ExamTopics Logo
Mail Us[email protected]
Menu
Cisco Discussions
exam questions

Exam 300-710 All Questions

View all questions & answers for the 300-710 exam
Go to Exam

Exam 300-710 topic 1 question 229 discussion

Actual exam question from Cisco's 300-710
Question #: 229
Topic #: 1
[All 300-710 Questions]

A security engineer must configure a Cisco FTD appliance to inspect traffic coming from the internet. The internet traffic will be mirrored from the Cisco Catalyst 9300 Switch. Which configuration accomplishes the task?

  • A. Set the firewall mode to routed.
  • B. Set interface configuration mode to passive.
  • C. Set the firewall mode to transparent.
  • D. Set interface configuration mode to none.
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by Ahmed1790 at July 23, 2023, 3:32 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
ricckku
7 months, 2 weeks ago
Selected Answer: B
B is correct
upvoted 1 times
...
Bubu3k
9 months, 3 weeks ago
Selected Answer: B
Passive interfaces monitor traffic flowing across a network using a switch SPAN (Switched Port Analyzer) or mirror port. The SPAN or mirror port allows for traffic to be copied from other ports on the switch. This function provides the system visibility within the network without being in the flow of network traffic. https://www.cisco.com/c/en/us/td/docs/security/firepower/640/fdm/fptd-fdm-config-guide-640/fptd-fdm-interfaces.html#concept_2818A48EA614408EA2915707E321D036
upvoted 1 times
...
mzajy
1 year ago
Selected Answer: B
key word in the question is "mirrored", which indicates that the switch is sending SPAN to the FW, so a passive interface is needed
upvoted 2 times
...
c946f3e
1 year, 1 month ago
B ERSPAN == Routed Mode == Multiple Switch Passive == Routed Mode == Single Switch When you configure the FTD in a passive deployment, the FTD cannot take certain actions such as blocking or shaping traffic. Passive interfaces receive all traffic unconditionally. and no traffic received on these interfaces is retransmitted. Encapsulated remote switched port analyzer (ERSPAN) interfaces allow you to monitor traffic from source ports distributed over multiple switches, and uses GRE to encapsulate the traffic. ERSPAN interfaces are only allowed when the FTD is in routed firewall mode.
upvoted 2 times
ricckku
7 months, 2 weeks ago
From where did you get that info? ERSPAN does not mean multiple switches but a remote device sending encapsulated remote SPAN, that’s why routed mode is needed.
upvoted 1 times
...
...
greeklover84
1 year, 1 month ago
Selected Answer: A
in another question it is confirmed that in order to monitor a port you need to jave a routed mode.
upvoted 2 times
...
Ahmed1790
1 year, 3 months ago
Why not routed interface?
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago