300-710 Exam Dumps - Cisco CCNP Security Questions and Answers

Cisco ASA 5500 Series

Cisco FMC

Cisco AMP

Cisco Stealthwatch

Cisco ASR 7200 Series

to mix transport protocols when setting both source and destination port conditions in a rule

to represent protocols other than TCP, UDP, and ICMP

to represent all protocols in the same way

to add any protocol other than TCP or UDP for source port conditions in access control rules.

It supports anonymized retrieval of threat intelligence

It supports security intelligence filtering.

It disables direct connections to the public cloud.

It performs dynamic analysis

Enable Inspect Local Router Traffic

Enable Automatic Application Bypass

Configure Fastpath rules to bypass inspection

Add a Bypass Threshold policy for failures

LDAPS server certificate must be added to Secure Firewall Management Center realms.

Secure Firewall Management Center certificate must be added to the LDAPS server.

LDAPS server certificate must be added to Secure Firewall Threat Defense.

Secure Firewall Threat Defense certificate must be added to the LDAPS server.

Create an access control policy rule that allows ICMP traffic.

Configure a custom Snort signature to allow ICMP traffic after Inspection.

Modify the Snort rules to allow ICMP traffic.

Create an ICMP allow list and add the ICMP destination to remove it from the implicit deny list.

table

filter

title

results

intrusion and file events

Cisco AMP for Endpoints

Cisco AMP for Networks

file policies

active/active failover

transparent

routed

high availability clustering

The remote management port for communication between the Cisco FMC and the managed device changes to port 8443.

The managed device is deleted from the Cisco FMC.

The SSL-encrypted communication channel between the Cisco FMC and the managed device becomes plain-text communication channel.

The management connection between the Cisco FMC and the Cisco FTD is disabled.