Which NGFW mode block flows crossing the firewall?

Posted by: Pdfprep Category: 350-401 Tags: , , Post Date: November 23, 2020

Which NGFW mode block flows crossing the firewall?
A . Passive
B . Tap
C . Inline tap
D . Inline

Answer: D

Explanation:

Firepower Threat Defense (FTD) provides six interface modes which are: Routed, Switched, Inline Pair, Inline Pair with Tap, Passive, Passive (ERSPAN).

When Inline Pair Mode is in use, packets can be blocked since they are processed inline

When you use Inline Pair mode, the packet goes mainly through the FTD Snort engine

When Tap Mode is enabled, a copy of the packet is inspected and dropped internally while the actual traffic goes through FTD unmodified

https://www.cisco.com/c/en/us/support/docs/security/firepower-ngfw/200924-configuringfirepower-threat-defense-int.html

Author

Leave a Reply

Your email address will not be published.