Cisco®
CompTIA
Checkpoint
ISC
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
ISC2
Splunk®
Scrum
All Vendors
  2. Home
  3. Exams
  4. Cisco®
  5. 350-701

Free 350-701 Exam Braindumps (page: 71)

Page 70 of 153
PDF with 703 Questions

Refer to the exhibit.



An administrator is adding a new Cisco FTD device to their network and wants to manage it with Cisco FMC.
The Cisco FTD is not behind a NAT device.
Which command is needed to enable this on the Cisco FTD?

  1. configure manager add DONTRESOLVE kregistration key>
  2. configure manager add <FMC IP address> <registration key> 16
  3. configure manager add DONTRESOLVE <registration key> FTD123
  4. configure manager add <FMC IP address> <registration key>

Answer(s): D

Explanation:

To let FMC manages FTD, first we need to add manager from the FTD and assign a register key of your choice. The command configure manager add 1.1.1.2 the_registration_key_you_want, where 1.1.1.2 is the IP
address of the FMC, you need to use the same registration key in FMC when adding this FTD as a managed device.


Reference:

https://cyruslab.net/2019/09/03/ciscocisco-firepower-lab-setup/



A switch with Dynamic ARP Inspection enabled has received a spoofed ARP response on a trusted interface.
How does the switch behave in this situation?

  1. It forwards the packet after validation by using the MAC Binding Table.
  2. It drops the packet after validation by using the IP & MAC Binding Table.
  3. It forwards the packet without validation.
  4. It drops the packet without validation.

Answer(s): B



What is a functional difference between a Cisco ASA and a Cisco IOS router with Zone-based policy firewall?

  1. The Cisco ASA denies all traffic by default whereas the Cisco IOS router with Zone-Based Policy Firewall starts out by allowing all traffic, even on untrusted interfaces
  2. The Cisco IOS router with Zone-Based Policy Firewall can be configured for high availability, whereas the Cisco ASA cannot
  3. The Cisco IOS router with Zone-Based Policy Firewall denies all traffic by default, whereas the Cisco ASA starts out by allowing all traffic until rules are added
  4. The Cisco ASA can be configured for high availability whereas the Cisco IOS router with Zone- Based Policy Firewall cannot

Answer(s): A



What is a benefit of performing device compliance?

  1. Verification of the latest OS patches
  2. Device classification and authorization
  3. Providing multi-factor authentication
  4. Providing attribute-driven policies

Answer(s): A






Post your Comments and Discuss Cisco® 350-701 exam with other Community members:

Exam Discussions & Posts