Cisco Exam 300-710 Topic 7 Question 107 Discussion

Actual exam question for Cisco's 300-710 exam

Question #: 107
Topic #: 7

Refer to the exhibit.

A company is deploying a pair of Cisco Secure Firewall Threat defence devices named FTD1 and FTD2. FTD1 and FTD2 have been configured as an active/standby pair with a failover link but without a stateful link. What must be implemented next to ensure that users on the internal network still communicate with outside devices if FTD1 fails?

ADisable port security on the switch interfaces connected to FTD1 and FTD2.

BSet maximum secured addresses to two on the switch interfaces on FTD1 and FTD2.

CConnect and configure a stateful link and thon deploy the changes.

DConfigure the spanning-tree PortFasI feature on SW1 and FTD2

Show Suggested Answer

Suggested Answer: C

In a failover configuration with Cisco Secure Firewall Threat Defense (FTD) devices, ensuring that users on the internal network can continue to communicate with outside devices if the primary device (FTD1) fails requires the implementation of a stateful failover link. The stateful failover link allows the secondary device (FTD2) to maintain session information and state data, ensuring seamless failover and minimizing disruptions.

Steps to implement a stateful failover link:

Physically connect a stateful failover link between FTD1 and FTD2.

Configure the stateful failover link in the FMC.

Ensure that both devices are properly synchronized and that stateful failover is enabled.

Deploy the changes to both FTD devices.

By configuring a stateful link, the secondary FTD can take over active sessions without requiring users to re-establish their connections, thus ensuring continuous communication.

by Edwin at Mar 21, 2025, 11:42 PM

Limited Time Offer

25%

Off

Get Premium 300-710 Questions as Interactive Web-Based Practice Test or PDF