You want to allow external users access to a specific Web server but block access to resources on your intranet. What do you need to configure?

To allow external users access to a specific web server while blocking access to resources on your intranet, setting up a perimeter network is the most effective approach. A perimeter network, also known as a DMZ (Demilitarized Zone), is a subnetwork that separates an organization's internal local area network (LAN) from untrusted external networks, such as the internet.

By placing the web server in the perimeter network, you can configure it to be accessible from the internet while preventing external users from reaching the more sensitive resources on your intranet. This setup creates a barrier that enhances security, as it limits access and exposure of internal resources to potential threats that exist outside the network.

In contrast, while a firewall is essential for controlling and monitoring traffic into and out of your network, it alone may not provide the appropriate encapsulation of web services and intranet resources. Setting up a perimeter network allows for more granular control over which systems are exposed externally and which are kept secure within the internal network.

The intranet itself refers to your internal network and does not inherently dictate any access controls for external users. A virtual private network (VPN) serves to create secure point-to-point connections for users connecting to the internal network, but it does not serve