Reliable CCNP Security 300-720 Dumps PDF Jan 21, 2023 Recently Updated Questions [Q56-Q80]

Share

Reliable CCNP Security 300-720 Dumps PDF Jan 21, 2023 Recently Updated Questions

Pass Your Cisco 300-720 Exam with Correct 102 Questions and Answers


Which Subjects are on the Cisco 300-720 Exam

Candidates must know the exam topics before they start preparation. Because it will really help them in hitting the core. Our Cisco 300-720 exam dumps will include the following topics:

  • LDAP and SMTP Sessions 15%
  • Spam Control with Talos SenderBase and Antispam 15%
  • Email Authentication and Encryption 20%

 

NEW QUESTION 56
What is a valid content filter action?

  • A. archive
  • B. quarantine
  • C. skip antispam
  • D. decrypt on delivery

Answer: B

Explanation:
Reference:
https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-0/user_guide/ b_ESA_Admin_Guide_12_0/b_ESA_Admin_Guide_chapter_01010.html#con_1158022

 

NEW QUESTION 57
Which two actions are configured on the Cisco ESA to query LDAP servers? (Choose two.)

  • A. accept
  • B. reject
  • C. relay
  • D. delay
  • E. route

Answer: A,E

 

NEW QUESTION 58
Drag and drop the Cisco ESA reactions to a possible DLP from the left onto the correct action types on the right.

Answer:

Explanation:

Reference:
https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-0/user_guide/b_ESA_Admin_Guide_12_0/ b_ESA_Admin_Guide_chapter_010001.html (message actions)

 

NEW QUESTION 59
A Cisco ESA administrator has several mail policies configured. While testing policy match using a specific sender, the email was not matching the expected policy.
What is the reason of this?

  • A. The message header with the highest priority is checked against the Default policy in a top-down fashion.
  • B. The To" header is checked against all policies in a top-down fashion.
  • C. The Tram* header is checked against all policies in a top-down fashion.
  • D. The message header with the highest priority is checked against each policy in a top-down fashion.

Answer: A

 

NEW QUESTION 60
An administrator is trying to enable centralized PVO but receives the error, "Unable to proceed with Centralized Policy, Virus and Outbreak Quarantines configuration as esa1 in Cluster has content filters / DLP actions available at a level different from the cluster level." What is the cause of this error?

  • A. DLP is configured at the domain-level on esa1.
  • B. DLP is configured at the cluster-level on esa2.
  • C. DLP is not configured on host1.
  • D. Content filters are configured at the machine-level on esa1.

Answer: C

Explanation:
Reference:
https://www.cisco.com/c/en/us/support/docs/security/email-security-appliance/118026-technote- esa-00.html

 

NEW QUESTION 61
Which scenario prevents a message from being sent to the quarantine as an action in the scan behavior on Cisco ESA?

  • A. A policy quarantine is missing.
  • B. The "add custom header" action is performed first.
  • C. The "modify the message subject" is already set.
  • D. More than one email pipeline is defined.

Answer: A

Explanation:
https://www.cisco.com/c/en/us/td/docs/security/esa/esa13-
0/user_guide/b_ESA_Admin_Guide_13-0.pdf P.320

 

NEW QUESTION 62
A network administrator is modifying an outgoing mail policy to enable domain protection for the organization. A DNS entry is created that has the public key.
Which two headers will be used as matching criteria in the outgoing mail policy? (Choose two.)

  • A. from
  • B. mail-from
  • C. message-ID
  • D. URL reputation
  • E. sender

Answer: A,E

 

NEW QUESTION 63
Which two actions are configured on the Cisco ESA to query LDAP servers? (Choose two.)

  • A. accept
  • B. reject
  • C. relay
  • D. delay
  • E. route

Answer: A,E

Explanation:
Explanation/Reference: https://www.cisco.com/c/en/us/td/docs/security/esa/esa11-0/user_guide_fs/ b_ESA_Admin_Guide_11_0/b_ESA_Admin_Guide_chapter_011010.html

 

NEW QUESTION 64
An Encryption Profile has been set up on the Cisco ESA.
Drag and drop the steps from the left for creating an outgoing content filter to encrypt emails that contains the subject "Secure:" into the correct order on the right.

Answer:

Explanation:

Reference:
https://community.cisco.com/t5/email-security/keyword-in-subject-line-to-encrypt-message/td-p/2441383

 

NEW QUESTION 65
An administrator is trying to enable centralized PVO but receives the error, "Unable to proceed with Centralized Policy, Virus and Outbreak Quarantines configuration as esa1 in Cluster has content filters / DLP actions available at a level different from the cluster level." What is the cause of this error?

  • A. DLP is configured at the domain-level on esa1.
  • B. DLP is configured at the cluster-level on esa2.
  • C. DLP is not configured on host1.
  • D. Content filters are configured at the machine-level on esa1.

Answer: C

 

NEW QUESTION 66
When URL logging is configured on a Cisco ESA, which feature must be enabled first?

  • A. antispam
  • B. senderbase reputation filter
  • C. virus outbreak filter
  • D. antivirus

Answer: C

 

NEW QUESTION 67
Which feature utilizes sensor information obtained from Talos intelligence to filter email servers connecting into the Cisco ESA?

  • A. Connection Reputation Filtering
  • B. SenderBase Reputation Filtering
  • C. Talos Reputation Filtering
  • D. SpamCop Reputation Filtering

Answer: B

 

NEW QUESTION 68
How does the graymail safe unsubscribe feature function?

  • A. It redirects the end user who clicks the unsubscribe button to a sandbox environment to allow a safe unsubscribe.
  • B. It checks the reputation of the URI and performs the unsubscribe process on behalf of the end user.
  • C. It strips the malicious content of the URI before unsubscribing.
  • D. It checks the URI reputation and category and allows the content filter to take an action on it.

Answer: B

Explanation:
Explanation/Reference: https://www.cisco.com/c/en/us/support/docs/security/email-security-appliance/200383- Graymail-Detection-and-Safe-Unsubscribin.html

 

NEW QUESTION 69
What is the default behavior of any listener for TLS communication?

  • A. preferred-verify
  • B. required
  • C. off
  • D. preferred

Answer: C

Explanation:
Reference:
https://www.cisco.com/c/en/us/support/docs/security/email-security-appliance/118954-config-esa- 00.html

 

NEW QUESTION 70
What is a valid content filter action?

  • A. archive
  • B. quarantine
  • C. skip antispam
  • D. decrypt on delivery

Answer: B

 

NEW QUESTION 71
Drag and drop the AsyncOS methods for performing DMARC verification from the left into the correct order on the right.

Answer:

Explanation:

 

NEW QUESTION 72
Which SMTP extension does Cisco ESA support for email security?

  • A. PIPELINING
  • B. UTF8SMTP
  • C. STARTTLS
  • D. ETRN

Answer: C

Explanation:
Reference:
https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-0/user_guide/b_ESA_Admin_Guide_12_0/b_ESA_Admin_Guide_12_0_chapter_011000.html

 

NEW QUESTION 73
Refer to the exhibit. An engineer needs to change the existing Forged Email Detection message filter so that it references a newly created dictionary named `Executives'.

What should be done to accomplish this task?

  • A. Change "from" to "Executives".
  • B. Change "support" to "Executives".
  • C. Change fed' to "Executives".
  • D. Change "TESF to "Executives".

Answer: B

 

NEW QUESTION 74
Which antispam feature is utilized to give end users control to allow emails that are spam to be delivered to their inbox, overriding any spam verdict and action on the Cisco ESA?

  • A. end user passthrough list
  • B. end user allow list
  • C. end user spam quarantine access
  • D. end user safelist

Answer: C

Explanation:
Reference:
https://www.cisco.com/c/en/us/td/docs/security/ces/user_guide/esa_user_guide_11-1/b_ESA_Admin_Guide_ces_11_1/b_ESA_Admin_Guide_chapter_011111.pdf

 

NEW QUESTION 75
A network administrator notices that there are a high number of queries to the LDAP server. The mail logs show an entry "550 Too many invalid recipients | Connection closed by foreign host." Which feature must be used to address this?

  • A. DHAP
  • B. SBRS
  • C. SMTP
  • D. LDAP

Answer: C

 

NEW QUESTION 76
Which process is skipped when an email is received from safedomain.com, which is on the safelist?

  • A. message filter
  • B. outbreak filter
  • C. antispam scanning
  • D. antivirus scanning

Answer: A

 

NEW QUESTION 77
Which type of attack is prevented by configuring file reputation filtering and file analysis features?

  • A. zero-day
  • B. backscatter
  • C. denial of service
  • D. phishing

Answer: A

 

NEW QUESTION 78
Refer to the exhibit.

Which SPF record is valid for mycompany.com?

  • A. v=spf1 a mx ip4:10.1.10.23 -all
  • B. v=spf1 a mx ip4:199.209.31.2 -all
  • C. v=spf1 a mx ip4:172.16.18.230 -all
  • D. v=spf1 a mx ip4:199.209.31.21 -all

Answer: C

 

NEW QUESTION 79
Which two configurations are used on multiple LDAP servers to connect with Cisco ESA?
(Choose two.)

  • A. active-active
  • B. load balancing
  • C. SLA monitor
  • D. failover
  • E. active-standby

Answer: B,D

 

NEW QUESTION 80
......

Latest 2023 Realistic Verified 300-720 Dumps: https://examcollection.bootcamppdf.com/300-720-exam-actual-tests.html