You need to ensure that no unsecured traffic from the Internet reaches the internal network through this VPN

You are a network administrator for your company.The network consists of a single Active Directory domain.All servers run Windows Server 2003.

The company has a main office and one branch office.The perimeter networks for each office are configured as shown in the exhibit.

You configure an L2TP/IPSec VPN tunnel between Server1 and Server2. You also configure and assign an IPSec policy named RASIPSec that requires secure communications.

You need to ensure that no unsecured traffic from the Internet reaches the internal network through this VPN.You also need to ensure that access to the VPN servers from their respective internal networks is not disrupted.

What should you do?

Exhibit:

You are a network administrator for your company.The network consists of a single Active Directory domain.All servers run Windows Server 2003.

The company has a main office and one branch office.The perimeter networks for each office are configured as shown in the exhibit.

You configure an L2TP/IPSec VPN tunnel between Server1 and Server2. You also configure and assign an IPSec policy named RASIPSec that requires secure communications.

You need to ensure that no unsecured traffic from the Internet reaches the internal network through this VPN.You also need to ensure that access to the VPN servers from their respective internal networks is not disrupted.

What should you do?

Exhibit:

A.
Configure input and output L2TP/IPSec packet filters on the internal interfaces of Server1 and Server2.

B.
Configure input and output L2TP/IPSec packet filters on the external interfaces of Server1 and Server2.

C.
In the properties of RASIPSec, edit the All IP Traffic IP Filter list to include the IP addresses for only Server1 and Server2.

D.
In the properties of RASIPSec, edit the All ICMP Traffic IP Filter list to include the IP addresses for only Server1 and Server2.



Leave a Reply 0

Your email address will not be published. Required fields are marked *