Multiple Choice
A company wants to implement a cloud-based security solution that will sinkhole malicious DNS requests. The security administrator has implemented technical controls to direct DNS requests to the cloud servers but wants to extend the solution to all managed and unmanaged endpoints that may have user-defined DNS manual settings. Which of the following should the security administrator implement to ensure the solution will protect all connected devices?
A) Implement firewall ACLs as follows: PERMIT UDP ANY CLOUD_SERVER EQ 53 DENY UDP ANY ANY EQ 53
B) Implement NAT as follows: 
C) Implement DHCP options as follows: DHCP DNS1: CLOUD_SERVER1 DHCP DNS2: CLOUD_SERVER2
D) Implement policy routing as follows: 100 PERMIT UDP ANY ANY ANY 53 200 PERMIT UDP PAT_POOL ANY CLOUD_SERVER 53 IP ROUTE_MAP 200 200
Correct Answer:
Verified
Correct Answer:
Verified
Q406: An organization is currently working with a
Q407: A security administrator is advocating for enforcement
Q408: A Chief Information Security Officer (CISO) requests
Q409: A security analyst, who is working in
Q410: An SQL database is no longer accessible
Q412: After analyzing code, two developers at a
Q413: A company contracts a security consultant to
Q414: A project manager is working with a
Q415: An organization has employed the services of
Q416: A new cluster of virtual servers has