exam questions

Exam CV0-003 All Questions

View all questions & answers for the CV0-003 exam

Exam CV0-003 topic 1 question 12 discussion

Actual exam question from CompTIA's CV0-003
Question #: 12
Topic #: 1
[All CV0-003 Questions]

A systems administrator is trying to establish an RDP session from a desktop to a server in the cloud. However, the connection appears to be refused even through the VM is responding to ICMP echo requests. Which of the following should the administrator check FIRST?

  • A. The firewall
  • B. The subnet
  • C. The gateway
  • D. The services
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
BigM
1 week, 5 days ago
Selected Answer: A
RDP (Remote Desktop Protocol) operates over TCP port 3389. Even if the VM is responding to ICMP echo requests (ping), it could still be blocking other types of traffic, such as RDP, due to firewall settings. Firewalls, both on the cloud instance (VM's internal firewall) and on any external security groups or network firewalls, can prevent RDP traffic. The first step would be to verify that port 3389 is open in the relevant firewalls (cloud firewall, VM firewall, etc.) to allow RDP access.
upvoted 1 times
...
ramrod1738
5 months, 3 weeks ago
The first thing the systems administrator should check when trying to establish an RDP session from a desktop to a server in the cloud and encountering a connection error is the network firewall configuration. Firewall rules can block incoming RDP traffic, even if the server is responding to ICMP echo requests. The administrator should verify that the firewall is configured to allow incoming RDP traffic on the appropriate port (typically TCP port 3389). They should also check if the firewall is blocking incoming RDP traffic for the specific IP address or network range that the desktop is using. If the firewall configuration is correct and the connection is still refused, the administrator should also check the network security groups or network access control lists in the cloud environment to ensure that they are configured to allow incoming RDP traffic. Finally, the administrator should verify that the server has Remote Desktop Services enabled and that a remote desktop connection is allowed for the specific user account.
upvoted 1 times
...
Zak11
5 months, 3 weeks ago
Selected Answer: A
the first thing the administrator should check is the firewall. Firewalls are designed to prevent unauthorized access to a network or system by blocking or allowing specific types of traffic. If the firewall is not configured to allow RDP traffic, then the connection will be refused. The administrator should verify that the firewall rules are correctly configured to allow RDP traffic to pass through. While the subnet, gateway, and services can also impact the ability to establish an RDP connection, they are less likely to be the cause of the problem in this scenario.
upvoted 3 times
...
weaponxcel
5 months, 3 weeks ago
Selected Answer: A
A should be correct When trying to establish a Remote Desktop Protocol (RDP) session and the connection is refused, one of the most common reasons is that the firewall is blocking the RDP port (typically port 3389). Firewalls are designed to control incoming and outgoing network traffic based on an organization's security policy. If the RDP port is not explicitly allowed, the connection will be refused. D. The services (Wrong) While it's essential to ensure that the RDP service is running on the server, the initial connection refusal is more likely due to a firewall rule blocking the RDP port rather than the service not running.
upvoted 2 times
kuzummjakk
1 year ago
"Services" here is in the context of cloud services so for aws, "the ec2 service"
upvoted 1 times
...
...
E_Byte
8 months ago
A firewall can refuse or blackhole the connection attempt. Blackholing is more secure, keeps the threat actor guessing. If a service is not bound to the port (TCP/3389) then the OS will usually refuse connections, A and D are both likely problems because firewalls are usually set to block all traffic except what is allowed. Obviously ICMP is allowed, is RDP, and from the tech's IP. Best practice is to limit where you can RDP from. Bad Question... but I would likely go with A and probably get it wrong.
upvoted 1 times
...
TheFivePips
10 months, 1 week ago
Selected Answer: A
While ICMP echo requests (ping) being successful suggests that network connectivity is established and that the VM is reachable over the network, it does not necessarily mean that all types of traffic are allowed through the firewall. Firewalls can be configured to allow or block specific types of traffic based on predefined rules. For example, ICMP echo requests (ping) may be allowed through the firewall while other types of traffic, such as RDP (Remote Desktop Protocol), may be blocked. In this scenario, even though ICMP echo requests are successful, the RDP connection is being refused, indicating that the firewall may be blocking RDP traffic.
upvoted 1 times
...
kuzummjakk
1 year ago
Services here is in the context of "cloud services" like aws's EC2 or VPC services. In the cloud, you don't mess with firewall rules, you interact with the providers services. Now, say one of those services is a firewall, it would be more cloud agnostic to say "the services" since a "firewall service" isn't quite a staple in cloud networks. They could all present networking configurations like block/allow in a different manner.
upvoted 1 times
kuzummjakk
1 year ago
Although, "first" gives my explanation a hole. It insinuates that yes, a firewall is something you'd address directly in the cloud. This is probably lower on the list since it very well could vary what equates to a "firewall" cloud-to-cloud.
upvoted 1 times
...
...
Chiaretta
1 year, 1 month ago
Selected Answer: D
The given answer is correct. All others state networking problems.
upvoted 1 times
...
Chiaretta
1 year, 2 months ago
Selected Answer: D
Given that the server and desktop are inside the cloud and server is responding to ICMP echo requests but the RDP connection is being refused, the administrator should first check the SERVICE, all other question mention network problem.
upvoted 1 times
FrancisDrake
1 year, 1 month ago
You can ping a machine even if the firewall is blocking the port or service.
upvoted 4 times
...
...
veliyath
1 year, 3 months ago
Given that the server in the cloud is responding to ICMP echo requests but the RDP connection is being refused, the administrator should first check A. The firewall. The firewall settings might be configured to allow ICMP (ping) requests but could be blocking RDP (Remote Desktop Protocol) traffic. Checking the firewall rules and ensuring that the appropriate ports for RDP (TCP port 3389 by default) are open and allowed through the firewall would be the logical first step in troubleshooting the connectivity issue for establishing an RDP session.
upvoted 2 times
...
yyCherubim
1 year, 4 months ago
Selected Answer: D
The question states the two systems are successfully talking to each other via ICMP, so not primarily a firewall problem. If you FIRST verify the services are up and running, then check the firewall rules.
upvoted 1 times
FrancisDrake
1 year, 1 month ago
The connection is being refused. Sounds like a firewall. You can ping a machine even if you are blocked by a firewall.
upvoted 1 times
...
...
mutatoo
1 year, 8 months ago
RDP is layer 7- so therefore services is the answer as ICMP is going through (ICMP is on layer 3-Firewall). therefore that is clearly not it.
upvoted 1 times
...
maelo
1 year, 9 months ago
Selected Answer: A
I clearly would check firewall 1st, as this in handled by the CSP's frontend. It's faster checking, and a probable deny due to security reasons. Checking service availability without RDP established and thus without visual access to the instance, is anyways harder to achieve.
upvoted 3 times
...
betty_boop
1 year, 11 months ago
Selected Answer: A
Firewall
upvoted 2 times
...
concepcionz
1 year, 11 months ago
Selected Answer: A
The connection "refused" message typically indicates that there is an issue with the network or firewall settings.
upvoted 2 times
...
bagsik89
2 years ago
Selected Answer: D
I would check the services on the server FIRST before even considering firewall rules. Don't overthink troubleshooting.
upvoted 1 times
FrancisDrake
1 year, 1 month ago
The key word is "refused". Something is not allowing the connection.
upvoted 1 times
...
...
AustinKelleyNet
2 years, 1 month ago
Selected Answer: A
It seems like a firewall rule is in place blocking the connection.
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
Loading ...
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago