You need to ensure that Server1 can respond to ping requests from computers that do not support IPSec

Your network contains an Active Directory domain named contoso.com. All servers run Windows
Server 2012 R2. A server named Server1 is configured to encrypt all traffic by using IPSec.
You need to ensure that Server1 can respond to ping requests from computers that do not support
IPSec.
What should you do?

Your network contains an Active Directory domain named contoso.com. All servers run Windows
Server 2012 R2. A server named Server1 is configured to encrypt all traffic by using IPSec.
You need to ensure that Server1 can respond to ping requests from computers that do not support
IPSec.
What should you do?

A.
From a command prompt, run netsh set global autotuninglevel =
highlyrestrictedcongestionprovider=none.

B.
From a command prompt, run netsh set global autotuninglevel = restricted congestionprovider =
ctcp.

C.
From Windows Firewall with Advanced Security, allow unicast responses for the Domain Profile.

D.
From Windows Firewall with Advanced Security, exempt ICMP from IPSec.

Explanation:

Show Hint

Leave a Reply 1

Your email address will not be published. Required fields are marked *

10 + eleven =

luischavez714

luischavez714

Answer is D.
Explanation to this answer is found here:

https://technet.microsoft.com/en-us/library/cc753002.aspx

This setting exempts ICMP from the IPsec portion of Windows Firewall with Advanced Security only. To ensure that ICMP packets are allowed through Windows Firewall, you must create and enable an inbound rule.

Reply