Question

A network engineer is upgrading the network perimeter and installing a new firewall, IDS, and external edge router. The IDS is reporting elevated UDP traffic, and the internal routers are reporting high utilization.

Which of the following is the BEST solution?

A. Reconfigure the firewall to block external UDP traffic.
B. Establish a security baseline on the IDS.
C. Block echo reply traffic at the firewall.
D. Modify the edge router to not forward broadcast traffic.

Answer 1

The best solution in this scenario would be to modify the edge router to not forward broadcast traffic, which will help alleviate high utilization reported by the internal routers. Reconfiguring the firewall to block external UDP traffic or establishing a security baseline on the IDS are not the most effective solutions.

Step-by-step explanation:

This will help alleviate the high utilization reported by the internal routers. By preventing the forwarding of broadcast traffic, the network engineer can reduce unnecessary network traffic and improve network performance.

Reconfiguring the firewall to block external UDP traffic (option A) may help mitigate the elevated UDP traffic reported by the IDS, but it does not address the high utilization reported by the internal routers.

Establishing a security baseline on the IDS (option B) is a good practice, but it does not directly address the high utilization issue or the elevated UDP traffic.

Blocking echo reply traffic at the firewall (option C) may have unintended consequences and can impact network connectivity and functionality, so it is not the best solution in this case.

Therefore, The BEST solution in this scenario would be to D. modify the edge router to not forward broadcast traffic.