1. Home
  2. Cisco
  3. 300-720

Securing Email with Cisco Email Security Appliance (SESA)

Exam Details

  • Exam Code
    :300-720
  • Exam Name
    :Securing Email with Cisco Email Security Appliance (SESA)
  • Certification
    :CCNP Security
  • Vendor
    :Cisco
  • Total Questions
    :148 Q&As
  • Last Updated
    :Mar 26, 2025

Cisco CCNP Security 300-720 Questions & Answers

  • Question 71:

    What is a benefit of enabling external SPAM quarantine on Cisco SMA?

    A. It provides access to the SPAM quarantine interface on which a user can release, duplicate, or delete.

    B. It provides the ability to scan messages by using two engines to increase a catch rate.

    C. It provides the ability to consolidate SPAM quarantine data from multiple Cisco ESAs to one central console.

    D. It provides the ability to back up SPAM quarantine from multiple Cisco ESAs to one central console.

  • Question 72:

    A network administrator is modifying an outgoing mail policy to enable domain protection for the organization. A DNS entry is created that has the public key. Which two headers will be used as matching criteria in the outgoing mail policy? (Choose two.)

    A. message-ID

    B. sender

    C. URL reputation

    D. from

    E. mail-from

  • Question 73:

    To comply with a recent audit, an engineer must configure anti-virus message handling options on the incoming mail policies to attach warnings to the subject of an email. What should be configured to meet this requirement for known viral emails?

    A. Virus Infected Messages

    B. Unscannable Messages

    C. Encrypted Messages

    D. Positively Identified Messages

  • Question 74:

    An administrator is managing multiple Cisco ESA devices and wants to view the quarantine emails from all devices in a central location. How is this accomplished?

    A. Disable the VOF feature before sending SPAM to the external quarantine.

    B. Configure a mail policy to determine whether the message is sent to the local or external quarantine.

    C. Disable the local quarantine before sending SPAM to the external quarantine.

    D. Configure a user policy to determine whether the message is sent to the local or external quarantine.

  • Question 75:

    A Cisco ESA administrator has several mail policies configured. While testing policy match using a specific sender, the email was not matching the expected policy.

    What is the reason of this?

    A. The "From" header is checked against all policies in a top-down fashion.

    B. The message header with the highest priority is checked against each policy in a top-down fashion.

    C. The "To" header is checked against all policies in a top-down fashion.

    D. The message header with the highest priority is checked against the Default policy in a top-down fashion.

  • Question 76:

    An administrator identifies that, over the past week, the Cisco ESA is receiving many emails from certain senders and domains which are being consistently quarantined. The administrator wants to ensure that these senders and domain are unable to send anymore emails.

    Which feature on Cisco ESA should be used to achieve this?

    A. incoming mail policies

    B. safelist

    C. blocklist

    D. S/MIME Sending Profile

  • Question 77:

    An engineer is testing mail flow on a new Cisco ESA and notices that messages for domain abc.com are stuck in the delivery queue. Upon further investigation, the engineer notices that the messages pending delivery are destined for 192.168.1.11, when they should instead be routed to 192.168.1.10.

    What configuration change needed to address this issue?

    A. Add an address list for domain abc.com.

    B. Modify Destination Controls entry for the domain abc.com.

    C. Modify the SMTP route for the domain and change the IP address to 192.168.1.10.

    D. Modify the Routing Tables and add a route for IP address to 192.168.1.10.

  • Question 78:

    Refer to the exhibit. An engineer is trying to connect to a Cisco ESA using SSH and has been unsuccessful. Upon further inspection, the engineer notices that there is a loss of connectivity to the neighboring switch.

    Which connection method should be used to determine the configuration issue?

    A. Telnet

    B. HTTPS

    C. Ethernet

    D. serial

  • Question 79:

    Refer to the exhibit.

    How should this configuration be modified to stop delivering Zero Day malware attacks?

    A. Change Unscannable Action from Deliver As Is to Quarantine.

    B. Change File Analysis Pending action from Deliver As Is to Quarantine.

    C. Configure mailbox auto-remediation.

    D. Apply Prepend on Modify Message Subject under Malware Attachments.

  • Question 80:

    Which action on the Cisco ESA provides direct access to view the safelist/blocklist?

    A. Show the SLBL cache on the CLI.

    B. Monitor Incoming/Outgoing Listener.

    C. Export the SLBL to a .csv file.

    D. Debug the mail flow policy.

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Cisco exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 300-720 exam preparations and Cisco certification application, do not hesitate to visit our Vcedump.com to find your solutions here.