ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam N10-008 All Questions

View all questions & answers for the N10-008 exam
Go to Exam

Exam N10-008 topic 1 question 301 discussion

Actual exam question from CompTIA's N10-008
Question #: 301
Topic #: 1
[All N10-008 Questions]

An engineer needs to restrict the database servers that are in the same subnet from communicating with each other. The database servers will still need to communicate with the application servers in a different subnet. In some cases, the database servers will be clustered, and the servers will need to communicate with other cluster members. Which of the following technologies will be BEST to use to implement this filtering without creating rules?

  • A. Private VLANs
  • B. Access control lists
  • C. Firewalls
  • D. Control plane policing
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by LeonardSnart at Nov. 22, 2022, 3:11 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
LeonardSnart
Highly Voted 2 years, 5 months ago
Emmett Dulaney "Use private VLANs: Also known as port isolation, creating a private VLAN is a method of restricting switch ports (now called private ports) so that they can communicate only with a particular uplink. The private VLAN usually has numerous private ports and only one uplink, which is usually connected to a router, or firewall." B & C require creating rules, and D is about controlling the rate of packets to prevent DoS attacks.
upvoted 15 times
...
StellarSteve
Highly Voted 2 years, 1 month ago
Selected Answer: A
A. Private VLANs. Private VLANs can be used to restrict the communication between the servers in the same subnet. A primary VLAN can be created and the database servers can be mapped to this VLAN as an isolated VLAN. This will restrict the communication between the database servers. Additionally, a secondary VLAN can be created and the application servers can be mapped to this VLAN as a community VLAN. This will allow the communication between the application and database servers. Furthermore, if any clustering is used, this can be accommodated by mapping the cluster servers to a promiscuous port in the primary VLAN.
upvoted 5 times
...
3f2045e
Most Recent 8 months, 3 weeks ago
Private VLANs (PVLANs) are the best choice for restricting communication between database servers in the same subnet while allowing communication with application servers in a different subnet. PVLANs can isolate devices within the same subnet without needing complex rules, unlike ACLs and firewalls. Control Plane Policing doesn't apply to this scenario, as it's for controlling traffic to a router's control plane.
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago