block with Reset
Block
Interactive Block with Reset
Interactive Block
What type of rule action allows an administrator to send a message to the user before blocking a request with a reset packet?
Block with Reset
Block
Interactive Block with Reset
Interactive Block
Revisa tus tarjetas aquí, o sign up to study with spaced repetition.
What mode is the GigabitEthernet0/0 interface running based on the provided configuration?
Active mode
Passive mode
Routing mode
Transparent mode
What mode is the GigabitEthernet0/0 interface running based on the provided configuration?
Active mode
Passive mode
Routing mode
Transparent mode
Revisa tus tarjetas aquí, o sign up to study with spaced repetition.
Which two statements about bridge-group interfaces in Cisco FTD are true? (Choose two.)
Bridge groups are supported in both transparent and routed firewall modes
Bidirectional Forwarding Detection echo packets are allowed through the FTD when using bridge-group members
Each directly connected network must be on the same subnet
Bridge groups are supported only in transparent firewall mode
The BVI IP address must be in a separate subnet from the connected network
Which two statements about bridge-group interfaces in Cisco FTD are true? (Choose two.)
Bridge groups are supported in both transparent and routed firewall modes
Bidirectional Forwarding Detection echo packets are allowed through the FTD when using bridge-group members
Each directly connected network must be on the same subnet
Bridge groups are supported only in transparent firewall mode
The BVI IP address must be in a separate subnet from the connected network
Revisa tus tarjetas aquí, o sign up to study with spaced repetition.
Which group within Cisco does the Threat Response team use for threat analysis and research?
Cisco Deep Analytics
Cisco Network Response
OpenDNS Group
Cisco Talos
Which group within Cisco does the Threat Response team use for threat analysis and research?
Cisco Deep Analytics
Cisco Network Response
OpenDNS Group
Cisco Talos
Revisa tus tarjetas aquí, o sign up to study with spaced repetition.
Which of the following statements about URL database updates is true?
The URL Filtering database can be different in different Secure Firewall models, depending on their available resources.
The management center communicates with Cisco Cloud Services automatically every 30 minutes to check for new updates.
All of these answers are correct.
Secure Firewall can download the new URLs directly from the Cisco cloud.
Which of the following statements about URL database updates is true?
The URL Filtering database can be different in different Secure Firewall models, depending on their available resources.
The management center communicates with Cisco Cloud Services automatically every 30 minutes to check for new updates.
All of these answers are correct.
Secure Firewall can download the new URLs directly from the Cisco cloud.
Revisa tus tarjetas aquí, o sign up to study with spaced repetition.
Which of the following statements is false?
Backing up a security policy configuration on a threat defense is not necessary because the security policies are defined and stored on the management center.
None of these answers are correct.
When configured in Layer 3 mode, each data interface on a threat defense is required to be on a different network.
Changing the firewall mode does not affect the existing configurations on a threat defense.
Which of the following statements is false?
Backing up a security policy configuration on a threat defense is not necessary because the security policies are defined and stored on the management center.
None of these answers are correct.
When configured in Layer 3 mode, each data interface on a threat defense is required to be on a different network.
Changing the firewall mode does not affect the existing configurations on a threat defense.
Revisa tus tarjetas aquí, o sign up to study with spaced repetition.
Which CLI command clears the NAT counters and existing translations for troubleshooting?
clear nat counters
clear nat translations
reset nat
clear xlate
Which CLI command clears the NAT counters and existing translations for troubleshooting?
clear nat counters
clear nat translations
reset nat
clear xlate
Revisa tus tarjetas aquí, o sign up to study with spaced repetition.
Which feature enables a Secure Firewall to deliver higher throughput?
High availability
All of these answers are correct.
Clustering
Hardware bypass
Which feature enables a Secure Firewall to deliver higher throughput?
High availability
All of these answers are correct.
Clustering
Hardware bypass
Revisa tus tarjetas aquí, o sign up to study with spaced repetition.
Which report template field format is available in Cisco FMC?
box lever chart
arrow chart
bar chart
benchmark chart
Which report template field format is available in Cisco FMC?
box lever chart
arrow chart
bar chart
benchmark chart
Revisa tus tarjetas aquí, o sign up to study with spaced repetition.
Which license enables a threat defense to block the transfer of a file with a specific format?
Malware
File control
Threat
Base license
Which license enables a threat defense to block the transfer of a file with a specific format?
Malware
File control
Threat
Base license
Revisa tus tarjetas aquí, o sign up to study with spaced repetition.
Which statement about managing the firewall is correct?
The FDM management option requires additional hardware to host the image within your network.
CDO is a cloud-based management option that allows for managing policies across multiple Cisco security platforms.
The FMC is based on the SaaS model.
The FDM management option allows for the management of many firewalls from one location.
Which statement about managing the firewall is correct?
The FDM management option requires additional hardware to host the image within your network.
CDO is a cloud-based management option that allows for managing policies across multiple Cisco security platforms.
The FMC is based on the SaaS model.
The FDM management option allows for the management of many firewalls from one location.
Revisa tus tarjetas aquí, o sign up to study with spaced repetition.
When a Cisco FTD device is configured in transparent firewall mode, on which two interface types can an IP address be configured?
Physical
BVI
Loopback
Diagnostic
Virtual
When a Cisco FTD device is configured in transparent firewall mode, on which two interface types can an IP address be configured?
Physical
BVI
Loopback
Diagnostic
Virtual
Revisa tus tarjetas aquí, o sign up to study with spaced repetition.
Which two OSPF routing features are configured in Cisco FMC and propagated to Cisco FTD? (Choose two.)
virtual links
area boundary router type 1 LSA filtering
OSPFv2 with IPv6 capabilities
SHA authentication to OSPF packets
MD5 authentication to OSPF packets
Which two OSPF routing features are configured in Cisco FMC and propagated to Cisco FTD? (Choose two.)
virtual links
area boundary router type 1 LSA filtering
OSPFv2 with IPv6 capabilities
SHA authentication to OSPF packets
MD5 authentication to OSPF packets
Revisa tus tarjetas aquí, o sign up to study with spaced repetition.
What is the advantage of having Cisco Firepower devices send events to Cisco Threat response via the security services exchange portal?
Supports all devices that are running supported versions of Firepower.
All types of Firepower devices are supported.
An on-premises proxy server does not need to set up and maintained
Firepower devices do not need to be connected to the internet.
What is the advantage of having Cisco Firepower devices send events to Cisco Threat response via the security services exchange portal?
Supports all devices that are running supported versions of Firepower.
All types of Firepower devices are supported.
An on-premises proxy server does not need to set up and maintained
Firepower devices do not need to be connected to the internet.
Revisa tus tarjetas aquí, o sign up to study with spaced repetition.
What is the problem if DNS traffic is not being inspected by the Snort engine after modifying the access control policy?
The rule is configured with the wrong setting for the source port
The rule must define the source network for inspection as well as the port
The action of the rule is set to trust instead of allow.
The rule must specify the security zone that originates the traffic
What is the problem if DNS traffic is not being inspected by the Snort engine after modifying the access control policy?
The rule is configured with the wrong setting for the source port
The rule must define the source network for inspection as well as the port
The action of the rule is set to trust instead of allow.
The rule must specify the security zone that originates the traffic
Revisa tus tarjetas aquí, o sign up to study with spaced repetition.
What must be configured within Cisco AMP for Endpoints to verify if any systems are running a malware executable?
malware detection
file analysis
threat root cause
network scanning
What must be configured within Cisco AMP for Endpoints to verify if any systems are running a malware executable?
malware detection
file analysis
threat root cause
network scanning
Revisa tus tarjetas aquí, o sign up to study with spaced repetition.
Which is the correct command to view the custom access control rules via the CLI?
show running-config interface
show access-control list
show access-rules list
show access-list
Which is the correct command to view the custom access control rules via the CLI?
show running-config interface
show access-control list
show access-rules list
show access-list
Revisa tus tarjetas aquí, o sign up to study with spaced repetition.
Which of the following deployment allows a threat defense to share its physical resources to multiple logical firewalls?
Multi-context
All of these are correct
Multi-domain
Multi-instance
Which of the following deployment allows a threat defense to share its physical resources to multiple logical firewalls?
Multi-context
All of these are correct
Multi-domain
Multi-instance
Revisa tus tarjetas aquí, o sign up to study with spaced repetition.
What must be configured to enable a security engineer to access the Cisco FMC using a secured out-of-band network workstation with a static IP address?
Expert mode access
Remote access VPN
User mode access
Local access only
What must be configured to enable a security engineer to access the Cisco FMC using a secured out-of-band network workstation with a static IP address?
Expert mode access
Remote access VPN
User mode access
Local access only
Revisa tus tarjetas aquí, o sign up to study with spaced repetition.
How do I get to the Packet Capture screen on the FMC?
Devices-Device Management- select the device -select the 'more actions' drop-down to the right- Packet Capture
System-Devices- select the device - Packet Capture
Devices-Advanced Troubleshooting-Packet Capture
System-Health-Policy-Capture
How do I get to the Packet Capture screen on the FMC?
Devices-Device Management- select the device -select the 'more actions' drop-down to the right- Packet Capture
System-Devices- select the device - Packet Capture
Devices-Advanced Troubleshooting-Packet Capture
System-Health-Policy-Capture
Revisa tus tarjetas aquí, o sign up to study with spaced repetition.
Which options can be configured in the Platform Settings policy?
Packet Capture
SSH
SNMP
Auto Refresh Interval
HTTPS
Device Selection
HTTP
SCP
Which options can be configured in the Platform Settings policy?
Packet Capture
SSH
SNMP
Auto Refresh Interval
HTTPS
Device Selection
HTTP
SCP
Revisa tus tarjetas aquí, o sign up to study with spaced repetition.
Which of the following statements are true regarding licensing?
The 'block files' action does not require access to the cloud
To block a file based on its file type, only a threat license is required
The action of 'Malware Cloud Lookup' requires a threat license
All of the statements are true
Which of the following statements are true regarding licensing?
The 'block files' action does not require access to the cloud
To block a file based on its file type, only a threat license is required
The action of 'Malware Cloud Lookup' requires a threat license
All of the statements are true
Revisa tus tarjetas aquí, o sign up to study with spaced repetition.
What happens when a malware license is applied?
The system starts detecting file types by SHA-256 and not file magic numbers
None of the statements are true
The action of 'Block Malware' only requires a malware license
The action of 'Block files' requires a malware license
What happens when a malware license is applied?
The system starts detecting file types by SHA-256 and not file magic numbers
None of the statements are true
The action of 'Block Malware' only requires a malware license
The action of 'Block files' requires a malware license
Revisa tus tarjetas aquí, o sign up to study with spaced repetition.
What is the action set for the social media rule in the editing interface?
Block
Allow
Inspect
Trust
What is the action set for the social media rule in the editing interface?
Block
Allow
Inspect
Trust
Revisa tus tarjetas aquí, o sign up to study with spaced repetition.
What must be done to ensure social media traffic is inspected?
Modify the selected application within the rule.
Add the social network URLs to the block list.
Modify the rule action from trust to allow.
Change the intrusion policy to connectivity over security.
What must be done to ensure social media traffic is inspected?
Modify the selected application within the rule.
Add the social network URLs to the block list.
Modify the rule action from trust to allow.
Change the intrusion policy to connectivity over security.
Revisa tus tarjetas aquí, o sign up to study with spaced repetition.
What action must be taken to install a backup route within Cisco FTD using Cisco FMC?
Configure EIGRP routing on the FMC to ensure that dynamic routes are always updated.
Use a default route on the FMC instead of having multiple routes contending for priority.
Install the static backup route and modify the metric to be less than the primary route.
Create the backup route and use route tracking on both routes to a destination IP address in the network.
Which statement about QoS policies is true?
You can activate only one QoS policy on a threat defense at any given time.
You can add multiple QoS rules within a single QoS policy.
You can define the QoS rule conditions based on application and URL.
All of these answers are correct.
Can Packet Capture and Packet Tracer be run in either the CLI of the device or the FMC's GUI?
False
True
Which firewall provides application visibility and control (AVC)?
Stateful firewall
Stateless firewall
Management Center
Next-generation firewall
What does 'Dynamic Analysis' analyze?
Requires a malware license
Analyzes the structural metadata and header of files and submits them in the form of a Spero signature to the malware analytics cloud
Submits a captured file to the Cisco malware analytics sandbox for sandbox analysis
None of the above
Which of the following statements is true about a DNS policy?
A new DNS policy comes with two built-in rules: Global Do-Not-Block List for DNS and Global Block List for DNS.
All of these answers are correct.
A DNS policy needs to be invoked within an access control policy to activate it on a threat defense.
The default DNS policy is modifiable but not removable.
Which policies can play a critical role in normalizing SCADA networking traffic?
Intrusion Policy
File & Malware Policy
Access Control Policy
Network Analysis Policy
What type of rule action allows an administrator to send a message to the user before blocking a request with a reset packet?
Block with Reset
Block
Interactive Block with Reset
Interactive Block
What mode is the GigabitEthernet0/0 interface running based on the provided configuration?
Active mode
Passive mode
Routing mode
Transparent mode
Which two statements about bridge-group interfaces in Cisco FTD are true? (Choose two.)
Bridge groups are supported in both transparent and routed firewall modes
Bidirectional Forwarding Detection echo packets are allowed through the FTD when using bridge-group members
Each directly connected network must be on the same subnet
Bridge groups are supported only in transparent firewall mode
The BVI IP address must be in a separate subnet from the connected network
Which group within Cisco does the Threat Response team use for threat analysis and research?
Cisco Deep Analytics
Cisco Network Response
OpenDNS Group
Cisco Talos
Which of the following statements about URL database updates is true?
The URL Filtering database can be different in different Secure Firewall models, depending on their available resources.
The management center communicates with Cisco Cloud Services automatically every 30 minutes to check for new updates.
All of these answers are correct.
Secure Firewall can download the new URLs directly from the Cisco cloud.
Which of the following statements is false?
Backing up a security policy configuration on a threat defense is not necessary because the security policies are defined and stored on the management center.
None of these answers are correct.
When configured in Layer 3 mode, each data interface on a threat defense is required to be on a different network.
Changing the firewall mode does not affect the existing configurations on a threat defense.
Which CLI command clears the NAT counters and existing translations for troubleshooting?
clear nat counters
clear nat translations
reset nat
clear xlate
Which feature enables a Secure Firewall to deliver higher throughput?
High availability
All of these answers are correct.
Clustering
Hardware bypass
Which report template field format is available in Cisco FMC?
box lever chart
arrow chart
bar chart
benchmark chart
Which license enables a threat defense to block the transfer of a file with a specific format?
Malware
File control
Threat
Base license
Which statement about managing the firewall is correct?
The FDM management option requires additional hardware to host the image within your network.
CDO is a cloud-based management option that allows for managing policies across multiple Cisco security platforms.
The FMC is based on the SaaS model.
The FDM management option allows for the management of many firewalls from one location.
When a Cisco FTD device is configured in transparent firewall mode, on which two interface types can an IP address be configured?
Physical
BVI
Loopback
Diagnostic
Virtual
Which two OSPF routing features are configured in Cisco FMC and propagated to Cisco FTD? (Choose two.)
virtual links
area boundary router type 1 LSA filtering
OSPFv2 with IPv6 capabilities
SHA authentication to OSPF packets
MD5 authentication to OSPF packets
What is the advantage of having Cisco Firepower devices send events to Cisco Threat response via the security services exchange portal?
Supports all devices that are running supported versions of Firepower.
All types of Firepower devices are supported.
An on-premises proxy server does not need to set up and maintained
Firepower devices do not need to be connected to the internet.
What is the problem if DNS traffic is not being inspected by the Snort engine after modifying the access control policy?
The rule is configured with the wrong setting for the source port
The rule must define the source network for inspection as well as the port
The action of the rule is set to trust instead of allow.
The rule must specify the security zone that originates the traffic
What must be configured within Cisco AMP for Endpoints to verify if any systems are running a malware executable?
malware detection
file analysis
threat root cause
network scanning
Which is the correct command to view the custom access control rules via the CLI?
show running-config interface
show access-control list
show access-rules list
show access-list
Which of the following deployment allows a threat defense to share its physical resources to multiple logical firewalls?
Multi-context
All of these are correct
Multi-domain
Multi-instance
What must be configured to enable a security engineer to access the Cisco FMC using a secured out-of-band network workstation with a static IP address?
Expert mode access
Remote access VPN
User mode access
Local access only
How do I get to the Packet Capture screen on the FMC?
Devices-Device Management- select the device -select the 'more actions' drop-down to the right- Packet Capture
System-Devices- select the device - Packet Capture
Devices-Advanced Troubleshooting-Packet Capture
System-Health-Policy-Capture
Which options can be configured in the Platform Settings policy?
Packet Capture
SSH
SNMP
Auto Refresh Interval
HTTPS
Device Selection
HTTP
SCP
Which of the following statements are true regarding licensing?
The 'block files' action does not require access to the cloud
To block a file based on its file type, only a threat license is required
The action of 'Malware Cloud Lookup' requires a threat license
All of the statements are true
What happens when a malware license is applied?
The system starts detecting file types by SHA-256 and not file magic numbers
None of the statements are true
The action of 'Block Malware' only requires a malware license
The action of 'Block files' requires a malware license
What is the action set for the social media rule in the editing interface?
Block
Allow
Inspect
Trust
What must be done to ensure social media traffic is inspected?
Modify the selected application within the rule.
Add the social network URLs to the block list.
Modify the rule action from trust to allow.
Change the intrusion policy to connectivity over security.
Are you sure you want to delete 0 tarjeta(s)? Esto no se puede deshacer.
Selecciona las etiquetas que quieres quitar de 0 selected flashcard(s):
Cargando etiquetas...