CompTIA Security+ (SY0-501) — Question 580

Which of the following is the BEST use of a WAF?

Answer options

• A. To protect sites on web servers that are publicly accessible
• B. To allow access to web services of internal users of the organization
• C. To maintain connection status of all HTTP requests
• D. To deny access to all websites with certain contents

Correct answer: A

Explanation

The correct answer is A because a Web Application Firewall (WAF) is specifically designed to safeguard publicly accessible web servers from attacks such as SQL injection and cross-site scripting. Options B and C do not align with the primary purpose of a WAF, which focuses on external threats, while D is too broad and not the main function of a WAF.