
最新の300-710試験問題集でCisco試験にはトレーニングを提供しています
合格できるCisco Securing Networks with Cisco FirepowerのPDF問題集は最近更新された279問あります
Cisco 300-710試験は、約65〜75の質問で構成される90分間の試験です。この試験は英語と日本の言語で入手でき、ピアソンvueテストセンターで世界中で撮影できます。この試験では、Cisco Firpower NGIPSおよびNGFWソリューションの展開、管理、トラブルシューティングなどのトピックにおける個人の知識とスキルをテストします。
Cisco 300-710認定試験は、Cisco Firpower NGFWテクノロジーとの仕事の経験があり、知識とスキルを拡大したい専門家向けです。この認定試験に合格した候補者は、Cisco Firepowerテクノロジーを使用して、高度なセキュリティソリューションを設計、実装、管理できます。この認定は、ネットワークセキュリティエンジニア、ネットワーク管理者、およびネットワークセキュリティの専門知識を強化したいセキュリティアナリストに最適です。
試験は60~70問から成り、Cisco Firepowerデバイスの設定や管理、ネットワークセキュリティポリシーの実装と維持、セキュリティ脅威の分析と軽減など、多岐にわたるトピックに基づいています。受験者は、最低70%のスコアで試験に合格する必要があり、合格することで認定を受けることができます。
質問 # 35
How many report templates does the Cisco Firepower Management Center support?
- A. unlimited
- B. 0
- C. 1
- D. 2
正解:A
解説:
Section: Management and Troubleshooting
Explanation/Reference: https://www.cisco.com/c/en/us/td/docs/security/firepower/60/configuration/guide/fpmc-config-guide- v60/Working_with_Reports.html
質問 # 36
An engineer is configuring a second Cisco FMC as a standby device but is unable to register with the active unit. What is causing this issue?
- A. The primary FMC currently has devices connected to it.
- B. The licensing purchased does not include high availability
- C. The code versions running on the Cisco FMC devices are different
- D. There is only 10 Mbps of bandwidth between the two devices.
正解:C
解説:
https://www.cisco.com/c/en/us/td/docs/security/firepower/620/configuration/guide/fpmc-config-guide-v62/firepower_management_center_high_availability.html
質問 # 37
In which two places can thresholding settings be configured? (Choose two.)
- A. on each IPS rule
- B. per preprocessor, within the network analysis policy
- C. globally, within the network analysis policy
- D. on each access control rule
- E. globally, per intrusion policy
正解:A、E
質問 # 38
In a Cisco AMP for Networks deployment, which disposition is returned if the cloud cannot be reached?
- A. disconnected
- B. clean
- C. unknown
- D. unavailable
正解:D
質問 # 39
Which CLI command is used to generate firewall debug messages on a Cisco Firepower?
- A. system support firewall-engine-debug
- B. system support dump-table
- C. system support platform
- D. system support ssl-debug
正解:A
解説:
Reference:
https://www.cisco.com/c/en/us/support/docs/security/firepower-ngfw/212330-firepower- management-center-display-acc.html
質問 # 40
What is the benefit of selecting the trace option for packet capture?
- A. The option limits the number of packets that are captured.
- B. The option indicated whether the destination host responds through a different path.
- C. The option captures details of each packet.
- D. The option indicates whether the packet was dropped or successful.
正解:A
質問 # 41
Which command is run at the CLI when logged in to an FTD unit, to determine whether the unit is managed locally or by a remote FMC server?
- A. system generate-troubleshoot
- B. show running-config | include manager
- C. show managers
- D. show configuration session
正解:C
解説:
Reference:
https://www.cisco.com/c/en/us/td/docs/security/firepower/command_ref/ b_Command_Reference_for_Firepower_Threat_Defense/c_3.html
質問 # 42
An engineer must deploy a Cisco FTD device. Management wants to examine traffic without requiring network changes that will disrupt end users. Corporate security policy requires the separation of management traffic from data traffic and the use of SSH over Telnet for remote administration. How must the device be deployed to meet these requirements?
- A. in routed mode with a bridge virtual interface
- B. in routed mode with a diagnostic interface
- C. in transparent mode with a management Interface
- D. in transparent made with a data interface
正解:C
解説:
Explanation
To deploy a Cisco FTD device that meets the requirements of the question, the engineer must use transparent mode with a management interface. Transparent mode is a firewall configuration in which the FTD device acts as a "bump in the wire" or a "stealth firewall" and is not seen as a router hop to connected devices. In transparent mode, the FTD device can examine traffic without requiring network changes that will disrupt end users, such as changing IP addresses or routing configurations1. A management interface is a dedicated interface that is used for managing the FTD device and separating management traffic from data traffic. A management interface can be configured to allow SSH access for remote administration, which is more secure than Telnet2.
The other options are incorrect because:
Routed mode is a firewall configuration in which the FTD device acts as a router and performs address translation and routing for connected networks. Routed mode requires network changes that may disrupt end users, such as changing IP addresses or routing configurations1. A diagnostic interface is a special interface that is used for troubleshooting and capturing traffic on the FTD device. A diagnostic interface does not separate management traffic from data traffic or allow SSH access for remote administration.
Transparent mode with a data interface does not meet the requirement of separating management traffic from data traffic. A data interface is a regular interface that is used for passing and inspecting traffic on the FTD device. A data interface does not allow SSH access for remote administration2.
Routed mode with a bridge virtual interface (BVI) does not meet the requirement of examining traffic without requiring network changes that will disrupt end users. A BVI is a logical interface that acts as a container for one or more physical or logical interfaces that belong to the same layer 2 broadcast domain. A BVI allows the FTD device to route between different bridge groups on the same security module/engine. However, routed mode still requires network changes that may disrupt end users, such as changing IP addresses or routing configurations.
質問 # 43
An engineer is configuring URL filtering for a Cisco FTD device in Cisco FMC. Users must receive a warning when they access http:/'www.Dac'additstte.corn with the option of continuing to the website if they choose to.
No other websites should be blacked. Which two actions must the engineer lake to meet these requirements?
(Choose two.)
- A. On the HTTP Responses tab of the access control policy editor, sot the Interactive Block Response Page to system-provided.
- B. Configure an access control rule that matches an URL object for http://www.badaduitslte.com; and set the action to interactive Block.
- C. Configure an access control rule that matches the Adult URL category and se: the action to interactive Block.
- D. On the HTTP Responses tab of the access control policy editor, set the Block Response Page to Custom.
- E. Configure the default action for the access control policy to Interactive Block.
正解:A、B
解説:
Explanation
To configure URL filtering for a Cisco FTD device in Cisco FMC, and to meet the requirements of the question, the engineer must do the following:
On the HTTP Responses tab of the access control policy editor, set the Interactive Block Response Page to system-provided. This will enable the system to display a warning page to the users when they try to access a blocked URL, and give them the option to continue or cancel. The system-provided page is a default page that contains a generic message and a logo1.
Configure
an access control rule that matches an URL object for http://www.badadultsite.com; and set the action to Interactive Block. This will apply the interactive block action to the specific URL that is defined in the URL object.
The interactive block action will trigger the interactive block response page that was configured in the previous step1.
The other options are incorrect because:
On the HTTP Responses tab of the access control policy editor, setting the Block Response Page to Custom will not affect the interactive block action. The block response page is used when the action is set to Block, not Interactive Block1.
Configuring the default action for the access control policy to Interactive Block will apply the interactive block action to all URLs that are not matched by any access control rule. This will not meet the requirement of blocking no other websites1.
Configuring an access control rule that matches the Adult URL category and sets the action to Interactive Block will apply the interactive block action to all URLs that belong to the Adult category.
This
will not meet the requirement of blocking only http://www.badadultsite.com
1.
質問 # 44
What is the maximum SHA level of filtering that Threat Intelligence Director supports?
- A. SHA-512
- B. SHA-1024
- C. SHA-4096
- D. SHA-256
正解:D
解説:
Section: Integration
Explanation/Reference: https://www.cisco.com/c/en/us/td/docs/security/firepower/623/configuration/guide/fpmc-config- guide-v623/cisco_threat_intelligence_director__tid_.html
質問 # 45
After deploying a network-monitoring tool to manage and monitor networking devices in your organization, you realize that you need to manually upload an MIB for the Cisco FMC. In which folder should you upload the MIB file?
- A. /etc/sf/DCMIB.ALERT
- B. /etc/sf/DCEALERT.MIB
- C. system/etc/DCEALERT.MIB
- D. /sf/etc/DCEALERT.MIB
正解:B
質問 # 46
In which two places can thresholding settings be configured? (Choose two.)
- A. on each IPS rule
- B. per preprocessor, within the network analysis policy
- C. globally, within the network analysis policy
- D. on each access control rule
- E. globally, per intrusion policy
正解:A、E
解説:
Reference:
https://www.cisco.com/c/en/us/td/docs/security/firesight/541/firepower-module-user-guide/asa- firepower-module-user-guide-v541/Intrusion-Global-Threshold.pdf
質問 # 47
Which interface type allows packets to be dropped?
- A. passive
- B. TAP
- C. ERSPAN
- D. inline
正解:D
解説:
Reference:
https://www.cisco.com/c/en/us/support/docs/security/firepower-ngfw/200908-configuring-firepower-threat-defense-int.html
質問 # 48
With a recent summer time change, system logs are showing activity that occurred to be an hour behind real time Which action should be taken to resolve this issue?
- A. Configure the system clock settings to use NTP with Daylight Savings checked
- B. Manually adjust the time to the correct hour on all managed devices
- C. Manually adjust the time to the correct hour on the Cisco FMC.
- D. Configure the system clock settings to use NTP
正解:A
質問 # 49
What are two application layer preprocessors? (Choose two.)
- A. ICMP
- B. SSL
- C. CIFS
- D. DNP3
- E. IMAP
正解:B、E
質問 # 50
IT management is asking the network engineer to provide high-level summary statistics of the Cisco FTD appliance in the network. The business is approaching a peak season so the need to maintain business uptime is high. Which report type should be used to gather this information?
- A. Malware Report
- B. SNMP Report
- C. Risk Report
- D. Standard Report
正解:D
質問 # 51
An organization does not want to use the default Cisco Firepower block page when blocking HTTP traffic.
The organization wants to include information about its policies and procedures to help educate the users whenever a block occurs. Which two steps must be taken to meet these requirements? (Choose two.)
- A. Change the HTTP response in the access control policy to custom.
- B. Modify the system-provided block page result using Python.
- C. Create HTML code with the information for the policies and procedures.
- D. Write CSS code with the information for the policies and procedures.
- E. Edit the HTTP request handling in the access control policy to customized block.
正解:A、C
質問 # 52
An engineer is monitoring network traffic from their sales and product development departments, which are on two separate networks What must be configured in order to maintain data privacy for both departments?
- A. Use passive IDS ports for both departments
- B. Use 802 1Q mime set Trunk interfaces with VLANs to maintain logical traffic separation
- C. Use one pair of inline set in TAP mode for both departments
- D. Use a dedicated IPS inline set for each department to maintain traffic separation
正解:C
解説:
Reference:
https://www.cisco.com/c/en/us/td/docs/security/firepower/640/configuration/guide/fpmc-config-guide-v64/ inline_sets_and_passive_interfaces_for_firepower_threat_defense.html
質問 # 53
A security engineer is deploying a pair of primary and secondary Cisco FMC devices. The secondary must also receive updates from Cisco Talos. Which action achieves this goal?
- A. Force failover for the secondary Cisco FMC to synchronize the rule updates from the primary.
- B. Manually import rule updates onto the secondary Cisco FMC device.
- C. Configure the secondary Cisco FMC so that it receives updates from Cisco Talos.
- D. Configure the primary Cisco FMC so that the rules are updated.
正解:D
質問 # 54
A network engineer is configuring URL Filtering on Firepower Threat Defense. Which two port requirements on the Firepower Management Center must be validated to allow communication with the cloud service?
(Choose two.)
- A. outbound port TCP/8080
- B. inbound port TCP/80
- C. inbound port TCP/443
- D. outbound port TCP/443
- E. outbound port TCP/80
正解:D、E
解説:
Reference:
https://www.cisco.com/c/en/us/td/docs/security/firepower/60/configuration/guide/fpmc-config-guide-v60/Securit
質問 # 55
On the advanced tab under inline set properties, which allows interfaces to emulate a passive interface?
- A. TAP mode
- B. transparent inline mode
- C. propagate link state
- D. strict TCP enforcement
正解:C
質問 # 56
An engineer has been tasked with using Cisco FMC to determine if files being sent through the network are malware. Which two configuration tasks must be performed to achieve this file lookup? (Choose two).
- A. The Cisco FMC needs to connect with the FireAMP Cloud.
- B. The Cisco FMC needs to connect to the Cisco ThreatGrid service directly for sandboxing.
- C. The Cisco FMC needs to include a SSL decryption policy.
- D. The Cisco FMC needs to include a file inspection policy for malware lookup.
- E. The Cisco FMC needs to connect to the Cisco AMP for Endpoints service.
正解:D、E
質問 # 57
An engineer is attempting to add a new FTD device to their FMC behind a NAT device with a NAT ID of ACME001 and a password of Cisco388267669. Which command set must be used in order to accomplish this?
- A. configure manager add ACME001 <registration key> <FMC IP>
- B. configure manager add <FMC IP> ACME0O1 <registration key>
- C. configure manager add <FMC IP> registration key> ACME001
- D. configure manager add DONTRESOLVE <FMC IP> AMCE001 <registration key>
正解:C
解説:
Reference:
https://www.cisco.com/c/en/us/support/docs/security/firesight-management-center/118596-configure-firesight-00.html
質問 # 58
......
更新されたテストエンジン練習300-710問題集と練習試験で使おう:https://jp.fast2test.com/300-710-premium-file.html
問題集お試しセット300-710テストエンジン問題集トレーニングには279問あります:https://drive.google.com/open?id=1ELuILUkpPy5x-yXD82UVNdYvND8jOc-T