Ucertify offers free demo for 300-207 exam. "Implementing Cisco Threat Control Solutions (SITCS)", also known as 300-207 exam, is a Cisco Certification. This set of posts, Passing the Cisco 300-207 exam, will help you answer those questions. The 300-207 Questions & Answers covers all the knowledge points of the real exam. 100% real Cisco 300-207 exams and revised by experts!
2026 New 300-207 Exam Dumps with PDF and VCE Free: https://www.2passeasy.com/dumps/300-207/
Q1. What is the default antispam policy for positively identified messages within the Cisco Email Security Appliance?
A. Drop
B. Deliver and Append with [SPAM]
C. Deliver and Prepend with [SPAM]
D. Deliver and Alternate Mailbox
Answer: C
Q2. A Cisco Email Security Appliance uses which message filter to drop all executable attachments entering and leaving the Cisco Email Security Appliance?
A. drop-exE. if (attachment-filename == "\.exe$") OR (attachment-filetype == "exe") { drop(); }
B. drop-exE. if (recv-listener == "InboundMail" ) AND ( (attachment-filename == "\.exe$") OR (attachment-filetype == "exe")) { drop(); }
C. drop-exe! if (attachment-filename == "\.exe$") OR (attachment-filetype == "exe") { drop(); }
D. drop-exe! if (recv-listener == "InboundMail" ) AND ( (attachment-filename == "\.exe$") OR (attachment-filetype == "exe")) { drop(); }
Answer: A
Q3. Which two conditions must you configure in an event action override to implement a risk rating of 70 or higher and terminate the connection on the IPS? (Choose two.)
A. Configure the event action override to send a TCP reset.
B. Set the risk rating range to 70 to 100.
C. Configure the event action override to send a block-connection request.
D. Set the risk rating range to 0 to 100.
E. Configure the event action override to send a block-host request.
Answer: A,B
Q4. Which command allows the administrator to access the Cisco WSA on a secure channel on
port 8443?
A. strictssl
B. adminaccessconfig
C. ssl
D. ssh
Answer: A
Q5. During initial configuration, the Cisco ASA can be configured to drop all traffic if the ASA CX SSP fails by using which command in a policy-map?
A. cxsc fail
B. cxsc fail-close
C. cxsc fail-open
D. cxssp fail-close
Answer: B
Q6. What command alters the SSL ciphers used by the Cisco Email Security Appliance for TLS
sessions and HTTPS access?
A. sslconfig
B. sslciphers
C. tlsconifg
D. certconfig
Answer: A
Q7. Refer to the exhibit.
The system administrator of mydomain.com received complaints that some messages that were sent from sender user@somedomain.com were delayed. Message tracking data on the sender shows that an email sample that was received was clean and properly delivered. What is the likely cause of the intermittent delays?
A. The remote MTA has a.SenderBase Reputation Score of -1.0.
B. The remote MTA is sending emails from RFC 1918 IP addresses.
C. The remote MTA has activated the SUSPECTLIST sender group.
D. The remote MTA has activated the default inbound mail policy.
Answer: C
Q8. An ASA with an IPS module must be configured to drop traffic matching IPS signatures and block all traffic if the module fails. Which describes the correct configuration?
A. Inline Mode, Permit Traffic
B. Inline Mode, Close Traffic
C. Promiscuous Mode, Permit Traffic
D. Promiscuous Mode, Close Traffic
Answer: B
Q9. In order to set up HTTPS decryption on the Cisco Web Security Appliance, which two steps must be performed? (Choose two.)
A. Enable and accept the EULA under Security Services > HTTPS Proxy.
B. Upload a publicly signed server certificate.
C. Configure or upload a certificate authority certificate.
D. Enable HTTPS decryption in Web Security Manager > Access Policies.
Answer: A,C
Q10. Which version of AsyncOS for web is required to deploy the Web Security Appliance as a CWS connector?
A. AsyncOS version 7.7.x
B. AsyncOS version 7.5.x
C. AsyncOS version 7.5.7
D. AsyncOS version 7.5.0
Answer: C