Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions

Eccouncil Exam 312-38 Topic 9 Question 102 Discussion

Actual exam question for Eccouncil's 312-38 exam
Question #: 102
Topic #: 9
[All 312-38 Questions]

A network designer needs to submit a proposal for a company, which has just published a web

portal for its clients on the internet. Such a server needs to be isolated from the internal network,

placing itself in a DMZ. Faced with this need, the designer will present a proposal for a firewall with

three interfaces, one for the internet network, another for the DMZ server farm and another for the

internal network. What kind of topology will the designer propose?

Show Suggested Answer Hide Answer
Suggested Answer: A

The topology that the network designer will propose is known as a screened subnet. This topology involves the use of two or more firewalls to create a network segment referred to as a demilitarized zone (DMZ). The DMZ acts as a buffer zone between the public internet and the internal network. It contains the public-facing servers, such as the web portal mentioned, which is isolated from the internal network for added security. The screened subnet topology typically includes a firewall at the network's edge connected to the internet, another firewall separating the DMZ from the internal network, and the DMZ itself. This setup allows for strict control of traffic between the internet, the DMZ, and the internal network, providing an additional layer of security.


Contribute your Thoughts:

Rueben
16 days ago
Wait, so the company has a web portal but wants to isolate it from the internal network? Sounds like they're trying to keep their employees from slacking off on the job. Maybe they should just ban cat videos instead.
upvoted 0 times
...
Yoko
17 days ago
D) Bastion host? Really? That's like putting your server in a castle and expecting it to be safe. I think the designer needs to step out of the Middle Ages and into the 21st century.
upvoted 0 times
Lisbeth
8 days ago
B: Maybe the designer should consider a multi-homed firewall instead.
upvoted 0 times
...
Gerald
11 days ago
A: I agree, a bastion host seems outdated for modern security needs.
upvoted 0 times
...
...
Rosina
23 days ago
I'm not sure about the correct answer, but I'm pretty sure it's not A) Screened subnet. That sounds more like a baseball term than a network topology.
upvoted 0 times
...
Christiane
28 days ago
C) Multi-homed firewall is also a valid option, as it can have multiple interfaces to separate the networks.
upvoted 0 times
Helga
5 days ago
A) Screened subnet
upvoted 0 times
...
...
Lynna
1 months ago
I believe a Multi-homed firewall could also be a good choice for this scenario.
upvoted 0 times
...
Holley
1 months ago
I agree with Reid, a Screened subnet would be the best option for isolating the server.
upvoted 0 times
...
Ryan
1 months ago
I think the correct answer is B) DMZ, External-Internal firewall. This topology isolates the web portal server from the internal network, which is the requirement mentioned in the question.
upvoted 0 times
Sheridan
13 days ago
User 4: Yes, one for the internet network, another for the DMZ server farm, and another for the internal network.
upvoted 0 times
...
Ettie
14 days ago
User 3: So, the designer would propose a firewall with three interfaces for this topology?
upvoted 0 times
...
Jennifer
19 days ago
User 2: That makes sense, it would isolate the web portal server from the internal network.
upvoted 0 times
...
Levi
23 days ago
User 1: I think the correct answer is B) DMZ, External-Internal firewall.
upvoted 0 times
...
...
Reid
1 months ago
I think the designer will propose a Screened subnet topology.
upvoted 0 times
...

Save Cancel