Question 5) Test Yourself on Implementing
Objective : Implementing, Managing, and Maintaining Routing and Remote Access
SubObjective : Manage remote access
Item Number: 70-291.4.2.4
Single Answer Multiple Choice
You are the network administrator for your company. You have a Windows Server 2003 computer with Routing and Remote Access installed. This server is used to connect your network with the Internet.
An Internet Information Services (IIS) computer, named IIS1, hosts your company’s Web site. Your company wants customers to be able to access the secure portion of your Web site only.
What should you do?
A. Create an output filter for port 80 with the Source address of the Web server, and select the Drop all packets except those that meet the criteria below option.
B. Create an output filter for port 443 with the Source address of the Web server, and select the Drop all packets except those that meet the criteria below option.
C. Create an input filter for port 80 with the Destination address of the Web server, and select the Drop all packets except those that meet the criteria below option.
D. Create an input filter for port 443 with the Destination address of the Web server, and select the Drop all packets except those that meet the criteria below option.
E. Create an output filter for port 80 with the Source address of the Web server, and select the Drop all packets except those that meet the criteria below option. In addition, create an input filter for port 80 with the Destination address of the Web server, and select the Drop all packets except those that meet the criteria below option.
F. Create an output filter for port 443 with the Source address of the Web server, and select the Drop all packets except those that meet the criteria below option. In addition, create an input filter for port 443 with the Destination address of the Web server, and select the Drop all packets except those that meet the criteria below option.
Answer:
F. Create an output filter for port 443 with the Source address of the Web server, and select the Drop all packets except those that meet the criteria below option. In addition, create an input filter for port 443 with the Destination address of the Web server, and select the Drop all packets except those that meet the criteria below option.
Tutorial:
You should create an output filter for port 443 with the Source address of the Web server, and select the Drop all packets except those that meet the criteria below option. In addition, you should create an input filter for port 443 with the Destination address of the Web server, and select the Drop all packets except those that meet the criteria below option. To limit customer access to only secure content on the Web server, you must limit them to using only HTTPS. By default, HTTPS uses TCP port 443.
You should not create an output filter for port 80 with the Source address of the Web server, and select the Drop all packets except those that meet the criteria below option. TCP port 80 is the port used for HTTP traffic. HTTP is not a secure Web protocol.
You should not create an output filter for port 443 with the Source address of the Web server, and select the Drop all packets except those that meet the criteria below option only. An input filter must also be configured.
You should not create an input filter for port 80 with the Destination address of the Web server, and select the Drop all packets except those that meet the criteria below option. TCP port 80 is the port used for HTTP traffic. HTTP is not a secure Web protocol.
You should not create an input filter for port 443 with the Destination address of the Web server, and select the Drop all packets except those that meet the criteria below option. An output filter must also be configured.
You should not create an output filter for port 80 with the Source address of the Web server, and select the Drop all packets except those that meet the criteria below option. In addition, you should not create an input filter for port 80 with the Destination address of the Web server, and select the Drop all packets except those that meet the criteria below option. TCP port 80 is the port used for HTTP traffic. HTTP is not a secure Web protocol.
Configuring only an input filter will not protect outbound traffic. Configuring only an output filter will not protect the network from inbound traffic.
Reference:
1. Microsoft Knowledge Base Online – Search
– HOW TO: Configure TCP/IP Filtering in Windows 2003 – KB816792
These questions are derived from the Self Test Software Practice Test for Microsoft Exam #70-291: Implementing, Managing and Maintaining a Microsoft Windows Server 2003 Network Infrastructure.