A cloud administrator is configuring a bastion host. The bastion host will be used to administer systems in the cloud remotely from the administrator's on-premises desktop. The administrator is given the following requirements: Ensure port 22 is open on the host and only allow the public IP of the on-premises router/firewall. Ensure port 3389 is open on the host and only allow the public IP of the on-premises router/firewall. Harden these services with PKI (where applicable) . Given this scenario, which of the following should the administrator utilize to BEST address these requirements? (Choose three.)
A) RDP protocol from the desktop to the bastion host
B) Telnet protocol from the desktop to the bastion host
C) SSH protocol from the desktop to the bastion host
D) MD5 and RC4 with a signed certificate
E) RSA and AES with a signed certificate
F) Blowfish and SHA-1 with a signed certificate
G) VNC protocol from the desktop to the bastion host
Correct Answer:
Verified
Q245: An entertainment company with a very large
Q246: A customer is building a web cluster
Q247: Cloud developers are experiencing a delay caused
Q248: A company is in the process of
Q249: After scheduled network maintenance, users report that
Q251: A cloud service company is proposing a
Q252: A company has been migrating a significant
Q253: A company wants to set up a
Q254: A new SaaS timecard application that is
Q255: A security analyst is reviewing logs and
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents