securing email with cisco email security appliance (300-720 sesa)
Last exam update: Dec 06 ,2024
Page 1 out of 15. Viewing questions 1-10 out of 141
Question 1
An administrator manipulated the subnet mask but was still unable to access the user interface. How must the administrator access the appliance to perform the initial configuration?
A.
Use the data 2 port.
B.
Use the serial or console port.
C.
Use the data 1 port.
D.
Use the management port.
Answer:
b
User Votes:
A
50%
B
50%
C
50%
D
50%
Discussions
0/ 1000
Question 2
What are two phases of the Cisco ESA email pipeline? (Choose two.)
Refer to the exhibit. Which configuration allows the Cisco ESA to scan for executables inside the zip and apply the action as per the content filter?
A.
Modify the content filter to look for .exe filename instead of executable filetype.
B.
Configure the recursion depth to a higher value.
C.
Configure the maximum attachment size to a higher value.
D.
Modify the content filter to look for attachment filetype of compressed.
Answer:
c
User Votes:
A
50%
B
50%
C
50%
D
50%
Discussions
0/ 1000
Question 4
An administrator notices that the Cisco ESA delivery queue is consistently full. After further investigation, it is determined that the IP addresses currently in use by the Cisco ESA are being rate-limited by some destinations. The administrator creates a new interface with an additional IP address using virtual gateway technology, but the issue is not solved. Which configuration change resolves the issue?
A.
Use the CLI command alt-src-host to set the new interface as a possible delivery candidate.
B.
Use the CLI command loadbalance auto to enable mail delivery over all interfaces.
C.
Use the CLI command deliveryconfig to set the new interface as the primary interface for mail delivery.
D.
Use the CLI command altsrchost to set the new interface as the source IP address for all mail.
Answer:
b
User Votes:
A
50%
B
50%
C
50%
D
50%
Discussions
0/ 1000
Question 5
What are two prerequisites for implementing undesirable URL protection in Cisco ESA? (Choose two.)
A company security policy requires that the finance department have an easy way to apply encryption to their outbound messages that contain sensitive data. Users must be able to flag the messages that require encryption versus a Cisco ESA scanning all messages and automatically encrypting via detection. Which action enables this capability?
A.
Create an outgoing content filter with no conditions and with the Encrypt and Deliver Now action configured with [SECURE] in the Subject setting.
B.
Create a DLP policy manager message action with encryption enabled and apply it to active DLP policies for outgoing mail.
C.
Create an encryption profile with [SECURE] in the Subject setting and enable encryption on the mail flow policy.
D.
Create an encryption profile and an outgoing content filter that includes \[SECURE\] within the Subject Header: Contains condition along with the Encrypt and Deliver Now action.