ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam MD-100 All Questions

View all questions & answers for the MD-100 exam
Go to Exam

Exam MD-100 topic 4 question 26 discussion

Actual exam question from Microsoft's MD-100
Question #: 26
Topic #: 4
[All MD-100 Questions]

SIMULATION -
Please wait while the virtual machine loads. Once loaded, you may proceed to the lab section. This may take a few minutes, and the wait time will not be deducted from your overall test time.
When the Next button is available, click it to access the lab section. In this section, you will perform a set of tasks in a live environment. While most functionality will be available to you as it would be in a live environment, some functionality (e.g., copy and paste, ability to navigate to external websites) will not be possible by design.
Scoring is based on the outcome of performing the tasks stated in the lab. In other words, it doesn't matter how you accomplish the task, if you successfully perform it, you will earn credit for that task.
Labs are not timed separately, and this exam may more than one lab that you must complete. You can use as much time as you would like to complete each lab.
But, you should manage your time appropriately to ensure that you are able to complete the lab(s) and all other sections of the exam in the time provided.
Please note that once you submit your work by clicking the Next button within a lab, you will NOT be able to return to the lab.

Username and password -

Use the following login credentials as needed:
To enter your password, place your cursor in the Enter password box and click on the password below.

Username: Contoso/Administrator -
Password: Passw0rd!
The following information is for technical support purposes only:

Lab Instance: 11145882 -


A web service installed on Client1 is used for testing.
You discover that users cannot connect to the web service by using HTTP.
You need to allow inbound HTTP connections to Client1.
To complete this task, sign in to the required computer or computers.

Show Suggested Answer Hide Answer
Suggested Answer: See explanation below.
To create an inbound port rule -
1. Open the Group Policy Management Console to Windows Defender Firewall with Advanced Security.
2. In the navigation pane, click Inbound Rules.
3. Click Action, and then click New rule.
4. On the Rule Type page of the New Inbound Rule Wizard, click Custom, and then click Next.
5. On the Program page, click All programs, and then click Next.
6. On the Protocol and Ports page, select the protocol type that you want to allow. To restrict the rule to a specified port number, you must select either TCP or
UDP. Because this is an incoming rule, you typically configure only the local port number. TCP port 80. When you have configured the protocols and ports, click Next.
7. On the Scope page, you can specify that the rule applies only to network traffic to or from the IP addresses entered on this page. Configure as appropriate for your design, and then click Next.
8. On the Action page, select Allow the connection, and then click Next.
9. On the Profile page, select the network location types to which this rule applies, and then click Next.
10.On the Name page, type a name and description for your rule, and then click Finish.
Reference:
https://docs.microsoft.com/en-us/windows/security/threat-protection/windows-firewall/create-an-inbound-port-rule https://en.wikipedia.org/wiki/List_of_TCP_and_UDP_port_numbers
by Anthony_2770 at Oct. 27, 2020, 6:14 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
goldengodiva
Highly Voted 4 years, 4 months ago
Why do we have to use a custom rule when it's easier to use a port rule?
upvoted 6 times
AVP_Riga
4 years, 2 months ago
I think author just copy paste from another site and change text a little bit. Because text has very misunderstand able phrases.
upvoted 1 times
...
...
Goofer
Highly Voted 3 years, 7 months ago
Open Port 80 in the firewall on Computer1
upvoted 6 times
...
Colin888
Most Recent 2 years ago
How do I enable HTTP on Windows 10?\11 If you are running Windows 10, this can be found via Programs and Features, then Turn Windows features on or off, then enabling Internet Information Services checkbox
upvoted 1 times
...
Saad91
2 years, 7 months ago
just open port 80in the firewall
upvoted 1 times
...
AVP_Riga
4 years, 2 months ago
1. Open the Group Policy Management Console to Windows Defender Firewall with Advanced Security. This point is very frustrating, cos Local Group Policy Management Editor has Windows Defender Firewall with Advanced Security under Computer configuration > Windows Settings > Security Settings, but Group Policy Management Console don't have it, you need to add new GPO before it.
upvoted 1 times
AVP_Riga
4 years, 2 months ago
Is it right, do I need to add local group rule to PC with Web Service? Maybe we can just configure Windows Defender Firewall with Advanced Security through control panel?
upvoted 2 times
BAbdalla
3 years, 9 months ago
Do you can configure firewall direct via control panel, the effect will be same.
upvoted 2 times
...
OnyxxOr
3 years, 10 months ago
Agreed, the persistent route in using gpedit for everything is kinda annoying - since it forces us to remember the location of all the policy rules. Much easier to use the targeted tools to achieve the same. I've been allowing ports for years and years and have never done this using group policy...
upvoted 1 times
...
...
...
ad2531
4 years, 5 months ago
7. On the Scope page, you can specify that the rule applies only to network traffic to or from the IP addresses entered on this page. Configure as appropriate for your design, and then click Next. Doesnt specify what we need to do
upvoted 2 times
AVP_Riga
4 years, 2 months ago
I think we just need to login to server and client and try to reach 80 port by telnet. "telnet Server 80" or open by browser server web services from clients. And apply necessary rules to fix the issue.
upvoted 1 times
AVP_Riga
4 years, 2 months ago
It can be done by Windows Defender Firewall with Advanced Security from Control Panel / Local Group policy / GPO, no matter.
upvoted 2 times
...
...
...
Anthony_2770
4 years, 7 months ago
You need to run ipconfig /all on Client1 to isolate the address range to enter into the firewall rule.
upvoted 1 times
forummj
4 years, 7 months ago
It's a web service, so it is unlikely to need anything to be isolated as you won't know the IPs traffic is coming from most of the time. Plus, if you create a Port rule for inbound 80 HTTP traffic there isn't a need or request to enter an IP address (unless you choose to add a Custom rule)
upvoted 10 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel