The security team notices that the Always On VPN solution sometimes fails to connect. This leaves remote users unprotected because they cannot connect to the on-premises web proxy. Which of the following changes will best provide web protection in this scenario?
Install a host-based content filtering solution.
Implementing a host-based content filtering solution ensures that remote users can maintain web protection even when the Always On VPN fails to connect. This approach provides an additional layer of security directly on the user's device, allowing protection against potentially harmful content while still ensuring access to necessary web resources.
Network access control primarily focuses on managing and securing device access to a network, which does not directly address the issue of web protection during VPN outages. While it can enhance overall security, it does not provide immediate content filtering for users who are unable to connect via the VPN.
Configuring the local gateway to point to the VPN might improve connectivity but does not resolve the problem of users remaining unprotected when the VPN fails to establish. This option does not introduce any content filtering or protection measures for users who cannot connect to the VPN.
Creating a public NAT for the on-premises proxy allows external access to internal resources but does not ensure that remote users are protected against web threats when the VPN connection fails. This solution does not provide any content filtering capabilities, leaving users vulnerable to potential security risks.
This is the best option because it directly provides web protection on the user's device, ensuring that even if the VPN fails, users remain safeguarded from malicious content. It complements the Always On VPN by filtering web traffic and blocking harmful sites, thus enhancing security for remote users.
To safeguard remote users when the Always On VPN fails, installing a host-based content filtering solution is essential. This method offers immediate protection against web threats directly on user devices, filling the security gap left by the VPN connection issues. In contrast, the other options fail to provide the necessary web protection, highlighting the importance of a multi-layered security approach.
Related Questions
View allA penetration tester is testing the security of a building's alarm sys...
Which of the following solutions would most likely be used in the fina...
A Chief Security Officer signs off on a request to allow inbound SMB a...
Which of the following threat actors would most likely target an organ...
Which of the following mitigation techniques would a security analyst...
Related Quizzes
View allCompTIA A Plus Certification Exam
CompTIA A Plus Exam Questions
CompTIA A Plus 1001 Exams Practice
CompTIA A Plus Practice Exam
CompTIA CySA+ Cybersecurity Analyst Certification all in One Exam Guide
CompTIA Network Plus Certification Exam Quiz
CompTIA Security Plus Exam Answers
Free CompTIA Security Plus Practice Test
CompTIA Security Plus 501 Practice Questions
CompTIA Security Plus Example Questions
- ✓ 500+ Practice Questions
- ✓ Detailed Explanations
- ✓ Progress Analytics
- ✓ Exam Simulations