ExamTopics Logo
Mail Us[email protected]
Menu
Cisco Discussions
exam questions

Exam 300-710 All Questions

View all questions & answers for the 300-710 exam
Go to Exam

Exam 300-710 topic 1 question 225 discussion

Actual exam question from Cisco's 300-710
Question #: 225
Topic #: 1
[All 300-710 Questions]

An engineer must add DNS-specific rules to the Cisco FTD intrusion policy. The engineer wants to use the rules currently in the Cisco FTD Snort database that are not already enabled but does not want to enable more than are needed. Which action meets these requirements?

  • A. Change the rules using the Generate and Use Recommendations feature.
  • B. Change the rule state within the policy being used.
  • C. Change the dynamic state of the rule within the policy.
  • D. Change the base policy to Security over Connectivity.
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by krellkrypto at Aug. 2, 2023, 1:20 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Nian
1 month, 3 weeks ago
Selected Answer: A
You can review and accept the recommended rules instead of manually enabling large numbers of DNS rules.
upvoted 1 times
...
krellkrypto
1 year, 4 months ago
isnt this a?
upvoted 2 times
pr0fectus
1 year, 2 months ago
That's what ininitially picked as well. But remember recommendation is specific for the hosts present on the network.
upvoted 1 times
Kris92
9 months, 2 weeks ago
that is correct, but the question does not say if DNS is already present or not
upvoted 1 times
...
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel