An engineer must limit responses from the gateway that are directed to invalid email addresses. How should the LDAP server be configured to accomplish this goal?
A.
Validate the sender email address via an LDAP query during the SMTP conversation.
B.
Validate the sender email address via SMTP Call-Ahead to query an external SMTP server.
C.
Limit the number of invalid recipients per sender to stop responses after crossing the threshold.
D.
Limit the number of invalid responses per recipient to stop responses after crossing the threshold.
D - Correct
Options A and B do not directly address the goal of limiting responses to invalid email addresses. Option C focuses on limiting the number of invalid recipients per sender, which may not directly solve the problem of responses to invalid email addresses.
Therefore, option D is the most appropriate choice for achieving the goal of limiting responses to invalid email addresses by configuring the LDAP server.
I disagree.
"Next, configure the Mail Flow Policy to define the number of invalid recipient addresses the system will allow per sending IP address for a specific period of time. When this number is exceeded, the system will identify this condition as a DHA and send an alert message. The alert message will contain the following information:"
https://www.cisco.com/c/en/us/td/docs/security/esa/esa14-0/user_guide/b_ESA_Admin_Guide_14-0/b_ESA_Admin_Guide_12_1_chapter_011011.html?bookSearch=true#con_1163450
C is Correct.
In the mail flow policy associated with the listener, configure the following Directory Harvest Attack Prevention setting:
-Max. Invalid Recipients Per hour.
-Drop Connection if DHAP Threshold is reached within an SMTP conversation.
-Max. Recipients Per Hour Code.
-Max. Recipients Per Hour Text.
https://www.cisco.com/c/en/us/td/docs/security/esa/esa14-0/user_guide/b_ESA_Admin_Guide_14-0/b_ESA_Admin_Guide_12_1_chapter_011011.html?bookSearch=true#con_1163450
"Next, configure the Mail Flow Policy to define the number of invalid recipient addresses the system will allow per sending IP address for a specific period of time. When this number is exceeded, the system will identify this condition as a DHA and send an alert message. The alert message will contain the following information:"
upvoted 1 times
...
...
This section is not available anymore. Please use the main Exam Page.300-720 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
hakimbenda
10 months, 1 week agoGVKD
10 months, 1 week agoGVKD
10 months, 2 weeks agoGVKD
10 months, 1 week ago