• ホーム
  • ブログ
  • [2022年更新]早速ゲットしてトップランクのCisco 300-720試験問題集 [Q29-Q52]

[2022年更新]早速ゲットしてトップランクのCisco 300-720試験問題集 [Q29-Q52]

Share

[2022年更新]早速ゲットしてトップランクのCisco 300-720試験問題集

パスする秘訣は300-720をゲットして認証された試験エンジンPDF

質問 29
Which attack is mitigated by using Bounce Verification?

  • A. smurf
  • B. spoof
  • C. eavesdropping
  • D. denial of service

正解: D

 

質問 30
Which two steps are needed to disable local spam quarantine before external quarantine is enabled?
(Choose two.)

  • A. Select Monitor and click Spam Quarantine.
  • B. Select External Spam Quarantine and click on Configure.
  • C. Uncheck the Enable Spam Quarantine check box.
  • D. Check the External Safelist/Blocklist check box.
  • E. Select Security Services and click Spam Quarantine.

正解: A,C

解説:
Explanation/Reference: https://www.cisco.com/c/en/us/support/docs/security/email-security-appliance/118555-qa-esa-
00.html (configuration summary)

 

質問 31
What is a benefit of implementing URL filtering on the Cisco ESA?

  • A. removes threats from malicious URLs
  • B. enhances reputation against malicious URLs
  • C. blacklists spam
  • D. provides URL reputation protection

正解: D

解説:
Reference:
https://www.cisco.com/c/en/us/support/docs/security/email-security-appliance/118775-technote- esa-00.html

 

質問 32
Which Cisco ESA security service is configured only through an outgoing mail policy?

  • A. DLP
  • B. Outbreak Filters
  • C. AMP
    Reference https://www.cisco.com/c/en/us/td/docs/security/esa/esa11-0/user_guide_fs/ b_ESA_Admin_Guide_11_0/b_ESA_Admin_Guide_chapter_01001.html
  • D. antivirus

正解: A

 

質問 33
When DKIM signing is configured, which DNS record must be updated to load the DKIM public signing key?

  • A. MX record
  • B. PTR record
  • C. TXT record
  • D. AAAA record

正解: C

解説:
Reference:
https://www.cisco.com/c/en/us/support/docs/security/email-security-appliance/213939-esa- configure-dkim-signing.html

 

質問 34
What is the default port to deliver emails from the Cisco ESA to the Cisco SMA using the centralized Spam Quarantine?

  • A. 0
  • B. 1
  • C. 2
  • D. 3

正解: D

 

質問 35
Refer to the exhibit.

Which SPF record is valid for mycompany.com?

  • A. v=spf1 a mx ip4:199.209.31.21 -all
  • B. v=spf1 a mx ip4:172.16.18.230 -all
  • C. v=spf1 a mx ip4:199.209.31.2 -all
  • D. v=spf1 a mx ip4:10.1.10.23 -all

正解: B

 

質問 36
Which process is skipped when an email is received from safedomain.com, which is on the safelist?

  • A. antivirus scanning
  • B. outbreak filter
  • C. antispam scanning
  • D. message filter

正解: D

解説:
Reference:
https://www.cisco.com/c/en/us/support/docs/security/email-security-appliance/214269-filter-to- handle-messages-that-skipped-d.html

 

質問 37
Which two are configured in the DMARC verification profile? (Choose two.)

  • A. minimum number of signatures to verify
  • B. ESA listeners to use the verification profile
  • C. name of the verification profile
  • D. message action into an incoming or outgoing content filter
  • E. message action to take when the policy is reject/quarantine

正解: C,E

解説:
Reference:
https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-0/user_guide/ b_ESA_Admin_Guide_12_0/b_ESA_Admin_Guide_12_0_chapter_010101.html#task_1231917

 

質問 38
Which two steps configure Forged Email Detection? (Choose two.)

  • A. Configure a filter to check the Header From value against the Forged Email Detection dictionary.
  • B. Configure a filter to use the Forged Email Detection rule and dictionary.
  • C. Configure a content dictionary with executive email addresses.
  • D. Configure a content dictionary with friendly names.
  • E. Enable Forged Email Detection on the Security Services page.

正解: B,C

 

質問 39
When the Spam Quarantine is configured on the Cisco ESA, what validates end-users via LDAP during login to the End-User Quarantine?

  • A. Enabling the End-User Safelist/Blocklist feature
  • B. Spam Quarantine End-User Authentication Query
  • C. Spam Quarantine External Authentication Query
  • D. Spam Quarantine Alias Consolidation Query

正解: B

解説:
Explanation/Reference: https://www.cisco.com/c/en/us/support/docs/security/email-security-appliance/118692- configure-esa-00.html

 

質問 40
Which action must be taken before a custom quarantine that is being used can be deleted?

  • A. Remove the quarantine from the message action of a filter.
  • B. Delete only the unused quarantine.
  • C. Delete the quarantine that is not assigned to a filter.
  • D. Delete the quarantine that is assigned to a filter.

正解: A

 

質問 41
An administrator is trying to enable centralized PVO but receives the error, "Unable to proceed with Centralized Policy, Virus and Outbreak Quarantines configuration as esa1 in Cluster has content filters / DLP actions available at a level different from the cluster level." What is the cause of this error?

  • A. DLP is configured at the domain-level on esa1.
  • B. Content filters are configured at the machine-level on esa1.
  • C. DLP is configured at the cluster-level on esa2.
  • D. DLP is not configured on host1.

正解: D

 

質問 42
Which two action types are performed by Cisco ESA message filters? (Choose two.)

  • A. quarantine actions
  • B. final actions
  • C. filter actions
  • D. discard actions
  • E. non-final actions

正解: B,E

解説:
Reference:
https://www.cisco.com/c/en/us/td/docs/security/esa/esa11-1/user_guide/ b_ESA_Admin_Guide_11_1/b_ESA_Admin_Guide_chapter_01000.html

 

質問 43
What are organizations trying to address when implementing a SPAM quarantine?

  • A. true negatives
  • B. true positives
  • C. false positives
  • D. false negatives

正解: C

 

質問 44
Which setting affects the aggressiveness of spam detection?

  • A. protection level
  • B. maximum depth of recursion scan
  • C. spam timeout
  • D. spam threshold

正解: D

 

質問 45
What is the maximum message size that can be configured for encryption on the Cisco ESA?

  • A. 25 MB
  • B. 20 MB
  • C. 30 MB
  • D. 15 MB

正解: B

解説:
Reference:
https://www.cisco.com/c/en/us/support/docs/security/email-security-appliance/117972-technote- esa-00.html

 

質問 46
Which method enables an engineer to deliver a flagged message to a specific virtual gateway address in the most flexible way?

  • A. Set up the interface group with the flag.
  • B. Issue the altsrchost command.
  • C. Apply a filter on the message.
  • D. Map the envelope sender address to the host.

正解: B

解説:
Reference:
https://www.cisco.com/c/en/us/td/docs/security/esa/esa11-1/user_guide/ b_ESA_Admin_Guide_11_1/b_ESA_Admin_Guide_chapter_01000.html#con_1133810

 

質問 47
A Cisco ESA administrator was notified that a user was not receiving emails from a specific domain. After reviewing the mail logs, the sender had a negative sender-based reputation score.
What should the administrator do to allow inbound email from that specific domain?

  • A. Modify the firewall to allow emails from the domain.
  • B. Add the domain into the allow list.
  • C. Ask the user to add the sender to the email application's allow list.
  • D. Create a new inbound mail policy with a message filter that overrides Talos.

正解: B

 

質問 48
An engineer is configuring a Cisco ESA for the first time and needs to ensure that any email traffic coming from the internal SMTP servers is relayed out through the Cisco ESA and is tied to the Outgoing Mail Policies.
Which Mail Flow Policy setting should be modified to accomplish this goal?

  • A. Connection Behavior
  • B. Exception List
  • C. Reverse Connection Verification
  • D. Bounce Detection Signing

正解: A

 

質問 49
Which feature utilizes sensor information obtained from Talos intelligence to filter email servers connecting into the Cisco ESA?

  • A. SpamCop Reputation Filtering
  • B. Connection Reputation Filtering
  • C. SenderBase Reputation Filtering
  • D. Talos Reputation Filtering

正解: C

 

質問 50
An engineer is tasked with reviewing mail logs to confirm that messages sent from domain abc.com are passing SPF verification and being accepted by the Cisco ESA. The engineer notices that SPF verification is not being performed and that SPF is not being referenced in the logs for messages sent from domain abc.com.
Why is the verification not working properly?

  • A. An SPF verification Content Filter has not been created.
  • B. SPF verification is disabled in the Recipient Access Table.
  • C. SPF verification is disabled on the Mail Flow Policy.
  • D. The SPF conformance level is set to SIDF compatible on the Mail Flow Policy.

正解: A

 

質問 51
What are two phases of the Cisco ESA email pipeline? (Choose two.)

  • A. quarantine
  • B. reject
  • C. workqueue
  • D. action
  • E. delivery

正解: C,E

解説:
Reference:
https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-1/user_guide/ b_ESA_Admin_Guide_12_1/b_ESA_Admin_Guide_12_1_chapter_011.pdf (p.1)

 

質問 52
......


Cisco 300-720 認定試験の出題範囲:

トピック出題範囲
トピック 1
  • Spam Control With Talos Senderbase And Antispam
  • Describe The Bounce Verification Feature
トピック 2
  • Utilize Safelists And Blocklists To Control Email Delivery
  • Configure Forged Email Detection
トピック 3
  • Create Text Resources Such As Content Dictionaries, Disclaimers, And Templates
  • Hardware Performance Specifications
トピック 4
  • Utilize Spam Quarantine Alias To Consolidate Queries
  • Understand Spam Quarantine Functions
トピック 5
  • Manage Messages In Local Or External Spam Quarantines
  • Configure Cisco Email Security Appliance Features
トピック 6
  • Smtp Session Authentication Using Client Certificates
  • Authentication For End-Users Of Spam Quarantine
トピック 7
  • Configure File Reputation Filtering And File Analysis Features
  • Implement Malicious Or Undesirable Urls Protection
トピック 8
  • Configure Domain Keys And Dkim Signing
  • Routing And Delivery Features
  • Configure Mail Policies

 

300-720試験問題は練習は2022年最新の92問題:https://www.goshiken.com/Cisco/300-720-mondaishu.html

300-720試験問題集パスと最新テスト問題集:https://drive.google.com/open?id=16LRxDRMXhq8Z8vKDYFfJeFUx4JZKsGm1

関するブログ

もっと
300-720無料問題集