A cyber-security analyst is implementing a new network configuration on an existing network access layer to prevent possible physical attacks.
Which of the following BEST describes a solution that would apply and cause fewer issues during the deployment phase?
A . Implement port security with one MAC address per network port of the switch.
B . Deploy network address protection with DHCP and dynamic VLANs.
C . Configure 802.1X and EAPOL across the network
D . Implement software-defined networking and security groups for isolation
Answer: A
Explanation:
The security analyst should implement port security with one MAC address per network port of the switch. This will help prevent possible physical attacks on the network access layer, such as MAC flooding or MAC spoofing. Port security is a feature that allows a switch to limit the number of MAC addresses that can be learned on a specific port. By setting the limit to one MAC address per port, the switch will only allow traffic from the device that is connected to that port, and drop any traffic from other devices that try to use that port. This will prevent attackers from connecting unauthorized devices to the network or impersonating legitimate devices by changing their MAC addresses3.
Latest CS0-002 Dumps Valid Version with 220 Q&As
Latest And Valid Q&A | Instant Download | Once Fail, Full Refund