[2023年11月] 合格させる300-720試験一発合格、最新の300-720 Fast2testの提供する試験問題
CCNP Security問題集で300-720試験の完全版解答試験学習ガイド
Cisco 300-720 認定試験の出題範囲:
| トピック | 出題範囲 |
|---|---|
| トピック 1 |
|
| トピック 2 |
|
| トピック 3 |
|
| トピック 4 |
|
| トピック 5 |
|
| トピック 6 |
|
| トピック 7 |
|
| トピック 8 |
|
| トピック 9 |
|
| トピック 10 |
|
| トピック 11 |
|
| トピック 12 |
|
| トピック 13 |
|
| トピック 14 |
|
| トピック 15 |
|
質問 # 36
A Cisco ESA administrator has several mail policies configured. While testing policy match using a specific sender, the email was not matching the expected policy.
What is the reason of this?
- A. The To" header is checked against all policies in a top-down fashion.
- B. The message header with the highest priority is checked against the Default policy in a top-down fashion.
- C. The message header with the highest priority is checked against each policy in a top-down fashion.
- D. The Tram* header is checked against all policies in a top-down fashion.
正解:B
質問 # 37
Which attack is mitigated by using Bounce Verification?
- A. smurf
- B. spoof
- C. denial of service
- D. eavesdropping
正解:C
解説:
Reference:
https://www.networkworld.com/article/2305394/ironport-adds-bounce-back-verification-for-e- mail.html
質問 # 38
Refer to the exhibit. Which SPF record is valid for mycompany.com?
- A. v=spf1 a mx ip4:172.16.18.230 -all
- B. v=spf1 a mx ip4:199.209.31.2 -all
- C. v=spf1 a mx ip4:199.209.31.21 -all
- D. v=spf1 a mx ip4:10.1.10.23 -all
正解:C
質問 # 39
When the Spam Quarantine is configured on the Cisco ESA, what validates end-users via LDAP during login to the End-User Quarantine?
- A. Spam Quarantine End-User Authentication Query
- B. Enabling the End-User Safelist/Blocklist feature
- C. Spam Quarantine Alias Consolidation Query
- D. Spam Quarantine External Authentication Query
正解:A
質問 # 40
An engineer is tasked with reviewing mail logs to confirm that messages sent from domain abc.com are passing SPF verification and being accepted by the Cisco ESA. The engineer notices that SPF verification is not being performed and that SPF is not being referenced in the logs for messages sent from domain abc.com.
Why is the verification not working properly?
- A. SPF verification is disabled on the Mail Flow Policy.
- B. An SPF verification Content Filter has not been created.
- C. The SPF conformance level is set to SIDF compatible on the Mail Flow Policy.
- D. SPF verification is disabled in the Recipient Access Table.
正解:A
解説:
SPF verification is a feature that allows Cisco ESA to verify the authenticity of the sender's domain by checking the sender's IP address against a DNS record published by the domain owner. An SPF record is a TXT record that specifies the authorized IP addresses or hosts for sending emails from a domain, using a syntax of qualifiers, mechanisms, and modifiers.
The reason why the verification is not working properly is that SPF verification is disabled on the mail flow policy that applies to the messages sent from domain abc.com. A mail flow policy is a set of rules that determine how incoming or outgoing messages are processed by Cisco ESA, including whether to enable SPF verification or not.
To enable SPF verification on the mail flow policy, the administrator can follow these steps:
Select Mail Policies > Mail Flow Policies and click Edit Settings for the mail flow policy that applies to the messages sent from domain abc.com.
Under Sender Authentication, select Enable SPF Verification and choose an SPF conformance level from the drop-down menu.
Click Submit.
The other options are not valid reasons why the verification is not working properly, because they do not affect SPF verification on the mail flow policy.
質問 # 41
An engineer tries to implement phishing simul-ations to test end users, but they are being blocked by the Cisco Secure Email Gateway appliance. Which two components, when added to the allow list, allow these simul-ations to bypass antispam scanning? (Choose two.)
- A. reputation score
- B. domains
- C. spf check
- D. senders
- E. receivers
正解:B、D
解説:
To allow phishing simul-ations to bypass antispam scanning, the administrator must add two components to the allow list: domains and senders. Domains are the email domains that are used in the phishing simulations, such as example.com or test.com. Senders are the email addresses that are used to send the phishing simulations, such as [email protected] or [email protected]. By adding these components to the allow list, the administrator can prevent them from being blocked by antispam scanning and allow them to reach the end users for testing purposes. Reference: [Cisco Secure Email Gateway Administrator Guide - Creating Allow Lists]
質問 # 42
Which two steps configure Forged Email Detection? (Choose two.)
- A. Configure a filter to use the Forged Email Detection rule and dictionary.
- B. Configure a content dictionary with friendly names.
- C. Enable Forged Email Detection on the Security Services page.
- D. Configure a filter to check the Header From value against the Forged Email Detection dictionary.
- E. Configure a content dictionary with executive email addresses.
正解:A、E
解説:
Reference:
https://explore.cisco.com/esa-feature-enablement/user-guide-for-async-11
質問 # 43
Which method enables an engineer to deliver a flagged message to a specific virtual gateway address in the most flexible way?
- A. Map the envelope sender address to the host.
- B. Set up the interface group with the flag.
- C. Issue the altsrchost command.
- D. Apply a filter on the message.
正解:D
解説:
A filter is a method that enables an engineer to deliver a flagged message to a specific virtual gateway address in the most flexible way. A filter is a rule that allows Cisco ESA to perform actions on messages based on predefined or custom conditions, such as headers, envelope, body, attachments, etc.
To deliver a flagged message to a specific virtual gateway address using a filter, the engineer can create a content filter or message filter that matches the flag condition and applies an action of "deliver via alternate host" with the virtual gateway address as the parameter.
The other options are not methods that enable an engineer to deliver a flagged message to a specific virtual gateway address in the most flexible way, because they have more limitations or requirements than using a filter.
質問 # 44
Which process is skipped when an email is received from safedomain.com, which is on the safelist?
- A. antispam scanning
- B. outbreak filter
- C. antivirus scanning
- D. message filter
正解:D
質問 # 45
An engineer is configuring an SMTP authentication profile on a Cisco ESA which requires certificate verification.
Which section must be configured to accomplish this goal?
- A. Sending Profiles
- B. Verification Profiles
- C. Outgoing Mail Policies
- D. Mail Flow Policies
正解:D
質問 # 46
What is the order of virus scanning when multilayer antivirus scanning is configured?
- A. The Sophos engine scans for viruses first and the McAfee engine scans for viruses second.
- B. The default engine scans for viruses first and the McAfee engine scans for viruses second.
- C. The McAfee engine scans for viruses first and the Sophos engine scans for viruses second.
- D. The McAfee engine scans for viruses first and the default engine scans for viruses second.
正解:D
解説:
If you configure multi-layer anti-virus scanning, the Cisco appliance performs virus scanning with the McAfee engine first and the Sophos engine second. It scans messages using both engines, unless the McAfee engine detects a virus. If the McAfee engine detects a virus, the Cisco appliance performs the anti-virus actions (repairing, quarantining, etc.) defined for the mail policy.
Reference:
https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-0/user_guide/ b_ESA_Admin_Guide_12_0/b_ESA_Admin_Guide_chapter_01011.html
質問 # 47
An analyst creates a new content dictionary to use with Forged Email Detection.
Which entry will be added into the dictionary?
- A. [email protected]
- B. ^Alpha\ Beta$
- C. Alpha Beta
- D. mycompany.com
正解:D
質問 # 48
Which two are configured in the DMARC verification profile? (Choose two.)
- A. message action into an incoming or outgoing content filter
- B. message action to take when the policy is reject/quarantine
- C. ESA listeners to use the verification profile
- D. minimum number of signatures to verify
- E. name of the verification profile
正解:B、E
質問 # 49
When email authentication is configured on Cisco ESA, which two key types should be selected on the signing profile? (Choose two.)
- A. Domain Keys
- B. Public Keys
- C. DKIM
- D. Symmetric Keys
- E. Private Keys
正解:A、C
解説:
Reference:
https://www.cisco.com/c/en/us/support/docs/security/email-security-appliance/213939-esa- configure-dkim-signing.html
質問 # 50
An organization wants to use its existing Cisco ESA to host a new domain and enforce a separate corporate policy for that domain.
What should be done on the Cisco ESA to achieve this?
- A. Use the altrchost command to add a separate gateway for the new domain.
- B. Use the smtproutes command to configure a SMTP route for the new domain.
- C. Use the deli very config command to configure mail delivery for the new domain.
- D. Use the dsestconf command to add a separate destination for the new domain.
正解:B
解説:
Reference:
https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-0/user_guide/b_ESA_Admin_Guide_12_0/b_ESA_Admin_Guide_12_0_chapter_011001.html one of the steps to accept mail for additional internal domains on the Cisco ESA is to choose Network > SMTP Routes and enter the new domain and the corresponding destination host IP address1. This can also be done using the smtproutes command in the CLI1. The other commands (deliveryconfig, dsestconf, and altrchost) are not related to this task.
質問 # 51
Drag and drop the steps to configure Cisco ESA to use SPF/SIDF verification from the left into the correct order on the right.
正解:
解説:
質問 # 52
What are organizations trying to address when implementing a SPAM quarantine?
- A. false positives
- B. false negatives
- C. true positives
- D. true negatives
正解:A
解説:
https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-0/user_guide/b_ESA_Admin_Guide_12_0/b_ESA_Admin_Guide_12_0_chapter_0100000.html#c on_ 1482874
質問 # 53
A Cisco ESA administrator was notified that a user was not receiving emails from a specific domain. After reviewing the mail logs, the sender had a negative sender-based reputation score.
What should the administrator do to allow inbound email from that specific domain?
- A. Add the domain into the allow list.
- B. Modify the firewall to allow emails from the domain.
- C. Ask the user to add the sender to the email application's allow list.
- D. Create a new inbound mail policy with a message filter that overrides Talos.
正解:A
質問 # 54
Which two configurations are used on multiple LDAP servers to connect with Cisco ESA? (Choose two.)
- A. active-active
- B. active-standby
- C. SLA monitor
- D. load balancing
- E. failover
正解:D、E
解説:
Load balancing and failover are two configurations that can be used on multiple LDAP servers to connect with Cisco ESA. Load balancing means that Cisco ESA will distribute the LDAP queries among the available LDAP servers in a round-robin fashion, improving the performance and efficiency of the LDAP queries. Failover means that Cisco ESA will switch to another LDAP server if the current one is unavailable or unresponsive, ensuring the continuity and reliability of the LDAP queries.
Reference:
You can enter multiple host names to configure the LDAP servers for failover or load-balancing. Separate multiple entries with commas.
質問 # 55
......
シスコ300-720試験は、電子メールセキュリティにおけるスキルを向上させたいITプロフェッショナルにとって必須の認定資格です。この試験に合格することで、候補者はシスコメールセキュリティアプライアンスの専門知識を証明し、資格のある電子メールセキュリティ専門家として業界で認められることができます。
正真正銘のベスト材料は300-720オンライン練習試験:https://jp.fast2test.com/300-720-premium-file.html
最高品質の300-720問題集と解釈が待ってます!今すぐ取得せよ:https://drive.google.com/open?id=1muAa50SZMvT2mr6Sw3odB7VIFmxr8QNP