Which two statements about configuring message filters within the Cisco ESA are true? (Choose two.)
A.The filters command executed from the CLI is used to configure the message filters.
B.Message filters configuration within the web user interface is located within Incoming Content Filters.
C.The filterconfig command executed from the CLI is used to configure message filters.
D.Message filters can be configured only from the CLI.
E.Message filters can be configured only from the web user interface.
What occurs when configuring separate incoming mail policies?
Which default port is used by the Cisco ESA to quarantine the message on the Cisco Security Management Appliance?
When configuring CRES, where do you enable read receipts?
A.In the encryption profile
B.In the content filter condition menu
C.In the content filter action menu
D.In the mail policy
Which type of query must be configured when setting up the Spam Quarantine while merging notifications?
A.Spam Quarantine Alias Routing Query
B.Spam Quarantine Alias Consolidation Query
C.Spam Quarantine Alias Authentication Query
D.Spam Quarantine Alias Masquerading Query
Which two factors must be considered when message filter processing is configured? (Choose two.)
C.structure of the combined packet
E.MIME structure of the message
How does the graymail safe unsubscribe feature function?
A.It strips the malicious content of the URI before unsubscribing.
B.It checks the URI reputation and category and allows the content filter to take an action on it.
C.It redirects the end user who clicks the unsubscribe button to a sandbox environment to allow a safe unsubscribe.
D.It checks the reputation of the URI and performs the unsubscribe process on behalf of the end user.
Which method enables an engineer to deliver a flagged message to a specific virtual gateway address in the most flexible way?
A.Set up the interface group with the flag.
B.Issue the altsrchost command.
C.Map the envelope sender address to the host.
D.Apply a filter on the message.
An administrator is trying to enable centralized PVO but receives the error, "Unable to proceed with Centralized Policy, Virus and Outbreak Quarantines configuration as esa1 in Cluster has content filters / DLP actions available at a level different from the cluster level."
What is the cause of this error?
A.Content filters are configured at the machine-level on esa1.
B.DLP is configured at the cluster-level on esa2.
C.DLP is configured at the domain-level on esa1.
D.DLP is not configured on host1.
Which feature must be configured before an administrator can use the outbreak filter for nonviral threats?
A.quarantine threat level
C.data loss prevention
Which type of attack is prevented by configuring file reputation filtering and file analysis features?
A.denial of service
Which two service problems can the Cisco Email Security Appliance solve? (Choose two.)
Which of the following types of DNS records deals with mail delivery for a specific domain?
When DKIM signing is configured, which DNS record must be updated to load the DKIM public signing key?
Which attack is mitigated by using Bounce Verification?
B.denial of service
When outbreak filters are configured, which two actions are used to protect users from outbreaks? (Choose two.)
Which two features are applied to either incoming or outgoing mail policies? (Choose two.)
A.Indication of Compromise
D.sender reputation filtering
What must be configured to allow the Cisco ESA to encrypt an email using the Cisco Registered Envelope Service?
A.provisioned email encryption profile
B.message encryption from a content filter that select "Message Encryption" over TLS
C.message encryption from the mail flow policies with "CRES" selected
D.content filter to forward the email to the Cisco Registered Envelope server
Which two configurations are used on multiple LDAP servers to connect with Cisco ESA? (Choose two.)
What is the default port to deliver emails from the Cisco ESA to the Cisco SMA using the centralized Spam Quarantine?
Which two steps are needed to disable local spam quarantine before external quarantine is enabled? (Choose two.)
A.Uncheck the Enable Spam Quarantine check box.
B.Select Monitor and click Spam Quarantine.
C.Check the External Safelist/Blocklist check box.
D.Select External Spam Quarantine and click on Configure.
E.Select Security Services and click Spam Quarantine.
Drag and Drop Question
Drag and drop the steps to configure Cisco ESA to use SPF/SIDF verification from the left into the correct order on the right.
Drag and Drop Question
An Encryption Profile has been set up on the Cisco ESA.
Drag and drop the steps from the left for creating an outgoing content filter to encrypt emails that contains the subject "Secure:" into the correct order on the right.
Drag and Drop Question
Drag and drop the Cisco ESA reactions to a possible DLP from the left onto the correct action types on the right.
Drag and Drop Question
Drag and drop the AsyncOS methods for performing DMARC verification from the left into the correct order on the right.
A network administrator is modifying an outgoing mail policy to enable domain protection for the organization. A DNS entry is created that has the public key.
Which two headers will be used as matching criteria in the outgoing mail policy? (Choose two.)
To comply with a recent audit, an engineer must configure anti-virus message handling options on the incoming mail policies to attach warnings to the subject of an email.
What should be configured to meet this requirement for known viral emails?
A.Virus Infected Messages
D.Positively Identified Messages
An administrator is managing multiple Cisco ESA devices and wants to view the quarantine emails from all devices in a central location.
How is this accomplished?
A.Disable the VOF feature before sending SPAM to the external quarantine.
B.Configure a mail policy to determine whether the message is sent to the local or external quarantine.
C.Disable the local quarantine before sending SPAM to the external quarantine.
D.Configure a user policy to determine whether the message is sent to the local or external quarantine.
A Cisco ESA administrator has several mail policies configured. While testing policy match using a specific sender, the email was not matching the expected policy.
What is the reason of this?
A.The Tram* header is checked against all policies in a top-down fashion.
B.The message header with the highest priority is checked against each policy in a top-down fashion.
C.The To" header is checked against all policies in a top-down fashion.
D.The message header with the highest priority is checked against the Default policy in a top-down fashion.
An administrator identifies that, over the past week, the Cisco ESA is receiving many emails from certain senders and domains which are being consistently quarantined. The administrator wants to ensure that these senders and domain are unable to send anymore emails.
Which feature on Cisco ESA should be used to achieve this?
A.incoming mail policies
D.S/MIME Sending Profile
An engineer is testing mail flow on a new Cisco ESA and notices that messages for domain abc.com are stuck in the delivery queue. Upon further investigation, the engineer notices that the messages pending delivery are destined for 192.168.1.11, when they should instead be routed to 192.168.1.10.
What configuration change needed to address this issue?
A.Add an address list for domain abc.com.
B.Modify Destination Controls entry for the domain abc.com.
C.Modify the SMTP route for the domain and change the IP address to 192.168.1.10.
D.Modify the Routing Tables and add a route for IP address to 192.168.1.10.
2023 Latest Braindump2go 300-720 PDF and 300-720 VCE Dumps Free Share: