nerdexam
Exams220-801Questions#991
CompTIA

220-801 · Question #991

220-801 Question #991: Real Exam Question with Answer & Explanation

The correct answer is A: In the DMZ. A DMZ (Demilitarized Zone) is a network segment that sits between the public Internet and the private internal network, typically enforced by firewall rules. Servers placed in the DMZ are reachable from the Internet (e.g., web, email servers) but are isolated from the internal LA

Question

A technician is tasked with setting up a web server for a small business. Where would the technician place the server so that it is accessible from the Internet while keeping the customer's network separated from it?

Options

  • AIn the DMZ
  • BBehind NAT
  • COutside the DHCP scope
  • DInside the DHCP scope

Explanation

A DMZ (Demilitarized Zone) is a network segment that sits between the public Internet and the private internal network, typically enforced by firewall rules. Servers placed in the DMZ are reachable from the Internet (e.g., web, email servers) but are isolated from the internal LAN. If an attacker compromises a DMZ server, they cannot directly reach internal resources. NAT hides internal IPs but does not provide isolation for public-facing servers. DHCP scope settings manage IP addressing, not network segmentation.

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full 220-801 Practice