[Q26-Q45] Fast2test 300-720リアル試験問題解答は更新された[2024年09月04日]

Share

Fast2test 300-720リアル試験問題解答は更新された[2024年09月04日]

お手軽に合格させる 最新Cisco 300-720問題集には149問があります

質問 # 26
A content dictionary was created for use with Forged Email Detection. Proper data that pertains to the CEO Example CEO: <ceo@example com> must be entered. What must be added to the dictionary to accomplish this goal?

  • A. ceo@example com
  • B. Example CEO
  • C. example.com
  • D. ceo

正解:A

解説:
[email protected] is the data that must be added to the dictionary to accomplish this goal. A content dictionary is a list of values that can be used as a condition in a content filter or a message filter. Forged Email Detection is a feature that allows Cisco ESA to detect and prevent email spoofing attacks, where the sender's address or domain is forged to appear as someone else, such as the CEO of the organization.
To create a content dictionary for use with Forged Email Detection on Cisco ESA, the administrator can follow these steps:
Select Mail Policies > Content Dictionaries and click Add Dictionary.
Enter a name and description for the content dictionary, such as CEO Email.
Under Dictionary Values, click Add Value.
Enter the email address of the CEO, such as [email protected].
Click Submit.


質問 # 27
An analyst creates a new content dictionary to use with Forged Email Detection.
Which entry will be added into the dictionary?

正解:C

解説:
Explanation/Reference: https://www.cisco.com/c/en/us/products/collateral/security/email-security-appliance/ whitepaper_C11-737596.html


質問 # 28
Refer to the exhibit.

Which SPF record is valid for mycompany.com?

  • A. v=spf1 a mx ip4:10.1.10.23 -all
  • B. v=spf1 a mx ip4:199.209.31.21 -all
  • C. v=spf1 a mx ip4:199.209.31.2 -all
  • D. v=spf1 a mx ip4:172.16.18.230 -all

正解:D


質問 # 29
An engineer tries to implement phishing simul-ations to test end users, but they are being blocked by the Cisco Secure Email Gateway appliance. Which two components, when added to the allow list, allow these simul-ations to bypass antispam scanning? (Choose two.)

  • A. receivers
  • B. domains
  • C. spf check
  • D. senders
  • E. reputation score

正解:B、D

解説:
To allow phishing simul-ations to bypass antispam scanning, the administrator must add two components to the allow list: domains and senders. Domains are the email domains that are used in the phishing simulations, such as example.com or test.com. Senders are the email addresses that are used to send the phishing simulations, such as [email protected] or [email protected]. By adding these components to the allow list, the administrator can prevent them from being blocked by antispam scanning and allow them to reach the end users for testing purposes. Reference: [Cisco Secure Email Gateway Administrator Guide - Creating Allow Lists]


質問 # 30
Drag and drop the AsyncOS methods for performing DMARC verification from the left into the correct order on the right.

正解:

解説:


質問 # 31
Which type of attack is prevented by configuring file reputation filtering and file analysis features?

  • A. backscatter
  • B. zero-day
  • C. phishing
  • D. denial of service

正解:B


質問 # 32
Drag and drop the steps to configure Cisco ESA to use SPF/SIDF verification from the left into the correct order on the right.

正解:

解説:


質問 # 33
Drag and drop the steps to configure Cisco ESA to use SPF/SIDF verification from the left into the correct order on the right.

正解:

解説:


質問 # 34
Which action is a valid fallback when a client certificate is unavailable during SMTP authentication on Cisco ESA?

  • A. SMTP AUTH
  • B. SMTP TLS
  • C. LDAP BIND
  • D. LDAP Query

正解:A

解説:
Explanation/Reference: https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-0/user_guide/ b_ESA_Admin_Guide_12_0/b_ESA_Admin_Guide_12_0_chapter_011011.html


質問 # 35
How does the graymail safe unsubscribe feature function?

  • A. It redirects the end user who clicks the unsubscribe button to a sandbox environment to allow a safe unsubscribe.
  • B. It strips the malicious content of the URI before unsubscribing.
  • C. It checks the URI reputation and category and allows the content filter to take an action on it.
  • D. It checks the reputation of the URI and performs the unsubscribe process on behalf of the end user.

正解:D

解説:
Secure unsubscribe option for end users. Mimicking an unsubscribe option is a popular phishing technique. For this reason, the end users are generally wary of clicking unknown unsubscribe links. For such scenarios, the cloud-based Unsubscribe Service extracts the original unsubscribe URI, checks the reputation of the URI, and then performs the unsubscribe process on behalf of the end user. This protects end users from malicious threats masquerading as unsubscribe links. https://www.cisco.com/c/en/us/td/docs/security/esa/esa14-2-1/User_Guide/b_ESA_Admin_Guide_14-2-1/b_ESA_Admin_Guide_12_1_chapter_01110.html#id_101033


質問 # 36
Which two features are applied to either incoming or outgoing mail policies? (Choose two.)

  • A. application filtering
  • B. Indication of Compromise
  • C. outbreak filters
  • D. antivirus
  • E. sender reputation filtering

正解:C、D


質問 # 37
What is the default behavior of any listener for TLS communication?

  • A. preferred-verify
  • B. off
  • C. preferred
  • D. required

正解:B

解説:
The default behavior of any listener for TLS communication is B. off. This means that TLS is not allowed for incoming connections to the listener and connections to the listener do not require encrypted Simple Mail Transfer Protocol (SMTP) conversations. This is stated in the web search result 1. To enable TLS for a listener, you need to configure the Use TLS option in the mail flow policy settings for the listener on the Mail Policies > HAT Overview page1. You can choose from three different settings for TLS: No, Preferred, or Required1.


質問 # 38
Which global setting is configured under Cisco ESA Scan Behavior?

  • A. actions for unscannable messages due to attachment type
  • B. attachment scanning timeout
  • C. minimum attachment size to scan
  • D. minimum depth of attachment recursion to scan

正解:B


質問 # 39
When virtual gateways are configured, which two distinct attributes are allocated to each virtual gateway address? (Choose two.)

  • A. DNS server address
  • B. external spam quarantine
  • C. domain
  • D. IP address
  • E. DHCP server address

正解:C、D

解説:
Virtual gateways are a feature that allows Cisco ESA to host multiple email domains on a single physical interface, using different IP addresses and hostnames for each domain.
When virtual gateways are configured, two distinct attributes are allocated to each virtual gateway address:
Domain, which is the email domain name that is associated with the virtual gateway address, such as mycompany.com or mydomain.com.
IP address, which is the IPv4 or IPv6 address that is assigned to the virtual gateway address, such as 199.209.31.X or 2001:db8::X.
The other options are not attributes that are allocated to each virtual gateway address on Cisco ESA.


質問 # 40
What are organizations trying to address when implementing a SPAM quarantine?

  • A. false negatives
  • B. true positives
  • C. false positives
  • D. true negatives

正解:C

解説:
Reference:
https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-0/user_guide/b_ESA_Admin_Guide_12_0/b_ESA_Admin_Guide_12_0_chapter_0100000.html#con_1482874 False positives are legitimate messages that are incorrectly identified as spam by the Cisco ESA. Organizations may want to implement a spam quarantine to reduce the risk of losing false positive messages and allow users or administrators to review and release them2. Reference = User Guide for AsyncOS 12.0 for Cisco Email Security Appliances - GD (General Deployment) - Spam Quarantine [Cisco Secure Email Gateway] - Cisco


質問 # 41
Refer to the exhibit.

A network engineer must set up a content filter to find any messages that failed SPF and send them into quarantine The content filter has been set up and enabled, but all messages except those that have failed SPF are being sent into quarantine. Which section of the filter must be modified to correct this behavior?

  • A. spf-status
  • B. log-entry
  • C. skip-filters
  • D. quarantine

正解:A

解説:
spf-status is the section of the filter that must be modified to correct this behavior. spf-status is a condition that determines whether a message matches the content filter rule based on the result of SPF verification, such as pass, fail, neutral, etc.
The content filter in the exhibit has a spf-status condition set to "Pass", which means that it will match messages that passed SPF verification and apply the action of "Quarantine". This is the opposite of what the network engineer intended to do.
To correct this behavior, the network engineer can modify the spf-status condition to "Fail", which means that it will match messages that failed SPF verification and apply the action of "Quarantine".
The other options are not valid sections of the filter that must be modified to correct this behavior, because they do not affect the spf-status condition.


質問 # 42
Drag and drop authentication options for End-User Quarantine Access from the left onto the corresponding configuration steps on the right.

正解:

解説:


質問 # 43
Which of the following two statements are correct about the large file attachments (greater than 25MB) feature in Cisco Secure Email Encryption Service? (Choose two.)

  • A. Large file attachments will be sent as a securedoc attachment
  • B. This feature allows users to send up to 50MB of attachments in a secure email.
  • C. Large file attachments can only be sent using the Cisco Secure Email Add-In.
  • D. Large file attachments can only be sent using the websafe portal
  • E. This feature can only be enabled if the Read from Message feature is enabled

正解:A、E

解説:
Large file attachments will be sent as a securedoc attachment. This means that the recipient will receive an encrypted message with a securedoc.html attachment that contains a link to download the large file from the Cisco Secure Email Encryption Service portal[2, p. 9].
This feature can only be enabled if the Read from Message feature is enabled. The Read from Message feature allows you to encrypt messages based on keywords or phrases in the subject or body of the message. You need to enable this feature before you can enable the large file attachments feature[2, p. 8].
The other options are not valid because:
A) Large file attachments can be sent using both the websafe portal and the Cisco Secure Email Add-In. The websafe portal allows you to compose and send encrypted messages from any web browser, while the Cisco Secure Email Add-In allows you to encrypt messages from your email client such as Outlook[2, p. 6-7].
B) This feature allows users to send up to 100MB of attachments in a secure email, not 50MB[2, p. 9].
D) Large file attachments can be sent using both the websafe portal and the Cisco Secure Email Add-In. The websafe portal allows you to compose and send encrypted messages from any web browser, while the Cisco Secure Email Add-In allows you to encrypt messages from your email client such as Outlook[2, p. 6-7].


質問 # 44
Email encryption is configured on a Cisco ESA that uses CRES.
Which action is taken on a message when CRES is unavailable?

  • A. It is encrypted by a Cisco encryption appliance.
  • B. It is requeued.
  • C. It is sent in clear text.
  • D. It is dropped and an error message is sent to the sender.

正解:B

解説:
When CRES (Cisco Registered Envelope Service) is unavailable, Cisco ESA will requeue the message and attempt to resend it later, until the maximum number of retries or the maximum age of the message is reached. The message will not be sent in clear text, dropped, or encrypted by another appliance.


質問 # 45
......

最新の300-720学習ガイド2024年最新の- 提供するのはテストエンジンとPDF:https://jp.fast2test.com/300-720-premium-file.html

最新版を今すぐ試そう300-720練習テスト問題解答:https://drive.google.com/open?id=1efhzntR7i0-xBf3WZFmUgP_q5yx_Nemn


弊社を連絡する

我々は12時間以内ですべてのお問い合わせを答えます。

我々の働いている時間: ( GMT 0:00-15:00 )
月曜日から土曜日まで

サポート: 現在連絡 

English Deutsch 繁体中文 한국어