Exam2pass
0 items Sign In or Register
  • Home
  • IT Exams
  • Guarantee
  • FAQs
  • Reviews
  • Contact Us
  • Demo
Exam2pass > Cisco > Cisco Certifications > 500-285 > 500-285 Online Practice Questions and Answers

500-285 Online Practice Questions and Answers

Questions 4

What are the two categories of variables that you can configure in Object Management?

A. System Default Variables and FireSIGHT-Specific Variables

B. System Default Variables and Procedural Variables

C. Default Variables and Custom Variables

D. Policy-Specific Variables and Procedural Variables

Buy Now

Correct Answer: C

Questions 5

Which option is true regarding the $HOME_NET variable?

A. is a policy-level variable

B. has a default value of "all"

C. defines the network the active policy protects

D. is used by all rules to define the internal network

Buy Now

Correct Answer: C

Questions 6

FireSIGHT recommendations appear in which layer of the Policy Layers page?

A. Layer Summary

B. User Layers

C. Built-In Layers

D. FireSIGHT recommendations do not show up as a layer.

Buy Now

Correct Answer: C

Questions 7

Host criticality is an example of which option?

A. a default whitelist

B. a default traffic profile

C. a host attribute

D. a correlation policy

Buy Now

Correct Answer: C

Questions 8

A context box opens when you click on an event icon in the Network File Trajectory map for a file. Which option is an element of the box?

A. Scan

B. Application Protocol

C. Threat Name

D. File Name

Buy Now

Correct Answer: B

Questions 9

Context Explorer can be accessed by a subset of user roles. Which predefined user role is not valid for FireSIGHT event access?

A. Administrator

B. Intrusion Administrator

C. Security Analyst

D. Security Analyst (Read-Only)

Buy Now

Correct Answer: B

Questions 10

When configuring an LDAP authentication object, which server type is available?

A. Microsoft Active Directory

B. Yahoo

C. Oracle

D. SMTP

Buy Now

Correct Answer: A

Questions 11

Alert priority is established in which way?

A. event classification

B. priority.conf file

C. host criticality selection

D. through Context Explorer

Buy Now

Correct Answer: A

Questions 12

Which statement represents detection capabilities of the HTTP preprocessor?

A. You can configure it to blacklist known bad web servers.

B. You can configure it to normalize cookies in HTTP headers.

C. You can configure it to normalize image content types.

D. You can configure it to whitelist specific servers.

Buy Now

Correct Answer: B

Questions 13

What does packet latency thresholding measure?

A. the total elapsed time it takes to process a packet

B. the amount of time it takes for a rule to process

C. the amount of time it takes to process an event

D. the time span between a triggered event and when the packet is dropped

Buy Now

Correct Answer: A

Exam Code: 500-285
Exam Name: Securing Cisco Networks with Sourcefire Intrusion Prevention System
Last Update: May 29, 2026
Questions: 60

PDF (Q&A)

$45.99
ADD TO CART

VCE

$49.99
ADD TO CART

PDF + VCE

$59.99
ADD TO CART

Exam2Pass----The Most Reliable Exam Preparation Assistance

There are tens of thousands of certification exam dumps provided on the internet. And how to choose the most reliable one among them is the first problem one certification candidate should face. Exam2Pass provide a shot cut to pass the exam and get the certification. If you need help on any questions or any Exam2Pass exam PDF and VCE simulators, customer support team is ready to help at any time when required.

Home | Guarantee & Policy |  Privacy & Policy |  Terms & Conditions |  How to buy |  FAQs |  About Us |  Contact Us |  Demo |  Reviews

2026 Copyright @ exam2pass.com All trademarks are the property of their respective vendors. We are not associated with any of them.