CompTIA Cloud+ (CV0-003) — Question 239

A systems administrator needs to implement a service to protect a web application from external attacks. The administrator must have session-based granular control of all HTTP traffic. Which of the following should the administrator configure?

Answer options

• A. IDS
• B. WAF
• C. DLP
• D. NAC

Correct answer: B

Explanation

The correct answer is B, WAF (Web Application Firewall), as it provides session-based, granular control over HTTP traffic to protect web applications. IDS (Intrusion Detection System) primarily monitors traffic for suspicious activity but does not actively control it, while DLP (Data Loss Prevention) focuses on preventing data breaches, and NAC (Network Access Control) manages device access to the network rather than HTTP traffic.