New Year Special 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: best70

500-285 Securing Cisco Networks with Sourcefire IPS Questions and Answers

Questions 4

Which option is used to implement suppression in the Rule Management user interface?

Options:

A.

Rule Category

B.

Global

C.

Source

D.

Protocol

Buy Now
Questions 5

FireSIGHT recommendations appear in which layer of the Policy Layers page?

Options:

A.

Layer Summary

B.

User Layers

C.

Built-In Layers

D.

FireSIGHT recommendations do not show up as a layer.

Buy Now
Questions 6

When configuring FireSIGHT detection, an administrator would create a network discovery policy and set the action to "discover". Which option is a possible type of discovery?

Options:

A.

host

B.

IPS event

C.

anti-malware

D.

networks

Buy Now
Questions 7

A user discovery agent can be installed on which platform?

Options:

A.

OpenLDAP

B.

Windows

C.

RADIUS

D.

Ubuntu

Buy Now
Questions 8

Which option is a valid whitelist evaluation value?

Options:

A.

pending

B.

violation

C.

semi-compliant

D.

not-evaluated

Buy Now
Questions 9

What does the whitelist attribute value "not evaluated" indicate?

Options:

A.

The host is not a target of the whitelist.

B.

The host could not be evaluated because no profile exists for it.

C.

The whitelist status could not be updated because the correlation policy it belongs to is not enabled.

D.

The host is not on a monitored network segment.

Buy Now
Exam Code: 500-285
Exam Name: Securing Cisco Networks with Sourcefire IPS
Last Update: Dec 22, 2024
Questions: 60

PDF + Testing Engine

$144.99

Testing Engine

$109.99

PDF (Q&A)

$94.99