Cisco 500-285 Certification Exam Sample Questions and Answers

CCNS Intrusion Prevention System Dumps, 500-285 Dumps, Cisco SSFIPS PDF, 500-285 PDF, CCNS Intrusion Prevention System VCE, Cisco CCNS Intrusion Prevention System Questions PDF, Cisco Exam VCE, Cisco 500-285 VCE, CCNS Intrusion Prevention System Cheat SheetBefore you write the Cisco CCNS Intrusion Prevention System (500-285) certification exam, you may have certain doubts in your mind regarding the pattern of the test, the types of questions asked in it, the difficulty level of the questions and time required to complete the questions. These Cisco Certified Network Specialist Intrusion Prevention System (SSFIPS) sample questions and demo exam help you in removing these doubts and prepare you to take the test.

The best approach to pass your Cisco 500-285 exam is to challenge and improve your knowledge. To test your learning and identify improvement areas with actual exam format, we suggest you practice with Premium Cisco 500-285 Certification Practice Exam. The practice test is one of the most important elements of your Securing Cisco Networks with Sourcefire Intrusion Prevention System (SSFIPS) exam study strategy to discover your strengths and weaknesses, to improve your time management skills and to get an idea of the score you can expect.

Cisco 500-285 (SSFIPS) Sample Questions:

01. Which option is true regarding the $HOME_NET variable?
a) is used by all rules to define the internal network
b) defines the network the active policy protects
c) has a default value of "all"
d) is a policy-level variable
 
02. FireSIGHT recommendations appear in which layer of the Policy Layers page?
a) Layer Summary
b) User Layers
c) Built-In Layers
d) FireSIGHT recommendations do not show up as a layer.
 
03. When you are editing an intrusion policy, how do you know that you have changes?
a) The Commit Changes button is enabled.
b) A system message notifies you.
c) You are prompted to save your changes on every screen refresh.
d) A yellow, triangular icon displays next to the Policy Information option in the navigation panel.
 
04. How do you configure URL filtering?
a) Add blocked URLs to the global blacklist.
b) Create a Security Intelligence object that contains the blocked URLs and add the object to the access control policy.
c) Create an access control rule and, on the URLs tab, select the URLs or URL categories that are to be blocked or allowed.
d) Create a variable.
 
05. One of the goals of geolocation is to identify which option?
a) the location of any IP address
b) the location of a MAC address
c) the location of a TCP connection
d) the location of a routable IP address
 
06. Controlling simultaneous connections is a feature of which type of preprocessor?
a) rate-based attack prevention
b) detection enhancement
c) TCP and network layer preprocessors
d) performance settings
 
07. FireSIGHT uses three primary types of detection to understand the environment in which it is deployed. Which option is one of the detection types?
a) protocol layer
b) application
c) objects
d) devices
 
08. Which option transmits policy-based alerts such as SNMP and syslog?
a) the managed device
b) the host
c) FireSIGHT
d) the Defense Center
 
09. When adding source and destination ports in the Ports tab of the access control policy rule editor, which restriction is in place?
a) The protocol is restricted to TCP and UDP.
b) The protocol is restricted to UDP only.
c) The protocol is restricted to TCP only.
d) The protocol is restricted to TCP or UDP.
 
10. What are the two categories of variables that you can configure in Object Management?
a) System Default Variables and FireSIGHT-Specific Variables
b) System Default Variables and Procedural Variables
c) Default Variables and Custom Variables
d) Policy-Specific Variables and Procedural Variables

Solutions:

Question: 01

Answer: b

Question: 02

Answer: c

Question: 03

Answer: d

Question: 04

Answer: c

Question: 05

Answer: d

Question: 06

Answer: a

Question: 07

Answer: b

Question: 08

Answer: a

Question: 09

Answer: d

Question: 10

Answer: c

Note: If you find any error in these Securing Cisco Networks with Sourcefire Intrusion Prevention System (SSFIPS) sample questions, you can update us by write an email on feedback@nwexam.com.

Rating: 5 / 5 (74 votes)