CompTIA Study Materials
AWS Study Materials
AWS Certified Developer Associate AWS Certified Developer Associate
AWS Certified Developer Associate DVA-C02
AWS Certified Solutions Architect Associate AWS Certified Solutions Architect Associate
AWS Certified Solutions Architect Associate SAA-C03
AWS Cloud Practitioner AWS Cloud Practitioner
AWS Cloud Practitioner CLF-C02
Microsoft Study Materials
Microsoft Azure Fundamentals Microsoft Azure Fundamentals
Microsoft Azure Fundamentals AZ-900

Free CompTIA Security+ SY0-701 Practice Question

A security administrator needs to deploy a network security device that will analyze and potentially block malicious traffic without being bypassed if it fails. Which deployment option aligns best with this requirement?

  • Set up the device as a network tap to passively monitor traffic.

  • Use port mirroring to duplicate traffic to the device.

  • Deploy the device in inline mode with fail-closed configuration.

  • Implement the device as an external monitor that gets copied traffic from a network switch.

This question's topic:
CompTIA Security+ SY0-701 / 
Security Architecture
Your Score:
Security Architecture
General Security Concepts
Threats, Vulnerabilities, and Mitigations
Security Operations
Security Program Management and Oversight