CompTIA Security+ Exam Prep

Category - Communication

Start a Study Session Sign up for Question of the Day

What is the first line of defense for a network’s security and is another name for a locked-down system?

Firewall Architecture
Dual-homed Firewall
Bastion Host
Screened Host

Explanation

Answer: C - Bastion Host is the first line of defense for a network’s security and is another name for a locked-down system. A bastion host is usually a highly-exposed device because it is the first line in a network’s security and its existence is known on the Internet. This means the device must be extremely secure. A bastion host is not tied to firewall software and activities. It is just a system that is properly locked down.

Any system that resides within the DMZ should be installed on a bastion host since it is closer to the Internet and most likely closer to those who would like to do it harm If firewall software is not installed on a locked-down operating system.

Previous Next

Was this helpful? Upvote!

Start a Study Session Sign up for Question of the Day

CompTIA Security+ Exam Prep

Top questions

Related questions

Most popular on PracticeQuiz

Ad-Blocker not supported

CompTIA Security+ Exam Prep

Top questions

Related questions

Most popular on PracticeQuiz