300-710 Free Practice Test

- (Exam Topic 1)
Which Cisco Firepower Threat Defense, which two interface settings are required when configuring a routed interface? (Choose two.)

1. A. Redundant Interface
2. B. EtherChannel
3. C. Speed
4. D. Media Type
5. E. Duplex

Correct Answer: CE
https://www.cisco.com/c/en/us/td/docs/security/firepower/610/fdm/fptd-fdm-config-guide-610/fptd-fdm- interfaces.html

- (Exam Topic 5)
A network engineer is logged into the Cisco AMP for Endpoints console and sees a malicious verdict for an identified SHA-256 hash. Which configuration is needed to mitigate this threat?

1. A. Add the hash to the simple custom deletion list.
2. B. Use regular expressions to block the malicious file.
3. C. Enable a personal firewall in the infected endpoint.
4. D. Add the hash from the infected endpoint to the network block list.

Correct Answer: A

- (Exam Topic 2)
A company has many Cisco FTD devices managed by a Cisco FMC. The security model requires that access control rule logs be collected for analysis. The security engineer is concerned that the Cisco FMC will not be able to process the volume of logging that will be generated. Which configuration addresses this concern?

1. A. Send Cisco FTD connection events and security events directly to SIEM system for storage and analysis.
2. B. Send Cisco FTD connection events and security events to a cluster of Cisco FMC devices for storage and analysis.
3. C. Send Cisco FTD connection events and security events to Cisco FMC and configure it to forward logs to SIEM for storage and analysis.
4. D. Send Cisco FTD connection events directly to a SIEM system and forward security events from Cisco FMC to the SIEM system for storage and analysis.

Correct Answer: C

- (Exam Topic 2)
Which two types of objects are reusable and supported by Cisco FMC? (Choose two.)

1. A. dynamic key mapping objects that help link HTTP and HTTPS GET requests to Layer 7 application protocols.
2. B. reputation-based objects that represent Security Intelligence feeds and lists, application filters based on category and reputation, and file lists
3. C. network-based objects that represent IP address and networks, port/protocols pairs, VLAN tags, security zones, and origin/destination country
4. D. network-based objects that represent FQDN mappings and networks, port/protocol pairs, VXLAN tags, security zones and origin/destination country
5. E. reputation-based objects, such as URL categories

Correct Answer: BC
Reference: https://www.cisco.com/c/en/us/td/docs/security/firepower/620/configuration/guide/fpmc-config- guide-v62/reusable_objects.html#ID-2243-00000414

- (Exam Topic 5)
An organization has seen a lot of traffic congestion on their links going out to the internet There is a Cisco Firepower device that processes all of the traffic going to the internet prior to leaving the enterprise. How is the congestion alleviated so that legitimate business traffic reaches the destination?

1. A. Create a flexconfig policy to use WCCP for application aware bandwidth limiting
2. B. Create a VPN policy so that direct tunnels are established to the business applications
3. C. Create a NAT policy so that the Cisco Firepower device does not have to translate as many addresses
4. D. Create a QoS policy rate-limiting high bandwidth applications

Correct Answer: D