Which of the following network components is PRIMARILY set up to serve as a security measure by
preventing unauthorized traffic between different segments of the network?
A.
Firewalls
B.
Routers
C.
Layer 2 switches
D.
VLANs
Explanation:
Firewall systems are the primary tool that enable an organization to prevent unauthorized access
between networks. An organization may choose to deploy one or more systems that function as
firewalls. Routers can filter packets based on parameters, such as source address, but are not
primarily a security tool. Based on Media Access Control (MAC) addresses, layer 2 switches separate
traffic in a port as different segments and without determining if it is authorized or unauthorized
traffic. A virtual LAN (VLAN) is a functionality of some switches that allows them to switch the traffic
between different ports as if they are in the same LAN. Nevertheless, they do not deal with
authorized vs. unauthorized traffic.