nerdexam
Microsoft

70-649 · Question #40

70-649 Question #40: Real Exam Question with Answer & Explanation

The correct answer is B. Create an SSTP VPN connection.. Secure Socket Tunneling Protocol (SSTP) is a tunneling protocol that uses the HTTPS protocol over TCP port 443 to pass traffic through firewalls and Web proxies that might block PPTP and L2TP/IPsec traffic. SSTP provides a mechanism to encapsulate PPP traffic over the Secure Sock

Question

You deploy a Windows Server 2008 R2 VPN server behind a firewall. Remote users connect to the VPN by using portable computers that run Windows 7. The firewall is configured to allow only secured Web communications. You need to enable remote users to connect as securely as possible. You must achieve this goal without opening any additional ports on the firewall. What should you do?

Options

  • ACreate an IPsec tunnel.
  • BCreate an SSTP VPN connection.
  • CCreate a PPTP VPN connection.
  • DCreate an L2TP VPN connection.

Explanation

Secure Socket Tunneling Protocol (SSTP) is a tunneling protocol that uses the HTTPS protocol over TCP port 443 to pass traffic through firewalls and Web proxies that might block PPTP and L2TP/IPsec traffic. SSTP provides a mechanism to encapsulate PPP traffic over the Secure Sockets Layer (SSL) channel of the HTTPS protocol. The use of PPP allows support for strong authentication methods, such as EAP-TLS. SSL provides transport-level security with enhanced key negotiation, encryption, and integrity checking. Although it is closely related to SSL, a direct comparison can not be made between SSL and SSTP as SSTP is only a tunneling protocol unlike SSL. Many reasons exist for choosing SSL and not IPSec as the basis for SSTP. IPSec is directed at supporting site- to- site VPN connectivity and thus SSL was a better base for SSTP development, as it supports roaming.

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full 70-649 Practice