NEW QUESTION 1
In a Cisco AMP for Networks deployment, which disposition is returned if the cloud cannot be reached?

• A. unavailable
• B. unknown
• C. clean
• D. disconnected

Answer: A

NEW QUESTION 2
What is the result of specifying of QoS rule that has a rate limit that is greater than the maximum throughput of an interface?

• A. The rate-limiting rule is disabled.
• B. Matching traffic is not rate limited.
• C. The system rate-limits all traffic.
• D. The system repeatedly generates warnings.

Answer: B

NEW QUESTION 3
With Cisco Firepower Threat Defense software, which interface mode must be configured to passively receive traffic that passes through the appliance?

• A. inline set
• B. passive
• C. routed
• D. inline tap

Answer: B

NEW QUESTION 4
What is the benefit of selecting the trace option for packet capture?

• A. The option indicates whether the packet was dropped or successful.
• B. The option indicated whether the destination host responds through a different path.
• C. The option limits the number of packets that are captured.
• D. The option captures details of each packet.

Answer: C

NEW QUESTION 5
What is the maximum SHA level of filtering that Threat Intelligence Director supports?

• A. SHA-1024
• B. SHA-4096
• C. SHA-512
• D. SHA-256

Answer: D

NEW QUESTION 6
Which two remediation options are available when Cisco FMC is integrated with Cisco ISE? (Choose two.)

• A. dynamic null route configured
• B. DHCP pool disablement
• C. quarantine
• D. port shutdown
• E. host shutdown

Answer: CD

NEW QUESTION 7
Which two conditions are necessary for high availability to function between two Cisco FTD devices? (Choose two.)

• A. The units must be the same version
• B. Both devices can be part of a different group that must be in the same domain when configured within the FMC.
• C. The units must be different models if they are part of the same series.
• D. The units must be configured only for firewall routed mode.
• E. The units must be the same model.

Answer: AE

NEW QUESTION 8
Which group within Cisco does the Threat Response team use for threat analysis and research?

• A. Cisco Deep Analytics
• B. OpenDNS Group
• C. Cisco Network Response
• D. Cisco Talos

Answer: D

NEW QUESTION 9
What is a behavior of a Cisco FMC database purge?

• A. User login and history data are removed from the database if the User Activity check box is selected.
• B. Data can be recovered from the device.
• C. The appropriate process is restarted.
• D. The specified data is removed from Cisco FMC and kept for two weeks.

Answer: C

NEW QUESTION 10
What is the maximum bit size that Cisco FMC supports for HTTPS certificates?

• A. 1024
• B. 8192
• C. 4096
• D. 2048

Answer: D

NEW QUESTION 11
Which connector is used to integrate Cisco ISE with Cisco FMC for Rapid Threat Containment?

• A. pxGrid
• B. FTD RTC
• C. FMC RTC
• D. ISEGrid

Answer: A

NEW QUESTION 12
What is the difference between inline and inline tap on Cisco Firepower?

• A. Inline tap mode can send a copy of the traffic to another device.
• B. Inline tap mode does full packet capture.
• C. Inline mode cannot do SSL decryption.
• D. Inline mode can drop malicious traffic.

Answer: D

NEW QUESTION 13
Which limitation applies to Cisco Firepower Management Center dashboards in a multidomain environment?

• A. Child domains can view but not edit dashboards that originate from an ancestor domain.
• B. Child domains have access to only a limited set of widgets from ancestor domains.
• C. Only the administrator of the top ancestor domain can view dashboards.
• D. Child domains cannot view dashboards that originate from an ancestor domain.

Answer: D

NEW QUESTION 14
When do you need the file-size command option during troubleshooting with packet capture?

• A. when capture packets are less than 16 MB
• B. when capture packets are restricted from the secondary memory
• C. when capture packets exceed 10 GB
• D. when capture packets exceed 32 MB

Answer: D

NEW QUESTION 15
Which interface type allows packets to be dropped?

• A. passive
• B. inline
• C. ERSPAN
• D. TAP

Answer: B

NEW QUESTION 16
Which two dynamic routing protocols are supported in Firepower Threat Defense without using FlexConfig? (Choose two.)

• A. EIGRP
• B. OSPF
• C. static routing
• D. IS-IS
• E. BGP

Answer: CE

NEW QUESTION 17
Which action should be taken after editing an object that is used inside an access control policy?

• A. Delete the existing object in use.
• B. Refresh the Cisco FMC GUI for the access control policy.
• C. Redeploy the updated configuration.
• D. Create another rule using a different object name.

Answer: C

NEW QUESTION 18
Which command is typed at the CLI on the primary Cisco FTD unit to temporarily stop running high-availability?

• A. configure high-availability resume
• B. configure high-availability disable
• C. system support network-options
• D. configure high-availability suspend

Answer: B

NEW QUESTION 19
In which two places can thresholding settings be configured? (Choose two.)

• A. on each IPS rule
• B. globally, within the network analysis policy
• C. globally, per intrusion policy
• D. on each access control rule
• E. per preprocessor, within the network analysis policy

Answer: AC

NEW QUESTION 20
Which Firepower feature allows users to configure bridges in routed mode and enables devices to perform Layer 2 switching between interfaces?

• A. FlexConfig
• B. BDI
• C. SGT
• D. IRB

Answer: D

NEW QUESTION 21
Which two OSPF routing features are configured in Cisco FMC and propagated to Cisco FTD? (Choose two.)

• A. OSPFv2 with IPv6 capabilities
• B. virtual links
• C. SHA authentication to OSPF packets
• D. area boundary router type 1 LSA filtering
• E. MD5 authentication to OSPF packets

Answer: BD

NEW QUESTION 22
......