Your company has an Active Directory directory service domain. All servers run Windows Server 2003. Your network consists of an internal network and a perimeter network (also known as DMZ). A stand-alone Web server is located in the perimeter network. All other servers are located on the internal network and are members of the domain. No certification authority (CA) is available. An Active DirectoryCbased IPSec policy blocks all incoming traffic on the internal network. You need to ensure that the Web server can communicate with a database server on the internal network. What should you do?
A.
Create an Active DirectoryCbased IPSec policy that permits traffic to the Web server.
B.
Create an exception in the existing IPSec policy to permit traffic to the database server.
C.
Create a local IPSec policy on the Web server to permit traffic from the database server.
D.
Create a local IPSec policy on the database server to permit traffic from the Web server.