A company is not familiar with the risks associated with IPv6. The systems administrator wants to isolate IPv4 from IPv6 traffic between two different network segments. Which of the following should the company implement? (Select TWO)
A. Use an internal firewall to block UDP port 3544.
B. Disable network discovery protocol on all company routers.
C. Block IP protocol 41 using Layer 3 switches.
D. Disable the DHCPv6 service from all routers.
E. Drop traffic for ::/0 at the edge firewall.
F. Implement a 6in4 proxy server.
How to PASS CAS-004 in First Attempt?FULL Printable PDF and Software. VALID exam to help you PASS. |
 |
AC
1) block protocol 41. That takes out ISATAP, 6to4, default 6in4, and 6rd.
2) block the default Teredo server port, udp/3544.
“https://community.cisco.com/t5/network-security/ipv6-tunneling-through-ipv4-blockage/td-p/1258595”
A and C
Check Bocephus answer at https://vceguide.com/which-of-the-following-should-the-company-implement-5/