CompTIA Exam CAS-003 Topic 2 Question 50 Discussion

Actual exam question for CompTIA's CAS-003 exam

Question #: 50
Topic #: 2

A company wants to analyze internal network traffic for IOCs. The security solution consists of a network collector appliance and a separate server which security analysts access via a browser to visualize and review the alerts generated from the network traffic. The company uses a collapsed core operating at Layer 2 at 100Gbps. The server win be placed in the datacenter. Which of the following architectures should be used to ensure the solution can provide visibility into all the company's internal network traffic including DNS and URL requests without impacting network traffic flow?

AInstall the network collector appliance closer to the core switching infrastructure

BInstall the network collector appliance closer to the distribution switches

Cinstall multiple network collector appliances closer to the access layer switches

DInstall the network collector appliance physically inline between the core switch and the firewall

Show Suggested Answer

Suggested Answer: C

by Lynelle at May 06, 2022, 12:29 PM

Limited Time Offer

25%

Off

Get Premium CAS-003 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Currently there are no comments in this discussion, be the first to comment!