VMware vSphere 7.x Professional for Service Providers — Question 54
An administrator is using vSphere Web Client to configure the firewall to allow specific third-party application SSH access to an ESXi Host.
What is the most secure way to configure the firewall rule?
Answer options
- A. Specify remote IP subnet range in IP List.
- B. Use Allow connection from any IP address.
- C. Disable the firewall.
- D. Enable lockdown mode.
Correct answer: A
Explanation
The most secure approach is to specify a remote IP subnet range in the IP List, as this restricts access to only trusted sources. Allowing connections from any IP address (Option B) exposes the host to potential unauthorized access. Disabling the firewall (Option C) removes all protection, and enabling lockdown mode (Option D) is unrelated to SSH access for a specific application.