Question 162 of 610 from exam N10-007: CompTIA Network+

Question 162 of 610 from exam N10-007: CompTIA Network+

Prev Question Next Question

Question

A network technician needs to separate a web server listening on port 80 from the internal LAN and secure the server from the public Internet.

The web server should be accessible to the public Internet over port 80 but not the private LAN.

Currently, the network is segmented with a network-based firewall using the following IP addressing scheme on each interface:

Zone Public DMZ Private Interface etho ethl eth2 IP 10 10 10 Address -0.0.1/24 -0.1.1/24 20.2.1/24

Which of the following ones should the technician use to place the web server and which of the following firewall rules should the technician configure?

A.

Place the web server in the public zone with an inbound rule from eth0 interface to accept traffic over port 80 designated to the web server B.

Place the web server in the DMZ with an inbound rule from eth0 interface to eth1 to accept traffic over port 80 designated to the web server C.

Place the web server in the private zone with an inbound rule from eth2 interface to eth1 to accept traffic over port 80 designated to the web server D.

Place the web server in the DMZ with an inbound rule from eth1 interface to eth0 to accept traffic over port 80 designated to the web server.

B.

Explanations

A network technician needs to separate a web server listening on port 80 from the internal LAN and secure the server from the public Internet.

The web server should be accessible to the public Internet over port 80 but not the private LAN.

Currently, the network is segmented with a network-based firewall using the following IP addressing scheme on each interface:

Zone Public DMZ Private Interface etho ethl eth2 IP 10 10 10 Address -0.0.1/24 -0.1.1/24 20.2.1/24

Which of the following ones should the technician use to place the web server and which of the following firewall rules should the technician configure?

A.

Place the web server in the public zone with an inbound rule from eth0 interface to accept traffic over port 80 designated to the web server

B.

Place the web server in the DMZ with an inbound rule from eth0 interface to eth1 to accept traffic over port 80 designated to the web server

C.

Place the web server in the private zone with an inbound rule from eth2 interface to eth1 to accept traffic over port 80 designated to the web server

D.

Place the web server in the DMZ with an inbound rule from eth1 interface to eth0 to accept traffic over port 80 designated to the web server.

B.

Prev Question Next Question