none
SSL RRS feed

  • Question

  •    In order to deepen my knowledge in infrastructure, to take the exam.
       I would like the opinion of colleagues on the question below to see if my reasoning is correct on the issue:

       You deploy a Windows Server 2008 R2 VPN server behind the firewall. Remote users connect to the VPN by using portable computers that run Windows 7.

       The firewall is configured to allow Web communications only guaranteed. You need to allow remote users to connect to possible security. You must achieve this goal without opening any additional ports on the firewall. What should you do?

       A - Create an IPsec tunnel.

       B-Create an SSTP VPN connection.

       C - Create a PPTP VPN connection.

       D - Create an L2TP VPN connection.

       My considerations below:

       A-This incorrect because the IPSEC tunnel is only on the internal network

       B - Correct it provides encryption without opening ports in the firewall (443).

      C - Incorrect provides no security and encryption

       D - L2TP have to open a port on the firewall

       I wonder if my observations are correct and my raciocionio

       thank you

    Wednesday, September 26, 2012 11:30 AM

Answers

  • A - IPSec does not have to be internal only, but alone not suitable as VPN solution
    B - SSTP is the right choice, because of the HTTPS encapsulation and security
    C - uses 128bit MPPE for encryption, but requires more ports on the FW
    D - more ports on the FW required


    Marek Chmel, WBI Systems (MCTS, MCITP, MCT, CCNA)
    Please Mark As Answer if my post solves your problem or Vote As Helpful if a post has been helpful for you.

    Wednesday, September 26, 2012 12:34 PM
  • According to the Questing right answer should be SSTS VPN.


    Marek Chmel, WBI Systems (MCTS, MCITP, MCT, CCNA)
    Please Mark As Answer if my post solves your problem or Vote As Helpful if a post has been helpful for you.

    Wednesday, September 26, 2012 12:00 PM

All replies

  • According to the Questing right answer should be SSTS VPN.


    Marek Chmel, WBI Systems (MCTS, MCITP, MCT, CCNA)
    Please Mark As Answer if my post solves your problem or Vote As Helpful if a post has been helpful for you.

    Wednesday, September 26, 2012 12:00 PM
  • Hello,

    Thanks for the reply, however I would like to know your opinion because the alternatives are incorrect.
    Because I need to know if my thinking is correct on them
    Wednesday, September 26, 2012 12:31 PM
  • A - IPSec does not have to be internal only, but alone not suitable as VPN solution
    B - SSTP is the right choice, because of the HTTPS encapsulation and security
    C - uses 128bit MPPE for encryption, but requires more ports on the FW
    D - more ports on the FW required


    Marek Chmel, WBI Systems (MCTS, MCITP, MCT, CCNA)
    Please Mark As Answer if my post solves your problem or Vote As Helpful if a post has been helpful for you.

    Wednesday, September 26, 2012 12:34 PM