A small company has recently placed a newly installed DNS server on the DMZ and wants to
secure it by allowing Internet hosts to query the DNS server. Since the company deploys an
internal DNS server, all DNS queries to that server coming from the company network should be
blocked. An IT administrator has placed the following ACL on the company firewall:
Testing shows that the DNS server in the DMZ is not working. Which of the following should the
administrator do to resolve the problem?
A.
Modify the SRC and DST ports of ACL 1
B.
Modify the SRC IP of ACL 1 to 0.0.0.0/32
C.
Modify the ACTION of ACL 2 to Permit
D.
Modify the PROTO of ACL 1 to TCP