ExamTopics Logo
Mail Us[email protected]
Menu
Cisco Discussions
exam questions

Exam 300-710 All Questions

View all questions & answers for the 300-710 exam
Go to Exam

Exam 300-710 topic 1 question 252 discussion

Actual exam question from Cisco's 300-710
Question #: 252
Topic #: 1
[All 300-710 Questions]

An engineer is configuring a Cisco FTD device to place on the Finance VLAN to provide additional protection for company financial data. The device must be deployed without requiring any changes on the end user workstations, which currently use DHCP to obtain an IP address. How must the engineer deploy the device to meet this requirement?

  • A. Deploy the device in transparent mode and enable the DHCP Server feature.
  • B. Deploy the device in routed mode and enable the DHCP Relay feature.
  • C. Deploy the device in transparent mode and allow DHCP traffic in the access control policies.
  • D. Deploy the device in routed mode and allow DHCP traffic in the access control policies.
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by artgen at Aug. 17, 2023, 12:28 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
d0980cc
3 weeks, 4 days ago
Selected Answer: C
C is most correct, but not entirely. The FTD in transparent mode will allow DHCP requests and responses to pass between the workstations and the DHCP server without interference, as long as no policies explicitly block UDP ports 67 and 68.
upvoted 1 times
...
c946f3e
7 months, 3 weeks ago
Selected Answer: C
For example, by using an access rule, you can allow DHCP traffic (instead of the unsupported DHCP relay feature) or multicast traffic such as that created by IP/TV. You can also establish routing protocol adjacencies through a transparent firewall; you can allow OSPF, RIP, EIGRP, or BGP traffic through based on an access rule. Likewise, protocols like HSRP or VRRP can pass through the FTD device. https://www.cisco.com/c/en/us/td/docs/security/firepower/670/configuration/guide/fpmc-config-guide-v67/transparent_or_routed_firewall_mode_for_firepower_threat_defense.html
upvoted 2 times
...
artgen
8 months, 2 weeks ago
Selected Answer: C
I would go for C since it will inspect the traffic within the same subnet, so being transparent is required.
upvoted 4 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago