IPSEC

The network consists of an internal network and a perimeter network. The
internal network is protected by a firewall. The perimeter network is exposed to
the Internet.
You are deploying 10 Windows Server 2003 computers as Web servers. The servers
will be located in the perimeter network. The servers will host only publicly
available Web pages.
You want to reduce the possibility that users can gain unauthorized access to the
servers. You are concerned that a user will probe the Web servers and find ports
or services to attack.?

/////////////////////////

I agree with the d because others can cause performance issue.
LVL 2
kunalclkAsked:
Who is Participating?
 
John MeggersConnect With a Mentor Network ArchitectCommented:
Is there really a question here?  At the very least, the servers should go in a DMZ off the firewall so they are protected to some degree.  For web servers, you should also (or perhaps instead) use a web application firewall to look for specific HTTP attacks.
0
 
Krzysztof PytkoSenior Active Directory EngineerCommented:
Yes, answers for this question would be helpful ;)

My opinion (if you're interested :) ) It doesn't matter which access method you will use because when user will be connected to the server it can always run port,services discovery. I don't know if there is anything related with File and Printer sharing? That could disallow port/services discovery

Regards,
Krzysztof
0
 
kunalclkAuthor Commented:
A. Disable File and Printer Sharing on the servers
B. Disable the IIS Admin service on the servers
C. Enable Server Message Block (SMB) signing on the servers
D. Assign the Secure Server (Require Security) IPSec policy to the servers
0
Making Bulk Changes to Active Directory

Watch this video to see how easy it is to make mass changes to Active Directory from an external text file without using complicated scripts.

 
Krzysztof PytkoConnect With a Mentor Senior Active Directory EngineerCommented:
Definitively A answer :]

Krzysztof
0
 
kunalclkAuthor Commented:
tnx
0
 
Krzysztof PytkoSenior Active Directory EngineerCommented:
Some article about that (maybe not strictly about reason but explains some issues)
http://support.microsoft.com/kb/199346

Krzysztof
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.