A network engineer implements a new Cisco Firepower device on the network to take advantage of its intrusion detection functionality. There is a requirement to analyze the traffic going across the device, alert on any malicious traffic, and appear as a bump in the wire How should this be implemented?

• A.Specify the BVl IP address as the default gateway for connected devices.
• B.Enable routing on the Cisco Firepower
• C.Add an IP address to the physical Cisco Firepower interfaces.
• D.Configure a bridge group in transparent mode.

Comment: *

Name: *

Email: *

Verification: *

Refer to the exhibit.

And engineer is analyzing the Attacks Risk Report and finds that there are over 300 instances of new operating systems being seen on the network How is the Firepower configuration updated to protect these new operating systems?

• A.Cisco Firepower automatically updates the policies.
• B.The administrator requests a Remediation Recommendation Report from Cisco Firepower
• C.Cisco Firepower gives recommendations to update the policies.
• D.The administrator manually updates the policies.

Comment: *

Name: *

Email: *

Verification: *

An administrator receives reports that users cannot access a cloud-hosted web server. The access control policy was recently updated with several new policy additions and URL filtering.
What must be done to troubleshoot the issue and restore access without sacrificing the organization's security posture?

• A.Verify the blocks using the packet capture tool and create a rule with the action monitor for the traffic.
• B.Create a new access control policy rule to allow ports 80 and 443 to the FQDN of the web server.
• C.Review the output in connection events to validate the block, and modify the policy to allow the traffic.
• D.Download a PCAP of the traffic to verify the blocks and use the FlexConfig to override the existing policy.

Comment: *

Name: *

Email: *

Verification: *

A company wants a solution to aggregate the capacity of two Cisco FTD devices to make the best use of resources such as bandwidth and connections per second. Which order of steps must be taken across the Cisco FTDs with Cisco FMC to meet this requirement?

• A.Add members to the Cisco FMC, configure Cisco FTD interfaces, create the cluster in Cisco FMC, and configure cluster members in Cisco FMC
• B.Add members to Cisco FMC, configure Cisco FTD interfaces in Cisco FMC, configure cluster members in Cisco FMC, create cluster in Cisco FMC, and configure cluster members in Cisco FMC
• C.Configure the Cisco FTD interfaces, add members to FMC, configure cluster members in FMC, and create cluster in Cisco FMC
• D.Configure the Cisco FTD interfaces and cluster members, add members to Cisco FMC, and create the cluster in Cisco FMC

Comment: *

Name: *

Email: *

Verification: *

An engineer is troubleshooting a file that is being blocked by a Cisco FTD device on the network.
The user is reporting that the file is not malicious. Which action does the engineer take to identify the file and validate whether or not it is malicious?

• A.Right click the connection event and send the file to AMP for Endpoints to see if the hash is malicious.
• B.Use the context explorer to find the file and download it to the local machine for investigation.
• C.Use FMC file analysis to look for the file and select Analyze to determine its disposition.
• D.Identify the file in the intrusion events and submit it to Threat Grid for analysis.

Comment: *

Name: *

Email: *

Verification: *