Implementing and Operating Cisco Security Core Technologies (SCOR) — Question 48

An organization is receiving SPAM emails from a known malicious domain. What must be configured in order to prevent the session during the initial TCP communication?

Answer options

• A. Configure the Cisco ESA to reset the TCP connection.
• B. Configure policies to stop and reject communication.
• C. Configure the Cisco ESA to drop the malicious emails.
• D. Configure policies to quarantine malicious emails.

Correct answer: A

Explanation

The correct answer is A because resetting the TCP connection prevents any further communication attempts from the malicious domain during the initial stages. Option B is incorrect as it does not specifically address the TCP connection issue. Option C only deals with email delivery rather than the TCP session, and option D focuses on quarantine, which occurs after the connection is established.