Which of the following is TRUE with regards to Windows Firewall with Advanced Security?

You work as a senior administrator at ABC.com. The ABC.com network consists of a single
domain named ABC.com. All servers on the ABC.com network have Windows Server 2012 R2
installed.
You are running a training exercise for junior administrators. You are currently discussing the
Windows Firewall with Advanced Security feature.
Which of the following is TRUE with regards to Windows Firewall with Advanced Security?
(Choose all that apply.)

You work as a senior administrator at ABC.com. The ABC.com network consists of a single
domain named ABC.com. All servers on the ABC.com network have Windows Server 2012 R2
installed.
You are running a training exercise for junior administrators. You are currently discussing the
Windows Firewall with Advanced Security feature.
Which of the following is TRUE with regards to Windows Firewall with Advanced Security?
(Choose all that apply.)

A.
It provides host-based, two-way network traffic filtering for a computer.

B.
It provides host-based, one-way network traffic filtering for a computer.

C.
It blocks unauthorized network traffic flowing into or out of the local computer.

D.
It only blocks unauthorized network traffic flowing into the local computer.

E.
It only blocks unauthorized network traffic flowing out of the local computer.

Explanation:



Leave a Reply 4

Your email address will not be published. Required fields are marked *


robber

robber

bc it’s blocks outgoing traffic if not authorized as well.

The trick is that default all outgoing traffic is authorized, but you can create outgoing block rules so A and C.

Merit Coba

Merit Coba

A pretty confusing set of answers. Take answer a. If you go and look up the technet articles and even training manuals, filtering is seldom mentioned in the context of a host. Only filtering in general is talked about, or filtering from the network. However, filtering can be done by port, protocol, executable and ip-adress. So yes, when you equate host to ip-adress(as it is sometimes done) it is one of the options allowed.
But it is a pretty obfuscated answer.
So I guess A and C are right.