SNCF — Securing Networks with Firepower — Question 224

A network administrator is troubleshooting access to a website hosted behind a Cisco FTD device. External clients cannot access the web server via HTTPS. The IP address configured on the web server is 192.168.7.46. The administrator is running the command capture CAP interface outside match ip any 192.168.7.46 255.255.255.255 but cannot see any traffic in the capture. Why is this occurring?

Answer options

• A. The capture must use the public IP address of the web server.
• B. The packet capture shows only blocked traffic.
• C. The FTD has no route to the web server.
• D. The access policy is blocking the traffic.

Correct answer: A

Explanation

The correct answer is A because the capture command needs to be executed using the public IP address of the web server to catch the incoming traffic from external clients. The other options do not address the fact that the capture is set up for the internal IP instead of the public one, which is why no traffic is being captured.