Comptia Security Plus Mock Test Q62

Which of the following BEST describes a demilitarized zone?

A. A buffer zone between protected and unprotected networks.
B. A network where all servers exist and are monitored.
C. A sterile, isolated network segment with access lists.
D. A private network that is protected by a firewall and a VLAN.

Correct Answer: A
Section: Network Security

Explanation:
A demilitarized zone (DMZ) is an area of a network that is designed specifically for public users to access. The DMZ is a buffer network between the public untrusted Internet and the private trusted LAN. Often a DMZ is deployed through the use of a multihomed firewall.

Incorrect Answers:
B: The location and monitoring of servers would not occur in a DMZ as it is exposed to the public.
C: This describes a VLAN.
D: This describes a VPN.

References:
Stewart, James Michael, CompTIA Security+ Review Guide, Sybex, Indianapolis, 2014, p. 39
http://en.wikipedia.org/wiki/Virtual_private_network