Your security policy requires you to block DNS zone transfers (TCP port 53) while permitting DNS queries (UDP port 53). Which step must you complete before creating the policy?
A.
Modify the predefined DNS service to remove TCP port 53.
B.
Modify the predefined DNS application to remove TCP port 53.
C.
Create a custom service using UDP port 53 as the source port.
D.
Create a custom service using TCP port 53 as the destination port.