Implementing and Operating Cisco Security Core Technologies (SCOR) — Question 362

An engineer is configuring Cisco WSA and needs to ensure end clients are protected against DNS spoofing attacks. Which deployment method accomplishes this goal?

Answer options

• A. transparent mode
• B. Web Cache Communication Protocol
• C. explicit forward
• D. single-context mode

Correct answer: C

Explanation

The correct answer is C, explicit forward, as it allows the WSA to inspect and control DNS traffic, thereby preventing DNS spoofing attacks. In contrast, transparent mode (A) does not provide the same level of inspection for DNS requests, while Web Cache Communication Protocol (B) and single-context mode (D) are not specifically designed to address DNS spoofing.