SNCF — Securing Networks with Firepower — Question 74

What is a result of enabling Cisco FTD clustering?

Answer options

• A. For the dynamic routing feature, if the master unit fails, the newly elected master unit maintains all existing connections.
• B. Integrated Routing and Bridging is supported on the master unit.
• C. Site-to-site VPN functionality is limited to the master unit, and all VPN connections are dropped if the master unit fails.
• D. All Firepower appliances support Cisco FTD clustering.

Correct answer: C

Explanation

The correct answer is C because in Cisco FTD clustering, only the master unit handles site-to-site VPN connections. If the master unit goes down, all VPNs will be lost. Option A is incorrect because the new master does not maintain connections; Option B is not relevant to clustering capabilities; and Option D is false as not all Firepower appliances support clustering.