Cause all that matters here is passing the Cisco 300-207 exam. Cause all that you need is a high score of 300-207 Implementing Cisco Threat Control Solutions (SITCS) exam. The only one thing you need to do is downloading Pass4sure 300-207 exam study guides now. We will not let you down with our money-back guarantee.

Q11. What are the initial actions that can be performed on an incoming SMTP session by the workqueue of a Cisco Email Security Appliance? 

A. Accept, Reject, Relay, TCPRefuse 

B. LDAP Verification, Envelope Sender Verification, Bounce Verification, Alias Table Verification 

C. Recipient Access Table Verification, Host DNS Verification, Masquerading, Spam Payload Check 

D. SMTP Authentication, SBRS Verification, Sendergroup matching, DNS host verification 

Answer:


Q12. Refer to the exhibit. 

What Cisco ESA CLI command generated the output? 

A. smtproutes 

B. tophosts C. hoststatus 

D. workqueuestatus 

Answer:


Q13. Which two statements about Cisco ESA clusters are true? (Choose two.) 

A. A cluster must contain exactly one group. 

B. A cluster can contain multiple groups. 

C. Clusters are implemented in a client/server relationship. 

D. The cluster configuration must be managed by the cluster administrator. 

E. The cluster configuration can be created and managed through either the GUI or the CLI. 

Answer: B,E 


Q14. What are three features of the Cisco Security Intellishield Alert Manager Service? (Choose three.) 

A. validation of alerts by security analysts 

B. custom notifications 

C. complete threat and vulnerability remediation 

D. vendor-specific threat analysis 

E. workflow-management tools 

F. real-time threat and vulnerability mitigation 

Answer: A,B,E 


Q15. What are the two policy types that can use a web reputation profile to perform reputation-based processing? (Choose two.) 

A. profile policies 

B. encryption policies 

C. decryption policies 

D. access policies 

Answer: C,D 


Q16. Connections are being denied because of SenderBase Reputation Scores. Which two features must be enabled in order to record those connections in the mail log on the Cisco ESA? (Choose two.) 

A. Rejected Connection Handling 

B. Domain Debug Logs 

C. Injection Debug Logs 

D. Message Tracking 

Answer: A,D 


Q17. Which Cisco ESA command is used to edit the ciphers that are used for GUI access? 

A. interfaceconfig 

B. etherconfig 

C. certconfig 

D. sslconfig 

Answer:


Q18. Joe was asked to secure access to the Cisco Web Security Appliance to prevent unauthorized access. Which four steps should Joe implement to accomplish this goal? (Choose four.) 

A. Implement IP access lists to limit access to the management IP address in the Cisco Web Security Appliance GUI. 

B. Add the Cisco Web Security Appliance IP address to the local access list. 

C. Enable HTTPS access via the GUI/CLI with redirection from HTTP. 

D. Replace the Cisco self-signed certificate with a publicly signed certificate. 

E. Put the Cisco WSA Management interface on a private management VLAN. 

F. Change the netmask on the Cisco WSA Management interface to a 32-bit mask. 

G. Create an MX record for the Cisco Web Security Appliance in DNS. 

Answer: A,C,D,E 


Q19. Which configuration mode enables a virtual sensor to monitor the session state for unidirectional traffic? 

A. asymmetric mode 

B. symmetric mode 

C. loose mode 

D. strict mode 

Answer:


Q20. Which command allows the administrator to access the Cisco WSA on a secure channel on 

port 8443? 

A. strictssl 

B. adminaccessconfig 

C. ssl 

D. ssh 

Answer: