Amazon
Avaya
Cisco
CompTIA
CrowdStrike
EC-Council
EXIN
Fortinet
Google
ISC
ISC2
ITIL
Juniper
Microsoft
NVIDIA
Okta
Palo Alto Networks
Salesforce
SAP
ServiceNow
All Vendors
  1. Home
  2. Cisco
  3. 350-701

Cisco 350-701 (page: 13)

Cisco Implementing and Operating Security Core Technologies

Updated 17-Apr-2026

Page 13 of 123 350-701 PDF — 727 Questions

An engineer wants to generate NetFlow records on traffic traversing the Cisco AS


  1. Which Cisco ASA
    command must be used?
  2. flow-export destination inside 1.1.1.1 2055
  3. ip flow monitor input
  4. ip flow-export destination 1.1.1.1 2055
  5. flow exporter

Answer(s): A

Explanation:

The syntax of this command is: flow-export destination interface-name ipv4-address | hostname udp-port

This command is used on Cisco ASA to configure Network Secure Event Logging (NSEL) collector to which
NetFlow packets are sent. The destination keyword indicates that a NSEL collector is being configured.
+ The interface-name argument is the name of the ASA and ASA Services Module interface through which the collector is reached.
+ The ipv4-address argument is the IP address of the machine running the collector application. + The hostname argument is the destination IP address or name of the collector. + The udp-port argument is the UDP port number to which NetFlow packets are sent. You can configure a maximum of five collectors. After a collector is configured, template records are automatically sent to all configured NSEL collectors.


Reference:

https://www.cisco.com/c/en/us/td/docs/security/asa/asa84/configuration/guide/asa_84_cli_config/ monitor_nsel.html



How many interfaces per bridge group does an ASA bridge group deployment support?

  1. up to 2
  2. up to 4
  3. up to 8
  4. up to 16

Answer(s): B

Explanation:

Each of the ASAs interfaces need to be grouped into one or more bridge groups. Each of these groups acts as an independent transparent firewall. It is not possible for one bridge group to communicate with another bridge group without assistance from an external router. As of 8.4(1) upto 8 bridge groups are supported with 2-4 interface in each group. Prior to this only one bridge group was supported and only 2 interfaces. Up to 4 interfaces are permitted per bridge­group (inside, outside, DMZ1, DMZ2)



Which two application layer preprocessors are used by Firepower Next Generation Intrusion Prevention
System? (Choose two)

  1. packet decoder
  2. SIP
  3. modbus
  4. inline normalization
  5. SSL

Answer(s): B,E

Explanation:

Application layer protocols can represent the same data in a variety of ways. The Firepower System provides application layer protocol decoders that normalize specific types of packet data into formats that the intrusion rules engine can analyze. Normalizing application-layer protocol encodings allows the rules engine to effectively apply the same content-related rules to packets whose data is represented differently and obtain meaningful results.


Reference:

https://www.cisco.com/c/en/us/td/docs/security/firepower/60/configuration/guide/fpmc-config- guidev60/Application_Layer_Preprocessors.html#ID-2244-0000080c FirePower uses many preprocessors, including DNS, FTP/Telnet, SIP, SSL, SMTP, SSH preprocessors.



Which two features of Cisco Email Security can protect your organization against email threats? (Choose two)

  1. Time-based one-time passwords
  2. Data loss prevention
  3. Heuristic-based filtering
  4. Geolocation-based filtering
  5. NetFlow

Answer(s): B,D

Explanation:

Protect sensitive content in outgoing emails with Data Loss Prevention (DLP) and easy-to-use email encryption, all in one solution.
Cisco Email Security appliance can now handle incoming mail connections and incoming messages from specific geolocations and perform appropriate actions on them, for example:
­ Prevent email threats coming from specific geographic regions. ­ Allow or disallow emails coming from specific geographic regions.


Reference:

https://www.cisco.com/c/en/us/td/docs/security/esa/esa11-0/user_guide_fs/ b_ESA_Admin_Guide_11_0/b_ESA_Admin_Guide_chapter_00.html



Why would a user choose an on-premises ESA versus the CES solution?

  1. Sensitive data must remain onsite.
  2. Demand is unpredictable.
  3. The server team wants to outsource this service.
  4. ESA is deployed inline.

Answer(s): A



Page 13 of 123

Share your comments for Cisco 350-701 exam with other users:

Puneeth 10/5/2023 2:06:00 AM

new to this site but i feel it is good
EUROPEAN UNION


Ashok Kumar 1/2/2024 6:53:00 AM

the correct answer to q8 is b. explanation since the mule app has a dependency, it is necessary to include project modules and dependencies to make sure the app will run successfully on the runtime on any other machine. source code of the component that the mule app is dependent of does not need to be included in the exported jar file, because the source code is not being used while executing an app. compiled code is being used instead.
Anonymous


Merry 7/30/2023 6:57:00 AM

good questions
Anonymous


VoiceofMidnight 12/17/2023 4:07:00 PM

Delayed the exam until December 29th.
UNITED STATES


Umar Ali 8/29/2023 2:59:00 PM

A and D are True
Anonymous


vel 8/28/2023 9:17:09 AM

good one with explanation
Anonymous


Gurdeep 1/18/2024 4:00:15 PM

This is one of the most useful study guides I have ever used.
CANADA


AI Tutor 👋 I’m here to help!