A network administrator is implementing an active/passive high availability Cisco FTD pair. When adding the high availability pair, the administrator cannot select the secondary peer. What is the cause?
A.
The second Cisco FTD is not the same model as the primary Cisco FTD.
B.
An high availability license must be added to the Cisco FMC before adding the high availability pair.
C.
The failover link must be defined on each Cisco FTD before adding the high availability pair.
D.
Both Cisco FTD devices are not at the same software version.
From this:
https://www.cisco.com/c/en/us/support/docs/security/firepower-management-center/212699-configure-ftd-high-availability-on-firep.html
....
Conditions
In order to create an HA between 2 FTD devices, these conditions must be met:
Same model
Same version- this applies to FXOS and to FTD - major (first number), minor (second number), and maintenance (third number) must be equal.
Same number of interfaces
Same type of interfaces
Both devices as part of the same group/domain in FMC.
Have identical Network Time Protocol (NTP) configuration.
Be fully deployed on the FMC without uncommitted changes.
Be in the same firewall mode: routed or transparent.
....
So both A & D are CORRECT
Why does Cisco do this? There are many questions that have two correct answers, or in some cases several correct answers. Who knows how they're splitting hairs on a question like this!
The hardware and software version needs to be the same before HA can be implemented, hardware is the first requirement. The failover link cannot be defined if the administrator cannot select the secondary peer so the answer is A.
Before of configure the failover link you must add the devices inside HA
The first step is check the model
https://www.cisco.com/c/en/us/support/docs/security/firepower-management-center/212699-configure-ftd-high-availability-on-firep.html
You do not select HA - link until you add HA Pair. In HA pair you select devices that will be Active/Passive. After you add devices as HA, then you configure what will be Failover and state link.
I think It's C as well.
A+D are required but the question said he can't even see the second appliance, so I believe it's the failover link:
"Configuring high availability requires two identical FTD devices connected to each other through a dedicated failover link"
https://www.cisco.com/c/en/us/td/docs/security/firepower/660/fdm/fptd-fdm-config-guide-660/fptd-fdm-ha.html
A. The second Cisco FTD is not the same model as the primary Cisco FTD.
-> A and D are requirements that have to be fulfilled, so it cannot be one of those
B. An high availability license must be added to the Cisco FMC before adding the high availability pair.
You dont need a HA license, only the FTD licenses for both
C. The failover link must be defined on each Cisco FTD before adding the high availability pair.
-> That leaves C as the only viable answer
D. Both Cisco FTD devices are not at the same software version.
-> See A
The trick here is : The administrator cannot select the secondary peer. You are selecting secondary peer before any Failover/state link, and if you cant see secondary peer, then it is A or D.
upvoted 1 times
...
...
This section is not available anymore. Please use the main Exam Page.300-710 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Vlad_Is_Love_ua
8 months, 3 weeks agod0980cc
3 weeks agoSegaMasterSystemAdmin
11 months agoCokamaniako
12 months agoInitial14
1 year agoBbb78
11 months, 1 week agoInitial14
1 year, 1 month agomatan24
1 year, 1 month agoBaumb
1 year, 2 months agoInitial14
1 year ago