Cisco 500-285 SSFIPS Exam Questions Instant Access

Question 1

When adding source and destination ports in the Ports tab of the access control policy rule editor, which restriction is in place?

AThe protocol is restricted to TCP only.

BThe protocol is restricted to UDP only.

CThe protocol is restricted to TCP or UDP.

DThe protocol is restricted to TCP and UDP.

Answer : C

Question 2

Correlation policy rules allow you to construct criteria for alerting on very specific conditions. Which option is an example of such a rule?

Atesting password strength when accessing an application

Blimiting general user access to administrative file shares

Cenforcing two-factor authentication for access to critical servers

Dissuing an alert if a noncompliant operating system is detected or if a host operating system changes to a noncompliant operating system when it was previously profiled as a compliant one

Answer : D

Question 3

The IP address ::/0 is equivalent to which IPv4 address and netmask?

A0.0.0.0

B0.0.0.0/0

C0.0.0.0/24

DThe IP address ::/0 is not valid IPv6 syntax.

Answer : B

Question 4

Which option is one of the three methods of updating the IP addresses in Sourcefire Security Intelligence?

Asubscribe to a URL intelligence feed

Bsubscribe to a VRT

Cupload a list that you create

Dautomatically upload lists from a network share

Answer : C

Question 5

Which option is used to implement suppression in the Rule Management user interface?

ARule Category

BGlobal

CSource

DProtocol

Answer : C

Question 6

Which statement is true when adding a network to an access control rule?

AYou can select only source networks.

BYou must have preconfigured the network as an object.

CYou can select the source and destination networks or network groups.

DYou cannot include multiple networks or network groups as sources or destinations.

Answer : C

Question 7

Which option is not a characteristic of dashboard widgets or Context Explorer?

AContext Explorer is a tool used primarily by analysts looking for trends across varying periods of time.

BContext Explorer can be added as a widget to a dashboard.

CWidgets offer users an at-a-glance view of their environment.

DWidgets are offered to all users, whereas Context Explorer is limited to a few roles.

Answer : B

Cisco Securing Cisco Networks with Fire-SIGHT Intrusion Prevention System 500-285 SSFIPS Exam Questions