SNCF — Securing Networks with Firepower — Question 266
An engineer must deploy a Cisco Secure Firewall Threat Defense instance. The company wants the Secure Firewall Threat Defense deployment to allow business traffic in the event of any type of failure, and there must be no connectivity issues caused by the IPS in the perimeter of its data center. Which implementation mode must the engineer use?
Answer options
- A. hardware bypass
- B. Snort fail open
- C. inline set
- D. passive
Correct answer: B
Explanation
The correct answer is B, Snort fail open, because it allows traffic to pass through even when the IPS fails, ensuring business continuity. The other options, such as hardware bypass and inline set, may not offer the same level of traffic availability during IPS failure, while passive mode does not actively inspect traffic.