SNCF — Securing Networks with Firepower — Question 253

A network administrator is configuring a transparent Cisco Secure Firewall Threat Defense registered to a Cisco Secure Firewall Management Center. The administrator wants to configure the Secure Firewall Threat Defense to allow ARP traffic to pass between two interfaces of a bridge group. What must be configured?

Answer options

• A. Use the default configuration on the devices.
• B. An access policy must allow MAC address 0100.0CCC.CCCD.
• C. ARP inspection must be disabled.
• D. An access policy must allow MAC address FFFF.FFFF.FFFF.

Correct answer: A

Explanation

The correct answer is A because the default configuration allows ARP traffic to pass freely between interfaces in a bridge group. Options B, C, and D specify additional configurations that are not necessary or could restrict ARP traffic, making them incorrect in this scenario.