CompTIA CySA+ (CS0-001) — Question 37

The new Chief Technology Officer (CTO) is seeking recommendations for network monitoring services for the local intranet. The CTO would like the capability to monitor all traffic to and from the gateway, as well as the capability to block certain content. Which of the following recommendations would meet the needs of the organization?

Answer options

• A. Recommend setup of IP filtering on both the internal and external interfaces of the gateway router.
• B. Recommend installation of an IDS on the internal interface and a firewall on the external interface of the gateway router.
• C. Recommend installation of a firewall on the internal interface and a NIDS on the external interface of the gateway router.
• D. Recommend installation of an IPS on both the internal and external interfaces of the gateway router.

Correct answer: C

Explanation

Option C is the correct answer because installing a firewall on the internal interface along with a NIDS on the external interface allows for monitoring traffic and blocking unwanted content effectively. Option A focuses only on IP filtering, which may not provide comprehensive monitoring. Option B's combination of an IDS and a firewall is less effective for blocking content compared to the chosen option. Option D suggests using an IPS, which is not necessary on both interfaces for the specified needs.