WatchGuard Network Security Essentials — Question 13

The IP address for the trusted interface on your Firebox is 10.0.40.1/24, but you want to change the IP address for this interface. How can you avoid a network outage for clients on the trusted network when you change the interface IP address to 10.0.50.1/24? (Select one.)

Answer options

• A. Create a 1-to-1 NAT rule for traffic from the 10.0.40.0/24 subnet to addresses on the 10.0.50.0/24 subnet.
• B. Add 10.0.40.1/24 as a secondary IP address for the interface.
• C. Add IP addresses on the 10.0.40.0/24 subnet to the DHCP Server IP address pool for this interface.
• D. Add a route to 10.0.40.0/24 with the gateway 10.0.50.1.

Correct answer: B

Explanation

The correct answer is B because adding 10.0.40.1/24 as a secondary IP address allows the clients to continue communicating with the trusted interface using the existing IP address while the change is being made. Options A, C, and D do not provide a seamless transition for clients, as they either involve NAT, DHCP configuration changes, or routing adjustments that could lead to connectivity issues during the IP change.