[2024] Use Valid 300-720 Exam - Actual Exam Question & Answer [Q20-Q36]

[2024] Use Valid 300-720 Exam - Actual Exam Question & Answer

Test Engine to Practice 300-720 Test Questions

Cisco 300-720 exam is a valuable certification for IT professionals looking to advance their career in cybersecurity. It is a globally recognized certification that validates the candidate's expertise in securing email with Cisco Email Security Appliance. Securing Email with Cisco Email Security Appliance certification is also highly regarded by employers as it demonstrates the candidate's commitment to continuous learning and professional development.

Cisco 300-720 certification exam consists of 60-70 questions that must be completed within 90 minutes. 300-720 exam covers a wide range of topics, including email security architecture, content security, message filters, and email authentication. Passing this certification exam requires a deep understanding of email security concepts and Cisco Email Security Appliance functionalities. Once you pass the exam, you will join the ranks of certified professionals who are recognized for their expertise in securing email with the Cisco Email Security Appliance.

 

NEW QUESTION # 20
Refer to the exhibit. Which configuration on the scan behavior must be updated to allow the attachment to be scanned on the Cisco ESA?

• A. Add an additional mapping for attachment type for zip files.
• B. Increase the maximum attachment size to scan to a larger value.
• C. Increase the maximum recursion depth from 5 to a larger value.
• D. Enable assume match pattern if the email was not scanned for any reason.

Answer: A

NEW QUESTION # 21
An organization wants to use its existing Cisco ESA to host a new domain and enforce a separate corporate policy for that domain.
What should be done on the Cisco ESA to achieve this?

• A. Use the deli very config command to configure mail delivery for the new domain.
• B. Use the dsestconf command to add a separate destination for the new domain.
• C. Use the altrchost command to add a separate gateway for the new domain.
• D. Use the smtproutes command to configure a SMTP route for the new domain.

Answer: D

NEW QUESTION # 22
Which benefit does enabling external spam quarantine on Cisco SMA provide?

• A. ability to consolidate spam quarantine data from multiple Cisco ESA to one central console
• B. ability to back up spam quarantine from multiple Cisco ESAs to one central console
• C. access to the spam quarantine interface on which a user can release, duplicate, or delete
• D. ability to scan messages by using two engines to increase a catch rate

Answer: A

NEW QUESTION # 23
An email containing a URL passes through the Cisco ESA that has content filtering disabled for all mail policies. The sender is [email protected], the recipients are [email protected], [email protected], [email protected], and [email protected]. The subject of the email is Test Document395898847. An administrator wants to add a policy to ensure that the Cisco ESA evaluates the web reputation score before permitting this email.
Which two criteria must be used by the administrator to achieve this? (Choose two.)

• A. Email does not match [email protected]
• B. Date and time of email
• C. Email body contains a URL
• D. Subject contains Test Document"
• E. Sender matches test1.com

Answer: C,D

NEW QUESTION # 24
Which two steps are needed to disable local spam quarantine before external quarantine is enabled? (Choose two.)

• A. Select Monitor and click Spam Quarantine.
• B. Uncheck the Enable Spam Quarantine check box.
• C. Select Security Services and click Spam Quarantine.
• D. Check the External Safelist/Blocklist check box.
• E. Select External Spam Quarantine and click on Configure.

Answer: B,C

Explanation:
To disable local spam quarantine before external quarantine is enabled on Cisco ESA, two steps are needed:
Select Security Services and click Spam Quarantine, which will open the Spam Quarantine settings page.
Uncheck the Enable Spam Quarantine check box, which will disable the local spam quarantine feature on Cisco ESA.

NEW QUESTION # 25
Which scenario prevents a message from being sent to the quarantine as an action in the scan behavior on Cisco ESA?

• A. The "add custom header" action is performed first.
• B. A policy quarantine is missing.
• C. The "modify the message subject" is already set.
• D. More than one email pipeline is defined.

Answer: B

Explanation:
A policy quarantine is a type of quarantine that allows Cisco ESA to store messages that match certain criteria, such as virus, spam, or DLP verdicts, for further review or release by an administrator or an end user.
A scenario that prevents a message from being sent to the quarantine as an action in the scan behavior on Cisco ESA is when a policy quarantine is missing, which means that no policy quarantine has been created or enabled on Cisco ESA.
The other options do not prevent a message from being sent to the quarantine as an action in the scan behavior on Cisco ESA.

NEW QUESTION # 26
A network administrator notices that there are a high number of queries to the LDAP server. The mail logs show an entry "550 Too many invalid recipients | Connection closed by foreign host." Which feature must be used to address this?

• A. SMTP
• B. LDAP
• C. DHAP
• D. SBRS

Answer: C

Explanation:
Reference:
https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-0/user_guide/b_ESA_Admin_Guide_12_0/b_ESA_Admin_Guide_12_0_chapter_011010.html DHAP (Directory Harvest Attack Prevention) is a feature that must be used to address this issue. DHAP is a mechanism that allows Cisco ESA to prevent directory harvest attacks, which are attempts by spammers or hackers to obtain valid email addresses from an LDAP server by sending messages with random or guessed recipients and checking for bounce messages.
To enable DHAP on Cisco ESA, the network administrator can follow these steps:
Select Network > Listeners and click Edit Settings for the listener that receives incoming messages.
Under SMTP Authentication Settings, select Enable Directory Harvest Attack Prevention.
Enter a value for Maximum Invalid Recipients per Hour, which is the number of invalid recipients that triggers DHAP.
Enter a value for Block Sender for (hours), which is the duration that Cisco ESA blocks messages from senders who exceed the maximum invalid recipients per hour.
Click Submit.

NEW QUESTION # 27
An administrator notices that the Cisco Secure Email Gateway delivery queue on an appliance is consistently full. After further investigation, it is determined that the IP addresses currently in use by appliance are being rate-limited by some destinations. The administrator creates a new interface with an additional IP address using virtual gateway technology, but the issue is not solved Which configuration change resolves the issue?

• A. Use the CLI command deliveryconfig to set the new interface as the primary interface for mail delivery
• B. Use the CLI command alt-src-host to set the new interface as a possible delivery candidate.
• C. Use the CLI command altsrchost to set the new interface as the source IP address for all mail.
• D. Use the CLI command loadbalance auto to enable mail delivery over all interfaces.

Answer: A

Explanation:
Determining Which Interface is Used for Mail Delivery Unless you specify the output interface via the deliveryconfig</code> command or via a message filter ( alt-src-host ), or through the use of a virtual gateway, the output interface is selected by the AsyncOS routing table. https://www.cisco.com/c/en/us/td/docs/security/esa/esa11-1/user_guide/b_ESA_Admin_Guide_11_1/b_ESA_Admin_Guide_chapter_011001.html?bookSearch=true

NEW QUESTION # 28
Refer to the exhibit. How should this configuration be modified to stop delivering Zero Day malware attacks?

• A. Change Unscannable Action from Deliver As Is to Quarantine.
• B. Change File Analysis Pending action from Deliver As Is to Quarantine.
• C. Apply Prepend on Modify Message Subject under Malware Attachments.
• D. Configure mailbox auto-remediation.

Answer: D

NEW QUESTION # 29
Which feature utilizes sensor information obtained from Talos intelligence to filter email servers connecting into the Cisco ESA?

• A. SpamCop Reputation Filtering
• B. Talos Reputation Filtering
• C. Connection Reputation Filtering
• D. SenderBase Reputation Filtering

Answer: D

Explanation:
SenderBase Reputation Filtering is a feature that allows Cisco ESA to reject or throttle connections from email servers based on their reputation score, which is calculated by Talos using sensor information from various sources.

NEW QUESTION # 30
An administrator manipulated the subnet mask but was still unable to access the user interface. How must the administrator access the Cisco Secure Email Gateway appliance to perform the initial configuration?

• A. Use the data 2 port
• B. Use the management port
• C. Use the data 1 port
• D. Use the serial or console port

Answer: D

Explanation:
If you are unable to access the user interface of the Cisco Secure Email Gateway appliance after manipulating the subnet mask, you can use the serial or console port to perform the initial configuration. The serial or console port provides a command-line interface that allows you to configure basic network settings such as IP address, subnet mask, gateway, and hostname3. Reference = User Guide for AsyncOS 12.0 for Cisco Email Security Appliances - GD (General Deployment) - Configuring Network Settings [Cisco Secure Email Gateway] - Cisco

NEW QUESTION # 31
When the Cisco ESA is configured to perform antivirus scanning, what is the default timeout value?

• A. 120 seconds
• B. 90 seconds
• C. 30 seconds
• D. 60 seconds

Answer: D

Explanation:
When Cisco ESA is configured to perform antivirus scanning, the default timeout value is 60 seconds, which means that Cisco ESA will wait for 60 seconds for the antivirus engine to scan a message before applying the configured action for unscannable messages, such as deliver, drop, or quarantine.

NEW QUESTION # 32
Refer to the exhibit. What is the correct order of commands to set filter 2 to active?

• A. filters-> modify-> All-> Active
• B. filters-> detail-> 2-> 1
• C. filters-> set-> 2-> 1
• D. filters-> edit-> 2-> Active

Answer: C

Explanation:
The correct order of commands to set filter 2 to active on the CLI of Cisco ESA is:
filters, which enters the message filter mode.
set, which sets the status of one or more message filters.
2, which specifies the message filter number.
1, which sets the status of message filter 2 to active.
The other options are not valid orders of commands to set filter 2 to active on the CLI of Cisco ESA, because they use incorrect commands or parameters.

NEW QUESTION # 33
Which two statements about configuring message filters within the Cisco ESA are true? (Choose two.)

• A. Message filters can be configured only from the web user interface.
• B. Message filters configuration within the web user interface is located within Incoming Content Filters.
• C. The filterconfig command executed from the CLI is used to configure message filters.
• D. Message filters can be configured only from the CLI.
• E. The filters command executed from the CLI is used to configure the message filters.

Answer: D,E

NEW QUESTION # 34
What occurs when configuring separate incoming mail policies?

• A. message detachment
• B. message splintering
• C. message aggregation
• D. message exceptions

Answer: B

NEW QUESTION # 35
Which two features are applied to either incoming or outgoing mail policies? (Choose two.)

• A. antivirus
• B. sender reputation filtering
• C. outbreak filters
• D. Indication of Compromise
• E. application filtering

Answer: A,C

NEW QUESTION # 36
......

300-720 Actual Questions Answers PDF 100% Cover Real Exam Questions: https://pass4sure.actual4cert.com/300-720-pass4sure-vce.html