Exam Code: 300-210 (Practice Exam Latest Test Questions VCE PDF)
Exam Name: Implementing Cisco Threat Control Solutions (SITCS)
Certification Provider: Cisco
Free Today! Guaranteed Training- Pass 300-210 Exam.

Q1. Which Cisco Firepower rule action displays a HTTP warning page and resets the connection of HTTP traffic specified in the access control rule ?

A. Interactive Block with Reset

B. Block

C. Allow with Warning

D. Interactive Block

Answer: D

Explanation

http://www.cisco.com/c/en/us/td/docs/security/firesight/541/firepower-module-user-guide/asa-firepower-module


Q2. Which Cisco Web Security Appliance feature enables the appliance to block suspicious traffic on all of its ports and IP addresses?

A. explicit forward mode

B. Layer 4 Traffic Monitor

C. transparent mode

D. Secure Web Proxy

Answer: B


Q3. A system administrator wants to know if the email traffic from a remote partner will active special treatment message filters that are created just for them. Which tool on the Cisco Email Security gateway can you use to debug and emulate the flow that a message takes through the work queue?

A. the trace tool

B. centralized or local message tracking

C. the CLI findevent command

D. the CLI grep command

E. the message tracker interface

Answer: A


Q4. Access the configuration of the Cisco Email Security Appliance using the MailFlowPolicies tab. Within the GUI, you can navigate between the Host Access Table Overview and Mail Flow Policies tables. You can also navigate to the individual Mail Flow Policies and Sender Groups that are configured on the appliance.

Consider the configuration and the SenderBase Reputation Scores of the following fictitious domains when answering the four multiple choice questions.

A. red.public, -6

B. orange.public, -4

C. yellow.public, -2

D. green. .public, 2

E. blue.public, 6

F. violet.public, 8

Answer: D


Q5. With Firepower Threat Defense, which two interface settings are required when configuring a routed interface? (Choose two.)

A. Speed

B. Duplex

C. Media Type

D. Redundant Interface

E. EtherChannel

Answer: A B


Q6. Which three statements about Cisco CWS are true'? (Choose three )

A. It provides protection against zero-day threats.

B. Cisco SIO provides it with threat updates in near real time.

C. It supports granular application policies.

D. Its Roaming User Protection feature protects the VPN from malware and data breaches.

E. It supports local content caching.

F. Its Cognitive Threat Analytics feature uses cloud-based analysis and detection to block threats outside the network.

Answer: A B C


Q7. With Firepower Threat Defense, which two interface settings are required when configuring a routed interface? (Choose two.)

A. Speed

B. Duplex

C. Media Type

D. Redundant Interface

E. EtherChannel

Answer: A B


Q8. Which interface type allows packets to be dropped?

A. passive

B. inline

C. TAP

D. either passive or inline, provided that the intrusion policy has the Drop When Inline check box selected.

Answer: D


Q9. Which type of policy is used to define the scope for applications that are running on hosts?

A. access control policy.

B. application awareness policy.

C. application detector policy.

D. network discovery policy.

Answer: C


Q10. When creating an SSL policy on Cisco FirePOWER, which three options do you have

A. do not decrypt

B. trust

C. allow

D. block with reset

E. block

F. encrypt

Answer: A D E

Explanation

http://www.cisco.com/c/en/us/support/docs/security/firesight-management-center/200202-Configuration-of-an-S