CompTIA Exam CS0-001 Topic 12 Question 7 Discussion

Actual exam question for CompTIA's CS0-001 exam

Question #: 7
Topic #: 12

A security analyst has concluded that suspicious Intermittent network activity Is coming from one or more systems using random IP addresses and MAC addresses. The same IP or MAC address Is not used twice Which of the following Is the BEST course of action to Identify the source of the suspicious activity when It resumes?

AConfigure a dynamic sinkhole.

BReview the firewall logs.

CTrace down to the switchport

DReview the network IDS logs.

Show Suggested Answer

Suggested Answer: C

by Loreta at May 04, 2022, 07:38 AM

Limited Time Offer

25%

Off

Get Premium CS0-001 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Currently there are no comments in this discussion, be the first to comment!