Download Certifications-CCNP Security, Cisco Certified Specialist -Network Security Firepower.CertDumps.300-710.2020-09-20.1e.45q.vcex

Download Exam

File Info

Exam Certifications: CCNP Security, Cisco Certified Specialist - Network Security Firepower
Number 300-710
File Name Certifications-CCNP Security, Cisco Certified Specialist -Network Security Firepower.CertDumps.300-710.2020-09-20.1e.45q.vcex
Size 224 Kb
Posted September 20, 2020
Downloads 30

How to open VCEX & EXAM Files?

Files with VCEX & EXAM extensions can be opened by ProfExam Simulator.


With discount: 20%


Demo Questions

Question 1
On the advanced tab under inline set properties, which allows interfaces to emulate a passive interface?

  • A: transparent inline mode
  • B: TAP mode
  • C: strict TCP enforcement
  • D: propagate link state

Question 2
What are the minimum requirements to deploy a managed device inline?

  • A: inline interfaces, security zones, MTU, and mode
  • B: passive interface, MTU, and mode
  • C: inline interfaces, MTU, and mode
  • D: passive interface, security zone, MTU, and mode

Question 3
What is the difference between inline and inline tap on Cisco Firepower?

  • A: Inline tap mode can send a copy of the traffic to another device.
  • B: Inline tap mode does full packet capture.
  • C: Inline mode cannot do SSL decryption.
  • D: Inline mode can drop malicious traffic.

Question 4
With Cisco Firepower Threat Defense software, which interface mode must be configured to passively receive traffic that passes through the appliance?

  • A: inline set
  • B: passive
  • C: routed
  • D: inline tap

Question 5
Which protocol establishes network redundancy in a switched Firepower device deployment?

  • A: STP
  • B: HSRP
  • C: GLBP
  • D: VRRP

Question 6
Which two dynamic routing protocols are supported in Firepower Threat Defense without using FlexConfig? (Choose two.)

  • A: EIGRP
  • B: OSPF
  • C: static routing
  • D: IS-IS
  • E: BGP

Question 7
Which policy rule is included in the deployment of a local DMZ during the initial deployment of a Cisco NGFW through the Cisco FMC GUI?

  • A: a default DMZ policy for which only a user can change the IP addresses.
  • B: deny ip any
  • C: no policy rule is included
  • D: permit ip any

Question 8
What are two application layer preprocessors? (Choose two.)

  • A: CIFS
  • B: IMAP
  • C: SSL
  • D: DNP3
  • E: ICMP

Question 9
Which two OSPF routing features are configured in Cisco FMC and propagated to Cisco FTD? (Choose two.)

  • A: OSPFv2 with IPv6 capabilities
  • B: virtual links
  • C: SHA authentication to OSPF packets
  • D: area boundary router type 1 LSA filtering
  • E: MD5 authentication to OSPF packets

Question 10
What is the disadvantage of setting up a site-to-site VPN in a clustered-units environment?

  • A: VPN connections can be re-established only if the failed master unit recovers.
  • B: Smart License is required to maintain VPN connections simultaneously across all cluster units.
  • C: VPN connections must be re-established when a new master unit is elected.
  • D: Only established VPN connections are maintained when a new master unit is elected.


You can buy ProfExam with a 20% discount..

Get Now!


Use ProfExam Simulator to open VCEX and EXAM files
ProfExam Screen


Use VCE Exam Simulator to open VCE files