SNCF — Securing Networks with Firepower — Question 89

An engineer is configuring a Cisco FTD appliance in IPS-only mode and needs to utilize fail-to-wire interfaces. Which interface mode should be used to meet these requirements?

Answer options

• A. passive
• B. routed
• C. transparent
• D. inline set

Correct answer: D

Explanation

The correct answer is D, inline set, as this mode allows for fail-to-wire functionality while in IPS mode. The passive mode does not allow for inline traffic manipulation, routed mode is not suitable for IPS-only configurations, and transparent mode does not support fail-to-wire features.