Question 1

Which two features of Cisco Email Security are added to a Sender Group to protect an organization against email threats? (Choose two.)

Options :

A : NetFlow

B : geolocation-based filtering

C : heuristic-based filtering

D : senderbase reputation filtering

E : content disarm and reconstruction

Answer: B,D

Question 2

A company has recently updated their security policy and now wants to drop all email messages

larger than 100 MB coming from external sources. The Cisco Secure Email Gateway is LDAP

integrated and all employee accounts are in the group "Employees". Which filter rule configuration

provides the desired outcome?

Options :

A : if (mail-from-group == 'Employees') and (body-size > "100M") {drop()}

B : if (mail-from-group != 'Employees') and (body-size > 100M) {drop();}

C : if (mail-from-group == 'Employees') and (body-size > 100M) {bounce();}

D : if ('mail-from-group != Employees') and (body-size > 100M) {drop();}

Answer: A

Question 3

Which method enables an engineer to deliver a flagged message to a specific virtual gateway address in the most flexible way?

Options :

A : Set up the interface group with the flag.

B : Issue the altsrchost command.

C : Map the envelope sender address to the host.

D : Apply a filter on the message.

Answer: B

Question 4

A network administrator is modifying an outgoing mail policy to enable domain protection for the organization. A DNS entry is created that has the public key. Which two headers will be used as matching criteria in the outgoing mail policy? (Choose two.)

Options :

A : message-ID

B : sender

C : URL reputation

D : from

E : mail-from

Answer: B,D

Question 5

What is a valid content filter action?

Options :

A : decrypt on delivery

B : quarantine

C : skip antispam

D : archive

Answer: B