The security engineer reviews the syslog server events of an organization and sees many outbound connections to malicious sites initiated from hosts running Cisco Secure Endpoint. The hosts are on a separate network from the Cisco FTD device. Which action blocks the connections?

QuestionsCategory: 300-710The security engineer reviews the syslog server events of an organization and sees many outbound connections to malicious sites initiated from hosts running Cisco Secure Endpoint. The hosts are on a separate network from the Cisco FTD device. Which action blocks the connections?
Admin Staff asked 3 months ago
The security engineer reviews the syslog server events of an organization and sees many outbound connections to malicious sites initiated from hosts running Cisco Secure Endpoint. The hosts are on a separate network from the Cisco FTD device. Which action blocks the connections?

A. Modify the policy on Cisco Secure Endpoint to enable DFC.

B. Modify the access control policy on the Cisco FMC to block malicious outbound connections

C. Add the IP addresses of the malicious sites to the access control policy on the Cisco FMC

D. Add a Cisco Secure Endpoint policy with the Tetra and Spero engines enabled








 

Suggested Answer: C

Community Answer: A



This question is in 300-710 Securing Networks with Cisco Firepower (SNCF) Exam
For getting Cisco Certified Network Professional Security (CCNP Security) Certificate





Disclaimers:
The website is not related to, affiliated with, endorsed or authorized by Cisco.
Trademarks, certification & product names are used for reference only and belong to Cisco.
The website does not contain actual questions and answers from Cisco's Certification Exam.

Recommended

Welcome Back!

Login to your account below

Create New Account!

Fill the forms below to register

Retrieve your password

Please enter your username or email address to reset your password.