Performing CyberOps Using Cisco Security Technologies (CBRCOR) — Question 120

A logistic company must use an outdated application located in a private VLAN during the migration to new technologies. The IPS blocked and reported an unencrypted communication. Which tuning option should be applied to IPS?

Answer options

• A. Allow list only authorized hosts to contact the application's IP at a specific port.
• B. Allow list HTTP traffic through the corporate VLANS.
• C. Allow list traffic to application's IP from the internal network at a specific port.
• D. Allow list only authorized hosts to contact the application's VLAN.

Correct answer: A

Explanation

The correct answer is A because it ensures that only trusted hosts can communicate with the application's IP, limiting potential security risks during migration. Options B and C are too broad and do not specifically restrict access to authorized hosts, while D does not specify the port, which is essential for maintaining security.