An organization’s architect proposes a single, specialized entry system for administrators seeking to manage internal resources from external networks. Which option best fulfills this requirement for secure inbound administration while reducing exposure of core infrastructure?
Rely on private tunnels to connect directly to each production server
A dedicated hardened gateway server for all remote sessions
Use separate administrative logins for each system in the data center
Place strict IP address restrictions on the perimeter firewall
A dedicated hardened gateway server (bastion host) provides a robust single point of entry for remote administration. It limits direct interaction with sensitive systems and forces connections through a secure, controlled point. Firewall rules or IP blocks alone do not offer a hardened environment for administration. Redirecting connections through private tunnels without a specialized entry point can be more complex to manage and monitor. Using separate administrative credentials is not a complete solution if direct access to core systems remains exposed.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is a hardened gateway server or bastion host?
Open an interactive chat with Bash
Why are private tunnels alone not sufficient for secure administration?
Open an interactive chat with Bash
How does a bastion host improve security over IP restrictions at the firewall?
Open an interactive chat with Bash
CompTIA Cloud+ CV0-004
Security
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
IT & Cybersecurity Package Join Premium for Full Access