D is a common way to do at FMC. C inherited policy may work. But the question is asking "locally significant internal network subnets at each location" i.e, 10.0.1.0/24 10.0.2.0/24 10.0.3.0/24 there are three subnets (Inside_net). By using inherited policy, it can include those subnets with a rule such as https outbound allowed. So C seems ok, but because of "only the locally significant network subnet" - It makes sense D more to me
B. Reputation-based objects that represent Security Intelligence feeds and lists, application filters based on category and reputation, and file lists are reusable objects supported by Cisco FMC.
C. Network-based objects that represent IP addresses and networks, port/protocol pairs, VLAN tags, security zones, and origin/destination country are also reusable objects supported by Cisco FMC.
A is not a valid type of reusable object in Cisco FMC.
D contains VXLAN tags, which are not mentioned as a supported type of object.
E is similar to option B but specifically mentions URL categories, which is not an exhaustive list of all types of reputation-based objects supported by Cisco FMC.
The two types of objects that are reusable and supported by Cisco FMC are:
B. Reputation-based objects that represent Security Intelligence feeds and lists, application filters based on category and reputation, and file lists.
C. Network-based objects that represent IP addresses and networks, port/protocol pairs, VLAN tags, security zones, and origin/destination country.
I believe B & C are correct - SI feeds/lists and basic network objects are two common use cases for objects. Answer "A" is dynamic so you probably wouldn't use a reusable object, same with answer "D". In E - you can store URLs in objects but not categories, I don't think.
https://www.cisco.com/c/en/us/td/docs/security/secure-firewall/management-center/device-config/730/management-center-device-config-73/objects-object-mgmt.html#ID-2243-0000045f
Right answer was provided.
https://www.cisco.com/c/en/us/td/docs/security/firepower/670/configuration/guide/fpmc-config-guide-v67/reusable_objects.html
Incorrect, security zones can be reused in device config and ACP. Custom SI feeds and list can also be used in ACP SI. Provided answer is correct.
upvoted 1 times
...
...
This section is not available anymore. Please use the main Exam Page.300-710 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
gwb
9 months, 3 weeks agoureis
1 year, 7 months agoJoe_Blue
1 year, 9 months agoMevijil
1 year, 11 months agoxziomal9
2 years, 5 months agoBobster02
3 years, 4 months agoBobster02
3 years, 5 months agoBobster02
3 years, 5 months agokakakayayaya
3 years, 5 months agokakakayayaya
3 years, 6 months agoessie007
3 years, 5 months ago