What Simulation 500-285 exam Is?

Q1. Which interface type allows for VLAN tagging? 

A. inline 

B. switched 

C. high-availability link 

D. passive 

View Answer

Q2. Which policy controls malware blocking configuration? 

A. file policy 

B. malware policy 

C. access control policy 

D. IPS policy 

View Answer

Q3. When configuring an LDAP authentication object, which server type is available? 

A. Microsoft Active Directory 

B. Yahoo 

C. Oracle 

D. SMTP 

View Answer

Q4. The collection of health modules and their settings is known as which option? A. appliance policy 

B. system policy 

C. correlation policy 

D. health policy 

View Answer

Q5. FireSIGHT recommendations appear in which layer of the Policy Layers page? 

A. Layer Summary 

B. User Layers 

C. Built-In Layers 

D. FireSIGHT recommendations do not show up as a layer. 

View Answer

Q6. Which event source can have a default workflow configured? 

A. user events 

B. discovery events 

C. server events 

D. connection events 

View Answer

Q7. Access control policy rules can be configured to block based on the conditions that you specify in each rule. Which behavior block response do you use if you want to deny and reset the connection of HTTP traffic that meets the conditions of the access control rule? 

A. interactive block with reset 

B. interactive block 

C. block 

D. block with reset 

View Answer

Q8. Which option is true regarding the $HOME_NET variable? 

A. is a policy-level variable 

B. has a default value of "all" 

C. defines the network the active policy protects 

D. is used by all rules to define the internal network 

View Answer

Q9. Which option is used to implement suppression in the Rule Management user interface? 

A. Rule Category 

B. Global 

C. Source 

D. Protocol 

View Answer

Q10. Which option is a remediation module that comes with the Sourcefire System? 

A. Cisco IOS Null Route 

B. Syslog Route 

C. Nmap Route Scan 

D. Response Group 

View Answer