ExamTopics Logo
Mail Us[email protected]
Menu
Cisco Discussions
exam questions

Exam 350-701 All Questions

View all questions & answers for the 350-701 exam
Go to Exam

Exam 350-701 topic 1 question 219 discussion

Actual exam question from Cisco's 350-701
Question #: 219
Topic #: 1
[All 350-701 Questions]

An organization wants to use Cisco FTD or Cisco ASA devices. Specific URLs must be blocked from being accessed via the firewall, which requires that the administrator input the bad URL categories that the organization wants blocked into the access policy. Which solution should be used to meet this requirement?

  • A. Cisco FTD because it enables URL filtering and blocks malicious URLs by default, whereas Cisco ASA does not.
  • B. Cisco ASA because it enables URL filtering and blocks malicious URLs by default, whereas Cisco FTD does not.
  • C. Cisco ASA because it includes URL filtering in the access control policy capabilities, whereas Cisco FTD does not.
  • D. Cisco FTD because it includes URL filtering in the access control policy capabilities, whereas Cisco ASA does not.
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by john_thomas at Oct. 25, 2021, 6:28 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Pupu
Highly Voted 1 year, 2 months ago
Selected Answer: D
The answer is D. URL Filtering is not enabled by default on FTD. Adding the license enables the Enable URL Filtering option, which then is required to be enabled by the admin. https://www.cisco.com/c/en/us/td/docs/security/firepower/630/configuration/guide/fpmc-config-guide-v63/url_filtering.html#id_74537
upvoted 11 times
...
cisco_guy
Most Recent 4 months ago
Selected Answer: D
I'm going with D as well, but you can do URL filtering on the ASA, you need an HTTP inspection policy with regex to do it. Both firewalls support it.
upvoted 1 times
...
Jamesy
7 months, 3 weeks ago
Hi guys, the answer is A please read carefully. I hope I am not confusing anyone. Thanks
upvoted 2 times
...
john_thomas
1 year, 6 months ago
A. Cisco FTD because it enables URL filtering and blocks malicious URLs by default, whereas Cisco ASA does not.
upvoted 2 times
janzeleny
1 year, 5 months ago
The option for doing URL filtering and blocking malicious URLs is in FTD, but it's not doing it by default, you have to enable it and configure which URLs (categories) should be blocked. So the correct answer is D.
upvoted 14 times
...
lurker8000
1 year, 4 months ago
Agree with @janzeleny, correct answer is D, I noticed @john_thomas comments on a lot of the questions but normally gives wrong answers with no explanations. Be careful following his suggestions guys. Just a friendly PSA.
upvoted 17 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago