CompTIA Security+ (SY0-501) — Question 960

An analyst receives an alert from the SIEM showing an IP address that does not belong to the assigned network can be seen sending packets to the wrong gateway.
Which of the following network devices is misconfigured and which of the following should be done to remediate the issue?

Answer options

• A. Firewall; implement an ACL on the interface
• B. Router; place the correct subnet on the interface
• C. Switch; modify the access port to trunk port
• D. Proxy; add the correct transparent interface

Correct answer: B

Explanation

The correct answer is B, as a router is responsible for directing packets between different networks and must be configured with the correct subnet to prevent misrouting. Option A is incorrect because an ACL on a firewall would not resolve the issue of an IP address being on the wrong subnet. Option C is not relevant, as changing a switch port type won't address routing issues. Option D is also incorrect because a proxy's configuration doesn't affect the routing of IP packets directly.