Which interface type allows packets to be dropped?
A.
passive
B.
inline
C.
TAP
D.
either passive or inline, provided that the intrusion policy has the Drop When lnline
check box selected.
Which interface type allows packets to be dropped?
Which interface type allows packets to be dropped?
B. inline
“When configured in a passive deployment, the system cannot take certain actions such as blocking or shaping traffic. Passive interfaces receive all traffic unconditionally and no traffic received on these interfaces is retransmitted.”
(FPMC Config Guide v621)
No sure either B or D.
D seem’s stupid but from config guide:
When you view intrusion events, workflows can include the inline result, which indicates whether traffic was actually dropped, or whether it only would have dropped. When a packet matches a drop rule, the inline result is:
• Dropped , for packets dropped by a correctly configured inline deployment with drop behavior enabled
• Would have dropped, for packets that were not dropped either because your device is deployed passively or because drop behavior is disabled. Note that the inline result is always Would have dropped for packets seen while the system is pruning, regardless of deployment.
In addition to custom policies that you create, the system provides two custom policies: Initial Inline Policy and Initial Passive Policy. These two intrusion policies use the Balanced Security and Connectivity intrusion policy as their base. The only difference between them is their Drop When Inline setting, which enables drop behavior in the inline policy and disables it in the passive policy
B: inline
only inline, passive interface don’t drop traffic only listening
http://www.cisco.com/c/en/us/td/docs/security/firepower/60/configuration/guide/fpmc-config-guide-v60/fpmc-config-guide-v60_chapter_01011010.pdf
Passed the 300-210 exam last week with a good score!
I had many Hotspot Questions and Lab Simulation.
Lab Simulation FYI: Gig 0/0 and Gig 0/1, HIGHRISK-MEDIUMRISK.
Hotspot Questions FYI: Cisco C100V and Cisco Email Security Appliance.
I learned all questions from the newest PassLeader 300-210 dumps (337q New Dumps).
And, here you can get part of PassLeader 300-210 dumps (337q New Dumps):
http://www.ciscobraindump.com/category/ccnp-security-dumps/300-210-exam-dumps
Good Luck!!!
And, download that PassLeader 300-210 dumps in PDF from:
https://drive.google.com/open?id=0B-ob6L_QjGLpTkN0N2xZSHZKY2s
Regards!!!
If you are aiming to take Cisco 300-210 exam then give a try to Pass4surekey exam dumps. We are offering valid 300-210 exam dumps with real exam questions verified by our professional experts. You can check the validity of 300-210 exam dumps by trying the free demo available at Pass4surekey. For further questions visit us at any time https://monemarketblog.blogspot.nl/2017/10/300-210-dumps-ccnp-security-exam.html