• Home
  • Articles
  • [Jan-2023] 300-720 Pre-Exam Practice Tests Exam Questions and Answers for CCNP Security Study Guide [Q46-Q67]

[Jan-2023] 300-720 Pre-Exam Practice Tests Exam Questions and Answers for CCNP Security Study Guide [Q46-Q67]

Share

[Jan-2023] 300-720 Pre-Exam Practice Tests | Exam Questions and Answers for CCNP Security Study Guide

Securing Email with Cisco Email Security Appliance Certification Sample Questions


What is Cisco 300-720 Exam

Cisco Certified Network Professional Security (CCNP) security employees manage security in routers, modifications, network tools, and even network environments They must have the ability to protect the network design and implement it using Cisco Secure Access, Edge Network Safety and Security, Risk Control, as well as secure mobility solutions. This exam access your knowledge of the Cisco email security appliance, which includes; Administration, Spam and spam control, Message filters, Data loss prevention LDAP, Email authentication and encryption, System quarantines and delivery methods.

 

NEW QUESTION 46
An organization wants to use DMARC to improve its brand reputation by leveraging DNS records.
Which two email authentication mechanisms are utilized during this process? (Choose two.)

  • A. SPF
  • B. DKIM
  • C. DSTP
  • D. TLS
  • E. PKI

Answer: A,B

Explanation:
https://www.cisco.com/c/en/us/products/security/what-is-dmarc.html

 

NEW QUESTION 47
Drag and drop the steps to configure Cisco ESA to use SPF/SIDF verification from the left into the correct order on the right.

Answer:

Explanation:

 

NEW QUESTION 48
Users have been complaining of a higher volume of emails containing profanity. The network administrator will need to leverage dictionaries and create specific conditions to reduce the number of inappropriate emails.
Which two filters should be configured to address this? (Choose two.)

  • A. spam
  • B. sender group
  • C. VOF
  • D. message
  • E. content

Answer: A,E

 

NEW QUESTION 49
What is the default port to deliver emails from the Cisco ESA to the Cisco SMA using the centralized Spam Quarantine?

  • A. 0
  • B. 1
  • C. 2
  • D. 3

Answer: A

 

NEW QUESTION 50
Which type of attack is prevented by configuring file reputation filtering and file analysis features?

  • A. backscatter
  • B. zero-day
  • C. denial of service
  • D. phishing

Answer: B

Explanation:
Explanation/Reference: https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-0/user_guide/ b_ESA_Admin_Guide_12_0/b_ESA_Admin_Guide_chapter_010000.html#con_1809885

 

NEW QUESTION 51
How does the graymail safe unsubscribe feature function?

  • A. It strips the malicious content of the URI before unsubscribing.
  • B. It redirects the end user who clicks the unsubscribe button to a sandbox environment to allow a safe unsubscribe.
  • C. It checks the reputation of the URI and performs the unsubscribe process on behalf of the end user.
  • D. It checks the URI reputation and category and allows the content filter to take an action on it.

Answer: C

 

NEW QUESTION 52
Which benefit does enabling external spam quarantine on Cisco SMA provide?

  • A. ability to back up spam quarantine from multiple Cisco ESAs to one central console
  • B. ability to consolidate spam quarantine data from multiple Cisco ESA to one central console
  • C. ability to scan messages by using two engines to increase a catch rate
  • D. access to the spam quarantine interface on which a user can release, duplicate, or delete

Answer: B

Explanation:
Reference:
https://www.cisco.com/c/en/us/td/docs/security/security_management/sma/sma11-0/user_guide/ b_SMA_Admin_Guide/b_SMA_Admin_Guide_chapter_010101.html

 

NEW QUESTION 53
What are organizations trying to address when implementing a SPAM quarantine?

  • A. true positives
  • B. true negatives
  • C. false negatives
  • D. false positives

Answer: D

 

NEW QUESTION 54
A Cisco ESA administrator has several mail policies configured. While testing policy match using a specific sender, the email was not matching the expected policy.
What is the reason of this?

  • A. The message header with the highest priority is checked against the Default policy in a top-down fashion.
  • B. The To" header is checked against all policies in a top-down fashion.
  • C. The message header with the highest priority is checked against each policy in a top-down fashion.
  • D. The Tram* header is checked against all policies in a top-down fashion.

Answer: A

 

NEW QUESTION 55
What are two phases of the Cisco ESA email pipeline? (Choose two.)

  • A. quarantine
  • B. delivery
  • C. action
  • D. workqueue
  • E. reject

Answer: B,D

Explanation:
Reference:
https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-1/user_guide/ b_ESA_Admin_Guide_12_1/b_ESA_Admin_Guide_12_1_chapter_011.pdf (p.1)

 

NEW QUESTION 56
An engineer is configuring an SMTP authentication profile on a Cisco ESA which requires certificate verification.
Which section must be configured to accomplish this goal?

  • A. Outgoing Mail Policies
  • B. Verification Profiles
  • C. Mail Flow Policies
  • D. Sending Profiles

Answer: C

 

NEW QUESTION 57
Which two statements about configuring message filters within the Cisco ESA are true? (Choose two.)

  • A. The filterconfig command executed from the CLI is used to configure message filters.
  • B. Message filters can be configured only from the CLI.
  • C. The filters command executed from the CLI is used to configure the message filters.
  • D. Message filters can be configured only from the web user interface.
  • E. Message filters configuration within the web user interface is located within Incoming Content Filters.

Answer: B,C

Explanation:
Reference:
https://www.cisco.com/c/en/us/support/docs/security/email-security-appliance/213940-esa-using-a- message-filter-to-take-act.html

 

NEW QUESTION 58
An analyst creates a new content dictionary to use with Forged Email Detection.
Which entry will be added into the dictionary?

Answer: A

Explanation:
Explanation/Reference: https://www.cisco.com/c/en/us/products/collateral/security/email-security-appliance/ whitepaper_C11-737596.html

 

NEW QUESTION 59
An analyst creates a new content dictionary to use with Forged Email Detection.
Which entry will be added into the dictionary?

Answer: A

 

NEW QUESTION 60
What occurs when configuring separate incoming mail policies?

  • A. message aggregation
  • B. message exceptions
  • C. message splintering
  • D. message detachment

Answer: C

 

NEW QUESTION 61
Which action must be taken before a custom quarantine that is being used can be deleted?

  • A. Delete the quarantine that is not assigned to a filter.
  • B. Delete only the unused quarantine.
  • C. Delete the quarantine that is assigned to a filter.
  • D. Remove the quarantine from the message action of a filter.

Answer: D

Explanation:
Reference:
https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-0/user_guide/ b_ESA_Admin_Guide_12_0/b_ESA_Admin_Guide_12_0_chapter_011111.html

 

NEW QUESTION 62
Which two query types are available when an LDAP profile is configured? (Choose two.)

  • A. proxy consolidation
  • B. recursive
  • C. user
  • D. routing
  • E. group

Answer: D,E

Explanation:
Reference:
https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-0/user_guide/ b_ESA_Admin_Guide_12_0/b_ESA_Admin_Guide_12_0_chapter_011010.html

 

NEW QUESTION 63
When virtual gateways are configured, which two distinct attributes are allocated to each virtual gateway address? (Choose two.)

  • A. domain
  • B. DHCP server address
  • C. external spam quarantine
  • D. IP address
  • E. DNS server address

Answer: A,D

 

NEW QUESTION 64
A company has deployed a new mandate that requires all emails sent externally from the Sales Department to be scanned by DLP for PCI-DSS compliance. A new DLP policy has been created on the Cisco ESA and needs to be assigned to a mail policy named `Sales' that has yet to be created.
Which mail policy should be created to accomplish this task?

  • A. Outgoing Mail Policy
  • B. Preliminary Mail Policy
  • C. Outgoing Mail Flow Policy
  • D. Incoming Mail Flow Policy

Answer: A

Explanation:
https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-
0/user_guide/b_ESA_Admin_Guide_12_0/b_ESA_Admin_Guide_chapter_010001.html#task_140
94

 

NEW QUESTION 65
What are two primary components of content filters? (Choose two.)

  • A. actions
  • B. policies
  • C. conditions
  • D. content
  • E. subject

Answer: A,C

Explanation:
Explanation/Reference:
https://www.cisco.com/c/en/us/td/docs/security/ces/user_guide/esa_user_guide_11-1/ b_ESA_Admin_Guide_ces_11_1/b_ESA_Admin_Guide_chapter_01010.pdf

 

NEW QUESTION 66
Drag and Drop Question
An Encryption Profile has been set up on the Cisco ESA.
Drag and drop the steps from the left for creating an outgoing content filter to encrypt emails that contains the subject "Secure:" into the correct order on the right.

Answer:

Explanation:

 

NEW QUESTION 67
......

Cisco Exam Practice Test To Gain Brilliante Result: https://prepaway.testkingpass.com/300-720-testking-dumps.html

Related Articles

more
Cisco 300-720 Certification Practice Exam