web analytics
  • RSS

  • Polls

    What Cisco Cert Are You Currently Studying?

    View Results

    Loading ... Loading ...
  • Search on CiscoBibles

  • Popular Posts

  • Recent Comments

  • Archives

  • « | Main | »

    (New Updated) Real Cisco 500-280 Exam Dumps With New Added Questions For Free Download

    By admin | January 29, 2015

    Valid Tips For 100% 500-280 Exam Pass: PassLeader now provide the best 500-280 70q practice test for your 500-280 certification exam. We offer the latest 500-280 70q exam questions to ensure that you can 100 percent pass 500-280 exam, and what’s more, we will offer you the new updated 500-280 70q exam dumps for one year free and free new version VCE Player. Welcome to visit our site — passleader.com and get the valid 500-280 braindumps to pass exam as soon as possible.

    PassLeader 500-280 Exam Dumps[19]

    Vendor: Cisco
    Exam Code: 500-280
    Exam Name: Securing Cisco Networks with Open Source Snort

    What does packet sniffing do?

    A.    isolates datagrams into like groups
    B.    reads datagrams directly off the wire
    C.    transmits datagrams over a wireless network
    D.    rebuilds datagram streams

    Answer: B

    When building a platform for a Snort installation, which set of components is a major security concern?

    A.    IP address, mask, and gateway settings
    B.    host naming conventions
    C.    URL feed vendors
    D.    default accounts and settings

    Answer: D

    In the IP addressing scheme of your organization, each subnet consists of 4096 hosts, and the beginning of the addressing scheme is Your remote office is allocated the range of addresses from the first subnet. What are the CIDR notation, network address, broadcast address, and valid IP address in your assigned range?


    Answer: B

    Which statement about implementing DAQ is true?

    A.    It is a shell script that works on any Linux platform.
    B.    It must be compiled separately.
    C.    You must obtain it from Sourceforge.
    D.    It is not open source.

    Answer: B

    Which version of libpcap does DAQ require?

    A.    0.9.8 or later
    B.    1.0.0 or later
    C.    any version
    D.    none

    Answer: B

    If Snort is installed and the sensor, database, and web server all reside on the same machine, to which ports should remote access of the sensor be restricted?

    A.    22 and 443
    B.    80 and 443
    C.    443 and 3306
    D.    23 and 80

    Answer: A

    To execute a command in Linux while in the directory where it is located, and be sure you are only running that particular copy, what would you use in front of the executable name?

    A.    ./
    B.    ../
    C.    ..\
    D.    .\

    Answer: A

    Which application can read Barnyard log_pcap output plug-in files?

    A.    SnortReport
    B.    BASE or ACID
    C.    tcpdump
    D.    Snorby

    Answer: C

    To accept input from Snort and produce various forms of output, the Barnyard architecture consists of which components?

    A.    preprocessors and reassemblers
    B.    preprocessors and detection engine
    C.    data processors and output plug-ins
    D.    data processors and reassemblers

    Answer: C

    PassLeader 500-280 Exam Dumps[8]



    Share and Enjoy:
    • Print
    • Digg
    • StumbleUpon
    • del.icio.us
    • Facebook
    • Yahoo! Buzz
    • Twitter
    • Google Bookmarks
    • LinkedIn
    • email
    • Live
    • MySpace

    Topics: 500-280 Exam Questions, All Cisco Exam Dumps | No Comments »


    You must be logged in to post a comment.