Exam SY0-701 Topic 3 Question 72 Discussion

Actual exam question for CompTIA's SY0-701 exam
Question #: 72
Topic #: 3
The security team notices that the Always On VPN solution sometimes fails to connect. This leaves remote users unprotected because they cannot connect to the on-premises web proxy. Which of the following changes will best provide web protection in this scenario?

Suggested Answer: C Vote an answer

Installing a host-based content filtering solution on the endpoints ensures that web traffic is filtered locally even when the VPN connection to the on-premises proxy fails, maintaining protection for remote users.
Network access control (A) manages device network access, local gateway configuration (B) does not solve protection if VPN fails, and public NAT (C) exposes internal resources and increases risk.
Endpoint filtering complements VPN for resilient web security, covered in Security Architecture and Operations#6:Chapter 11 CompTIA Security+ Study Guide#.

by toxepap375 at Mar 30, 2026, 12:57 PM

Limited Time Offer

15%

Off

Get Premium SY0-701 Questions as Interactive Self Test Engine or PDF

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
Nick name: Submit Cancel
toxepap375
2026-03-30 12:57:16
Selected Answer: D
Correct Answer: D. Install a host-based content filtering solution

👉 This ensures users are always protected, regardless of VPN connectivity, because filtering happens locally on the device.
upvoted 1 times
...
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
0
0
0
10