Scenario 22

Exam Scenarios Set 1
Getting Started
Pearson IT Certification
Scenarios
- Scenario 1
- Scenario 2
- Scenario 3
- Scenario 4
- Scenario 5
- Scenario 6
- Scenario 7
- Scenario 8
- Scenario 9
- Scenario 10
- Scenario 11
- Scenario 12
- Scenario 13
- Scenario 14
- Scenario 15
- Scenario 16
- Scenario 17
- Scenario 18
- Scenario 19
- Scenario 20
- Scenario 21
- Scenario 22
- Scenario 23
- Scenario 24
- Scenario 25
- Scenario 26

Scenario 22

Scenario:

You are responsible for securing a vSphere environment. You are required to enable SSH on all ESXi hosts, but you want to secure it. You want to ensure that SSH access is permitted only from a specific set of IP addresses.

Requirements:

Modify the ESXi host such that it permits SSH connections only from a specific set of IP addresses.

Environment Information:

ESXi host: host-02.lab.local
IP addresses that are permitted for SSH: 192.168.1.21, 192.168.1.31

Objective: : 7.2 Configure and Maintain the ESXi Firewall

Guide Reference(s):

Chapter 8 – Firewall – Configure the ESXi Firewall Properties Using the vSphere Client

Click Here For Solution

Solution

Use the vSphere Client to navigate to Inventory > Hosts and Clusters.
Select the ESXi host.
Select the Configuration tab > Security Profile.
In the Firewall section, click Properties.
Select the SSH service and click the Firewall button.
Check the Only allow connections from the following networks box.
In the text box, enter 192.168.1.21, 192.168.1.31.
Click OK.