In this section, you’ll see one or more sets of questions with the same scenario and problem.
Each question presents a unique solution to the problem, and you must determine whether
the solution meets the stated goals. Any of the solutions might solve the problem. It is also
possible that none of the solutions solve the problem. Once you answer a question in this
section, you will NOT be able to return to it. As a result, these questions will not appear in
the review screen. Note: This question is part of a series of questions that present the same
scenario. Each question in the series contains a unique solution. Determine whether the
solution meets the stated goals.
Your network contains an Active Directory domain named contoso.com. The domain contains a
DNS server named Server1. All client computers run Windows 10. On Server1, you have the
following zone configuration.
You need to prevent Server1 from resolving queries from DNS clients located on Subnet4 Server1
must resolve queries from all other DNS clients.
Solution: From Windows Firewall with Advanced Security on Server1, you create an inbound rule.
Does this meet the goal?
A.
Yes
B.
No
I think this is incorrect. Although you can block incoming DNS queries, I do not find the option to specify the scope of the queries.
The only way I have seem to find to do this is by using the Add-DnsServerQueryResolutionPolicy.
https://docs.microsoft.com/en-us/windows-server/networking/dns/deploy/apply-filters-on-dns-queries
1
6
You can define scope of remote and local IP addresses in firewall rule.
5
0
Right, thats an option, not very clean for me but should work.
1
0