ExamTopics Logo
Mail Us[email protected]
Menu
Cisco Discussions
exam questions

Exam 300-710 All Questions

View all questions & answers for the 300-710 exam
Go to Exam

Exam 300-710 topic 1 question 194 discussion

Actual exam question from Cisco's 300-710
Question #: 194
Topic #: 1
[All 300-710 Questions]

An engineer wants to add an additional Cisco FTD Version 6.2.3 device to their current 6.2.3 deployment to create a high availability pair. The currently deployed Cisco FTD device is using local management and identical hardware including the available port density to enable the failover and stateful links required in a proper high availability deployment. Which action ensures that the environment is ready to pair the new Cisco FTD with the old one?

  • A. Change from Cisco FDM management to Cisco FMC management on both devices and register them to FMC.
  • B. Ensure that the two devices are assigned IP addresses from the 169.254.0.0/16 range for failover interfaces.
  • C. Factory reset the current Cisco FTD so that it can synchronize configurations with the new Cisco FTD device.
  • D. Ensure that the configured DNS servers match on the two devices for name resolution.
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by Mevijil at Feb. 9, 2023, 2:39 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Kris92
4 months, 2 weeks ago
Selected Answer: A
it seems FDM started supporting HA in 6.3, I can't find HA mentioned in 6.2.3, so the key here is the version. For FMC setups running 6.2.3 it is supported, so A looks to be correct here. https://www.cisco.com/c/en/us/td/docs/security/firepower/623/fdm/fptd-fdm-config-guide-623.html https://www.cisco.com/c/en/us/td/docs/security/firepower/630/fdm/fptd-fdm-config-guide-630/fptd-fdm-ha.html https://www.cisco.com/c/en/us/td/docs/security/firepower/623/configuration/guide/fpmc-config-guide-v623/firepower_threat_defense_high_availability.html
upvoted 2 times
tinyJoe
2 weeks, 6 days ago
amazing comment
upvoted 1 times
...
...
Bubu3k
6 months, 2 weeks ago
This are the req for HA on 6.2.3 (they need to be part of FMC) Software Requirements The two units in a High Availability configuration must: Be in the same firewall mode (routed or transparent). Have the same software version. Be in the same domain or group on the FMC. Have the same NTP configuration. See Configure NTP Time Synchronization for Threat Defense. Be fully deployed on the FMC with no uncommitted changes. Not have DHCP or PPPoE configured in any of their interfaces. (Firepower 9300) Have the same flow offload mode, either both enabled or both disabled.
upvoted 2 times
...
Initial14
1 year, 3 months ago
Selected Answer: A
I'd go with A, because all other are just wtf
upvoted 3 times
...
tanri04
1 year, 4 months ago
changing from Cisco FDM management to Cisco FMC management on both devices and registering them to FMC, is necessary to configure high availability between two Cisco FTD devices in a deployment where they are being managed by Cisco FMC. When using Cisco FMC to manage the Cisco FTD devices, both devices must be managed by Cisco FMC before configuring high availability. This involves changing the devices from local management (Cisco FDM) to central management (Cisco FMC) and registering them to Cisco FMC. Correct answer:A Therefore, to ensure that the environment is ready to pair the new Cisco FTD with the old one, the correct action is to change from Cisco FDM management to Cisco FMC management on both devices and register them to FMC.
upvoted 1 times
...
Mevijil
1 year, 5 months ago
I can't figure out a single one of these answers that makes sense. HA is supported in FDM (https://www.cisco.com/c/en/us/td/docs/security/firepower/640/fdm/fptd-fdm-config-guide-640/fptd-fdm-ha.html) without an FMC, so not "A". I can't imagine why you'd use a Class B for Failover links so not "B". You shouldn't need to factory reset the primary to configure a secondary so not "C". And DNS doesn't need to be the same configuration so not "D". HA in FDM was a recent(ish) addition so maybe that's the one they mean?
upvoted 1 times
freho
1 year, 5 months ago
They have to be configured with same NTP servers, but not with same DNS servers. I think also, that the FDM HA came up later, as this test is really outdated. I will go with the FMC answer, even if it looks stupid today.
upvoted 2 times
Cokamaniako
1 year, 2 months ago
But old "deployed Cisco FTD device is using local management" , you re not goin to delete the old one from FMC to make HA in FDM. The answer is A
upvoted 1 times
...
...
bassfunk
11 months, 1 week ago
Please bear in mind the version of FTD in question. I believe they included that for a reason. The older model FTD probably did not support HA without FMC.
upvoted 2 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago