Verified 300-720 Q&As – Pass Guarantee 300-720 Exam Dumps [Q55-Q78]

Verified 300-720 Q&As – Pass Guarantee 300-720 Exam Dumps

Check the Free demo of our 300-720 Exam Dumps with 102 Questions

Details about 300-720 Test

The Cisco 300-720 exam appears in the list of concentration tests that lead to the CCNP Security. This implies that you only attempt it after succeeding in 350-701 test that deals with matters to do with core technologies. Overall, you are given 1.5 hours to answer all the questions coming in the real exam, which is available in both English & Japanese. The test, in particular, will assess your understanding of the Cisco ESA in different areas. This includes administration, how well you can handle spam control as well as anti-spam, message filters, preventing the loss of data, and LDAP. You will also be tested on how to authenticate emails and encrypt them as well as matters to do with system quarantines in addition to delivery methods.

NEW QUESTION 55
Drag and Drop Question
Drag and drop the AsyncOS methods for performing DMARC verification from the left into the correct order on the right.

NEW QUESTION 56
An email containing a URL passes through the Cisco ESA that has content filtering disabled for all mail policies. The sender is [email protected], the recipients are [email protected], [email protected], [email protected], and [email protected]. The subject of the email is Test Document395898847. An administrator wants to add a policy to ensure that the Cisco ESA evaluates the web reputation score before permitting this email.
Which two criteria must be used by the administrator to achieve this? (Choose two.)

 Subject contains Test Document”

 Sender matches test1.com

 Email body contains a URL

 Date and time of email

 Email does not match [email protected]

NEW QUESTION 57
When configuring CRES, where do you enable read receipts?

 In the encryption profile

 In the content filter condition menu

 In the content filter action menu

 In the mail policy

NEW QUESTION 58
What is the default HTTPS port when configuring spam quarantine on Cisco ESA?

 83

 82

 443

 80

NEW QUESTION 59
Which ESA function maintains a set of rules that control incoming connections from remote hosts for a listener?

 LDAP

 HAT

 VEST

 Sender group

 RAT

NEW QUESTION 60
Which feature must be configured before an administrator can use the outbreak filter for nonviral threats?

 quarantine threat level

 antispam

 data loss prevention

 antivirus

Explanation/Reference: https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-0/user_guide/ b_ESA_Admin_Guide_12_0/b_ESA_Admin_Guide_chapter_01110.html

NEW QUESTION 61
What is the order of virus scanning when multilayer antivirus scanning is configured?

 The default engine scans for viruses first and the McAfee engine scans for viruses second.

 The Sophos engine scans for viruses first and the McAfee engine scans for viruses second.

 The McAfee engine scans for viruses first and the default engine scans for viruses second.

 The McAfee engine scans for viruses first and the Sophos engine scans for viruses second.

Explanation
If you configure multi-layer anti-virus scanning, the Cisco appliance performs virus scanning with the McAfee engine first and the Sophos engine second. It scans messages using both engines, unless the McAfee engine detects a virus. If the McAfee engine detects a virus, the Cisco appliance performs the anti-virus actions (repairing, quarantining, etc.) defined for the mail policy.

NEW QUESTION 62
Drag and drop the Cisco ESA reactions to a possible DLP from the left onto the correct action types on the right.

NEW QUESTION 63
Email encryption is configured on a Cisco ESA that uses CRES.
Which action is taken on a message when CRES is unavailable?

 It is requeued.

 It is sent in clear text.

 It is dropped and an error message is sent to the sender.

 It is encrypted by a Cisco encryption appliance.

Reference:
https://www.cisco.com/c/en/us/support/docs/security/email-security-appliance/117863-configure- esa-00.html

NEW QUESTION 64
Which type of attack is prevented by configuring file reputation filtering and file analysis features?

 denial of service

 zero-day

 backscatter

 phishing

Reference:
https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-0/user_guide/ b_ESA_Admin_Guide_12_0/b_ESA_Admin_Guide_chapter_010000.html#con_1809885

NEW QUESTION 65
What is the default port to deliver emails from the Cisco ESA to the Cisco SMA using the centralized Spam Quarantine?

 8025

 6443

 6025

 8443

Explanation/Reference: https://www.cisco.com/c/en/us/support/docs/security/email-security-appliance/118692- configure-esa-00.html

NEW QUESTION 66
Which suboption must be selected when LDAP is configured for Spam Quarantine End-User Authentication?

 Designate as the active query

 Update Frequency

 Server Priority

 Entity ID

NEW QUESTION 67
Which option describes how the Cisco ESA fits into a network?

 It process POP3 messages.

 It handles SMTP-related traffic by routing the packets.

 It works as a mail exchange.

 The product should be installed in the DMZ.

NEW QUESTION 68
Which two steps configure Forged Email Detection? (Choose two.)

 Configure a content dictionary with executive email addresses.

 Configure a filter to use the Forged Email Detection rule and dictionary.

 Configure a filter to check the Header From value against the Forged Email Detection dictionary.

 Enable Forged Email Detection on the Security Services page.

 Configure a content dictionary with friendly names.

NEW QUESTION 69
Refer to the exhibit.

Which SPF record is valid for mycompany.com?

 v=spf1 a mx ip4:199.209.31.2 -all

 v=spf1 a mx ip4:10.1.10.23 -all

 v=spf1 a mx ip4:199.209.31.21 -all

 v=spf1 a mx ip4:172.16.18.230 -all

NEW QUESTION 70
Which action on the Cisco ESA provides direct access to view the safelist/blocklist?

 Show the SLBL cache on the CLI.

 Monitor Incoming/Outgoing Listener.

 Export the SLBL to a .csv file.

 Debug the mail flow policy.

NEW QUESTION 71
When virtual gateways are configured, which two distinct attributes are allocated to each virtual gateway address? (Choose two.)

 domain

 IP address

 DNS server address

 DHCP server address

 external spam quarantine

NEW QUESTION 72
Which two components form the graymail management solution in Cisco ESA? (Choose two.)

 cloud-based unsubscribe service

 uniform unsubscription management interface for end users

 secure subscribe option for end users

 integrated graymail scanning engine

 improved mail efficacy

NEW QUESTION 73
Which two action types are performed by Cisco ESA message filters? (Choose two.)

 non-final actions

 filter actions

 discard actions

 final actions

 quarantine actions

Reference:
https://www.cisco.com/c/en/us/td/docs/security/esa/esa11-1/user_guide/ b_ESA_Admin_Guide_11_1/b_ESA_Admin_Guide_chapter_01000.html

NEW QUESTION 74
Drag and drop the Cisco ESA reactions to a possible DLP from the left onto the correct action types on the right.

Reference:
https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-0/user_guide/b_ESA_Admin_Guide_12_0/ b_ESA_Admin_Guide_chapter_010001.html (message actions)

NEW QUESTION 75
Which two components form the graymail management solution in Cisco ESA? (Choose two.)

 cloud-based unsubscribe service

 uniform unsubscription management interface for end users

 secure subscribe option for end users

 integrated graymail scanning engine

 improved mail efficacy

Reference:
https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-0/user_guide/ b_ESA_Admin_Guide_12_0/b_ESA_Admin_Guide_chapter_01101.pdf (p.2)

NEW QUESTION 76
Which feature utilizes sensor information obtained from Talos intelligence to filter email servers connecting into the Cisco ESA?

 SenderBase Reputation Filtering

 Connection Reputation Filtering

 Talos Reputation Filtering

 SpamCop Reputation Filtering

NEW QUESTION 77
Which two configurations are used on multiple LDAP servers to connect with Cisco ESA? (Choose two.)

 load balancing

 SLA monitor

 active-standby

 failover

 active-active

Explanation
You can enter multiple host names to configure the LDAP servers for failover or load-balancing. Separate multiple entries with commas.

NEW QUESTION 78
When outbreak filters are configured, which two actions are used to protect users from outbreaks? (Choose two.)

 redirect

 return

 drop

 delay

 abandon

Reference:
https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-0/user_guide/ b_ESA_Admin_Guide_12_0/b_ESA_Admin_Guide_chapter_01110.html

 Loading …

Official Study Course for Final Test

If you intend to clear 300-720 exam, you need to prepare adequately for it. There is no better way to pass an exam than to use the recommended study course and understand the different concepts that will be tested in the test. The official training for exam 300-720 is ‘Securing Email with Cisco Email Security Appliance (SESA) v3.1’. This is the class that will teach you how to secure Emails with the Cisco ESA. In particular, the technology helps you to keep your Emails safe from phishing, compromises from external factors, and ransomware. It also helps you learn the art of streamlining your email safety policies. Those who ought to enroll and take it include security engineers, security architects, network administrators, operation engineers, network engineers, and network managers. Others are security or network technicians, system designers, and Cisco integrators & partners. With this course, you will grasp the skills needed in implementing, troubleshooting, as well as administering the Cisco ESA. The major capabilities include advanced protection targeting malware, protection using anti-virus, spam blocking, outbreak filtering, quarantines, encryption, and preventing data loss. You will take a few days to complete this course, regardless of which option you choose from the list below:

• Four days of tutor-guided learning within a classroom set up as well as practicing with lab-based tasks;
• Four days of e-learning, equivalent to the four days of lessons from an instructor, including videos, hands-on tasks, and challenges.
• Four days of learning with guidance from a virtual instructor with practical lessons;

Once you take this class, you will learn the skills you need to use highly available email protection in defending your organization’s email systems against threats that change rapidly. You will also earn the in-demand enterprise security skills and get 24 CE credits that will come in handy during recertification.

Target Audience

The Cisco 300-720 is designed for people who work around Email security and other networking domains. Some of the specialists who are targeted by this test include security engineers, network administrators, network architects, network engineers, and more.

Get professional help from our 300-720 Dumps PDF: https://www.braindumpspass.com/Cisco/300-720-practice-exam-dumps.html