Implementing Cisco Threat Control Solutions (SITCS, legacy) — Question 8

With Cisco FirePOWER Threat Defense software, which interface mode do you configure for an IPS deployment, where traffic passes through the appliance but does not require VLAN rewriting?

Answer options

• A. inline set
• B. passive
• C. inline tap
• D. routed
• E. transparent

Correct answer: D

Explanation

The correct answer is D, routed mode, as it allows the appliance to inspect traffic while maintaining the original VLANs without alteration. Options A and C involve inline configurations that may require VLAN changes, while B (passive) does not actively manage traffic, and E (transparent) is used for bridging mode, which is not suitable for the described scenario.