Which statement about IOS zone-based firewalls is true?
Answer(s): D
What is a characteristic of Cisco ASA Netflow v9 Secure Event Logging?
Answer(s): A
The ASA and ASASM implementations of NetFlow Secure Event Logging (NSEL) provide a stateful, IP flow tracking method that exports only those records that indicate significant events in a flow. The significant events that are tracked include flow-create, flow-teardown, and flow-denied (excluding those flows that are denied by EtherType ACLs).
https://www.cisco.com/c/en/us/td/docs/security/asa/asa92/configuration/general/asa- general-cli/ monitor-nsel.html
Which CLI command is used to register a Cisco FirePower sensor to Firepower Management Center?
Which policy is used to capture host information on the Cisco Firepower Next Generation Intrusion PreventionSystem?
The Firepower System uses network discovery and identity policies to collect host, application, and user data for traffic on your network. You can use certain types of discovery and identity data to build a comprehensive map of your network assets, perform forensic analysis, behavioral profiling, access control, and mitigate and respond to the vulnerabilities and exploits to which your organization is susceptible. You can configure your network discovery policy to perform host and application detection.
https://www.cisco.com/c/en/us/td/docs/security/firepower/640/configuration/guide/fpmc- configguide-v64/introduction_to_network_discovery_and_identity.html
Which ASA deployment mode can provide separation of management on a shared appliance?
Answer(s): C
Post your Comments and Discuss Cisco 350-701 exam dumps with other Community members: