لا تريد أن تفوت شيئا؟

نصائح اجتياز امتحان الشهادة

آخر أخبار الامتحانات ومعلومات الخصم

برعاية وحديثة من قبل خبرائنا

نعم، أرسل لي النشرة الإخبارية

خذ اختبارات أخرى عبر الإنترنت

السؤال #1
An organization has a Cisco FTD that uses bridge groups to pass traffic from the inside interfaces to the outside interfaces. They are unable to gather information about neighboring Cisco devices or use multicast in their environment. What must be done to resolve this issue?
A. reate a firewall rule to allow CDP traffic
B. reate a bridge group with the firewall interfaces
C. hange the firewall mode to transparent
D. hange the firewall mode to routed
عرض الإجابة
اجابة صحيحة: BE
السؤال #2
When an engineer captures traffic on a Cisco FTD to troubleshoot a connectivity problem, they receive a large amount of output data in the GUI tool. The engineer found that viewing the captures this way is time- consuming and difficult to sort and filter. Which file type must the engineer export the data in so that it can be reviewed using a tool built for this type of analysis?
A. CAP
B. PFIX
C. etFlow v5
D. etFlow v
عرض الإجابة
اجابة صحيحة: D
السؤال #3
Network users are experiencing intermittent issues with internet access. An engineer identified that the issue is being caused by NAT exhaustion. How must the engineer change the dynamic NAT configuration to provide internet access for more users without running out of resources?
A. dd an identity NAT rule to handle the overflow of users
B. onvert the dynamic auto NAT rule to dynamic manual NAT
C. onfigure fallthrough to interface PAT on the Advanced tab
D. efine an additional static NAT for the network object in use
عرض الإجابة
اجابة صحيحة: D
السؤال #4
A company has many Cisco FTD devices managed by a Cisco FMC. The security model requires that access control rule logs be collected for analysis. The security engineer is concerned that the Cisco FMC will not be able to process the volume of logging that will be generated. Which configuration addresses this concern?
A. end Cisco FTD connection events directly to a SIEM system and forward security events from Cisco FMC to the SIEM system for storage and analysis
B. end Cisco FTD connection events and security events directly to SIEM system for storage and analysis
C. end Cisco FTD connection events and security events to a cluster of Cisco FMC devices for storage and analysis
D. end Cisco FTD connection events and security events to Cisco FMC and configure it to forward logs to SIEM for storage and analysis
عرض الإجابة
اجابة صحيحة: A
السؤال #5
An engineer is troubleshooting connectivity to the DNS servers from hosts behind a new Cisco FTD device. The hosts cannot send DNS queries to servers in the DMZ. Which action should the engineer take to troubleshoot this issue using the real DNS packets?
A. se the show blocks command in the Threat Defense CLI tool and create a policy to allow the blocked traffic
B. se the packet tracer tool to determine at which hop the packet is being dropped
C. se the packet capture tool to check where the traffic is being blocked and adjust the access control or intrusion policy as needed
D. se the Connection Events dashboard to check the block reason and adjust the inspection policy as needed
عرض الإجابة
اجابة صحيحة: C
السؤال #6
A security engineer must configure policies for a recently deployed Cisco FTD. The security policy for the company dictates that when five or more connections from external sources are initiated within 2 minutes, there is cause for concern. Which type of policy must be configured in Cisco FMC to generate an alert when this condition is triggered?
A. pplication detector
B. ntrusion
C. orrelation
D. ccess contro
عرض الإجابة
اجابة صحيحة: C
السؤال #7
A network administrator is configuring a site-to-site IPsec VPN to a router sitting behind a Cisco FTD. The administrator has configured an access policy to allow traffic to this device on UDP 500,4500, and ESP. VPN traffic is not working. Which action resolves this issue?
A. hange the access policy to allow all ports
B. odify the NAT policy to use the interface PAT
C. et the allow action in the access policy to trust
D. nable IPsec inspection on the access policy
عرض الإجابة
اجابة صحيحة: A
السؤال #8
A network administrator must create an EtherChannel interface on a new Cisco Firepower 9300 appliance registered with an FMC for high availability. Where must the administrator create the EtherChannel interface?
A. MC CLI
B. MC GUI
C. XOS CLI
D. TD CL
عرض الإجابة
اجابة صحيحة: A
السؤال #9
An organization is migrating their Cisco ASA devices running in multicontext mode to Cisco FTD devices. Which action must be taken to ensure that each context on the ASA is logically separated in the FTD devices?
A. onfigure the FTD to use port channels spanning multiple networks
B. onfigure a container instance in the FTD for each context in the ASA
C. dd the FTD device to the ASA port channels
D. dd a native instance to distribute traffic to each FTD context
عرض الإجابة
اجابة صحيحة: C
السؤال #10
What is a limitation to consider when running a dynamic routing protocol on a Cisco FTD device in IRB mode?
A. nly nonbridge interfaces are supported
B. nly distance vector routing protocols are supported
C. nly EtherChannel interfaces are supported
D. nly link-state routing protocols are supporte
عرض الإجابة
اجابة صحيحة: BE
السؤال #11
An engineer must deploy a Cisco FTD device. Management wants to examine traffic without requiring network changes that will disrupt end users. Corporate security policy requires the separation of management traffic from data traffic and the use of SSH over Telnet for remote administration. How must the device be deployed to meet these requirements?
A. n transparent mode with a management interface
B. n routed mode with a diagnostic interface
C. n transparent mode with a data interface
D. n routed mode with a bridge virtual interfac
عرض الإجابة
اجابة صحيحة: D
السؤال #12
When a Cisco FTD device is configured in transparent firewall mode, on which two interface types can an IP address be configured?
A. ubinterface
B. VI
C. hysical
D. therChannel
E. iagnosti
عرض الإجابة
اجابة صحيحة: C
السؤال #13
A Cisco FTD has two physical interfaces assigned to a BVI. Each interface is connected to a different VLAN on the same switch. Which firewall mode is the Cisco FTD set up to support?
A. outed
B. ctive/active failover
C. ransparent
D. igh availability clusterin
عرض الإجابة
اجابة صحيحة: B
السؤال #14
A network administrator notices that SI events are not being updated. The Cisco FTD device is unable to load all of the SI event entries and traffic is not being blocked as expected. What must be done to correct this issue?
A. eplace the affected devices with devices that provide more memory
B. anually update the SI event entries to that the appropriate traffic is blocked
C. estart the affected devices in order to reset the configurations
D. edeploy configurations to affected devices so that additional memory is allocated to the SI module
عرض الإجابة
اجابة صحيحة: D
السؤال #15
The administrator notices that there is malware present with an exe extension and needs to verify if any of the systems on the network are running the executable file. What must be configured within Cisco AMP for Endpoints to show this data?
A. ulnerable software
B. revalence
C. hreat root cause
D. ile analysi
عرض الإجابة
اجابة صحيحة: A
السؤال #16
An engineer is configuring URL filtering for a Cisco FTD device in Cisco MC. Users must receive a warning when they access with the option of continuing to the website if they choose to. No other websites should be blocked. Which two actions must the engineer take to meet these requirements?
A. n the HTTP Responses tab of the access control policy editor, set the Block Response Page to Custom
B. n the HTTP Responses tab of the access control policy editor, set the Interactive Block Response Page to System-provided
C. onfigure an access control rule that matches the Adult URL category and set the action to Interactive Block
D. onfigure the default action for the access control policy to Interactive Block
E. onfigure an access control rule that matches an URL object for and set the action to Interactive Block
عرض الإجابة
اجابة صحيحة: C
السؤال #17
An administrator must use Cisco FMC to install a backup route within the Cisco FTD to route traffic in case of a routing failure with the primary route. Which action accomplishes this task?
A. nstall the static backup route and modify the metric to be less than the primary route
B. reate the backup route and use route tracking on both routes to a destination IP address in the network
C. se a default route on the FMC instead of having multiple routes contending for priority
D. onfigure EIGRP routing on the FMC to ensure that dynamic routes are always updated
عرض الإجابة
اجابة صحيحة: B
السؤال #18
An analyst is investigating a potentially compromised endpoint within the network and pulls a host report for the endpoint in question to collect metrics and documentation. What information should be taken from this report for the investigation?
A. hreat detections over time and application protocols transferring malware
B. umber of attacked machines, sources of the attack, and traffic patterns
C. lient applications by user, web applications, and user connections
D. ntrusion events, host connections, and user session
عرض الإجابة
اجابة صحيحة: B
السؤال #19
An engineer defines a new rule while configuring an Access Control Policy. After deploying the policy, the rule is not working as expected and the hit counters associated with the rule are showing zero. What is causing this error?
A. ogging is not enabled for the rule
B. he wrong source interface for Snort was selected in the rule
C. n incorrect application signature was used in the rule
D. he rule was not enabled after being created
عرض الإجابة
اجابة صحيحة: B
السؤال #20
A network security engineer must export packet captures from the Cisco FMC web browser while troubleshooting an issue. When navigating to the address https:///capture/CAPI/pcap/test.pcap, an error 403: Forbidden is given instead of the PCAP file. Which action must the engineer take to resolve this issue?
A. isable the HTTPS server and use HTTP instead
B. nable the HTTPS server for the device platform policy
C. isable the proxy setting on the browser
D. se the Cisco FTD IP address as the proxy server setting on the browser
عرض الإجابة
اجابة صحيحة: A

عرض الإجابات بعد التقديم

يرجى إرسال البريد الإلكتروني الخاص بك والواتس اب للحصول على إجابات الأسئلة.

ملحوظة: يرجى التأكد من صلاحية معرف البريد الإلكتروني وWhatsApp حتى تتمكن من الحصول على نتائج الاختبار الصحيحة.

بريد إلكتروني:
رقم الواتس اب/الهاتف: