[Free] 2018(Jan) EnsurePass Pass4sure Cisco 500-285 Dumps with VCE and PDF 11-20

By | January 31, 2018

Ensurepass.com : Ensure you pass the IT Exams
2018 Jan Cisco Official New Released 500-285
100% Free Download! 100% Pass Guaranteed!

Securing Cisco Networks with Sourcefire IPS

Question No: 11 – (Topic 3)

Which option is true of the Packet Information portion of the Packet View screen?

  1. provides a table view of events

  2. allows you to download a PCAP formatted file of the session that triggered the event

  3. displays packet data in a format based on TCP/IP layers

  4. shows you the user that triggered the event

Answer: C

Question No: 12 – (Topic 3)

Which option is not a characteristic of dashboard widgets or Context Explorer?

  1. Context Explorer is a tool used primarily by analysts looking for trends across varying periods of time.

  2. Context Explorer can be added as a widget to a dashboard.

  3. Widgets offer users an at-a-glance view of their environment.

  4. Widgets are offered to all users, whereas Context Explorer is limited to a few roles.

Answer: B

Question No: 13 – (Topic 3)

One of the goals of geolocation is to identify which option?

  1. the location of any IP address

  2. the location of a MAC address

  3. the location of a TCP connection

  4. the location of a routable IP address

Answer: D

Topic 4, IPS Policy Basics

Question No: 14 – (Topic 4)

FireSIGHT recommendations appear in which layer of the Policy Layers page?

  1. Layer Summary

  2. User Layers

  3. Built-In Layers

  4. FireSIGHT recommendations do not show up as a layer.

Answer: C

Question No: 15 – (Topic 4)

When you are editing an intrusion policy, how do you know that you have changes?

  1. The Commit Changes button is enabled.

  2. A system message notifies you.

  3. You are prompted to save your changes on every screen refresh.

  4. A yellow, triangular icon displays next to the Policy Information option in the navigation panel.

Answer: D

Question No: 16 – (Topic 4)

Which option is used to implement suppression in the Rule Management user interface?

  1. Rule Category

  2. Global

  3. Source

  4. Protocol

Answer: C

Topic 5, FireSIGHT Technologies

Question No: 17 – (Topic 5)

In addition to the discovery of new hosts, FireSIGHT can also perform which function?

  1. block traffic

  2. determine which users are involved in monitored connections

  3. discover information about users

  4. route traffic

Answer: B

Question No: 18 – (Topic 5)

FireSIGHT uses three primary types of detection to understand the environment in which it is deployed. Which option is one of the detection types?

  1. protocol layer

  2. application

  3. objects

  4. devices

Answer: B

Question No: 19 – (Topic 5)

Which option is derived from the discovery component of FireSIGHT technology?

  1. connection event table view

  2. network profile

  3. host profile

  4. authentication objects

Answer: C

Question No: 20 – (Topic 5)

The IP address::/0 is equivalent to which IPv4 address and netmask?




D. The IP address::/0 is not valid IPv6 syntax.

Answer: B

100% Ensurepass Free Download!
Download Free Demo:500-285 Demo PDF
100% Ensurepass Free Guaranteed!
500-285 Dumps

EnsurePass ExamCollection Testking
Lowest Price Guarantee Yes No No
Up-to-Dated Yes No No
Real Questions Yes No No
Explanation Yes No No
Free VCE Simulator Yes No No
Instant Download Yes No No

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.