CompTIA Network+ Question C-51

A technician configures a firewall in the following manner in order to allow HTTP traffic.

Source IPZone: Any Untrust
Dest IPZone: Any DMZ
Port: 80
Action: Allow

The organization should upgrade to which of the following technologies to prevent unauthorized traffic from traversing the firewall?

A. HTTPS
B. Stateless packet inspection
C. Intrusion detection system
D. Application aware firewall

Correct Answer: D

CompTIA Network+ Question B-10

A new threat is hiding traffic by sending TLS-encrypted traffic outbound over random ports. Which of the following technologies would be able to detect and block this traffic?

A. Intrusion detection system
B. Application aware firewall
C. Stateful packet inspection
D. Stateless packet inspection

Correct Answer: C