|
-
September 21st, 2001, 02:53 PM
#9
you got it.
here are all the questions so take your time and lemme know when you get the answers.
HAVE FUN!!!!!
1 You are the administrator of your company’s network. Your network is configured as shown in the exhibit.
Your company has an Intranet web application named Appz that utilizes resources on Internet Information Services (IIS)
For performance reasons, your company mirrors the content of Appz on three web servers: IIS1, IIS2, and IIS3. You want to configure your network to allow access to the other web servers in the event of failures. You want to configure DNS by using the fewest possible resources.
What should you do?
A. Configure one DNS Server so that is has one DNS zone. Enable Round Robin. Create an A (host) record for Appz for each web server’s IP address
B. Configure one DNS Server so that is has one DNS zone. Disable Round Robin. Create an A (host) record for Appz for each web server’s IP address
C. Configure three DNS servers so that each one has one DNS zone. Enable Round Robin. Add an A (host) record for Appz for each web server on each DNS Server.
D. Configure three DNS Servers so that each one has one DNS zone. Disable Round Robin. Add an A (host) record for Appz for each web server on each DNS Server.
Exhibit:
2 You are the administrator of a windows 2000 network. The network consists of 30 Windows 2000 Professional computers and two Windows 2000 Server computers named Athens and Boston. Athens has a permanent cable modem connection to the Internet.
All Wndows 2000 Professional computers on the network are configured to use automatic private IP addressing (APIPA). The network does not contain a DHCP Server.
To allow all Windows 2000 Professional computers on the network to access the Internet through the cable modem connection of Athens, you install and configure the Network Address Translation (NAT) routing protocol on Athens.
You decide to use IP addresses in the range of 192.168.40.1 through 192.168.40.50 for the network. Athens is configured to use an IP address of 192.168.40.1.
Boston is a web server configured with an IP address of 192.168.40.2 and a Default
Gateway of 192.168.40.1.
Your Internet Service Provider (ISP) has allocated two IP addresses, 207.46.179.16 and 207.46.179.17 to your network.
The network is shown in the exhibit.
You want to allow Internet users from outside your internal network to use an IP address of 207.46.179.17 to access the resources on Boston through the NAT service on Athens.
How should you configure the network to accomplish this goal?
A. Configure Athens with a static route on the private interface of the NAT routing protocol. Use a destination address of 207.46.179.17, a network mask of 255.255.255.255, and a gateway of 207.46.179.17
B. Configure Boston with a static route on the LAN interface. Use a destination address of 192.168.40.1, a network mask of 255.255.255.255, and a gateway of 207.46.179.17
C. Configure the LAN interface of Boston to use multiple IP addresses. Assign the additional IP address of 207.46.179.17 to the interface.
D. Configure the public interface of the NAT routing protocol to use an address pool with a starting address of 207.46.179.16 and a mask of 255.255.255.254. Reserve a public address of 207.46.179.17 for a private IP address of 192.168.40.2
Exhibit:
3 You are the administrator of one standard primary DNS Server and two standard secondary DNS Servers in a Windows 2000 domain. There are no other DNS Servers on the network. The domain includes Windows 2000 Professional computers and Windows 98 computers.
The DNS zone for the Windows 2000 domain is configured to allow dynamic updates. All three servers are located on domain controllers. You want client computers to be able to register with any DNS Server.
What should you do?
A. Change the zone type of the DNS zone for the windows 2000 domain on all three DNS servers to active directory integrated
B. Change the settings on the standard primary DNS Server to notify the two standard secondary DNS Servers when the zone is updated
C. Change the settings on the standard primary DNS Server to allow zone transfers to only the two standard secondary DNS Servers
D. Change they dynamic update option on the standard primary DNS Server to
allow only secure updates
4 You are the administrator of a windows 2000 network. Your company wants its customers to be able to connect to its web server to make credit card transactions.
You want to ensure that these transactions are secured through encryption. You want to assure customers of the identity of your web server when they make online transactions. You also want to assure customers that you can support certificate-based logons for employees of your company who need access to private areas of your web server.
What should you do?
A. Install an Enterprise Certificate Authority (CA)
B. Install a subordinate Enterprise Certificate Authority (CA) that uses a commercial CA as the parent.
C. Install a stand alone Certificate Authority (CA).
D. Install a subordinate stand-alone Certificate Authority (CA) that uses a commercial CA as the parent
5 You are the network administrator for your company. Your network has three subnets connected by a router. The router is configured as follows:
Interface 0 - subnet 0 - IP address 172.30.4.1 subnet mask 255.255.255.0
Interface 1 - subnet 1 - IP address 172.30.5.1 subnet mask 255.255.255.0
Interface 2 - subnet 2 - IP address 172.30.6.2 subnet mask 255.255.255.0
Only subnet 1 and subnet 2 contain client computers. Subnets 1 and 2 each contain a Windows 2000 DHCP Server, which is responsible for assigning addresses to client computers on the local subnet. The scopes are configured as show in subnet 1 scope properties and subnet 2 scope properties in the exhibit.
Subnet 0 contains a web server and provides connectivity to the Internet.
Users are experiencing connectivity problems. Computers on subnet 1 can communicate with any host on their own subnet, but cannot communicate with hosts on subnet 0 or subnet 2. Computers on subnet 2 cannot communicate with hosts on subnet 1, but they are not experiencing any problems with connectivity to subnet 0.
What should you do to correct this problem?
A. Modify the routing tables on the router to enable routing from subnet 1 to subnet 0 and subnet 2
B. Modify the routing tables on each host on subnet 1 to enable direct connectivity to hosts on subnet 0 and subnet 2
C. Delete and re-create the scope on the DHCP Server on subnet 1 to reflect the correct subnet mask
D. Delete and re-create the scope on the DHCP Server on subnet 2 to reflect the correct subnet mask
E. Delete and re-create the scopes on both DHCP Servers to reflect the same configuration information for each subnet
Exhibit:
Subnet 1 Scope Subnet 2 Scope
Start IP 172.30.5.100 172.30.6.100
End IP 172.30.5.254 172.30.6.254
Subnet 255.255.0.0 255.255.255.0
6 You are the administrator of your company’s network. The network consists of 10 Windows 2000 Server computers, 2000 Windows 2000 Professional computers, 250 Windows 98 computers, and 25 UNIX workstation computers running SMB Server software. The network runs only TCP/IP as its transport protocol. You implement WINS in the network for NETBios name resolution.
Users of the Windows-based client computers report that they cannot access resources based on the UNIX computers by NETBios name. There is no problem accessing windows-based resources by NETBios name.
What should you do to resolve this problem?
A. Install a WINS Proxy Agent on one of the UNIX computers
B. Install a WINS Proxy Agent on one of the Windows-based computers.
C. On the WINS Server, create static mappings for the UNIX computers.
D. On the WINS Server, create static mappings for the Windows-based computers.
7 You are the administrator of your company’s network. Your network is configured to use DHCP to automate the TCP/IP configuration of client computers on your network. The network consists of three subnets connected by a bootp-enable router. All client computers are running Windows 2000 Professional. You have configured a DHCP Server with a scope for each subnet, as shown in the exhibit.
Users on subnet 2 and subnet 3 report that they periodically cannot access network resources. You discover that at times of high network usage, client computers on the remove subnets are being configured with addresses in the network address range of 169.254.0.0, which is not a valid address range on your network.
You want to ensure that all client computers receive address from DHCP and do not get configured with invalid addresses. What should you do?
A. Install a DHCP Server on each remote subnet and configure a subnet-specific scope on each DHCP Server.
B. Install a DHCP Server on each remote subnet and configure identical scopes on each DHCP Server
C. Install a DHCP relay agent on each remote subnet
D. Create an administrative template entry in group policy to enable automatic private IP addressing (APIPA) in the registry of each client computer.
Exhibit:
8 You are the administrator of your company’s network. Your company has branch offices in New York and Paris. Because each branch office will support its own Routing and Remote Access Server, you implement a remote authentication dial-in user service (RADIUS) Server to centralize administration.
You remove the default remote access policy. You need to implement one company policy that requires all dial-up communications to use 40-bit encryption. You want to configure your network to require secure communications by using the least amount of administrative effort.
What should you do? (Choose two)
A. Create one remote access policy on each Routing and Remote Access Server
B. Create a remote access policy on the radius server
C. Set encryption to basic in the remote access policy or policies.
D. Set encryption to strong in the remote access policy or policies
E. Enable the secure server IPSEC policy on the RADIUS Server
F. Enable the server IPSEC policy on the RADIUS Server.
9 You are the administrator of your company’s network. Your Windows 2000 Server computer named Srv2 cannot communicate with your UNIX server named Srv1. Srv2 can communicate with other computers on your network. You try to ping Srv1, but you receive the following error message: “unknown host Srv1”.
You create an A (host) record that has the correct name and IP address. However, when you try to ping Srv1 again, you receive the same error message.
What should you do to resolve this problem?
A. Restart the DNS Server
B. Clear the DNS Server cache
C. Run the IPConfig /registerdns command on Srv2
D. Run the IPConfig /flushdns command on Srv2
10 You are the administrator of a windows 2000 network. Some of the members of your company’s Graphics department use Macintosh computers and are not using Internet explorer as their browser. These users inform you that they cannot request valid user certificates from your Enterprise Certificate Authority (CA). You want to make it possible for these uses to request certificates by using web-based enrollment.
What should you do?
A. In the Internet Information Services (IIS) console, access the properties for the certsrv virtual directory. On the directory security tab, set the authentication type to basic authentication
B. In the policy settings container in the CA console for your CA, add a new enrollment agent certificate.
C. Edit the ACL on the user certificate template to grant the Graphics department users enroll access.
D. In the Internet Information Services (IIS) console, access the properties for the Certsrv virtual directory. On the directory security tab, set the authentication type to integrated windows authentication
11 You are the administrator of your company’s network. Your network consists of 15 Windows 2000 server computers, 100 windows 2000 Professional computers, and one NetWare server. Your users need to access the SYS: volume on the NetWare Server. You want your company’s administrators to have complete access to the SYS: volume. You want all other uses to have read-only access.
You configure Gateway Service for NetWare on a Windows 2000 server computer. You want to configure the appropriate access to the NetWare Server.
What should you do? (Choose two)
A. To the NTGateway group on the NetWare Server, add the user accounts that need access to the NetWare Server
B. To the NTGateway group on the Windows 2000 server computer, add the user accounts that need access to the NetWare Server
C. To the NTGateway group on the NetWare Server, add the NTGateway user account
D. To the NTGateway group on the Windows 2000 Server computer, add the NTGateway user account
E. On the Windows 2000 Server computer, grant full control permission to Administrators and read permission to Users.
12 You are the administrator of your company’s network. The network consists of 10 Windows 2000 Server computers, 2000 Windows 2000 Professional computers, and 20 UNIX Servers. You are using Windows 2000 as your DNS Server. Your DNS zone is configured as an Active Directory integrated zone. Your DNS zone is also configured to allow dynamic updates.
Users report that although they can access the Windows 2000 computers by host name, they cannot access the UNIX Servers by host name. What should you do to correct this problem?
A. Manually enter A (host) records for the UNIX Servers to the zone database
B. Manually add the UNIX Servers to the Windows 2000 domain
C. On the DNS Server, manually create a hosts file that contains the records for the UNIX Servers
D. Configure a UNIX computer to be a DNS Server in a secondary zone
13 You are the enterprise administrator of a Windows 2000 domain. The domain has 3 Windows 2000 Server computers named Athens, Barcelona, and Cairo, and 90 Windows 2000 Professional computers.
Your network consists of three segments connected by a router. Each segment contains one on the servers. The 90 Windows 2000 Professional computers are evenly distributed over the 3 segments
Athens is a DHCP Server. The TCP/IP configuration of all the Windows 2000 Professional computers on the three segments is provided by the Athens DHCP Server. The DHCP Server has three scopes, one for each segment. The lease time for all three is eight days.
For performance reasons, you want to move the DHCP Server service from Athens to Barcelona.
You take the following actions.
On Athens, stop and disable the DHCP Server service
On Barcelona, install, authorize and stop the DHCP Server service
Copy the entire systemroot/system32/dhcp folder from Athens to Barcelona
You want to configure Barcelona to use the scope information and the leased
Addresses currently in use by the Windows 2000 Professional computers
What should you do next on Barcelona? (Choose two)
A. Enable the DHCP relay agent. Use a boot threshold of 0 seconds
B. Use the jetpack utility to manually repair the DHCP database
C. Use the regedit32.exe registry editor to restore the DHCP registry configuration from the systemroot\system32\dhcp\backup location
D. Copy the systemroot\system32\dhcp\j50.chk file to dhcp.mdb file
E. Start the DHCP Server and reconcile all scopes
F. Start the DHCP Server and create a new superscope that contains the three
original scope ranges
14 You are the administrator of your company’s network. To automate the configuration of TCP/IP client computers and network printers on your network, you install and configure the DHCP Server service on a Windows 2000 Server computer. You also create a scope that contains the range of valid IP addresses for your network.
You ensure that the TCP/IP network printers will always receive the same address, you create an exclusion range for the addresses in use by the printers. You also create address reservations for each printer.
You discover that none of the printers are receiving addresses from the DHCP Server. The client computers report no configuration problems.
What should you do to correct this problem?
A. Remove the address reservations for the printers
B. Remove the exclusion range for the addresses that are in use by the printers
C. Disable the address conflict detection feature of the DHCP Server service
D. Enable the address conflict detection feature of the DHCP Server service
15 You are the administrator of a Windows 2000 network. You want to create a DHCP scope for the 192.168.1.32/28 subnet. The computers on this subnet are running Windows 95. Windows 98 and Windows 2000. You also have two UNIX computers on this subnet that will have static IP addresses. These UNIX computers will be assigned the two highest available IP addresses on the subnet. The subnet’s default gateway will be assigned the lowest available IP address on the subnet. The scope should only include the available addresses.
Which scope should you create on your DHCP Server for this subnet?
A. 192.168.1.34 - 192.168.1.46
B. 192.168.1.34 - 192.168.1.44
C. 192.168.1.33 - 192.168.1.45
D. 192.168.1.34 - 192.168.1.61
E. 192.168.1.33 - 192.168.1.60
16. You are the administrator of your company’s network. The network consists of four IP subnets connected by a router. The network contains 12 Windows 2000 Server computers and 100 Windows 2000 Professional computers, evenly distributed across the four subnets. All of the servers are used to serve file and print resources to the client computers.
You install the WINS Server service on a server on one subnet. You configure the wins option in a DHCP scope to configure all of the other computers on the network to register with and query the WINS Server for NETBios name resolution.
Within four hours of the installation and configuration, users on the remote subnets report that they cannot access resources located on the wins server by NETBios name. Other TCP/IP connectivity is not affected. Users located on the same subnet as the WINS Server are experiencing no problems accessing these same resources.
What should you do to resolve this problem?
A. Install a WINS Proxy Agent on each remote subnet
B. Install a WINS Proxy Agent on the same subnet as the WINS Server
C. Configure the WINS Server to include the IP addresses of each gateway on the
router
D. Configure the WINS Server to include its own IP address as a WINS client
computer
17 You are the administrator of your company’s network. The network consists of 10 Windows 2000 Server computers, 200 Windows 2000 Professional computers, 250 Windows 98 computers, and 25 UNIX workstation computers running SMB Server software. The network runs only TCP/IP as its transport protocol. You implement WINS in the network for NETBios name resolution.
Users of the windows-based client computers report that they cannot access resources based on the UNIX computers by NETBios name. There is not problem accessing Windows-based resources by NETBios name
What should you do to resolve this problem?
A. Install a WINS Proxy Agent on one of the UNIX computers
B. Install a WINS Proxy Agent on one of the Windows-based computers
C. On the WINS Server, create static mappings for the UNIX computers
D. On the WINS Server, create static mappings for the Windows-based computers
18 You are the administrator of your company’s network. Your network is configured as shown in the exhibit.
You are configuring your Windows 2000 Srver computer that runs InternetInformation Services (IIS) your server uses the IP address of 131.107.2.2 to support Internet users. Your servers uses the IP address of 10.1.1.2 to support an Intranet application.
You want to configure your server to permit only web communications from the Internet. You also want to configure your server to allow access to shared folders and other resources for users on the intranet?
What should you do?
A. Enable a TCP/IP filter
Permit only port 80 on the network adapter that uses the IP address of 131.107.2.2
B. Enable a TCP/IP filter
Permit only port 21 and port 20 on the network adapter that uses the IP address of 131.107.2.2
C. Permit all ports on the network adapter that uses the IP address of 131.107.2.2
D. Enable a TCP/IP filter
Permit only port 80 on the network adapter that uses the IP address of 10.1.1.2
E. Enable a TCP/IP filter
Permit only port 21 and port 20 on the network adapter that uses the IP address of 10.1.1.2
Exhibit:
19 You are the administrator of your company’s network. Your company has a main office, two large branch offices, and two small branch offices. The company’s network consists of one Windows 2000 domain. The main office and the two large branch offices are connected by dedicated t1 lines, as shown in the exhibit
The two small branch offices use 128-kbps ISDN lines and Routing and Remote Access over the Internet to connect to the company’s internal network
You are designing your DNS name resolution environment. You want to accomplish the following goals.
You take the following actions:
Install the DNS Server service on one server at each office
Create a standard primary zone at the main office
Create a standard secondary zone at the four other offices
Configure client computers to query their local DNS Server
Which result or results to these actions produce? (Choose all that apply)
A. DNS name resolution traffic across the wan links is minimized
B. DNS replication traffic across the wan links is minimized
C. DNS replication traffic across the public wan links is secured
D. Name resolution performance for client computers is optimized
Exhibit:
20 You are the administrator of a Windows 2000 network. The network contains a Windows 2000 Server computer named RouterA, Routing and Remote Access is enabled as a router on RouterA. RouterA has a LAN interface named Net1. The Net1 interface uses an IP address of 192.168.1.2
You want to specify which type of network traffic will be allowed into the router through the net interface. The only traffic that should be allowed into the Net1 interface is HTTP traffic. HTTP uses TCP port 80 or TCP port 443. The other interfaces of the router have no restrictions on the type of network traffic allowed.
You configure two input packet filters on the Nnet1 interface as shown in the following dialog box: “ receive all packets is marked”
When you monitor RouterA, you notice that other network traffic is still allowed into the router through the Net1 interface
What should you do?
A. Configure the network connection to use the TCP/IP filtering. Permit only TCP
port 80 and TCP port 443
B. Configure the input packet filters to drop all packets except packets allowed by
the filters
C. Configure two output packet filters to filter on both TCP port 80 and TCP port 443
D. Configure the net1 interface to drop all UDP packets
21 You are the administrator of your company’s network. The network is configured as shown in the exhibit.
All client computers on your network receive their IP address information from the DHCP Server. The user of Prof4 accesses most of his network resources from computers on segment A. The users on Prof5 and Prof6 access most of their resources from computers on segment C.
You want to configure your DHCP Server to issue gateway addresses to Prof4, Prof5 and Prof6. You want these gateway addresses to offer optimum access time.
How should you configure your DHCP Server? (Choose two)
A. Create a reservation for Prof4. For this reservation, configure the router option that has the value of 172.16.64.2
B. Create a reservation for Prof5 and a reservation for Prof6. For each reservation, configure the router option that has the value of 172.16.64.2
C. Configure the DHCP Server’s predefined router option so that it has the value of 172.16.64.2
D. Configure the DHCP Servers predefined router option so that it has the value of 172.16.64.1
E. On the DHCP Server’s scope for segment B, configure the router options so that it has the value of 172.16.64.2
E. On the DHCP Server’s scope for segment B, configure the router options so that it has the value of 172.16.64.1
Exhibit:
22 You are the administrator of a Windows 2000 network. The network consists of 85 Windows 2000 Professional computers and two Windows 2000 Server clients named Amsterdam and Utrecht. Amsterdam has a permanent cable modem connection to the Internet
All Windows 2000 Professional computers on the network are configured to use automatic private IP addressing (APIPA). The network does not contain a DHCP Server.
To allow all Windows 2000 Professional computers on the network to access the Internet through the cable modem connection of Amsterdam, you install and configure the network address translation (NAT) routing protocol on Amsterdam
You decide to use IP addresses in the range of 172.20.20.1 thru 172.20.20.150 for the network. Amsterdam is configured to use an IP address of 172.20.20.1
Utrecht is a web server configured with an IP address of 172.20.20.2 and a Default Gateway of 172.20.20.1
You want to allow Internet users from outside your internal network to access the resources on Utrecht through the NAT on Amsterdam.
How should you configure the network to accomplish this goal?
A. Configure the NAT routing protocol to enable the use of a network application.
Specify web server as the name of the application.
Use the web port number as the remote server port number.
B. Configure the public interface of the NAT routing protocol to use an address pool
with an address of 172.20.20.2
C. Configure the public interface NAT routing protocol to use a special port that
maps to the web server port and an address of 172.20.20.2
D. Configure Amsterdam so that it has a static route on the private interface.
Use a destination address of 172.20.20.2, a network mask of 255.255.255.255, and a gateway of 172.20.20.1
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|
Reply With Quote
Bookmarks