Exam 300-710 topic 1 question 346 discussion

Actual exam question from Cisco's 300-710

Question #: 346
Topic #: 1

An engineer must deploy a Cisco Secure Firewall Threat Defense instance. The company wants the Secure Firewall Threat Defense deployment to allow business traffic in the event of any type of failure, and there must be no connectivity issues caused by the IPS in the perimeter of its data center. Which implementation mode must the engineer use?

A. hardware bypass
B. Snort fail open
C. inline set
D. passive

Show Suggested Answer

Suggested Answer: B 🗳️

by whysohardwhy at Feb. 18, 2025, 1:37 p.m.

Comments

Submit Cancel

whysohardwhy

5 days, 4 hours ago

Selected Answer: A

I feel the "any type of failure" is the hint. if it's just software - sure that's B. This one feels like it's talking about even hardware failure.

upvoted 1 times

...

whysohardwhy

5 days, 4 hours ago

Selected Answer: A

For certain interface modules on the Firepower 9300, 4100, and 2100 series (see Requirements and Prerequisites for Inline Sets), you can enable the Hardware Bypass feature. Hardware Bypass ensures that traffic continues to flow between an inline interface pair during a power outage. This feature can be used to maintain network connectivity in the case of software or hardware failures.

upvoted 1 times

...

Exam 300-710 All Questions

View all questions & answers for the 300-710 exam

Exam 300-710 topic 1 question 346 discussion

Comments

whysohardwhy

whysohardwhy

SY0-701