ExamTopics Logo
Mail Us[email protected]
Menu
Cisco Discussions
exam questions

Exam 200-901 All Questions

View all questions & answers for the 200-901 exam
Go to Exam

Exam 200-901 topic 1 question 106 discussion

Actual exam question from Cisco's 200-901
Question #: 106
Topic #: 1
[All 200-901 Questions]


Refer to the exhibit. A developer can access the TLS REST API on server A, but cannot access the API on server B. The developer can ping server B. When the developer performs a packet capture on the TLS REST API port on server B, the capture shows that the packet arrived and the server responded. What causes the issue?

  • A. Port 80 is blocked on the outgoing interface of firewall B.
  • B. Port 443 is blocked on the outgoing interface of firewall A.
  • C. Port 443 is blocked on the incoming interface of firewall B.
  • D. Port 80 is blocked on the incoming interface of firewall A.
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by macxsz at June 11, 2022, 10:52 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
rafailsharifov
1 year ago
There is no correct answer. Usually firewalls block or allow destination port and usually they are statefull, which means if the packer going out from inbound interface Firewall B, the respond to this packet will automatically allowed back. Lets say it is stateless and doesn`t work that way, in that case the packet coming back to firewall B`s inbound interface from Server B, is source port 443 and destination port is randomly selected by developer comp. Which blocking or opening 443 in Firewall B inbound interface will not change anything. Ping is working and packet is arriving to Server B, and respond get dropped somewhere, in most cases it could be MTU issue specially there is VPN between. There should be another answer with MTU, however MTU is heavy topic for this certification exam.
upvoted 4 times
...
aplicacion101
1 year, 10 months ago
Selected Answer: C
A and D are incorrect because use port 80 HTTP C is correct due F-B block response API REST. The questions says the packet arrived y server B responsed. So interface incoming in F-B block the return
upvoted 2 times
...
bballking
2 years ago
If it is C and the inbound firewall is blocking port 443, how is the server seeing the request and responding then?
upvoted 2 times
concepcionz
1 year, 7 months ago
Its performing a 'packet capture'. For instance when using Wireshark you can trace the packet in real time
upvoted 1 times
...
...
macxsz
2 years ago
Selected Answer: C
C makes more sense since TLS should use port 443. A and B are incorrect because outgoing interfaces are not used on this vpn tunnel
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel