Question

Given the following output from a local PC:

C:\>ipconfig
Windows IP Configuration

Wireless LAN adapter Wireless Network Connection:
Connection-specific DNS Suffix . :
Link-local IPv6 Address....... : 4551:67ba:77a6:62e1%11
IPv4 Address............................. :
Subnet Mask.............................. :
Default Gateway....................... :
C:\>

Which of the following ACLs on a stateful host-based firewall would allow the PC to serve an intranet website?

A. Allow -> ANY
B. Allow ->
C. Allow ->
D. Allow ->

Answer 1

To serve an intranet website, a stateful host-based firewall must allow inbound traffic to the PC's IPv4 address on port 80 for HTTP and port 443 for HTTPS. The correct ACL rule would permit TCP traffic to those ports. However, the provided options are incomplete and no rule can be directly chosen.

Step-by-step explanation:

To allow a PC to serve an intranet website through a stateful host-based firewall, you would need to configure an Access Control List (ACL) that permits inbound traffic to the appropriate web server port. Generally, web servers listen on port 80 for HTTP traffic and port 443 for HTTPS traffic. Since the output of ipconfig shows an IPv4 address but not the actual value, the correct ACL rule to add would be something like:

Allow INBOUND TCP traffic to the specific IPv4 address of the PC on port 80 (and 443 if HTTPS is also used).

This rule allows external devices to initiate a connection to the web server hosted on the PC. However, since the options A, B, C, and D provided are incomplete, none can be directly selected as the correct ACL. Instead, a properly formed rule would look like:

Allow INBOUND TCP Any -> IPv4_Address:80 (and IPv4_Address:443 if necessary)

The firewall, being stateful, would allow return traffic as it keeps track of active connections.