A technician is setting up a new firewall on a network segment to allow web traffic to the internet while hardening the network. After the firewall is configured, users receive errors stating the website could not be located. Which of the following would best correct the issue?
To correct the issue where users receive errors stating the website could not be located, one must ensure that DNS traffic is not being blocked. The DNS (Domain Name System) resolves domain names into IP addresses, which is essential for web browsing. If port 53, which is used for DNS queries, is blocked by the firewall, users will be unable to resolve domain names and consequently be unable to locate websites. Therefore, ensuring that port 53 has been explicitly allowed in the rule set would best correct the issue.
Port 53 is used for DNS (Domain Name System) traffic, which is essential for translating human-readable domain names into IP addresses that computers can understand. When users receive errors stating the website could not be located, it indicates a DNS resolution problem. This issue is likely caused by the firewall blocking DNS traffic (port 53) between the internal network and the internet. To correct the issue, the technician should ensure that port 53 (DNS) has been explicitly allowed in the firewall rule set to permit DNS traffic to pass through the firewall and enable proper name resolution for web browsing.
Going with D on this one a without DNS users would have to put in the IP addresses of the websites instead.
I picked A because, from that answer, it looks like 443 was denied, inadvertently, so doing for port 80 instead made sense. D also makes sense, though, I can't imagine any system that implicitly denies port 53 (it's typically open by default since ALL network traffic requires it, inside and out)
D. Ensuring that port 53 has been explicitly allowed in the rule set port53 port for DNS
I think I'll go with D
Configuring the first line in the rule set to allow all traffic This means that the first rule in the firewall's rule set should permit all traffic, including web traffic. Make sure that subsequent rules are appropriately configured to restrict or allow specific types of traffic as needed. Port 53 is explicitly open by default, moreso the question was not directed at name resolution issues.
The question does not mention HTTP or HTTPS. Therefore, we cannot choose A. I choose D. Ensuring that port 53 has been explicitly allowed in the rule set
dude, the question did not mention DNS either. However, websites are either on port 80 (HTTP) or port 443 (HTTPS). The question does however mentions several users looking for this website.