An organization has a Cisco FTD that

单选题 An organization has a Cisco FTD that uses bridge groups to pass traffic from the inside interfaces to the outside interfaces. They are unable to gather information about neighbouring Cisco devices or use multicast in their environment. What must be done to resolve this issue?

A、 Create a firewall rule to allow CDP traffic.

B、 Create a bridge group with the firewall interfaces.

C、 Change the firewall mode to transparent.

D、 Change the firewall mode to routed.

查看答案

下载APP答题

由4l***tx提供分享举报纠错

相关试题

单选题 What is a result of enabling Cisco FTD clustering?

A、For the dynamic routing feature, if the master unit fails, the newly elected master unit maintains all existing connections.

B、Integrated Routing and Bridging is supported on the master unit.

C、Site-to-site VPN functionality is limited to the master unit, and all VPN connections are dropped if the master unit fails.

D、All Firepower appliances can support Cisco FTD clustering.

查看答案

单选题 Which firewall design allows a firewall to forward traffic at layer 2 and layer 3 for the same subnet?

A、Cisco Firepower Threat Defense mode

B、transparent mode

C、routed mode

D、integrated routing and bridging

查看答案

单选题 What is the difference between inline and inline tap on Cisco Firepower?

A、Inline tap mode can send a copy of the traffic to another device.

B、Inline tap mode does full packet capture.

C、Inline mode cannot do SSL decryption.

D、Inline mode can drop malicious traffic.

查看答案

单选题 Within an organization's high availability environment where both firewalls are passing traffic, traffic must be segmented based on which department it is destined for. Each department is situated on a different LAN. What must be configured to meet these requirements?

A、span EtherChannel clustering

B、redundant interfaces

C、high availability active/standby firewalls

D、multi-instance firewalls

查看答案

单选题 A network security engineer must replace a faulty Cisco FTD device in a high availability pair. Which action must be taken while replacing the faulty unit?

A、Shut down the Cisco FMC before powering up the replacement unit.

B、Ensure that the faulty Cisco FTD device remains registered to the Cisco FMC.

C、Unregister the faulty Cisco FTD device from the Cisco FMC

D、Shut down the active Cisco FTD device before powering up the replacement unit.

查看答案

单选题 An organization is migrating their Cisco ASA devices running in multicontext mode to Cisco FTD devices. Which action must be taken to ensure that each context on the Cisco ASA is logically separated in the Cisco FTD devices?

A、Add a native instance to distribute traffic to each Cisco FTD context.

B、Add the Cisco FTD device to the Cisco ASA port channels.

C、Configure a container instance in the Cisco FTD for each context in the Cisco ASA.

D、Configure the Cisco FTD to use port channels spanning multiple networks.

查看答案

单选题 With Cisco Firepower Threat Defense software, which interface mode must be configured to passively receive traffic that passes through the appliance?

A、inline set

B、passive

C、routed

D、inline tap

查看答案

单选题 On the advanced tab under inline set properties, which allows interfaces to emulate a passive interface?

A、transparent inline mode

B、TAP mode

C、strict TCP enforcement

D、propagate link state

查看答案