CompTIA SecurityX (CAS-005) — Question 275

A global company with a remote workforce implemented a new VPN solution. After deploying the VPN solution to several hundred users, the help desk starts receiving reports of slow access to both internally and externally available applications. A security analyst reviews the following:

VPN client routing:
0.0.0.0/0 eth1

Which of the following solutions should the analyst use to fix this issue?

Answer options

• A. Move the servers to a screened subnet.
• B. Enable split tunneling.
• C. Configure an NAC solution.
• D. Implement DNS over HTTPS.

Correct answer: B

Explanation

The correct answer is B, as enabling split tunneling allows users to access external resources directly while still being connected to the VPN, thereby reducing traffic and improving speed. Options A and C do not address the performance issues related to VPN traffic, and option D relates to DNS security rather than performance enhancement.