Refer to the exhibit.
Which two options will result from the Cisco ASA configuration? (Choose two.)
A.
The outside hosts can use the 192.168.100.1 IP address to reach the web server on the inside
network.
B.
The global IP address of the web server is 209.165.200.230.
C.
The inside web client will use the 209.165.200.230 IP address to reach the web server and the
Cisco ASA will translate the 209.165.200.230 IP address to the 192.168.100.1 IP address.
D.
The Cisco ASA will translate the DNS A-Record reply from the DNS server to any inside client
for the web
server (web server IP = 192.168.100.1).
E.
The web server will be reachable only from the inside.
F.
The web server will be reachable only from the outside.
Explanation:
http://www.cisco.com/en/US/docs/security/asa/asa84/configuration/guide/inspect_basic.html#wp1
350877
When DNS inspection is enabled, DNS rewrite provides full support for NAT of DNS messages
originating from any interface.
If a client on an inside network requests DNS resolution of an inside address from a DNS server
on an outside interface, the DNS A-record is translated correctly. If the DNS inspection engine is
disabled, the A-record is not translated.
As long as DNS inspection remains enabled, you can configure DNS rewrite using the alias, static,
or nat commands.
DNS Rewrite performs two functions:
•Translating a public address (the routable or “mapped” address) in a DNS reply to a private
address (the “real” address) when the DNS client is on a private interface.
•Translating a private address to a public address when the DNS client is on the public interface.