300-720 PDF問題集で2024年01月15日最近更新された問題 [Q32-Q52]

300-720 PDF問題集で2024年01月15日最近更新された問題

300-720試験問題有効な300-720問題集PDF

質問 # 32
When the Cisco ESA is configured to perform antivirus scanning, what is the default timeout value?

• A. 120 seconds
• B. 60 seconds
• C. 30 seconds
• D. 90 seconds

正解：B

解説：
When Cisco ESA is configured to perform antivirus scanning, the default timeout value is 60 seconds, which means that Cisco ESA will wait for 60 seconds for the antivirus engine to scan a message before applying the configured action for unscannable messages, such as deliver, drop, or quarantine.

質問 # 33
Refer to the exhibit. An engineer needs to change the existing Forged Email Detection message filter so that it references a newly created dictionary named 'Executives'.
What should be done to accomplish this task?

• A. Change "support" to "Executives".
• B. Change "TESF to "Executives".
• C. Change fed' to "Executives".
• D. Change "from" to "Executives".

正解：A

解説：
https://www.ciscolive.com/c/dam/r/ciscolive/us/docs/2019/pdf/BRKSEC-2240.pdf

質問 # 34
Which action must be taken before a custom quarantine that is being used can be deleted?

• A. Remove the quarantine from the message action of a filter.
• B. Delete the quarantine that is not assigned to a filter.
• C. Delete only the unused quarantine.
• D. Delete the quarantine that is assigned to a filter.

正解：A

質問 # 35
Which two configurations are used on multiple LDAP servers to connect with Cisco ESA? (Choose two.)

• A. active-active
• B. load balancing
• C. active-standby
• D. SLA monitor
• E. failover

正解：B、E

解説：
You can enter multiple host names to configure the LDAP servers for failover or load-balancing. Separate multiple entries with commas.
Reference:
https://www.cisco.com/c/en/us/td/docs/security/ces/user_guide/sma_user_guide/ b_SMA_Admin_Guide_ces_11/b_SMA_Admin_Guide_chapter_01010.html

質問 # 36
A Cisco Secure Email Gateway appliance is processing many messages that are sent to invalid recipients verification. Which two steps are required to accomplish this task? (Choose two.)

• A. Enable LDAP authentication on a listener
• B. Configure incoming mail policy to query LDAP server
• C. Enable external LDAP authentication
• D. Configure LDAP server profiles
• E. Configure the LDAP query on a listener

正解：D、E

解説：
To enable LDAP recipient verification on a Cisco Secure Email Gateway appliance, you need to configure the LDAP query on a listener and configure LDAP server profiles. The LDAP query specifies the criteria for matching recipient addresses against an LDAP directory. The LDAP server profile defines the connection settings and authentication credentials for accessing an LDAP server2. Reference = User Guide for AsyncOS 12.0 for Cisco Email Security Appliances - GD (General Deployment) - Configuring LDAP Queries [Cisco Secure Email Gateway] - Cisco

質問 # 37
Which two components must be configured to perform DLP scanning? (Choose two.)

• A. Add a DLP policy to the Outgoing Content Filter.
• B. Add a DLP policy on the Incoming Mail Policy.
• C. Enable a DLP policy on the Outgoing Mail Policy.
• D. Enable a DLP policy on the DLP Policy Customizations.
• E. Add a DLP policy to the DLP Policy Manager.

正解：C、E

質問 # 38
Which method enables an engineer to deliver a flagged message to a specific virtual gateway address in the most flexible way?

• A. Map the envelope sender address to the host.
• B. Set up the interface group with the flag.
• C. Apply a filter on the message.
• D. Issue the altsrchost command.

正解：D

解説：
https://www.cisco.com/c/en/us/td/docs/security/esa/esa11-
1/user_guide/b_ESA_Admin_Guide_11_1/b_ESA_Admin_Guide_chapter_01000.html#con_1133
810

質問 # 39
An engineer is configuring a Cisco ESA for the first time and needs to ensure that any email traffic coming from the internal SMTP servers is relayed out through the Cisco ESA and is tied to the Outgoing Mail Policies.
Which Mail Flow Policy setting should be modified to accomplish this goal?

• A. Connection Behavior
• B. Exception List
• C. Reverse Connection Verification
• D. Bounce Detection Signing

正解：A

質問 # 40
What are two prerequisites for implementing undesirable URL protection in Cisco ESA? (Choose two.)

• A. Enable outbreak filters.
• B. Enable email relay.
• C. Enable port bouncing.
• D. Enable antispam scanning.
• E. Enable antivirus scanning.

正解：A、D

解説：
Reference:
https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-0/user_guide/b_ESA_Admin_Guide_12_0/b_ESA_Admin_Guide_chapter_01111.html

質問 # 41
A network administrator is modifying an outgoing mail policy to enable domain protection for the organization. A DNS entry is created that has the public key.
Which two headers will be used as matching criteria in the outgoing mail policy? (Choose two.)

• A. sender
• B. URL reputation
• C. message-ID
• D. from
• E. mail-from

正解：A、D

解説：
To enable domain protection for the organization, the administrator must configure an outgoing mail policy that matches the sender and the from headers of the email. The sender header is the envelope sender address that is used by SMTP to route the email. The from header is the address that is displayed to the recipient as the source of the email. These headers are used to generate and verify a DomainKeys Identified Mail (DKIM) signature, which is a cryptographic method of validating the authenticity and integrity of an email message.
The other headers are not relevant for domain protection. The message-ID header is a unique identifier for each email message. The URL reputation header is a score that indicates the likelihood of a URL being malicious. The mail-from header is an alias for the sender header.
Reference:
Domain Protection
DKIM Signing

質問 # 42
An engineer must provide differentiated email filtering to executives within the organization Which two actions must be taken to accomplish this task? (Choose two)

• A. Define an LDAP group query to specify users to whom the mail policy rules apply.
• B. Defining the default mail policies for incoming or outgoing messages is not sufficient, as default mail policies apply to all users and do not allow for differentiation based on user groups[4, p. 2].
• C. Define the default mail policies for incoming or outgoing messages
• D. Create content filters for actions to take on messages that contain specific data
• E. Upload a csv file containing the email addresses for the users for whom you want to create mail policies.
• F. Enable the content-scanning features you want to use with mail policies

正解：A、D

解説：
Define an LDAP group query to specify users to whom the mail policy rules apply. This way, you can create a custom group of executive users and apply different mail policies to them based on their LDAP attributes[4, p. 2].
Create content filters for actions to take on messages that contain specific data. Content filters allow you to scan the message body and attachments for keywords, phrases, or patterns that match your criteria and perform actions such as quarantine, encrypt, or drop the message[4, p. 7].
The other options are not valid because:
C) Uploading a csv file containing the email addresses for the users for whom you want to create mail policies is not a supported feature of Cisco Secure Email1.
D) Enabling the content-scanning features you want to use with mail policies is not necessary, as content scanning is enabled by default for all incoming and outgoing messages[4, p. 6].

質問 # 43
What are two primary components of content filters? (Choose two.)

• A. policies
• B. subject
• C. content
• D. actions
• E. conditions

正解：D、E

解説：
Content filters are rules that allow Cisco ESA to perform actions on messages based on predefined or custom conditions, such as headers, envelope, body, attachments, etc.
The two primary components of content filters are:
Conditions, which are the criteria that determine whether a message matches a content filter rule or not, such as message size, sender address, attachment type, etc.
Actions, which are the operations that Cisco ESA performs on a message if it matches the conditions of a content filter rule, such as deliver, drop, quarantine, encrypt, etc.
The other options are not primary components of content filters on Cisco ESA.

質問 # 44
When DKIM signing is configured, which DNS record must be updated to load the DKIM public signing key?

• A. MX record
• B. AAAA record
• C. TXT record
• D. PTR record

正解：C

解説：
Explanation/Reference: https://www.cisco.com/c/en/us/support/docs/security/email-security-appliance/213939-esa- configure-dkim-signing.html

質問 # 45
A network administrator is modifying an outgoing mail policy to enable domain protection for the organization. A DNS entry is created that has the public key.
Which two headers will be used as matching criteria in the outgoing mail policy? (Choose two.)

• A. sender
• B. URL reputation
• C. message-ID
• D. from
• E. mail-from

正解：A、D

質問 # 46
An administrator manipulated the subnet mask but was still unable to access the user interface. How must the administrator access the Cisco Secure Email Gateway appliance to perform the initial configuration?

• A. Use the serial or console port
• B. Use the management port
• C. Use the data 2 port
• D. Use the data 1 port

正解：A

解説：
If you are unable to access the user interface of the Cisco Secure Email Gateway appliance after manipulating the subnet mask, you can use the serial or console port to perform the initial configuration. The serial or console port provides a command-line interface that allows you to configure basic network settings such as IP address, subnet mask, gateway, and hostname3. Reference = User Guide for AsyncOS 12.0 for Cisco Email Security Appliances - GD (General Deployment) - Configuring Network Settings [Cisco Secure Email Gateway] - Cisco

質問 # 47
The CEO added a sender to a safelist but does not receive an important message expected from the trusted sender. An engineer evaluates message tracking on the Cisco Secure Email Gateway appliance and determines that the message was dropped by the antivirus engine. What is the reason for this behavior?

• A. End-user safelists apply to antispam engines only.
• B. Administrative access is required to create a safelist.
• C. The sender is included in an ISP blocklist
• D. The sender didn't mark the message as urgent

正解：A

解説：
The reason why the CEO did not receive an important message expected from a trusted sender after adding them to a safelist is because end-user safelists apply to antispam engines only. End-user safelists are lists of sender addresses or domains that end users can create and manage through their quarantine accounts or email clients. End-user safelists allow end users to accept or exempt messages from certain senders or domains from being identified as spam by the antispam engines. However, end-user safelists do not affect other filtering engines such as antivirus, outbreak filters, or content filters. Reference = User Guide for AsyncOS 12.0 for Cisco Email Security Appliances - GD (General Deployment) - Safelists and Blocklists [Cisco Secure Email Gateway] - Cisco

質問 # 48
Refer to the exhibit.


Which configuration allows the Cisco Secure Email Gateway to scan for executables inside the archive file and apply the action as per the content filter?

• A. Modify the content filter to look for exe filename instead of executable filetype.
• B. Configure the maximum attachment size to a higher value.
• C. Configure the recursion depth to a higher value.
• D. Modify the content filter to look for attachment filetype of compressed.

正解：C

解説：
The recursion depth is the number of levels that the Cisco Secure Email Gateway will scan inside an archive file for executables and other file types. If the recursion depth is too low, some executables may not be detected and scanned by the content filter. To allow the appliance to scan for executables inside the archive file and apply the action as per the content filter, you need to configure the recursion depth to a higher value1. Reference = User Guide for AsyncOS 12.0 for Cisco Email Security Appliances - GD (General Deployment) - Configuring File Reputation Filtering and File Analysis [Cisco Secure Email Gateway] - Cisco

質問 # 49
An organization wants to use its existing Cisco ESA to host a new domain and enforce a separate corporate policy for that domain.
What should be done on the Cisco ESA to achieve this?

• A. Use the deli very config command to configure mail delivery for the new domain.
• B. Use the dsestconf command to add a separate destination for the new domain.
• C. Use the altrchost command to add a separate gateway for the new domain.
• D. Use the smtproutes command to configure a SMTP route for the new domain.

正解：D

質問 # 50
An organization wants to prevent proprietary patent documents from being shared externally via email. The network administrator reviewed the DLP policies on the Cisco Secure Email Gateway and could not find an existing policy with the appropriate matching patterns. Which type of DLP policy template must be used to create a policy that meets this requirement?

• A. regulatory compliance
• B. privacy protection
• C. acceptable use
• D. custom policy

正解：D

解説：
Custom policy is a type of DLP policy template that must be used to create a policy that meets this requirement. Custom policy allows the administrator to define their own criteria for detecting sensitive or confidential data in messages, such as keywords, regular expressions, file types, etc.
To create a custom DLP policy on Cisco ESA, the administrator can follow these steps:
Select Mail Policies > DLP Policy Manager and click Add Policy.
Enter a name and description for the DLP policy, such as Patent Protection.
Under Policy Template, select Custom Policy.
Click Submit.
Under Content Matching Criteria, click Add Criteria.
Choose a matching type, such as Keyword or Regular Expression, and enter a value that matches the proprietary patent documents, such as "patent number" or "\d{4}/\d{6}".
Click Submit.
The other options are not valid types of DLP policy templates to create a policy that meets this requirement, because they are predefined templates that do not match the proprietary patent documents.

質問 # 51
Which cloud service provides a reputation verdict for email messages based on the sender domain and other attributes?

• A. Cisco Secure Email Threat Defense
• B. Cisco Secure Cloud Analytics
• C. Cisco Talos
• D. Cisco AppDynamics

正解：C

解説：
Cisco Talos is a cloud service that provides a reputation verdict for email messages based on the sender domain and other attributes such as IP address, sender behavior, message content, and attachment analysis. Cisco Talos is integrated with Cisco Secure Email Gateway and provides real-time threat intelligence and protection against spam, phishing, malware, and other email-borne threats.
The other options are not valid because:
A) Cisco AppDynamics is a cloud service that provides application performance monitoring and optimization for enterprise applications. It does not provide reputation verdicts for email messages.
B) Cisco Secure Email Threat Defense is a cloud service that provides visibility and remediation capabilities for email threats detected by Cisco Secure Email Gateway. It does not provide reputation verdicts for email messages.
C) Cisco Secure Cloud Analytics is a cloud service that provides network visibility and threat detection for cloud environments. It does not provide reputation verdicts for email messages.

質問 # 52
......

Cisco 300-720認定試験は、Cisco Email Securityアプライアンスを使用して電子メールを確保したい専門家の知識とスキルをテストするように設計されています。この認定試験は、電子メールセキュリティの専門知識を検証し、Cisco Email Securityアプライアンスを構成、展開、維持する能力を実証したいセキュリティの専門家、ネットワーク管理者、およびエンジニアに最適です。

Cisco 300-720試験は、Cisco ESAのアーキテクチャ、メッセージフィルタ、電子メール認証、暗号化、データ損失防止など、幅広いトピックをカバーしています。試験では、電子メールポリシーの設定と管理方法、電子メールセキュリティ問題のトラブルシューティング方法、およびCisco ESAを他のセキュリティソリューションと統合する方法もカバーしています。この試験に合格することで、候補者はCisco ESAを使用して電子メールを効果的かつ効率的に保護する能力を示すことができます。

 

300-720問題集合格確定させる練習には149問があります：https://www.goshiken.com/Cisco/300-720-mondaishu.html

300-720練習テスト問題解答更新された149問があります：https://drive.google.com/open?id=1Dv9rMcZP_fuBqcCmJf0_LpXY9f56pDz4