Your network contains an Active Directory domain named contoso.com. All servers run Windows Server 2012
R2.A server named Server1 is configured to encrypt all traffic by using IPSec.
You need to ensure that Server1 can respond to ping requests from computers that do not support IPSec.
What should you do?
A.
From a command prompt, run netsh set global autotuninglevel = highlyrestrictedcongestionprovider=none.
B.
From a command prompt, run netsh set global autotuninglevel-restricted congestionprovider=ctcp.
C.
From Windows Firewall with Advanced Security, allow unicast responses for the Domain Profile.
D.
From Windows Firewall with Advanced Security, exempt ICMP from IPSec.
If you have active connection security rules, it is also helpful for troubleshooting purposes to exempt ICMP from the IPsec requirements temporarily. To do this, in the Windows Firewall with Advanced Security snap-in, in the Properties dialog box, click the IPsec Settings tab and click Yes to Exempt ICMP from IPsec.