CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. Cisco®
  5. 300-720

Free 300-720 Exam Braindumps (page: 20)

Page 20 of 38
PDF with 147 Questions





Refer to the exhibit.
Which configuration on the scan behavior must be updated to allow the attachment to be scanned on the Cisco ESA?

  1. Add an additional mapping for attachment type for zip files.
  2. Enable assume match pattern if the email was not scanned for any reason.
  3. Increase the maximum recursion depth from 5 to a larger value.
  4. Increase the maximum attachment size to scan to a larger value.

Answer(s): D

Explanation:

The maximum attachment size to scan is a configuration on the scan behavior that determines the maximum size of an attachment that Cisco ESA will scan for viruses and malware. If an attachment exceeds this size, Cisco ESA will apply the configured action for unscannable messages, such as deliver, drop, or quarantine.
To allow the attachment to be scanned on the Cisco ESA, this configuration must be updated to a larger value than the attachment size, which is 10 MB according to the message header. The other options are not valid configurations to allow the attachment to be scanned on the Cisco ESA, because they do not affect the maximum attachment size to scan.


Reference:

User Guide for AsyncOS 15.0 for Cisco Secure Email Gateway, page 7-3 and page 7-4.



Users have been complaining of a higher volume of emails containing profanity. The network administrator will need to leverage dictionaries and create specific conditions to reduce the number of inappropriate emails.

Which two filters should be configured to address this? (Choose two.)

  1. message
  2. spam
  3. VOF
  4. sender group
  5. content

Answer(s): A,E

Explanation:

Message filter and content filter are two filters that should be configured to address this issue. Message filter and content filter are rules that allow Cisco ESA to perform actions on messages based on predefined or custom conditions, such as headers, envelope, body, attachments, etc. To reduce the number of inappropriate emails containing profanity, the network administrator can create a dictionary that contains a list of profane words or phrases and use it as a condition in a message filter or content filter that applies an action of "drop", "quarantine", or "modify subject" on the matching messages.
The other options are not valid filters to address this issue, because they do not use dictionaries or conditions based on message content.


Reference:

User Guide for AsyncOS 15.0 for Cisco Secure Email Gateway, page 8-3 and page 8-7.





Refer to the exhibit.
What is the correct order of commands to set filter 2 to active?

  1. filters-> edit-> 2-> Active
  2. filters-> modify-> All-> Active
  3. filters-> detail-> 2-> 1
  4. filters-> set-> 2-> 1

Answer(s): D

Explanation:

The correct order of commands to set filter 2 to active on the CLI of Cisco ESA is:
filters, which enters the message filter mode.
set, which sets the status of one or more message filters.
2, which specifies the message filter number.
1, which sets the status of message filter 2 to active.

The other options are not valid orders of commands to set filter 2 to active on the CLI of Cisco ESA, because they use incorrect commands or parameters.


Reference:

User Guide for AsyncOS 15.0 for Cisco Secure Email Gateway, page A-6 and page A-7.



A network administrator notices that there are a high number of queries to the LDAP server. The mail logs show an entry "550 Too many invalid recipients | Connection closed by foreign host."

Which feature must be used to address this?

  1. DHAP
  2. SBRS
  3. LDAP
  4. SMTP

Answer(s): A


Reference:

https://www.cisco.com/c/en/us/td/docs/security/esa/esa12- 0/user_guide/b_ESA_Admin_Guide_12_0/b_ESA_Admin_Guide_12_0_chapter_011010.html

DHAP (Directory Harvest Attack Prevention) is a feature that must be used to address this issue. DHAP is a mechanism that allows Cisco ESA to prevent directory harvest attacks, which are attempts by spammers or hackers to obtain valid email addresses from an LDAP server by sending messages with random or guessed recipients and checking for bounce messages. To enable DHAP on Cisco ESA, the network administrator can follow these steps:
Select Network > Listeners and click Edit Settings for the listener that receives incoming messages. Under SMTP Authentication Settings, select Enable Directory Harvest Attack Prevention. Enter a value for Maximum Invalid Recipients per Hour, which is the number of invalid recipients that triggers DHAP.
Enter a value for Block Sender for (hours), which is the duration that Cisco ESA blocks messages from senders who exceed the maximum invalid recipients per hour.
Click Submit.



Page 20 of 38



Post your Comments and Discuss Cisco® 300-720 exam with other Community members:

Venkatesh Rambothu commented on January 06, 2025
Useful Deck
Anonymous
upvote

Ahmed commented on January 05, 2025
great questions
Anonymous
upvote

Ff commented on January 05, 2025
it seems ok the questions and answers look legit.
Anonymous
upvote

Deepak.Cloudbrains commented on January 05, 2025
Preparing for exam
EUROPEAN UNION
upvote

Madhu commented on January 05, 2025
useful info
UNITED STATES
upvote

kunal sahu commented on January 05, 2025
good progress
Anonymous
upvote

NS commented on January 05, 2025
Good information
UNITED STATES
upvote

Mercy commented on January 05, 2025
I have planned to take the exam by the end of this week.
UNITED STATES
upvote

P commented on January 05, 2025
Useful data
Anonymous
upvote

Alken commented on January 04, 2025
No comments yet Still watching the pattern of exam
UNITED STATES
upvote

Allen commented on January 04, 2025
Nice approach
UNITED STATES
upvote

T0m commented on January 04, 2025
Did anyone passed this exam recently using these dumps ?
Anonymous
upvote

N commented on January 04, 2025
I find the questions and solutions very useful, in depth.
UNITED KINGDOM
upvote

Bindu commented on January 04, 2025
Good This is super! Will inform once I complete the test
Anonymous
upvote

Hrish commented on January 04, 2025
Good practice
Anonymous
upvote

Woke commented on January 04, 2025
Great content
Anonymous
upvote

Sam commented on January 04, 2025
Awesome awesome
Anonymous
upvote

David Adeyeri commented on January 04, 2025
i am using this as a refresher for any new things that might have been introduced into CCNA.
Anonymous
upvote

maddy commented on January 03, 2025
fantastic questions
Anonymous
upvote

aditya commented on January 03, 2025
nice questions
Anonymous
upvote

durgesh patel commented on January 03, 2025
really helpful
Anonymous
upvote

Katie commented on January 03, 2025
Doing well so far
Anonymous
upvote

Rainy commented on January 03, 2025
use it to prepare for exam
GERMANY
upvote

Pankti commented on January 03, 2025
Thanks for sharing exam questions. These are really helpful for exam preparation.
UNITED STATES
upvote

Yusuf D commented on January 03, 2025
awesome, lets see how it goes.
TURKEY
upvote

Shahajahan Tamboli commented on January 03, 2025
Its truly free dumps and helpful for clearing AZ-140, Thanks !
Anonymous
upvote

ALEX commented on January 03, 2025
Very helpful
TAIWAN PROVINCE OF CHINA
upvote

Prateek commented on January 03, 2025
I find the questions and solutions very useful, in depth.
Anonymous
upvote

Mohan B commented on January 03, 2025
useful for certification
Anonymous
upvote

Inbarajan commented on January 02, 2025
Very useful
Anonymous
upvote

Heidi commented on January 02, 2025
Good practice set
CANADA
upvote

IT commented on January 02, 2025
is the exams changed? tropics ??
UNITED STATES
upvote

Nari commented on January 02, 2025
Thanks for sharing the questions for practice exam
INDONESIA
upvote

Adesosun Saidi commented on January 02, 2025
Planning to write the test soon
UNITED ARAB EMIRATES
upvote