VMware vSphere 7.x Delta — Question 86

An administrator is using vSphere Web Client to configure the firewall to allow specific third-party application SSH access to an ESXi Host.
What is the most secure way to configure the firewall rule?

Answer options

• A. Specify remote IP subnet range in IP List.
• B. Use Allow connection from any IP address.
• C. Enable lockdown mode.
• D. Disable the firewall.

Correct answer: A

Explanation

The most secure method is to specify a remote IP subnet range in the IP List, which limits access to trusted sources. Allowing connections from any IP address (Option B) creates vulnerabilities, while enabling lockdown mode (Option C) restricts management access rather than focusing on SSH. Disabling the firewall (Option D) exposes the host to all network traffic, making it highly insecure.