Securing Networks with Cisco Firepower Next Generation Firewall (SSNGFW) v1.0 Quiz Questions and Answers

Which option is a common method of providing redundancy in a typical Firewall deployment scenario?

Answer :
  • Port-Channel

Which interface deployment mode can block traffic that is suspected to be malicious?

Answer :
  • Inline

You are editing the physical interface properties of a managed device. How can you use the Security Zone configuration option?

Answer :
  • Refer to within an access control policy.

Which two statements accurately describe Cisco Firepower configuration objects? (Choose two.)

Answer :
  • They are reusable containers that associate a name with one or more values.
  • They can be used to simplify the creation of various types of policies.

Which two statements accurately describe Firepower NGFW management options? (Choose two.)

Answer :
  • Firepower Device Manager is an on-box GUI management platform.
  • The Firepower Management Center supports some features that Firepower Device Manager does not support.

Which policy makes up the main Firewall Component of a Cisco Firepower Threat Defense managed device?

Answer :
  • Access Control Policy

Which option accurately compares a Failover configuration vs a Cluster configuration?

Answer :
  • Both require platforms that are same model and run the same operating system.

What are two application layer preprocessors? (Choose two.)

Answer :
  • IMAP
  • SSL

Which two actions can be used in an access control policy rule? (Choose two.)

Answer :
  • Block with Reset
  • Monitor

Which risks is a company vulnerable to if it does not have a well-established patching solution for endpoints?

Answer :
  • malware