Refer to the exhibit. Only authorized remote users are allowed remote access to the company server 192.168.30.10. What is the best ACL type and placement to use in this situation?

In the scenario where only authorized remote users are allowed to access the company server at 192.168.30.10, the best ACL type and placement would be:

Extended ACL inbound on R2 WAN interface connected to the internet.

Here’s why this is the best choice:

1. Extended ACLs are capable of filtering traffic based on both source and destination IP addresses, as well as protocols and ports, which allows for precise control over which remote users are allowed to access the server.
2. Placing this ACL on the R2 WAN interface that connects to the internet is strategic because it can filter the traffic from remote users as it enters the network. This placement ensures that only authorized users are allowed access before the traffic traverses the internal network, thus providing efficient and effective access control.
3. The ACL should be applied inbound to filter the traffic as it comes into the network from the internet destined for the server, rather than outbound where it would be filtering traffic leaving the network.

By placing the extended ACL inbound on the R2 WAN interface, you are ensuring that only specified traffic from authorized remote users can reach the server, and all other unauthorized attempts are blocked at the network’s edge.