Question 3
An engineer is monitoring network traffic from their sales and product development departments, which are on two separate networks.
What must be configured in order to maintain data privacy for both departments?
Use a dedicated IPS inline set for each department to maintain traffic separation
Use 802 1Q mime set Trunk interfaces with VLANs to maintain logical traffic separation
Use passive IDS ports for both departments
Use one pair of inline set in TAP mode for both departments
Correct answer: D
Explanation:
https://www.cisco.com/c/en/us/td/docs/security/firepower/640/configuration/guide/fpmc-config-guide-v64/inline_sets_and_passive_interfaces_for_firepower_threat_defense.html
https://www.cisco.com/c/en/us/td/docs/security/firepower/640/configuration/guide/fpmc-config-guide-v64/inline_sets_and_passive_interfaces_for_firepower_threat_defense.html