HOTSPOT
Your network contains two application servers that run Windows Server 2012 R2. The application
servers have the Network Load Balancing (NLB) feature installed.
You create an NLB cluster that contains the two servers.
You plan to deploy an application named App1 to the nodes in the cluster. App1 uses TCP port 8080
and TCP port 8081.
Clients will connect to App1 by using HTTP and HTTPS via a single reverse proxy. App1 does not use
session state information.
You need to configure a port rule for Appl. The solution must ensure that connections to App1 are
distributed evenly between the nodes.
Which port rule should you use?
To answer, select the appropriate rule in the answer area.
Answer: 
Explanation:
<map><m x1=”1″ x2=”330″ y1=”2″ y2=”410″ ss=”0″ a=”0″ /></map>*Only the TCP Protocol is needed
* Only a Single host is required. Create a new Network Load Balancing Port Rule
Wrong Answer:
We need :
1) TCP 8080 & 8081
2) even distribution over the nodes
Wrong : upper left; uses Single Host. we need to distribute evenly
Wrong : upper right; uses Affinity Single. As we only connect thru a proxy, all traffic from same IP will go to a single node
Wrong : lower right; uses both TCP and UDP AND Single Host. Only TCP is needed and we need to Distribute Evenly
Correct : Lower Left; uses only TCP and has Affinity to NONE whcih will cause traffic to be distributed evenly among the nodes.
5
0
Correct : Lower Left; uses only TCP and has Affinity to NONE which will cause traffic to be distributed evenly among the nodes.
2
0
I agree. I was wondering what I missed in the four choices. Glad I’m not alone in this.
0
0
I recant my previous post. When in Single Filtering Mode, the admin will assign a priority to each of the nodes in the NLB cluster (in this case Node1 will have a priority of 1 and Node2 will have a priority of 2) . The lower the number – the higher the priority. If Node1 fails, then the next node in the cluster will take over and answer the requests. It would work the same if there were 6 hosts in the cluster. The Single filtering mode ensures availability of the application or service in the NLB cluster.
So, it turns out the given answer is correct.
0
1
FAIL.
“The solution must ensure that connections to APP1 are DISTRIBUTED EVENLY between the nodes”.
Your solution allows only one host to serve the connection at any given point in time. When it fails, the next node takes over, but how is that distributing evenly across all nodes?
0
0
There is another variant to this question and in that case, your solution of single host would apply. That particular question asks for retaining session state information “locally”.
As for the CURRENT question, Franc is right.
0
0
You are correct. I just reread it and Franc is correct. I recant my recant-ment.
0
0
I think the key note in this question is that HTTPS is used, and as stated here:
https://blogs.technet.microsoft.com/networking/2008/10/01/nlb-101-how-nlb-balances-network-traffic/
affinity set to none would not work:
“SSL connections will not work well with No Affinity”
1
0
I believe the bottom left is correct:
1) The app doesn’t use session state information, so if the client reconnects to another server it shouldn’t affect the application.
2) There is a reverse proxy which will make it look as though there is a single client. If Affinity is set to single, only the host with that IP in its “range” will accept connections.
1
0
sounds good…I’m just wondering about how TLS will be processed in this constellation because the application might be stateless but TLS usually is not. But maybe this has to be considered in such a setup? https://tools.ietf.org/html/rfc4507
0
0
Maybe the reverse proxy does SSL offloading?
Also on xyx’s second point, if the NLB cluster is only seeing the reverse proxy’s IP, then connections won’t be distributed evenly between the nodes if the affinity is set to single or network, in which case lower left is correct.
0
0