CompTIA Security+ (SY0-501) — Question 283

Students at a residence hall are reporting Internet connectivity issues. The university's network administrator configured the residence hall's network to provide public IP addresses to all connected devices, but many student devices are receiving private IP addresses due to rogue devices. The network administrator verifies the residence hall's network is correctly configured and contacts the security administrator for help. Which of the following configurations should the security administrator suggest for implementation?

Answer options

• A. Router ACLs
• B. BPDU guard
• C. Flood guard
• D. DHCP snooping

Correct answer: D

Explanation

DHCP snooping is the correct answer because it helps to prevent rogue DHCP servers from assigning private IP addresses, ensuring that only legitimate servers can provide IP addresses to clients. The other options, while useful for different security measures, do not specifically address the issue of unauthorized devices affecting DHCP assignments in this scenario.