NSE 7 – Network Security Architect — Question 37

What is the purpose of an internal segmentation firewall (ISFW)?

Answer options

• A. It inspects incoming traffic to protect services in the corporate DMZ.
• B. It is the first line of defense at the network perimeter.
• C. It splits the network into multiple security segments to minimize the impact of breaches.
• D. It is an all-in-one security appliance that is placed at remote sites to extend the enterprise network.

Correct answer: C

Explanation

The correct answer is C because an internal segmentation firewall is specifically designed to create separate security zones within the network, limiting the spread of breaches. Option A refers to external protection, while B describes the network perimeter defense, and D focuses on remote site security, none of which capture the primary function of an ISFW.