Download Cisco.Selftestengine.500-285.2017-11-18.1e.53q.vcex

Download Exam

File Info

Exam Securing Cisco Networks with Sourcefire Intrusion Prevention System
Number 500-285
File Name Cisco.Selftestengine.500-285.2017-11-18.1e.53q.vcex
Size 23 Kb
Posted November 18, 2017
Downloads 20
Download Cisco.Selftestengine.500-285.2017-11-18.1e.53q.vcex

How to open VCEX & EXAM Files?

Files with VCEX & EXAM extensions can be opened by ProfExam Simulator.


With discount: 20%


Demo Questions

Question 1

What are the two categories of variables that you can configure in Object Management?

  • A: System Default Variables and FireSIGHT-Specific Variables
  • B: System Default Variables and Procedural Variables
  • C: Default Variables and Custom Variables
  • D: Policy-Specific Variables and Procedural Variables

Correct Answer: C

Question 2

Which option is true regarding the $HOME_NET variable?

  • A: is a policy-level variable
  • B: has a default value of "all"
  • C: defines the network the active policy protects
  • D: is used by all rules to define the internal network

Correct Answer: C

Question 3

Which option is one of the three methods of updating the IP addresses in Sourcefire Security Intelligence?

  • A: subscribe to a URL intelligence feed
  • B: subscribe to a VRT
  • C: upload a list that you create
  • D: automatically upload lists from a network share

Correct Answer: C

Question 4

Which statement is true in regard to the Sourcefire Security Intelligence lists?

  • A: The global blacklist universally allows all traffic through the managed device.
  • B: The global whitelist cannot be edited.
  • C: IP addresses can be added to the global blacklist by clicking on interactive graphs in Context Explorer.
  • D: The Security Intelligence lists cannot be updated.

Correct Answer: C

Question 5

How do you configure URL filtering?

  • A: Add blocked URLs to the global blacklist.
  • B: Create a Security Intelligence object that contains the blocked URLs and add the object to the access control policy.
  • C: Create an access control rule and, on the URLs tab, select the URLs or URL categories that are to be blocked or allowed.
  • D: Create a variable.

Correct Answer: C

Question 6

When adding source and destination ports in the Ports tab of the access control policy rule editor, which restriction is in place?

  • A: The protocol is restricted to TCP only.
  • B: The protocol is restricted to UDP only.
  • C: The protocol is restricted to TCP or UDP.
  • D: The protocol is restricted to TCP and UDP.

Correct Answer: C

Question 7

Access control policy rules can be configured to block based on the conditions that you specify in each rule. Which behavior block response do you use if you want to deny and reset the connection of HTTP traffic that meets the conditions of the access control rule?

  • A: interactive block with reset
  • B: interactive block
  • C: block
  • D: block with reset

Correct Answer: D

Question 8

Which option transmits policy-based alerts such as SNMP and syslog?

  • A: the Defense Center
  • B: FireSIGHT
  • C: the managed device
  • D: the host

Correct Answer: C

Question 9

When you are editing an intrusion policy, how do you know that you have changes?

  • A: The Commit Changes button is enabled.
  • B: A system message notifies you.
  • C: You are prompted to save your changes on every screen refresh.
  • D: A yellow, triangular icon displays next to the Policy Information option in the navigation panel.

Correct Answer: D

Question 10

FireSIGHT recommendations appear in which layer of the Policy Layers page?

  • A: Layer Summary
  • B: User Layers
  • C: Built-In Layers
  • D: FireSIGHT recommendations do not show up as a layer.

Correct Answer: C





You can buy ProfExam with a 20% discount!


Use ProfExam Simulator to open VCEX and EXAM files