An administrator connects VoIP phones to the same switch as the network PCs and printers.
Which of the following would provide the BEST logical separation of these three device types while
still allowing traffic between them via ACL?
A.
Create three VLANs on the switch connected to a router
B.
Define three subnets, configure each device to use their own dedicated IP address range, and
then connect the network to a router
C.
Install a firewall and connect it to the switch
D.
Install a firewall and connect it to a dedicated switch for each device type
Explanation:
• Whenever Security+ exam speaks of “separation” or “segmentation”, more often that not it speaks about Avlan.
• A virtual local area network (VLAN) is a hardware-imposed network segmentation created by switches.
• It is also a very well known and recommened practice to completey separate voice traffic from all other traffic. This is achieved using VLANs
• VLANs are used for traffic management. Communications between ports within the same VLAN occur without hindrance, but communications between VLANs require a routing function.
By creating three VLANS on the switch I would have:
• 1 VLAN for Voice
• 1 VLAN for PCs
• 1 VLAN for Printers
0
0