SNCF — Securing Networks with Firepower — Question 170

Which default action setting in a Cisco FTD Access Control Policy allows all traffic from an undefined application to pass without Snort inspection?

Answer options

• A. Network Discovery Only
• B. Inherit from Base Policy
• C. Intrusion Prevention
• D. Trust All Traffic

Correct answer: D

Explanation

The correct answer is 'Trust All Traffic', as it allows all traffic to bypass Snort inspection when the application is not recognized. The other options either restrict traffic or apply specific inspection actions that do not permit all traffic to pass uninspected.