WGU D482 SECURE NETWORK DESIGN TASK 1
2026 PRACTICE TEST QUESTIONS AND
DETAILED RISK ASSESSMENT ENCRYPTION
AND ACCESS CONTROL BREAKDOWN FULL
REVIEW
◉ Traditional-Tiered Design. Answer: Provider Edge Router that
cascades into a firewall, some potential core switch layer and
eventually leaf switches that distribute connections to endpoints..
◉ Software Designed Approach. Answer: Switches are
programmable and the network functions are segregated into planes
with alterations and decision-making done via a controller.
◉ ...Hardware Focused. Answer: Traditional Network...The control
plane is divided by independent devices that may be disparate from
each other, requiring distributed device management
◉ ...Use VLANs and ACLs for network segmentation.. Answer:
Traditional Network...The control plane is divided by independent
devices that may be disparate from each other, requiring distributed
device management
, ◉ ...Perimeter Defense Design. Answer: Traditional
Network...Traditional networks are designed with the zone based
network approach in mind.
◉ External Network(Untrusted). Answer: The external network is
considered internet traffic in traditional network designs.
Connections from and to the outside are typically denied without
explicit permission or scrutiny from proxies and firewalls.
◉ Demilitarized Zone. Answer: Public services such as web servers,
email and FTP servers generally reside here. External traffic is
permitted and expected but DMZ to internal network traffic is
generally blocked or heavily filtered(Email Security Gateways,
Firewalls) This allows companies to isolate potentially dangerous
traffic that it wants to offer publicly.
◉ Internal Network. Answer: This represented internal network
traffic from department to department, or East-West Traffic. This
type of connection was usually permitted unless explicitly prevented
via policy or department.
◉ ...Separates Networking Planes. Answer: Software Defined
Network...The control plane,data plane and management plane are
separated and orchestrated by a designated SDN controller
2026 PRACTICE TEST QUESTIONS AND
DETAILED RISK ASSESSMENT ENCRYPTION
AND ACCESS CONTROL BREAKDOWN FULL
REVIEW
◉ Traditional-Tiered Design. Answer: Provider Edge Router that
cascades into a firewall, some potential core switch layer and
eventually leaf switches that distribute connections to endpoints..
◉ Software Designed Approach. Answer: Switches are
programmable and the network functions are segregated into planes
with alterations and decision-making done via a controller.
◉ ...Hardware Focused. Answer: Traditional Network...The control
plane is divided by independent devices that may be disparate from
each other, requiring distributed device management
◉ ...Use VLANs and ACLs for network segmentation.. Answer:
Traditional Network...The control plane is divided by independent
devices that may be disparate from each other, requiring distributed
device management
, ◉ ...Perimeter Defense Design. Answer: Traditional
Network...Traditional networks are designed with the zone based
network approach in mind.
◉ External Network(Untrusted). Answer: The external network is
considered internet traffic in traditional network designs.
Connections from and to the outside are typically denied without
explicit permission or scrutiny from proxies and firewalls.
◉ Demilitarized Zone. Answer: Public services such as web servers,
email and FTP servers generally reside here. External traffic is
permitted and expected but DMZ to internal network traffic is
generally blocked or heavily filtered(Email Security Gateways,
Firewalls) This allows companies to isolate potentially dangerous
traffic that it wants to offer publicly.
◉ Internal Network. Answer: This represented internal network
traffic from department to department, or East-West Traffic. This
type of connection was usually permitted unless explicitly prevented
via policy or department.
◉ ...Separates Networking Planes. Answer: Software Defined
Network...The control plane,data plane and management plane are
separated and orchestrated by a designated SDN controller
