Easter Sale Special 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: exams65

Securing Cisco Networks with Sourcefire IPS Question and Answers

Securing Cisco Networks with Sourcefire IPS

Last Update May 15, 2024
Total Questions : 60

We are offering FREE 500-285 Cisco exam questions. All you do is to just go and sign up. Give your details, prepare 500-285 free exam questions and then go for complete pool of Securing Cisco Networks with Sourcefire IPS test questions that will help you more.

500-285 pdf

500-285 PDF

$38.5  $109.99
 Add to Cart
500-285 Engine

500-285 Testing Engine

$45.5  $129.99
 Add to Cart
500-285 PDF + Engine

500-285 PDF + Testing Engine

$59.5  $169.99
 Add to Cart
Questions 1

Which option is a remediation module that comes with the Sourcefire System?

Options:

A.  

Cisco IOS Null Route

B.  

Syslog Route

C.  

Nmap Route Scan

D.  

Response Group

Discussion 0
Questions 2

Which list identifies the possible types of alerts that the Sourcefire System can generate as notification of events or policy violations?

Options:

A.  

logging to database, SMS, SMTP, and SNMP

B.  

logging to database, SMTP, SNMP, and PCAP

C.  

logging to database, SNMP, syslog, and email

D.  

logging to database, PCAP, SMS, and SNMP

Discussion 0
Questions 3

Which option is one of the three methods of updating the IP addresses in Sourcefire Security Intelligence?

Options:

A.  

subscribe to a URL intelligence feed

B.  

subscribe to a VRT

C.  

upload a list that you create

D.  

automatically upload lists from a network share

Discussion 0
Questions 4

Which statement is true in regard to the Sourcefire Security Intelligence lists?

Options:

A.  

The global blacklist universally allows all traffic through the managed device.

B.  

The global whitelist cannot be edited.

C.  

IP addresses can be added to the global blacklist by clicking on interactive graphs in Context Explorer.

D.  

The Security Intelligence lists cannot be updated.

Discussion 0
Questions 5

Remote access to the Defense Center database has which characteristic?

Options:

A.  

read/write

B.  

read-only

C.  

Postgres

D.  

Estreamer

Discussion 0
Questions 6

Which event source can have a default workflow configured?

Options:

A.  

user events

B.  

discovery events

C.  

server events

D.  

connection events

Discussion 0
Questions 7

Which statement represents detection capabilities of the HTTP preprocessor?

Options:

A.  

You can configure it to blacklist known bad web servers.

B.  

You can configure it to normalize cookies in HTTP headers.

C.  

You can configure it to normalize image content types.

D.  

You can configure it to whitelist specific servers.

Discussion 0
Questions 8

A one-to-many type of scan, in which an attacker uses a single host to scan a single port on multiple target hosts, indicates which port scan type?

Options:

A.  

port scan

B.  

portsweep

C.  

decoy port scan

D.  

ACK scan

Discussion 0
Questions 9

FireSIGHT recommendations appear in which layer of the Policy Layers page?

Options:

A.  

Layer Summary

B.  

User Layers

C.  

Built-In Layers

D.  

FireSIGHT recommendations do not show up as a layer.

Discussion 0
500-285 Written Exam | 500-285 Questions Answers | 500-285 Test Prep | 500-285 Additional Online Exams Actual Questions | Securing Cisco Networks with Sourcefire IPS Exam Questions PDF | 500-285 Online Exam | 500-285 Practice Test | 500-285 PDF | 500-285 Additional Online Exams Dumps | 500-285 Test Questions | 500-285 Study Material | 500-285 Exam Preparation | 500-285 Valid Dumps | 500-285 Real Questions | 500-285 Additional Online Exams Practice Test | Additional Online Exams 500-285 Dumps | Securing Cisco Networks with Sourcefire IPS Exam Questions