In which of the following deployment modes is traffic passed from an ASA to its FirePOWER module, processed, and then returned to the ASA?
A. inline mode
B. passive monitor-only mode
C. inline tap monitor-only mode
D. routed mode
Explanation:
Traffic passed from a Cisco Adaptive Security Appliance (ASA) to its FirePOWER module, processed, and then returned to the ASA when the FirePOWER module is deployed in inline mode. ASA FirePOWER module is an add-on module that extends the capabilities of the ASA and provides next-generation services, such as intrusion prevention system (IPS), Uniform Resource Locator (URL) filtering, Application Visibility and Control (AVC), and Advanced Malware Protection (AMP). The ASA FirePOWER module is available as a hardware module for some platforms and as a software-only module for others.
Although the ASA itself can operate in either routed mode or transparent mode, the ASA FirePOWER module can only be deployed in one of three modes: inline, inline tap monitor-only, and passive monitor-only. When deployed in inline mode, traffic is passed from the ASA to the ASA FirePOWER module, processed, and then returned to the ASA. By contrast, when deployed in one of the monitor-only modes, a copy of the traffic is sent to the ASA FirePOWER module, but the original traffic remains unaffected. With inline tap monitor-only mode, traffic first passes through the ASA and is then copied to the ASA FirePOWER module. With passive monitor-only mode, an ASA interface is dedicated to receiving a copy of the traffic from a Switch Port Analyzer (SPAN) interface without passing through the ASA first.
Routed mode is not a supported deployment mode for the Cisco ASA FirePOWER module.