[Feb-2022] Updated CCNP Security 300-720 Exam Questions BUNDLE PACK
Master The Cisco Content 300-720 EXAM DUMPS WITH GUARANTEED SUCCESS!
NEW QUESTION 21
Which global setting is configured under Cisco ESA Scan Behavior?
- A. attachment scanning timeout
- B. actions for unscannable messages due to attachment type
- C. minimum depth of attachment recursion to scan
- D. minimum attachment size to scan
Answer: A
Explanation:
Reference:
https://community.cisco.com/t5/email-security/cisco-ironport-esa-security-services-scan-behavior- impact-on-av/td-p/3923243
NEW QUESTION 22
What is the default HTTPS port when configuring spam quarantine on Cisco ESA?
- A. 0
- B. 1
- C. 2
- D. 3
Answer: A
NEW QUESTION 23
Which two factors must be considered when message filter processing is configured? (Choose two.)
- A. lateral processing
- B. message-filter order
- C. MIME structure of the message
- D. mail policies
- E. structure of the combined packet
Answer: B,C
NEW QUESTION 24
What occurs when configuring separate incoming mail policies?
- A. message splintering
- B. message detachment
- C. message exceptions
- D. message aggregation
Answer: A
NEW QUESTION 25
Drag and drop the Cisco ESA reactions to a possible DLP from the left onto the correct action types on the right.
Answer:
Explanation:
NEW QUESTION 26 
Refer to the exhibits. What must be done to enforce end user authentication before accessing quarantine?
- A. Enable SPAM Quarantine Notification and add the %quarantine_url% variable.
- B. Change the end user quarantine access from None authentication to SAAS.
- C. Change the end user quarantine access setting from None authentication to Mailbox.
- D. Enable SPAM notification and use LDAP for authentication.
Answer: D
NEW QUESTION 27
What are two primary components of content filters? (Choose two.)
- A. conditions
- B. content
- C. policies
- D. actions
- E. subject
Answer: A,D
NEW QUESTION 28
How does the graymail safe unsubscribe feature function?
- A. It redirects the end user who clicks the unsubscribe button to a sandbox environment to allow a safe unsubscribe.
- B. It strips the malicious content of the URI before unsubscribing.
- C. It checks the reputation of the URI and performs the unsubscribe process on behalf of the end user.
- D. It checks the URI reputation and category and allows the content filter to take an action on it.
Answer: C
NEW QUESTION 29
A Cisco ESA administrator has several mail policies configured. While testing policy match using a specific sender, the email was not matching the expected policy.
What is the reason of this?
- A. The To" header is checked against all policies in a top-down fashion.
- B. The Tram* header is checked against all policies in a top-down fashion.
- C. The message header with the highest priority is checked against the Default policy in a top-down fashion.
- D. The message header with the highest priority is checked against each policy in a top-down fashion.
Answer: C
NEW QUESTION 30
When URL logging is configured on a Cisco ESA, which feature must be enabled first?
- A. senderbase reputation filter
- B. virus outbreak filter
- C. antispam
- D. antivirus
Answer: B
Explanation:
Reference:
https://www.cisco.com/c/en/us/support/docs/security/email-security-appliance/118775-technote- esa-00.html (note under enable url filtering)
NEW QUESTION 31
What is the default behavior of any listener for TLS communication?
- A. preferred-verify
- B. off
- C. required
- D. preferred
Answer: B
Explanation:
Explanation/Reference: https://www.cisco.com/c/en/us/support/docs/security/email-security-appliance/118954-config- esa-00.html
NEW QUESTION 32
When URL logging is configured on a Cisco ESA, which feature must be enabled first?
- A. senderbase reputation filter
- B. virus outbreak filter
- C. antispam
- D. antivirus
Answer: B
NEW QUESTION 33
Email encryption is configured on a Cisco ESA that uses CRES.
Which action is taken on a message when CRES is unavailable?
- A. It is requeued.
- B. It is sent in clear text.
- C. It is encrypted by a Cisco encryption appliance.
- D. It is dropped and an error message is sent to the sender.
Answer: B
Explanation:
Reference:
https://www.cisco.com/c/en/us/support/docs/security/email-security-appliance/117863-configure- esa-00.html
NEW QUESTION 34
An administrator is trying to enable centralized PVO but receives the error, "Unable to proceed with Centralized Policy, Virus and Outbreak Quarantines configuration as esa1 in Cluster has content filters / DLP actions available at a level different from the cluster level." What is the cause of this error?
- A. DLP is not configured on host1.
- B. DLP is configured at the domain-level on esa1.
- C. Content filters are configured at the machine-level on esa1.
- D. DLP is configured at the cluster-level on esa2.
Answer: A
NEW QUESTION 35
What are two primary components of content filters? (Choose two.)
- A. conditions
- B. content
- C. policies
- D. actions
- E. subject
Answer: A,D
Explanation:
Reference:
https://www.cisco.com/c/en/us/td/docs/security/ces/user_guide/esa_user_guide_11-1/ b_ESA_Admin_Guide_ces_11_1/b_ESA_Admin_Guide_chapter_01010.pdf
NEW QUESTION 36
A recent engine update was pulled down for graymail and has caused the service to start crashing. It is critical to fix this as quickly as possible.
What must be done to address this issue?
- A. Download another update from the IMS and Graymail page.
- B. Download another update from the Service Updates page.
- C. Roll back to a previous version of the engine from the Services Overview page.
- D. Roll back to a previous version of the engine from the System Health page.
Answer: C
NEW QUESTION 37
An engineer is tasked with reviewing mail logs to confirm that messages sent from domain abc.com are passing SPF verification and being accepted by the Cisco ESA. The engineer notices that SPF verification is not being performed and that SPF is not being referenced in the logs for messages sent from domain abc.com.
Why is the verification not working properly?
- A. SPF verification is disabled on the Mail Flow Policy.
- B. SPF verification is disabled in the Recipient Access Table.
- C. An SPF verification Content Filter has not been created.
- D. The SPF conformance level is set to SIDF compatible on the Mail Flow Policy.
Answer: C
NEW QUESTION 38
Which two Cisco ESA features are used to control email delivery based on the sender? (Choose two.)
- A. spam quarantine
- B. blocklists
- C. incoming mail policies
- D. outbreak filter
- E. safelists
Answer: B,E
NEW QUESTION 39
......
Exam 300-720 Domains
Here are the main topics that will be tested in the Cisco 300-720:
- Filters for content as well as messages;
- Systems quarantines in addition to delivery processes.
- Authenticating and encrypting Emails;
The above-discussed areas are the most common in the actual exam, but testing is not necessarily limited to them. The guidelines may change so you are advised to revise extensively for the official exam so that you pass it in one go.
Pass Cisco 300-720 Exam – Experts Are Here To Help You: https://passguide.dumpexams.com/300-720-vce-torrent.html