O'Reilly logo

SSFIPS Securing Cisco Networks with Sourcefire Intrusion Prevention System Study Guide: Exam 500-285 by John Gay, Alex Tatistcheff, Todd Lammle

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Chapter 5 FireSIGHT Technologies

THE SSFIPS EXAM TOPICS COVERED IN THIS CHAPTER INCLUDE THE FOLLOWING:

  • ✓ 5.1 Understand the discovery component inside FireSIGHT, including the policy configuration and the data collected
  • ✓ 5.2 Understand the type of data collected by connection events with FireSIGHT
  • ✓ 5.3 Understand the user information that is discovered with FireSIGHT

We’ve arrived at the perfect point in this book to introduce you to FireSIGHT. Once you’ve been acquainted with this awesome technology, we’ll move on to explore discovery components like the policy, type of data collected, connection events, and host attributes associated with it. By the end of this chapter, you’ll have gained sharp insight into exactly how FireSIGHT is ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required