Pass Cisco 300-720 Exam With Practice Test Questions Dumps Bundle [Q20-Q38]

Pass Cisco 300-720 Exam With Practice Test Questions Dumps Bundle

2022 Valid 300-720 test answers & Cisco Exam PDF

NEW QUESTION 20
Which two features are applied to either incoming or outgoing mail policies? (Choose two.)

• A. antivirus
• B. Indication of Compromise
• C. outbreak filters
• D. application filtering
• E. sender reputation filtering

Answer: A,C

Explanation:
Explanation/Reference: https://www.cisco.com/c/en/us/td/docs/security/esa/esa11-1/user_guide/ b_ESA_Admin_Guide_11_1/b_ESA_Admin_Guide_chapter_01001.html

 

NEW QUESTION 21
Refer to the exhibit. Which SPF record is valid for mycompany.com?

• A. v=spf1 a mx ip4:199.209.31.2 -all
• B. v=spf1 a mx ip4:199.209.31.21 -all
• C. v=spf1 a mx ip4:172.16.18.230 -all
• D. v=spf1 a mx ip4:10.1.10.23 -all

Answer: B

 

NEW QUESTION 22
A company has deployed a new mandate that requires all emails sent externally from the Sales Department to be scanned by DLP for PCI-DSS compliance. A new DLP policy has been created on the Cisco ESA and needs to be assigned to a mail policy named `Sales' that has yet to be created.
Which mail policy should be created to accomplish this task?

• A. Incoming Mail Flow Policy
• B. Outgoing Mail Policy
• C. Preliminary Mail Policy
• D. Outgoing Mail Flow Policy

Answer: B

Explanation:
https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-
0/user_guide/b_ESA_Admin_Guide_12_0/b_ESA_Admin_Guide_chapter_010001.html#task_140
94

 

NEW QUESTION 23
An administrator has created a content filter to quarantine all messages that result in an SPF hardfail to review the messages and determine whether a trusted partner has accidentally misconfigured the DNS settings. The administrator sets the policy quarantine to release the messages after 24 hours, allowing time to review while not interrupting business.
Which additional option should be used to help the end users be aware of the elevated risk of interacting with these messages?

• A. Notify Sender
• B. Notify Recipient
• C. Strip Attachments
• D. Modify Subject

Answer: D

 

NEW QUESTION 24
What are two phases of the Cisco ESA email pipeline? (Choose two.)

• A. quarantine
• B. workqueue
• C. reject
• D. delivery
• E. action

Answer: B,D

Explanation:
Reference:
https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-1/user_guide/ b_ESA_Admin_Guide_12_1/b_ESA_Admin_Guide_12_1_chapter_011.pdf (p.1)

 

NEW QUESTION 25


Refer to the exhibit. Which configuration on the scan behavior must be updated to allow the attachment to be scanned on the Cisco ESA?

• A. Increase the maximum recursion depth from 5 to a larger value.
• B. Increase the maximum attachment size to scan to a larger value.
• C. Add an additional mapping for attachment type for zip files.
• D. Enable assume match pattern if the email was not scanned for any reason.

Answer: C

 

NEW QUESTION 26
Which ESA function maintains a set of rules that control incoming connections from remote hosts for a listener?

• A. RAT
• B. LDAP
• C. HAT
• D. VEST
• E. Sender group

Answer: C

 

NEW QUESTION 27
Which attack is mitigated by using Bounce Verification?

• A. smurf
• B. spoof
• C. denial of service
• D. eavesdropping

Answer: C

Explanation:
Explanation/Reference: https://www.networkworld.com/article/2305394/ironport-adds-bounce-back-verification-for-e- mail.html

 

NEW QUESTION 28
Refer to the exhibit. An engineer needs to change the existing Forged Email Detection message filter so that it references a newly created dictionary named `Executives'.

What should be done to accomplish this task?

• A. Change "support" to "Executives".
• B. Change "TESF to "Executives".
• C. Change "from" to "Executives".
• D. Change fed' to "Executives".

Answer: A

 

NEW QUESTION 29
Which global setting is configured under Cisco ESA Scan Behavior?

• A. minimum depth of attachment recursion to scan
• B. attachment scanning timeout
• C. minimum attachment size to scan
• D. actions for unscannable messages due to attachment type

Answer: B

 

NEW QUESTION 30
An organization wants to use DMARC to improve its brand reputation by leveraging DNS records.
Which two email authentication mechanisms are utilized during this process? (Choose two.)

• A. DSTP
• B. DKIM
• C. SPF
• D. TLS
• E. PKI

Answer: B,C

Explanation:
https://www.cisco.com/c/en/us/products/security/what-is-dmarc.html

 

NEW QUESTION 31
Which three options are Cisco ESA facilities that can use LDAP group queries? (Choose three.)

• A. RAT
• B. SenderBase reputation filtering
• C. Message filters
• D. Sender groups
• E. Anti-spam settings
• F. Incoming mail policies
• G. Destination controls
• H. Content filters

Answer: C,F,H

 

NEW QUESTION 32
What is the order of virus scanning when multilayer antivirus scanning is configured?

• A. The Sophos engine scans for viruses first and the McAfee engine scans for viruses second.
• B. The McAfee engine scans for viruses first and the Sophos engine scans for viruses second.
• C. The McAfee engine scans for viruses first and the default engine scans for viruses second.
• D. The default engine scans for viruses first and the McAfee engine scans for viruses second.

Answer: B

Explanation:

https://www.cisco.com/c/en/us/td/docs/security/esa/esa13-
0/user_guide/b_ESA_Admin_Guide_13-0.pdf P.402

 

NEW QUESTION 33
Which benefit does enabling external spam quarantine on Cisco SMA provide?

• A. access to the spam quarantine interface on which a user can release, duplicate, or delete
• B. ability to scan messages by using two engines to increase a catch rate
• C. ability to back up spam quarantine from multiple Cisco ESAs to one central console
• D. ability to consolidate spam quarantine data from multiple Cisco ESA to one central console

Answer: D

 

NEW QUESTION 34
What are two prerequisites for implementing undesirable URL protection in Cisco ESA? (Choose two.)

• A. Enable antispam scanning.
• B. Enable antivirus scanning.
• C. Enable port bouncing.
• D. Enable email relay.
• E. Enable outbreak filters.

Answer: A,E

Explanation:
Reference:
https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-0/user_guide/b_ESA_Admin_Guide_12_0/b_ESA_Admin_Guide_chapter_01111.html

 

NEW QUESTION 35
Which two steps configure Forged Email Detection? (Choose two.)

• A. Configure a filter to check the Header From value against the Forged Email Detection dictionary.
• B. Configure a content dictionary with executive email addresses.
• C. Enable Forged Email Detection on the Security Services page.
• D. Configure a filter to use the Forged Email Detection rule and dictionary.
• E. Configure a content dictionary with friendly names.

Answer: B,D

Explanation:
Explanation/Reference: https://explore.cisco.com/esa-feature-enablement/user-guide-for-async-11

 

NEW QUESTION 36
What occurs when configuring separate incoming mail policies?

• A. message exceptions
• B. message splintering
• C. message detachment
• D. message aggregation

Answer: B

 

NEW QUESTION 37
Which two options describe the expected results when centralized policy, virus, and outbreak quarantines are disabled on the Cisco Email Security Appliance? (Choose two.)

• A. The quarantine process must be restarted.
• B. The Cisco ESA stops accepting new messages.
• C. New messages sent to the quarantine are immediately sent to local quarantines
• D. Local quarantines are enabled automatically.
• E. The Cisco ESA must be rebooted.

Answer: C,D

 

NEW QUESTION 38
......

Top Cisco 300-720 Courses Online: https://www.pass4training.com/300-720-pass-exam-training.html

Free Cisco 300-720 Exam Questions and Answer from Training Expert Pass4training: https://drive.google.com/open?id=1iuiLrvRBrBvDDRqVJFvDjiLiElU9ijLk