• Home
  • Articles
  • [2021] 300-720 by CCNP Security Actual Free Exam Practice Test [Q12-Q29]

[2021] 300-720 by CCNP Security Actual Free Exam Practice Test [Q12-Q29]

Share

[2021]  300-720 by CCNP Security Actual Free Exam Practice Test

Free CCNP Security 300-720 Exam Question


The Cisco 300-720 SESA (Securing Email with Cisco Email Security Appliance) is an exam designed to assess your know-how of the Cisco Email Security Appliance (ESA). It helps you evaluate how well you understand and whether you can use the related technology around Email security. Also, this exam together with 350-701 leads to the CCNP Security and the Cisco Certified Specialist - Email Content Security certificates. The latter applies to 300-720 test alone.


What is the Registration procedure of the Cisco 300-720 Exam

In order to apply for the Cisco 300-720 Exam, You have to follow

  • Step 1: Visit to Pearson VUE Exam Registration
  • Step 2: Signup/Login to Pearson VUE account
  • Step 3: Search for Cisco 300-720 Certifications Exam
  • Step 4: Select Date, time and confirm with a payment method

 

NEW QUESTION 12

Refer to the exhibit. An engineer is trying to connect to a Cisco ESA using SSH and has been unsuccessful.
Upon further inspection, the engineer notices that there is a loss of connectivity to the neighboring switch.
Which connection method should be used to determine the configuration issue?

  • A. Telnet
  • B. Ethernet
  • C. HTTPS
  • D. serial

Answer: D

 

NEW QUESTION 13
Which two components form the graymail management solution in Cisco ESA? (Choose two.)

  • A. improved mail efficacy
  • B. secure subscribe option for end users
  • C. integrated graymail scanning engine
  • D. cloud-based unsubscribe service
  • E. uniform unsubscription management interface for end users

Answer: C,D

 

NEW QUESTION 14
Which two query types are available when an LDAP profile is configured? (Choose two.)

  • A. proxy consolidation
  • B. group
  • C. user
  • D. routing
  • E. recursive

Answer: B,D

Explanation:
Explanation/Reference: https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-0/user_guide/ b_ESA_Admin_Guide_12_0/b_ESA_Admin_Guide_12_0_chapter_011010.html

 

NEW QUESTION 15
When virtual gateways are configured, which two distinct attributes are allocated to each virtual gateway address? (Choose two.)

  • A. domain
  • B. DHCP server address
  • C. IP address
  • D. DNS server address
  • E. external spam quarantine

Answer: A,C

Explanation:
Reference:
https://www.cisco.com/c/en/us/support/docs/security/email-security-appliance/118542-qa-esa- 00.html

 

NEW QUESTION 16
An administrator has created a content filter to quarantine all messages that result in an SPF hardfail to review the messages and determine whether a trusted partner has accidentally misconfigured the DNS settings. The administrator sets the policy quarantine to release the messages after 24 hours, allowing time to review while not interrupting business.
Which additional option should be used to help the end users be aware of the elevated risk of interacting with these messages?

  • A. Modify Subject
  • B. Notify Sender
  • C. Notify Recipient
  • D. Strip Attachments

Answer: A

 

NEW QUESTION 17
Which two components form the graymail management solution in Cisco ESA? (Choose two.)

  • A. improved mail efficacy
  • B. secure subscribe option for end users
  • C. integrated graymail scanning engine
  • D. cloud-based unsubscribe service
  • E. uniform unsubscription management interface for end users

Answer: C,D

Explanation:
Reference:
https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-0/user_guide/ b_ESA_Admin_Guide_12_0/b_ESA_Admin_Guide_chapter_01101.pdf (p.2)

 

NEW QUESTION 18
Which type of attack is prevented by configuring file reputation filtering and file analysis features?

  • A. phishing
  • B. denial of service
  • C. zero-day
  • D. backscatter

Answer: C

Explanation:
Explanation/Reference: https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-0/user_guide/ b_ESA_Admin_Guide_12_0/b_ESA_Admin_Guide_chapter_010000.html#con_1809885

 

NEW QUESTION 19
Which action on the Cisco ESA provides direct access to view the safelist/blocklist?

  • A. Debug the mail flow policy.
  • B. Monitor Incoming/Outgoing Listener.
  • C. Export the SLBL to a .csv file.
  • D. Show the SLBL cache on the CLI.

Answer: C

Explanation:
Explanation/Reference: https://www.cisco.com/c/en/us/support/docs/security/email-security-appliance/117922-technote- esa-00.html

 

NEW QUESTION 20
What are two primary components of content filters? (Choose two.)

  • A. subject
  • B. conditions
  • C. actions
  • D. content
  • E. policies

Answer: B,C

Explanation:
Explanation/Reference:
https://www.cisco.com/c/en/us/td/docs/security/ces/user_guide/esa_user_guide_11-1/ b_ESA_Admin_Guide_ces_11_1/b_ESA_Admin_Guide_chapter_01010.pdf

 

NEW QUESTION 21
Which two components must be configured to perform DLP scanning? (Choose two.)

  • A. Add a DLP policy to the Outgoing Content Filter.
  • B. Enable a DLP policy on the Outgoing Mail Policy.
  • C. Add a DLP policy on the Incoming Mail Policy.
  • D. Add a DLP policy to the DLP Policy Manager.
  • E. Enable a DLP policy on the DLP Policy Customizations.

Answer: B,D

Explanation:
Reference:
https://www.cisco.com/c/en/us/td/docs/security/esa/esa11-1/user_guide/ b_ESA_Admin_Guide_11_1/b_ESA_Admin_Guide_chapter_010001.html

 

NEW QUESTION 22
Drag and drop the steps to configure Cisco ESA to use SPF/SIDF verification from the left into the correct order on the right.

Answer:

Explanation:

 

NEW QUESTION 23
A company has deployed a new mandate that requires all emails sent externally from the Sales Department to be scanned by DLP for PCI-DSS compliance. A new DLP policy has been created on the Cisco ESA and needs to be assigned to a mail policy named 'Sales' that has yet to be created.
Which mail policy should be created to accomplish this task?

  • A. Incoming Mail Flow Policy
  • B. Preliminary Mail Policy
  • C. Outgoing Mail Flow Policy
  • D. Outgoing Mail Policy

Answer: D

 

NEW QUESTION 24
Which process is skipped when an email is received from safedomain.com, which is on the safelist?

  • A. outbreak filter
  • B. antivirus scanning
  • C. message filter
  • D. antispam scanning

Answer: C

 

NEW QUESTION 25
Which process is skipped when an email is received from safedomain.com, which is on the safelist?

  • A. outbreak filter
  • B. antivirus scanning
  • C. message filter
  • D. antispam scanning

Answer: C

Explanation:
Reference:
https://www.cisco.com/c/en/us/support/docs/security/email-security-appliance/214269-filter-to- handle-messages-that-skipped-d.html

 

NEW QUESTION 26
When the Spam Quarantine is configured on the Cisco ESA, what validates end-users via LDAP during login to the End-User Quarantine?

  • A. Spam Quarantine End-User Authentication Query
  • B. Spam Quarantine Alias Consolidation Query
  • C. Spam Quarantine External Authentication Query
  • D. Enabling the End-User Safelist/Blocklist feature

Answer: A

 

NEW QUESTION 27
Which component must be added to the content filter to trigger on failed SPF Verification or DKIM Authentication verdicts?

  • A. parameter
  • B. condition
  • C. status
  • D. response

Answer: B

 

NEW QUESTION 28
An organization wants to use its existing Cisco ESA to host a new domain and enforce a separate corporate policy for that domain.
What should be done on the Cisco ESA to achieve this?

  • A. Use the deli very config command to configure mail delivery for the new domain.
  • B. Use the altrchost command to add a separate gateway for the new domain.
  • C. Use the dsestconf command to add a separate destination for the new domain.
  • D. Use the smtproutes command to configure a SMTP route for the new domain.

Answer: D

 

NEW QUESTION 29
......

Cisco 300-720 Actual Questions and Braindumps: https://www.testpdf.com/300-720-exam-braindumps.html

300-720 dumps & CCNP Security sure practice dumps: https://drive.google.com/open?id=1xdD8iOxCHO0GgSuAjS3ZfIZGquWtyPX2

Related Articles

more
Cisco 300-720 Certification Practice Exam