You work for a small organization whose cybersecurity assets include a single firewall that is currently performing well. However, corporate policy dictates minimum resiliency for all cybersecurity elements. What is an example of how you can meet this requirement?
- Replace the existing firewall with a newer, larger-sized model and modify the configuration so that twice as many requests can be simultaneously serviced.
- Purchase an additional firewall and configure a highly available firewall two-member cluster so that the two firewalls will function as a single logical firewall, but failure of either member will not leave the organization vulnerable to attacks.
- Allow external access for teleworkers by providing VPN services.
- Resiliency is impossible in this scenario.
| Explanation & Hint:
To meet the requirement for minimum resiliency for cybersecurity elements in a small organization with a single firewall, a practical approach would be: Purchase an additional firewall and configure a highly available firewall two-member cluster so that the two firewalls will function as a single logical firewall, but failure of either member will not leave the organization vulnerable to attacks. Setting up a highly available firewall cluster ensures redundancy and resiliency in case one firewall fails. This approach helps maintain network security and availability even when one firewall is down, reducing the risk of potential vulnerabilities and attacks. It’s a cost-effective way to enhance the resiliency of the organization’s cybersecurity assets without the need to replace the existing firewall. |