A company wants to implement a cloud-based security solution that will sinkhole malicious DNS requests. The security administrator has implemented technical controls to direct DNS requests to the cloud servers but wants to extend the solution to all managed and unmanaged endpoints that may have user-defined DNS manual settings. Which of the following should the security administrator implement to ensure the solution will protect all connected devices?
A) Implement firewall ACLs as follows: PERMIT UDP ANY CLOUD_SERVER EQ 53 DENY UDP ANY ANY EQ 53
B) Implement NAT as follows: 
C) Implement DHCP options as follows: DHCP DNS1: CLOUD_SERVER1 DHCP DNS2: CLOUD_SERVER2
D) Implement policy routing as follows: 100 PERMIT UDP ANY ANY ANY 53 200 PERMIT UDP PAT_POOL ANY CLOUD_SERVER 53 IP ROUTE_MAP 200 200
Correct Answer:
Verified
Q389: The results of an external penetration test
Q390: A new employee is plugged into the
Q391: An organization is moving internal core data-processing
Q392: An attacker has been compromising banking institution
Q393: Designing a system in which only information
Q395: After analyzing code, two developers at a
Q396: The Chief Executive Officer (CEO) of a
Q397: A small firm's newly created website has
Q398: Users have reported that an internally developed
Q399: A large, multinational company currently has two
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents