CompTIA CASP+ (CAS-003) — Question 175

A network engineer is upgrading the network perimeter and installing a new firewall, IDS, and external edge router. The IDS is reporting elevated UDP traffic, and the internal routers are reporting high utilization. Which of the following is the BEST solution?

Answer options

• A. Reconfigure the firewall to block external UDP traffic.
• B. Establish a security baseline on the IDS.
• C. Block echo reply traffic at the firewall.
• D. Modify the edge router to not forward broadcast traffic.

Correct answer: B

Explanation

Establishing a security baseline on the IDS is essential to identify normal traffic patterns and detect anomalies. The other options may address symptoms but do not provide a comprehensive understanding of the situation or the underlying traffic issues.