PrepAway - Latest Free Exam Questions & Answers

Which of the following is the MOST secure ACL to implem…

A security administrator must implement a firewall rule to allow remote employees to VPN onto the companynetwork. The VPN concentrator implements SSL VPN over the standard HTTPS port. Which of the following is
the MOST secure ACL to implement at the company’s gateway firewall?

PrepAway - Latest Free Exam Questions & Answers

A.
PERMIT TCP FROM ANY 443 TO 199.70.5.25 443

B.
PERMIT TCP FROM ANY ANY TO 199.70.5.23 ANY

C.
PERMIT TCP FROM 199.70.5.23 ANY TO ANY ANY

D.
PERMIT TCP FROM ANY 1024-65535 TO 199.70.5.23 443

Explanation:
The default HTTPS port is port 443. When configuring SSL VPN you can change the default port for HTTPS to
a port within the 1024-65535 range. This ACL will allow traffic from VPNs using the 1024-65535 port range to
access the company network via company’s gateway firewall on port 443.

PrepAway - Latest Free Exam Questions & Answers

Leave a Reply