[2023年10月14日] 究極の300-720準備ガイド!無料最新のCisco練習テスト問題集
今すぐゲットせよ!高評価Cisco 300-720試験問題集
Cisco 300-720試験は、電子メールセキュリティとCisco Email Securityアプライアンスを深く理解する必要がある挑戦的な試験です。候補者は、この試験を試みる前に、ネットワークのセキュリティとCisco Technologiesに精通している少なくとも2年の経験があることをお勧めします。試験に合格すると、Cisco Email Securityアプライアンスを使用して電子メール通信を確保するために必要な知識とスキルがあり、キャリアの成長に役立つ資産になる可能性があることを示しています。
質問 # 49
How does the graymail safe unsubscribe feature function?
- A. It checks the URI reputation and category and allows the content filter to take an action on it.
- B. It strips the malicious content of the URI before unsubscribing.
- C. It checks the reputation of the URI and performs the unsubscribe process on behalf of the end user.
- D. It redirects the end user who clicks the unsubscribe button to a sandbox environment to allow a safe unsubscribe.
正解:C
質問 # 50
Which process is skipped when an email is received from safedomain.com, which is on the safelist?
- A. antivirus scanning
- B. outbreak filter
- C. antispam scanning
- D. message filter
正解:C
解説:
The safelist is a list of email addresses or domains that are considered legitimate and trustworthy by Cisco ESA. When an email is received from a sender on the safelist, Cisco ESA skips antispam scanning for that message and delivers it to the recipient without any spam filtering.
質問 # 51
Which type of query must be configured when setting up the Spam Quarantine while merging notifications?
- A. Spam Quarantine Alias Consolidation Query
- B. Spam Quarantine Alias Routing Query
- C. Spam Quarantine Alias Authentication Query
- D. Spam Quarantine Alias Masquerading Query
正解:A
質問 # 52
What are two primary components of content filters? (Choose two.)
- A. policies
- B. actions
- C. conditions
- D. content
- E. subject
正解:B、C
解説:
Explanation/Reference:
https://www.cisco.com/c/en/us/td/docs/security/ces/user_guide/esa_user_guide_11-1/ b_ESA_Admin_Guide_ces_11_1/b_ESA_Admin_Guide_chapter_01010.pdf
質問 # 53
Which two features are applied to either incoming or outgoing mail policies? (Choose two.)
- A. antivirus
- B. application filtering
- C. Indication of Compromise
- D. outbreak filters
- E. sender reputation filtering
正解:A、D
解説:
Outbreak filters and antivirus are two features that can be applied to either incoming or outgoing mail policies on Cisco ESA. Outbreak filters allow Cisco ESA to detect and block messages that contain new or emerging email threats, such as viruses, worms, phishing, or spam, by using real-time updates from Talos intelligence. Antivirus allows Cisco ESA to scan messages for known viruses and malware using one or two antivirus engines (Sophos and McAfee).
質問 # 54
When URL logging is configured on a Cisco ESA, which feature must be enabled first?
- A. virus outbreak filter
- B. antivirus
- C. senderbase reputation filter
- D. antispam
正解:A
質問 # 55
Drag and drop the steps to configure Cisco ESA to use SPF/SIDF verification from the left into the correct order on the right.
正解:
解説:

質問 # 56
An engineer is configuring a Cisco ESA for the first time and needs to ensure that any email traffic coming from the internal SMTP servers is relayed out through the Cisco ESA and is tied to the Outgoing Mail Policies.
Which Mail Flow Policy setting should be modified to accomplish this goal?
- A. Connection Behavior
- B. Bounce Detection Signing
- C. Reverse Connection Verification
- D. Exception List
正解:A
質問 # 57
An organization wants to use its existing Cisco ESA to host a new domain and enforce a separate corporate policy for that domain.
What should be done on the Cisco ESA to achieve this?
- A. Use the deli very config command to configure mail delivery for the new domain.
- B. Use the altrchost command to add a separate gateway for the new domain.
- C. Use the dsestconf command to add a separate destination for the new domain.
- D. Use the smtproutes command to configure a SMTP route for the new domain.
正解:D
解説:
Reference:
https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-0/user_guide/b_ESA_Admin_Guide_12_0/b_ESA_Admin_Guide_12_0_chapter_011001.html one of the steps to accept mail for additional internal domains on the Cisco ESA is to choose Network > SMTP Routes and enter the new domain and the corresponding destination host IP address1. This can also be done using the smtproutes command in the CLI1. The other commands (deliveryconfig, dsestconf, and altrchost) are not related to this task.
質問 # 58
Which two certificate authority lists are available in Cisco ESA? (Choose two.)
- A. system
- B. default
- C. demo
- D. user
- E. custom
正解:A、E
質問 # 59
An analyst creates a new content dictionary to use with Forged Email Detection.
Which entry will be added into the dictionary?
- A. mycompany.com
- B. Alpha Beta
- C. ^Alpha\ Beta$
- D. [email protected]
正解:B
解説:
A content dictionary is a list of words or phrases that can be used to match against message content in Cisco ESA. For Forged Email Detection, a content dictionary can be used to specify the display names of internal senders that should not appear in the From header of external messages. The display name is usually the name of the sender as it appears in the email client, such as Alpha Beta. Therefore, the entry that will be added into the dictionary for this purpose is Alpha Beta.
質問 # 60
Which action must be taken before a custom quarantine that is being used can be deleted?
- A. Remove the quarantine from the message action of a filter.
- B. Delete the quarantine that is assigned to a filter.
- C. Delete only the unused quarantine.
- D. Delete the quarantine that is not assigned to a filter.
正解:A
解説:
Before a custom quarantine that is being used can be deleted, it must be removed from the message action of any filter that is using it on Cisco ESA. Otherwise, an error message will appear stating that the quarantine cannot be deleted because it is in use.
質問 # 61
Which two statements about configuring message filters within the Cisco ESA are true? (Choose two.)
- A. The filterconfig command executed from the CLI is used to configure message filters.
- B. The filters command executed from the CLI is used to configure the message filters.
- C. Message filters configuration within the web user interface is located within Incoming Content Filters.
- D. Message filters can be configured only from the web user interface.
- E. Message filters can be configured only from the CLI.
正解:B、E
質問 # 62
Refer to the exhibit.
Which SPF record is valid for mycompany.com?
- A. v=spf1 a mx ip4:10.1.10.23 -all
- B. v=spf1 a mx ip4:199.209.31.21 -all
- C. v=spf1 a mx ip4:199.209.31.2 -all
- D. v=spf1 a mx ip4:172.16.18.230 -all
正解:D
質問 # 63
Which feature must be configured before an administrator can use the outbreak filter for nonviral threats?
- A. quarantine threat level
- B. antispam
- C. antivirus
- D. data loss prevention
正解:B
解説:
The feature that must be configured before an administrator can use the outbreak filter for nonviral threats is antispam. The outbreak filter relies on the antispam engine to detect and block nonviral threats, such as phishing, malware, or spam campaigns. You need to enable antispam scanning and configure the antispam settings before you can use the outbreak filter.
質問 # 64
When virtual gateways are configured, which two distinct attributes are allocated to each virtual gateway address? (Choose two.)
- A. external spam quarantine
- B. DHCP server address
- C. DNS server address
- D. IP address
- E. domain
正解:D、E
解説:
Virtual gateways are a feature that allows Cisco ESA to host multiple email domains on a single physical interface, using different IP addresses and hostnames for each domain.
When virtual gateways are configured, two distinct attributes are allocated to each virtual gateway address:
Domain, which is the email domain name that is associated with the virtual gateway address, such as mycompany.com or mydomain.com.
IP address, which is the IPv4 or IPv6 address that is assigned to the virtual gateway address, such as 199.209.31.X or 2001:db8::X.
The other options are not attributes that are allocated to each virtual gateway address on Cisco ESA.
質問 # 65
Drag and drop authentication options for End-User Quarantine Access from the left onto the corresponding configuration steps on the right.
正解:
解説:
質問 # 66
A network administrator is modifying an outgoing mail policy to enable domain protection for the organization. A DNS entry is created that has the public key.
Which two headers will be used as matching criteria in the outgoing mail policy? (Choose two.)
- A. sender
- B. mail-from
- C. URL reputation
- D. message-ID
- E. from
正解:A、E
質問 # 67
Which action must be taken before a custom quarantine that is being used can be deleted?
- A. Remove the quarantine from the message action of a filter.
- B. Delete the quarantine that is assigned to a filter.
- C. Delete only the unused quarantine.
- D. Delete the quarantine that is not assigned to a filter.
正解:A
解説:
Reference:
https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-0/user_guide/ b_ESA_Admin_Guide_12_0/b_ESA_Admin_Guide_12_0_chapter_011111.html
質問 # 68
Email encryption is configured on a Cisco ESA that uses CRES.
Which action is taken on a message when CRES is unavailable?
- A. It is encrypted by a Cisco encryption appliance.
- B. It is dropped and an error message is sent to the sender.
- C. It is requeued.
- D. It is sent in clear text.
正解:D
解説:
Reference:
https://www.cisco.com/c/en/us/support/docs/security/email-security-appliance/117863-configure- esa-00.html
質問 # 69
An organization wants to prevent proprietary patent documents from being shared externally via email. The network administrator reviewed the DLP policies on the Cisco Secure Email Gateway and could not find an existing policy with the appropriate matching patterns. Which type of DLP policy template must be used to create a policy that meets this requirement?
- A. regulatory compliance
- B. privacy protection
- C. acceptable use
- D. custom policy
正解:D
解説:
Custom policy is a type of DLP policy template that must be used to create a policy that meets this requirement. Custom policy allows the administrator to define their own criteria for detecting sensitive or confidential data in messages, such as keywords, regular expressions, file types, etc.
To create a custom DLP policy on Cisco ESA, the administrator can follow these steps:
Select Mail Policies > DLP Policy Manager and click Add Policy.
Enter a name and description for the DLP policy, such as Patent Protection.
Under Policy Template, select Custom Policy.
Click Submit.
Under Content Matching Criteria, click Add Criteria.
Choose a matching type, such as Keyword or Regular Expression, and enter a value that matches the proprietary patent documents, such as "patent number" or "\d{4}/\d{6}".
Click Submit.
The other options are not valid types of DLP policy templates to create a policy that meets this requirement, because they are predefined templates that do not match the proprietary patent documents.
質問 # 70
Which global setting is configured under Cisco ESA Scan Behavior?
- A. actions for unscannable messages due to attachment type
- B. minimum depth of attachment recursion to scan
- C. attachment scanning timeout
- D. minimum attachment size to scan
正解:C
質問 # 71
......
Cisco 300-720認定試験は、Cisco Email Securityアプライアンスを使用して電子メールを確保したい専門家の知識とスキルをテストするように設計されています。この認定試験は、電子メールセキュリティの専門知識を検証し、Cisco Email Securityアプライアンスを構成、展開、維持する能力を実証したいセキュリティの専門家、ネットワーク管理者、およびエンジニアに最適です。
合格率取得する秘訣は300-720認定試験エンジンPDF:https://jp.fast2test.com/300-720-premium-file.html
300-720試験問題集で合格できるには更新されたテスト問題集:https://drive.google.com/open?id=1muAa50SZMvT2mr6Sw3odB7VIFmxr8QNP