Weekend Special Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code = simple70

Pass the Cisco Additional Online Exams 500-285 Questions and answers with ExamsMirror

Practice at least 50% of the questions to maximize your chances of passing.
Exam 500-285 Premium Access

View all detail and faqs for the 500-285 exam

Go to Exam

439 Students Passed

97% Average Score

90% Same Questions
Viewing page 1 out of 2 pages
Viewing questions 1-10 out of questions
Questions # 1:

FireSIGHT uses three primary types of detection to understand the environment in which it is deployed. Which option is one of the detection types?

Options:

A.

protocol layer

B.

application

C.

objects

D.

devices

Questions # 2:

The IP address::/0 is equivalent to which IPv4 address and netmask?

Options:

A.

0.0.0.0

B.

0.0.0.0/0

C.

0.0.0.0/24

D.

The IP address::/0 is not valid IPv6 syntax.

Questions # 3:

Which option transmits policy-based alerts such as SNMP and syslog?

Options:

A.

the Defense Center

B.

FireSIGHT

C.

the managed device

D.

the host

Questions # 4:

When adding source and destination ports in the Ports tab of the access control policy rule editor, which restriction is in place?

Options:

A.

The protocol is restricted to TCP only.

B.

The protocol is restricted to UDP only.

C.

The protocol is restricted to TCP or UDP.

D.

The protocol is restricted to TCP and UDP.

Questions # 5:

Context Explorer can be accessed by a subset of user roles. Which predefined user role is valid for FireSIGHT event access?

Options:

A.

Administrator

B.

Intrusion Administrator

C.

Maintenance User

D.

Database Administrator

Questions # 6:

Context Explorer can be accessed by a subset of user roles. Which predefined user role is not valid for FireSIGHT event access?

Options:

A.

Administrator

B.

Intrusion Administrator

C.

Security Analyst

D.

Security Analyst (Read-Only)

Questions # 7:

Which option is one of the three methods of updating the IP addresses in Sourcefire Security Intelligence?

Options:

A.

subscribe to a URL intelligence feed

B.

subscribe to a VRT

C.

upload a list that you create

D.

automatically upload lists from a network share

Questions # 8:

Which option is true regarding the $HOME_NET variable?

Options:

A.

is a policy-level variable

B.

has a default value of "all"

C.

defines the network the active policy protects

D.

is used by all rules to define the internal network

Questions # 9:

Which option is used to implement suppression in the Rule Management user interface?

Options:

A.

Rule Category

B.

Global

C.

Source

D.

Protocol

Questions # 10:

FireSIGHT recommendations appear in which layer of the Policy Layers page?

Options:

A.

Layer Summary

B.

User Layers

C.

Built-In Layers

D.

FireSIGHT recommendations do not show up as a layer.

Viewing page 1 out of 2 pages
Viewing questions 1-10 out of questions
TOP CODES

TOP CODES

Top selling exam codes in the certification world, popular, in demand and updated to help you pass on the first try.

2V0-11.25
ADM-201
Agentforce-Specialist
CMMC-CCP
Data-Cloud-Consultant
PCNSE
PDI
PSE-Strata-Pro-24
Secure-Software-Design
Sharing-and-Visibility-Architect
Workday-Pro-Integrations
ZDTA