Securing Windows Server 2016 — Question 133

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
Your network contains an Active Directory domain named contoso.com. The domain contains a computer named Computer1 that runs Windows10.
The network uses the 172.16.0.0/16 address space.
Computer1 has an application named App1.exe that is located in D:\Apps\. App1.exe is configured to accept connections on TCP port 8080.
You need to ensure that App1.exe can accept connections only when Computer1 is connected to the corporate network.
Solution: You configure an inbound rule that allows the TCP protocol on port 8080 and applies to all profiles.
Does this meet the goal?

Answer options

• A. Yes
• B. No

Correct answer: B

Explanation

The solution does not meet the goal because allowing the TCP protocol on port 8080 for all profiles means that connections can be accepted on both public and private networks, not just the corporate network. To restrict App1.exe to only accept connections when connected to the corporate network, the rule should only apply to the domain profile, which is used when the computer is connected to the corporate network.