Pass 300-710 SNCF in Just 3 Days – Stress-Free!
Get your 300-710 Securing Networks with Cisco Firepower certification with 100% pass guarantee. Pay only after passing!
Click here to secure your guaranteed certification now!
Have questions? Contact us directly on WhatsApp for quick support!
Question 391
An engineer is configuring Cisco Secure Firewall Threat Defense managed by a Secure Firewall Management Center appliance. The company wants remote
access VPN users to be reachable from the inside network. What must the engineer configure to meet the requirements?
-
-
- A. manual NAT exemption rule at the top of the NAT policy
- B. manual NAT exemption rule at the bottom of the NAT policy
- C. auto NAT exemption rule at the top of the NAT policy
- D. auto NAT exemption rule at the bottom of the NAT policy
-
Correct Answer: A
Question 392
An engineer is troubleshooting the upgrade of a Cisco Secure Firewall Threat Defense device on the Secure Firewall Management Center 7.0 GUI. The
engineer wants to collect the upgrade data and logs. Which two actions must the engineer take? (Choose two.)
-
-
- A. Access the Health Events page.
- B. View the system and troubleshooting details.
- C. Access the Health Monitor page.
- D. Select the Secure Firewall Management Center device.
- E. Select the Secure Firewall Threat Defense device properties.
-
Correct Answer: A, B
Question 393
An
engineer must configure a correlation policy in Cisco Secure Firewall Management Center to detect when an IP address from an internal network
communicates with a known malicious host. Connections made by the internal IP addresses must be tracked, and an external dynamic list must be used for the condition. Which type of event must the engineer configure on the correlation policy?
-
-
- A. connection tracker
- B. network discovery
- C. Intrusion Impact Alert
- D. malware
-
Correct Answer: A