A user has a device in the network that is receiving too many connection requests from multiple machines.Which type of attack is the device undergoing?
Answer(s): D
An organization is receiving SPAM emails from a known malicious domain.What must be configured in order to prevent the session during the initial TCP communication?
A Cisco Firepower administrator needs to configure a rule to allow a new application that has never been seen on the network.Which two actions should be selected to allow the traffic to pass without inspection? (Choose two)
Answer(s): B,E
Each rule also has an action, which determines whether you monitor, trust, block, or allow matching traffic.Note: With action "trust", Firepower does not do any more inspection on the traffic. There will be no intrusion protection and also no file-policy on this traffic.
An engineer needs behavioral analysis to detect malicious activity on the hosts, and is configuring the organization's public cloud to send telemetry using the cloud provider's mechanisms to a security device.Which mechanism should the engineer configure to accomplish this goal?
Answer(s): C
Post your Comments and Discuss Cisco® 350-701 exam with other Community members:
David A commented on January 16, 2024 Good Colombia Anonymous upvote
Kim commented on May 25, 2023 I just purchased and downloaded my files. Everything looks good so far. UNITED STATES upvote
Our website is free, but we have to fight against bots and content theft. We're sorry for the inconvenience caused by these security measures. You can access the rest of the 350-701 content, but please register or login to continue.