- (Exam Topic 5)
Remote users who connect via Cisco AnyConnect to the corporate network behind a Cisco FTD device report that they get no audio when calling between remote users using their softphones. These same users can call internal users on the corporate network without any issues. What is the cause of this issue?

1. A. The hairpinning feature is not available on FTD.
2. B. Split tunneling is enabled for the Remote Access VPN on FTD
3. C. FTD has no NAT policy that allows outside to outside communication
4. D. The Enable Spoke to Spoke Connectivity through Hub option is not selected on FTD.

Correct Answer: A

- (Exam Topic 1)
Which two conditions must be met to enable high availability between two Cisco FTD devices? (Choose two.)

1. A. same flash memory size
2. B. same NTP configuration
3. C. same DHCP/PPoE configuration
4. D. same host name
5. E. same number of interfaces

Correct Answer: BE
https://www.cisco.com/c/en/us/support/docs/security/firepower-management-center/212699-configure-ftd-high- Conditions
In order to create an HA between 2 FTD devices, these conditions must be met: Same model
Same version (this applies to FXOS and to FTD - (major (first number), minor (second number), and maintenance (third number) must be equal))
Same number of interfaces
Same type of interfaces
Both devices as part of same group/domain in FMC
Have identical Network Time Protocol (NTP) configuration Be fully deployed on the FMC without uncommitted changes Be in the same firewall mode: routed or transparent.
Note that this must be checked on both FTD devices and FMC GUI since there have been cases where the FTDs had the same mode, but FMC does not reflect this.
Does not have DHCP/Point-to-Point Protocol over Ethernet (PPPoE) configured in any of the interface Different hostname (Fully Qualified Domain Name (FQDN)) for both chassis. In order to check the chassis
hostname navigate to FTD CLI and run this command

- (Exam Topic 5)
An engineer must configure the firewall to monitor traffic within a single subnet without increasing the hop
count of that traffic. How would the engineer achieve this?

1. A. Configure Cisco Firepower as a transparent firewall
2. B. Set up Cisco Firepower as managed by Cisco FDM
3. C. Configure Cisco Firepower in FXOS monitor only mode.
4. D. Set up Cisco Firepower in intrusion prevention mode

Correct Answer: A

- (Exam Topic 5)
What is the RTC workflow when the infected endpoint is identified?

1. A. Cisco ISE instructs Cisco AMP to contain the infected endpoint.
2. B. Cisco ISE instructs Cisco FMC to contain the infected endpoint.
3. C. Cisco AMP instructs Cisco FMC to contain the infected endpoint.
4. D. Cisco FMC instructs Cisco ISE to contain the infected endpoint.

Correct Answer: D

- (Exam Topic 1)
Which two conditions are necessary for high availability to function between two Cisco FTD devices? (Choose two.)

1. A. The units must be the same version
2. B. Both devices can be part of a different group that must be in the same domain when configured within the FMC.
3. C. The units must be different models if they are part of the same series.
4. D. The units must be configured only for firewall routed mode.
5. E. The units must be the same model.

Correct Answer: AE
Reference: https://www.cisco.com/c/en/us/support/docs/security/firepower-management-center/212699- configure-ftd-high-availability-on-firep.html