300-720 Exam - Securing Email with Cisco Email Security Appliance (SESA)

NEW QUESTION 1
Which action on the Cisco ESA provides direct access to view the safelist/blocklist?

• A. Show the SLBL cache on the CLI.
• B. Monitor Incoming/Outgoing Listener.
• C. Export the SLBL to a .csv file.
• D. Debug the mail flow policy.

Answer: C

NEW QUESTION 2
Which type of query must be configured when setting up the Spam Quarantine while merging notifications?

• A. Spam Quarantine Alias Routing Query
• B. Spam Quarantine Alias Consolidation Query
• C. Spam Quarantine Alias Authentication Query
• D. Spam Quarantine Alias Masquerading Query

Answer: B

NEW QUESTION 3
Which method enables an engineer to deliver a flagged message to a specific virtual gateway address in the most flexible way?

• A. Set up the interface group with the flag.
• B. Issue the altsrchost command.
• C. Map the envelope sender address to the host.
• D. Apply a filter on the message.

Answer: B

NEW QUESTION 4
An administrator is trying to enable centralized PVO but receives the error, "Unable to proceed with Centralized Policy, Virus and Outbreak Quarantines configuration as esa1 in Cluster has content filters / DLP actions available at a level different from the cluster level."
What is the cause of this error?

• A. Content filters are configured at the machine-level on esa1.
• B. DLP is configured at the cluster-level on esa2.
• C. DLP is configured at the domain-level on esa1.
• D. DLP is not configured on host1.

Answer: D

NEW QUESTION 5
What is the default HTTPS port when configuring spam quarantine on Cisco ESA?

• A. 83
• B. 82
• C. 443
• D. 80

Answer: A

NEW QUESTION 6
What is the order of virus scanning when multilayer antivirus scanning is configured?

• A. The default engine scans for viruses first and the McAfee engine scans for viruses second.
• B. The Sophos engine scans for viruses first and the McAfee engine scans for viruses second.
• C. The McAfee engine scans for viruses first and the default engine scans for viruses second.
• D. The McAfee engine scans for viruses first and the Sophos engine scans for viruses second.

Answer: C

NEW QUESTION 7
What occurs when configuring separate incoming mail policies?

• A. message splintering
• B. message exceptions
• C. message detachment
• D. message aggregation

Answer: A

NEW QUESTION 8
Which two action types are performed by Cisco ESA message filters? (Choose two.)

• A. non-final actions
• B. filter actions
• C. discard actions
• D. final actions
• E. quarantine actions

Answer: AD

NEW QUESTION 9
Which type of attack is prevented by configuring file reputation filtering and file analysis features?

• A. denial of service
• B. zero-day
• C. backscatter
• D. phishing

Answer: B

NEW QUESTION 10
Which feature utilizes sensor information obtained from Talos intelligence to filter email servers connecting into the Cisco ESA?

• A. SenderBase Reputation Filtering
• B. Connection Reputation Filtering
• C. Talos Reputation Filtering
• D. SpamCop Reputation Filtering

Answer: A

NEW QUESTION 11
Which two statements about configuring message filters within the Cisco ESA are true? (Choose two.)

• A. The filters command executed from the CLI is used to configure the message filters.
• B. Message filters configuration within the web user interface is located within Incoming Content Filters.
• C. The filterconfig command executed from the CLI is used to configure message filters.
• D. Message filters can be configured only from the CLI.
• E. Message filters can be configured only from the web user interface.

Answer: AD

NEW QUESTION 12
Which antispam feature is utilized to give end users control to allow emails that are spam to be delivered to their inbox, overriding any spam verdict and action on the Cisco ESA?

• A. end user allow list
• B. end user spam quarantine access
• C. end user passthrough list
• D. end user safelist

Answer: B

NEW QUESTION 13
Which action is a valid fallback when a client certificate is unavailable during SMTP authentication on Cisco ESA?

• A. LDAP Query
• B. SMTP AUTH
• C. SMTP TLS
• D. LDAP BIND

Answer: B

NEW QUESTION 14
Which setting affects the aggressiveness of spam detection?

• A. protection level
• B. spam threshold
• C. spam timeout
• D. maximum depth of recursion scan

Answer: B

NEW QUESTION 15
Which two query types are available when an LDAP profile is configured? (Choose two.)

• A. proxy consolidation
• B. user
• C. recursive
• D. group
• E. routing

Answer: DE

NEW QUESTION 16
What are two primary components of content filters? (Choose two.)

• A. conditions
• B. subject
• C. content
• D. actions
• E. policies

Answer: AD

NEW QUESTION 17
Which two steps are needed to disable local spam quarantine before external quarantine is enabled? (Choose two.)

• A. Uncheck the Enable Spam Quarantine check box.
• B. Select Monitor and click Spam Quarantine.
• C. Check the External Safelist/Blocklist check box.
• D. Select External Spam Quarantine and click on Configure.
• E. Select Security Services and click Spam Quarantine.

Answer: B

Explanation:
45 Which Cisco ESA security service is configured only through an outgoing mail policy?
A. antivirus
B. DLP
C. Outbreak Filters
D. AMP

NEW QUESTION 18
What are two prerequisites for implementing undesirable URL protection in Cisco ESA? (Choose two.)

• A. Enable outbreak filters.
• B. Enable email relay.
• C. Enable antispam scanning.
• D. Enable port bouncing.
• E. Enable antivirus scanning.

Answer: AC

NEW QUESTION 19
When URL logging is configured on a Cisco ESA, which feature must be enabled first?

• A. antivirus
• B. antispam
• C. virus outbreak filter
• D. senderbase reputation filter

Answer: C

NEW QUESTION 20
When outbreak filters are configured, which two actions are used to protect users from outbreaks? (Choose two.)

• A. redirect
• B. return
• C. drop
• D. delay
• E. abandon

Answer: AD

NEW QUESTION 21
......