Which of the following is a Windows configuration option that enables administrators to restrict
communication among domain members only?
A.
Demilitarized zone
B.
Server isolation
C.
Domain isolation
D.
Domain kiting
Explanation:
Domain isolation is a Windows configuration option that enables administrators to restrict
communication among domain members only. Domain isolation enforces a policy that restricts
domain member computers to only accept incoming communication requests from the members of
the same domain. When domain isolation is implemented, domain members can initiate
communication with hosts outside the domain. However, hosts from outside the network cannot
initiate communication with domain members.Answer B is incorrect. Server isolation is a Windows Server 2008 configuration option to isolate a
specific set of servers in a domain. These set of computers are prevented from being accessed by
any computer outside the domain. When server isolation is implemented, only computer those are
members of the domain are able to communicate with the isolated servers. Server isolation is
usually implemented by placing a set of servers in a specific organizational unit (OU) and applying
connection security rule to the OU through a group policy object (GPO).Answer D is incorrect. Domain kiting is a process whereby a user registers a domain (usually one
with a prominent sounding name likely to attract significant traffic), and on that domain, he puts up
a page with a lot of click through ads (the ads that pay the owner of the Web site for all clicks).
During this process, the user who registered the domain cancels it before the normal grace period is
over and then re-registers it again. This process is repeated any number of times with the end result
of having the domain registered without ever actually paying for it.Answer A is incorrect. The Demilitarized zone (DMZ) or perimeter network is a small network that
lies in between the Internet and a private network. It is the boundary between the Internet and an
internal network, usually a combination of firewalls and bastion hosts that are gateways between
inside networks and outside networks. DMZ provides a large enterprise network or corporate
network the ability to use the Internet while still maintaining its security.