ExamGecko
Login
Home / Cisco / 300-720 / List of questions
Ask Question

Cisco 300-720 Practice Test - Questions Answers, Page 3

Add to Whishlist

List of questions

Question 21

Report Export Collapse

When email authentication is configured on Cisco ESA, which two key types should be selected on the signing profile? (Choose two.)

DKIM

DKIM

Public Keys

Public Keys

Domain Keys

Domain Keys

Symmetric Keys

Symmetric Keys

Private Keys

Private Keys

Suggested answer: B, E
Explanation:

With DomainKeys or DKIM email authentication, the sender signs the email using public key cryptography. Configuring DomainKeys and DKIM Signing A signing key is the private key stored on the appliance. https://www.cisco.com/c/en/us/td/docs/security/esa/esa11-1/user_guide/b_ESA_Admin_Guide_11_1/b_ESA_Admin_Guide_chapter_010101.html?bookSearch=true

asked 10/10/2024
Farshin Golpad
41 questions

Question 22

Report Export Collapse

What are two phases of the Cisco ESA email pipeline? (Choose two.)

reject

reject

workqueue

workqueue

action

action

delivery

delivery

quarantine

quarantine

Suggested answer: B, D
Explanation:

With DomainKeys or DKIM email authentication, the sender signs the email using public key cryptography. Configuring DomainKeys and DKIM Signing A signing key is the private key stored on the appliance. https://www.cisco.com/c/en/us/td/docs/security/esa/esa11-1/user_guide/b_ESA_Admin_Guide_11_1/b_ESA_Admin_Guide_chapter_010101.html?bookSearch=true

Reference: https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-1/user_guide/b_ESA_Admin_Guide_12_1/b_ESA_Admin_Guide_12_1_chapter_011.pdf (p.1)

asked 10/10/2024
AHOPlvaro Zorrilla
43 questions

Question 23

Report Export Collapse

Which two action types are performed by Cisco ESA message filters? (Choose two.)

non-final actions

non-final actions

filter actions

filter actions

discard actions

discard actions

final actions

final actions

quarantine actions

quarantine actions

Suggested answer: A, D
Explanation:

Non-final actions are actions that do not terminate the message filter evaluation, such as adding headers, setting variables, logging, etc. Final actions are actions that end the message filter evaluation and determine the fate of the message, such as accept, drop, bounce, quarantine, etc.

Reference: User Guide for AsyncOS 15.0 for Cisco Secure Email Gateway, page 3-4.

Reference: https://www.cisco.com/c/en/us/td/docs/security/esa/esa11-1/user_guide/b_ESA_Admin_Guide_11_1/b_ESA_Admin_Guide_chapter_01000.html

asked 10/10/2024
Blavier Arnaud
50 questions

Question 24

Report Export Collapse

Which setting affects the aggressiveness of spam detection?

protection level

protection level

spam threshold

spam threshold

spam timeout

spam timeout

maximum depth of recursion scan

maximum depth of recursion scan

Suggested answer: B
Explanation:

Spam threshold is a setting that determines the minimum score that a message must have to be classified as spam by Cisco ESA. The lower the threshold, the more aggressive the spam detection is.

Reference: User Guide for AsyncOS 15.0 for Cisco Secure Email Gateway, page 6-5.

Reference: https://www.cisco.com/c/en/us/support/docs/security/email-security-appliance/118220-technote- esa-00.html

asked 10/10/2024
Brad Mateski
45 questions

Question 25

Report Export Collapse

What is the order of virus scanning when multilayer antivirus scanning is configured?

The default engine scans for viruses first and the McAfee engine scans for viruses second.

The default engine scans for viruses first and the McAfee engine scans for viruses second.

The Sophos engine scans for viruses first and the McAfee engine scans for viruses second.

The Sophos engine scans for viruses first and the McAfee engine scans for viruses second.

The McAfee engine scans for viruses first and the default engine scans for viruses second.

The McAfee engine scans for viruses first and the default engine scans for viruses second.

The McAfee engine scans for viruses first and the Sophos engine scans for viruses second.

The McAfee engine scans for viruses first and the Sophos engine scans for viruses second.

Suggested answer: D
Explanation:

https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-0/user_guide/b_ESA_Admin_Guide_12_0/b_ESA_Admin_Guide_chapter_01011.html

According to the User Guide for AsyncOS 12.0 for Cisco Email Security Appliances2, the order of virus scanning when multilayer antivirus scanning is configured is as follows:

The McAfee engine scans the message first. If the McAfee engine detects a virus, the message is dropped or repaired, depending on the configuration. If the McAfee engine does not detect a virus, the message is passed to the next layer of scanning.

The Sophos engine scans the message second. If the Sophos engine detects a virus, the message is dropped or repaired, depending on the configuration. If the Sophos engine does not detect a virus, the message is delivered to the recipient.

asked 10/10/2024
John Hammonds
42 questions

Question 26

Report Export Collapse

Which antispam feature is utilized to give end users control to allow emails that are spam to be delivered to their inbox, overriding any spam verdict and action on the Cisco ESA?

end user allow list

end user allow list

end user spam quarantine access

end user spam quarantine access

end user passthrough list

end user passthrough list

end user safelist

end user safelist

Suggested answer: D
Explanation:

End user safelist is a feature that allows end users to specify email addresses or domains that they want to receive messages from, regardless of the spam verdict or action assigned by Cisco ESA.

Messages from senders on the end user safelist are delivered to the end user's inbox without any spam filtering.

Reference: User Guide for AsyncOS 15.0 for Cisco Secure Email Gateway, page 10-13.

asked 10/10/2024
Aleph Ventures
36 questions

Question 27

Report Export Collapse

What are two prerequisites for implementing undesirable URL protection in Cisco ESA? (Choose two.)

Enable outbreak filters.

Enable outbreak filters.

Enable email relay.

Enable email relay.

Enable antispam scanning.

Enable antispam scanning.

Enable port bouncing.

Enable port bouncing.

Enable antivirus scanning.

Enable antivirus scanning.

Suggested answer: A, C
Explanation:

Undesirable URL protection is a feature that allows Cisco ESA to detect and block messages that contain URLs that lead to malicious or unwanted websites, such as phishing, malware, or adult content sites. To enable this feature, outbreak filters and antispam scanning must be enabled on Cisco ESA.

Reference: User Guide for AsyncOS 15.0 for Cisco Secure Email Gateway, page 6-17.

Reference: https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-0/user_guide/b_ESA_Admin_Guide_12_0/b_ESA_Admin_Guide_chapter_01111.html

asked 10/10/2024
Manuela Kays
40 questions

Question 28

Report Export Collapse

DRAG DROP

Drag and drop the steps to configure Cisco ESA to use SPF/SIDF verification from the left into the correct order on the right.

Cisco 300-720 image Question 28 114398 10102024112745000
Correct answer: Cisco 300-720 image answer Question 28 114398 10102024112745000
Explanation:


asked 10/10/2024
Wissem GHARBI
41 questions

Question 29

Report Export Collapse

Which suboption must be selected when LDAP is configured for Spam Quarantine End-User Authentication?

Become a Premium Member for full access
  Unlock Premium Member

Question 30

Report Export Collapse

Which action must be taken before a custom quarantine that is being used can be deleted?

Become a Premium Member for full access
  Unlock Premium Member
Total 148 questions
Go to page: of 15
Open VPLUS File
Convert VPLUS to PDF

Related questions

A Cisco ESA administrator has noticed that new messages being sent to the Centralized Policy Quarantine are being released after one hour. Previously, they were being held for a day before being released. What was configured that caused this to occur?
An administrator is managing multiple Cisco ESA devices and wants to view the quarantine emails from all devices in a central location. How is this accomplished?
The CEO added a sender to a safelist but does not receive an important message expected from the trusted sender. An engineer evaluates message tracking on the Cisco Secure Email Gateway appliance and determines that the message was dropped by the antivirus engine. What is the reason for this behavior?
A Cisco ESA administrator has several mail policies configured. While testing policy match using a specific sender, the email was not matching the expected policy. What is the reason of this?
An engineer is testing mail flow on a new Cisco ESA and notices that messages for domain abc.com are stuck in the delivery queue. Upon further investigation, the engineer notices that the messages pending delivery are destined for 192.168.1.11, when they should instead be routed to 192.168.1.10. What configuration change needed to address this issue?
Which type of query must be configured when setting up the Spam Quarantine while merging notifications?
A network engineer must tighten up the SPAM control policy of an organization due to a recent SPAM attack. In which scenario does enabling regional scanning improve security for this organization?
An administrator identifies that, over the past week, the Cisco ESA is receiving many emails from certain senders and domains which are being consistently quarantined. The administrator wants to ensure that these senders and domain are unable to send anymore emails. Which feature on Cisco ESA should be used to achieve this?
A list of company executives is routinely being spoofed, which puts the company at risk of malicious email attacks An administrator must ensure that executive messages are originating from legitimate sending addresses Which two steps must be taken to accomplish this task? (Choose two.)
Which component must be added to the content filter to trigger on failed SPF Verification or DKIM Authentication verdicts?