お手軽にダウンロードできる300-720試験問題集が更新されたのは149問があります [Q84-Q108]

Share

お手軽にダウンロードできる300-720試験問題集が更新されたのは149問があります

最新更新されたのは300-720試験問題2023年更新

質問 # 84
A Cisco ESA administrator has several mail policies configured. While testing policy match using a specific sender, the email was not matching the expected policy.
What is the reason of this?

  • A. The Tram* header is checked against all policies in a top-down fashion.
  • B. The To" header is checked against all policies in a top-down fashion.
  • C. The message header with the highest priority is checked against each policy in a top-down fashion.
  • D. The message header with the highest priority is checked against the Default policy in a top-down fashion.

正解:C

解説:
The envelope sender and the envelope recipeint have a higher priority over the sender header when you match a message to a mail policy. If you configure a mail policy to match a specific user, the messages are automatically classified into the mail policy based on the envelope sender and the envelope recipient. https://www.cisco.com/c/en/us/td/docs/security/esa/esa11-1/user_guide/b_ESA_Admin_Guide_11_1/b_ESA_Admin_Guide_chapter_01001.html


質問 # 85
Which feature must be configured before an administrator can use the outbreak filter for nonviral threats?

  • A. data loss prevention
  • B. quarantine threat level
  • C. antivirus
  • D. antispam

正解:D

解説:
The feature that must be configured before an administrator can use the outbreak filter for nonviral threats is antispam. The outbreak filter relies on the antispam engine to detect and block nonviral threats, such as phishing, malware, or spam campaigns. You need to enable antispam scanning and configure the antispam settings before you can use the outbreak filter.


質問 # 86
Which Cisco Secure Email Threat Defense visibility and remediation mode is only available when using Cisco Secure Email Gateway as the message source?

  • A. No Authentication
  • B. Basic Authentication
  • C. Microsoft 365 Authentication
  • D. Cisco Security Cloud Sign On

正解:A

解説:
According to the Cisco Secure Email Threat Defense User Guide, the No Authentication option is only available if you are using a Cisco Secure Email Gateway (SEG) as your message source. This option allows visibility only, no remediation1.
The other options are not valid because:
A) Basic Authentication is not a visibility and remediation mode for Cisco Secure Email Threat Defense. It is a method of authenticating users with a username and password2.
C) Microsoft 365 Authentication is a visibility and remediation mode that allows you to use Microsoft 365 credentials to access Cisco Secure Email Threat Defense. It has two sub-options: Read/Write and Read. This mode is available for both Microsoft 365 and Gateway message sources1.
D) Cisco Security Cloud Sign On is not a visibility and remediation mode for Cisco Secure Email Threat Defense. It is a service that manages user authentication for Cisco security products, including Cisco Secure Email Threat Defense3.


質問 # 87
An organization wants to designate help desk personnel to assist with tickets that request the release of messages from the spam quarantine because company policy does not permit direct end-user access to the quarantine. Which two roles must be used to allow help desk personnel to release messages while restricting their access to make configuration changes in the Cisco Secure Email Gateway? (Choose two.)

  • A. Quarantine Administrator
  • B. Technician
  • C. Help Desk User
  • D. Read-Only Operator
  • E. Administrator

正解:A、C

解説:
All users with administrator privileges can change spam quarantine settings and view and manage messages in the spam quarantine. You do not need to configure spam quarantine access for administrator users.
If you configure access to the spam quarantine for users with the following roles, they can view, release, and delete messages in the spam quarantine:
-Operator
-Read-only operator
-Help desk user
-Guest
-Custom user roles that have spam quarantine privileges
These users cannot access spam quarantine settings.
https://www.cisco.com/c/en/us/td/docs/security/esa/esa14-0/user_guide/b_ESA_Admin_Guide_14-0/b_ESA_Admin_Guide_12_1_chapter_0100000.html?bookSearch=true#con_1624156


質問 # 88
Which three options are Cisco ESA facilities that can use LDAP group queries? (Choose three.)

  • A. SenderBase reputation filtering
  • B. Anti-spam settings
  • C. Message filters
  • D. RAT
  • E. Sender groups
  • F. Destination controls
  • G. Incoming mail policies
  • H. Content filters

正解:C、G、H


質問 # 89
Drag and drop the Cisco ESA reactions to a possible DLP from the left onto the correct action types on the right.

正解:

解説:

Reference:
https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-0/user_guide/b_ESA_Admin_Guide_12_0/ b_ESA_Admin_Guide_chapter_010001.html (message actions)


質問 # 90
Which SMTP extension does Cisco ESA support for email security?

  • A. STARTTLS
  • B. ETRN
  • C. UTF8SMTP
  • D. PIPELINING

正解:A

解説:
Reference:
https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-0/user_guide/b_ESA_Admin_Guide_12_0/b_ESA_Admin_Guide_12_0_chapter_011000.html


質問 # 91
A Cisco Secure Email Gateway administrator recently enabled the Outbreak Filters Global Service Setting to detect Viral as well as Non-Viral threat detection, with no detection of Non-viral threats after 24 hours of monitoring Outbreak Filters What is the reason that Non-Viral threat detection is not detecting any positive verdicts?

  • A. The Outbreak Filters option Graymail Header must be enabled
  • B. The Outbreak Filters option URL Rewriting must be enabled.
  • C. Non-Viral threat detection requires Antivirus or AMP enablement to properly function
  • D. Non-Viral threat detection requires AntiSpam or Intelligent Multi-Scan enablement to properly function.

正解:D

解説:
According to the [Cisco Secure Email User Guide], Non-Viral threat detection is a feature of Outbreak Filters that detects and blocks email messages that contain non-viral threats such as phishing, fraud, or social engineering[1, p. 25]. To use this feature, you need to enable either AntiSpam or Intelligent Multi-Scan on your Cisco Secure Email Gateway, as these features provide the necessary scanning and filtering capabilities for Non-Viral threat detection[1, p. 26].
The other options are not valid because:
A) Non-Viral threat detection does not require Antivirus or AMP enablement to properly function. Antivirus and AMP are features that detect and block email messages that contain viral threats such as malware or ransomware[1, p. 27-28].
B) The Outbreak Filters option Graymail Header does not affect Non-Viral threat detection. Graymail Header is an option that allows you to add a header to email messages that are classified as graymail, which are messages that are not spam but may be unwanted by some recipients, such as newsletters or promotions[1, p. 25].
D) The Outbreak Filters option URL Rewriting does not affect Non-Viral threat detection. URL Rewriting is an option that allows you to rewrite the URLs in email messages to point to a Cisco proxy server, which can scan the URLs for malicious content and redirect the users to a warning page if needed[1, p. 25].


質問 # 92
Which two features of Cisco Email Security are added to a Sender Group to protect an organization against email threats? (Choose two.)

  • A. senderbase reputation filtering
  • B. geolocation-based filtering
  • C. NetFlow
  • D. content disarm and reconstruction
  • E. heuristic-based filtering

正解:A、E


質問 # 93
Spammers routinely try to send emails with the recipient field filled with a list of all possible combinations of letters and numbers. These combinations, appended with a company domain name are malicious attempts at learning all possible valid email addresses. Which action must be taken on a Cisco Secure Email Gateway to prevent this from occurring?

  • A. Perform LDAP acceptance validation.
  • B. Select the SMTP Authentication Query checkbox
  • C. Enable end user safelist features
  • D. Quarantine external authentication queries.

正解:A

解説:
LDAP acceptance validation is a feature that allows the Cisco Secure Email Gateway to check if the recipient address of an incoming message exists in an LDAP directory before accepting it. This feature can help prevent spammers from sending emails with invalid recipient addresses and reduce the load on the appliance2. Reference = User Guide for AsyncOS 12.0 for Cisco Email Security Appliances - GD (General Deployment) - Configuring LDAP Queries [Cisco Secure Email Gateway] - Cisco


質問 # 94
Which two factors must be considered when message filter processing is configured? (Choose two.)

  • A. structure of the combined packet
  • B. MIME structure of the message
  • C. mail policies
  • D. message-filter order
  • E. lateral processing

正解:B、D

解説:
Message-filter order and MIME structure of the message are two factors that must be considered when message filter processing is configured on Cisco ESA. Message-filter order determines the sequence in which message filters are evaluated and applied to incoming messages, which can affect the final outcome of the filtering process. MIME structure of the message determines how message filters match against different parts of the message, such as headers, body, attachments, etc., which can affect the accuracy and performance of the filtering process.


質問 # 95
When the Cisco ESA is configured to perform antivirus scanning, what is the default timeout value?

  • A. 60 seconds
  • B. 30 seconds
  • C. 120 seconds
  • D. 90 seconds

正解:A


質問 # 96
Which two components must be configured to perform DLP scanning? (Choose two.)

  • A. Enable a DLP policy on the DLP Policy Customizations.
  • B. Enable a DLP policy on the Outgoing Mail Policy.
  • C. Add a DLP policy on the Incoming Mail Policy.
  • D. Add a DLP policy to the Outgoing Content Filter.
  • E. Add a DLP policy to the DLP Policy Manager.

正解:B、E


質問 # 97
Which benefit does enabling external spam quarantine on Cisco SMA provide?

  • A. access to the spam quarantine interface on which a user can release, duplicate, or delete
  • B. ability to consolidate spam quarantine data from multiple Cisco ESA to one central console
  • C. ability to scan messages by using two engines to increase a catch rate
  • D. ability to back up spam quarantine from multiple Cisco ESAs to one central console

正解:B

解説:
Explanation/Reference: https://www.cisco.com/c/en/us/td/docs/security/security_management/sma/sma11-0/ user_guide/b_SMA_Admin_Guide/b_SMA_Admin_Guide_chapter_010101.html


質問 # 98
When virtual gateways are configured, which two distinct attributes are allocated to each virtual gateway address? (Choose two.)

  • A. DNS server address
  • B. domain
  • C. external spam quarantine
  • D. DHCP server address
  • E. IP address

正解:B、E


質問 # 99
Spreadsheets containing credit card numbers are being allowed to bypass the Cisco ESA.
Which outgoing mail policy feature should be configured to catch this content before it leaves the network?

  • A. data loss prevention
  • B. file reputation filtering
  • C. file analysis
  • D. outbreak filtering

正解:D


質問 # 100
Which of the following two steps are required to enable Cisco SecureX integration on a Cisco Secure Email Gateway appliance? (Choose two.)

  • A. Select the correct Threat Response Server based on your region.
  • B. Paste in the Registration Token generated from the Security Services Exchange.
  • C. Enable the Security Services Exchange service under Network>Cloud Service Settings
  • D. Paste in the Registration Token generated from the Smart Licensing Account
  • E. Enable the Threat Response service under Network>Cloud Service Settings.

正解:A、E

解説:
one of the methods to enable Cisco SecureX integration on a Cisco Secure Email Gateway appliance is to use the Threat Response service1. This service allows the appliance to send telemetry data to the SecureX cloud and provide visibility and response capabilities across multiple security products1. To use this service, the administrator needs to perform the following steps1:
Enable the Threat Response service: The administrator needs to go to Network > Cloud Service Settings and enable the Threat Response service. This will generate a registration token that can be used to register the appliance with SecureX1.
Select the correct Threat Response Server: The administrator needs to select the appropriate Threat Response server based on the region where the appliance is located. The available regions are North America, Europe, and Asia Pacific1.


質問 # 101
What is the default method of remotely accessing a newly deployed Cisco Secure Email Virtual Gateway when a DHCP server is not available?

  • A. Use the IP address of 192.168 42 42 via the Management port
  • B. Manual configuration of an IP address is required through the hypervisor console before remote access
  • C. Manual configuration of an IP address is required through the serial port before remote access
  • D. DHCP is required for the initial IP address assignment

正解:A

解説:
The default method of remotely accessing a newly deployed Cisco Secure Email Virtual Gateway when a DHCP server is not available is to use the IP address of 192.168.42.42 via the Management port. This IP address is assigned by default to the Management port of the virtual gateway and can be used to access the web user interface or the command-line interface of the appliance. Reference: [Cisco Secure Email Gateway Installation and Upgrade Guide - Configuring Network Settings]


質問 # 102
What is the default behavior of any listener for TLS communication?

  • A. preferred-verify
  • B. preferred
  • C. required
  • D. off

正解:D

解説:
Reference:
https://www.cisco.com/c/en/us/support/docs/security/email-security-appliance/118954-config-esa- 00.html


質問 # 103
To comply with a recent audit, an engineer must configure anti-virus message handling options on the incoming mail policies to attach warnings to the subject of an email.
What should be configured to meet this requirement for known viral emails?

  • A. Virus Infected Messages
  • B. Positively Identified Messages
  • C. Unscannable Messages
  • D. Encrypted Messages

正解:D


質問 # 104
Which two Cisco ESA features are used to control email delivery based on the sender? (Choose two.)

  • A. safelists
  • B. incoming mail policies
  • C. outbreak filter
  • D. blocklists
  • E. spam quarantine

正解:A、D

解説:
Safelists and blocklists are features on Cisco ESA that allow you to control email delivery based on the sender. Safelists are lists of sender addresses or domains that you want to accept or exempt from certain filtering actions. Blocklists are lists of sender addresses or domains that you want to reject or drop3. Reference = Securing Email with Cisco Email Security Appliance (SESA) v3.1


質問 # 105
Which two configurations are used on multiple LDAP servers to connect with Cisco ESA?
(Choose two.)

  • A. active-standby
  • B. load balancing
  • C. failover
  • D. active-active
  • E. SLA monitor

正解:B、C


質問 # 106
Which action on the Cisco ESA provides direct access to view the safelist/blocklist?

  • A. Debug the mail flow policy.
  • B. Monitor Incoming/Outgoing Listener.
  • C. Show the SLBL cache on the CLI.
  • D. Export the SLBL to a .csv file.

正解:D

解説:
The safelist/blocklist (SLBL) is a feature that allows Cisco ESA to accept or reject messages from specific email addresses or domains, based on the configuration of mail flow policies or end user preferences.
The action that provides direct access to view the SLBL on Cisco ESA is to export the SLBL to a .csv file, which can be done from the web user interface by selecting Security Services > Safelist/Blocklist and clicking Export.
The other options do not provide direct access to view the SLBL on Cisco ESA.


質問 # 107
Which antispam feature is utilized to give end users control to allow emails that are spam to be delivered to their inbox, overriding any spam verdict and action on the Cisco ESA?

  • A. end user passthrough list
  • B. end user safelist
  • C. end user spam quarantine access
  • D. end user allow list

正解:C


質問 # 108
......

無料更新されたCisco 300-720テストエンジン問題には149問題と解答:https://jp.fast2test.com/300-720-premium-file.html

ベストな問題集を使おうCCNP Security 300-720専門試験問題:https://drive.google.com/open?id=1efhzntR7i0-xBf3WZFmUgP_q5yx_Nemn


弊社を連絡する

我々は12時間以内ですべてのお問い合わせを答えます。

我々の働いている時間: ( GMT 0:00-15:00 )
月曜日から土曜日まで

サポート: 現在連絡 

English Deutsch 繁体中文 한국어