You need to configure Server1 to support the clientconnections from App1.exe

Your network contains an Active Directory domain named contoso.com. The domain contains an Application
server named Server1. Server1 runs Windows Server 2012.
Server1 is configured as an FTP server.
Client computers use an FTP Application named App1.exe. App1.exe uses TCP port 21 as the control port and
dynamically requests a data port.
On Server1, you create a firewall rule to allow connections on TCP port 21.
You need to configure Server1 to support the clientconnections from App1.exe.
What should you do?

Your network contains an Active Directory domain named contoso.com. The domain contains an Application
server named Server1. Server1 runs Windows Server 2012.
Server1 is configured as an FTP server.
Client computers use an FTP Application named App1.exe. App1.exe uses TCP port 21 as the control port and
dynamically requests a data port.
On Server1, you create a firewall rule to allow connections on TCP port 21.
You need to configure Server1 to support the clientconnections from App1.exe.
What should you do?

A.
Run netshadvfirewall set global statefulftp enable.

B.
Create an inbound firewall rule to allow App1.exe.

C.
Create a tunnel connection security rule.

D.
Run Set-NetFirewallRule -DisplayNameDynamicFTP -Profile Domain

Explanation:
* add portopening
Used to create a port-based exception.



Leave a Reply 8

Your email address will not be published. Required fields are marked *


Puck

Puck

To disable stateful FTP filtering so that Windows Firewall will not block FTP traffic, type the following syntax then hit enter:

netsh advfirewall set global StatefulFtp disable

Puck

Puck

To enable stateful FTP filtering that will dynamically open ports for data connections, type the following syntax then hit enter:

netsh advfirewall set global StatefulFtp enable

Diederik Mulder

Diederik Mulder

This is not mentioned in the learning book.

Ebrahim Hasan

Ebrahim Hasan

–This is a wrong question–

Because the client will request a dynamic data port, then this is a Passive FTP mode so the Stateful FTP mode should be disabled.

netsh advfirewall set global statefulftp disable

Based on the article http://technet.microsoft.com/en-us/library/dd421710(v=ws.10).aspx

If the client will allows the FTP Server match its inbound connection requests on port 20 with previous outbound PORT commands from the client for port 21 then this will be a Stateful FTP mode, so the Stateful FTP mode should be enabled.

netsh advfirewall set global statefulftp enable

Diederik Mulder

Diederik Mulder

This is not learned in the book 🙁