70-642 Config IP Addressing And Services

35 Questions | Total Attempts: 88

SettingsSettingsSettings
IP Address Quizzes & Trivia

When you have a dedicated IP address you get less down time, remote access to your PC no wonder where you are and get to have your own private SL certificate. How knowledgeable are you at configuring IP addresses and services? Take up the questions below and find out. Good luck!


Questions and Answers
  • 1. 
    Your organization consists of a single Windows Server 2008 Active Directory domain that is spread across two IP subnets. One DHCP server exists in the domain. You receive a complaint from a user that she is unable to access domain resources. You discover that her computer's IP address is 169.254.11.213. What action should you perform? A. Install a DHCP Relay Agent on the user's local subnet. B. Disable PXE on the user's computer. C. Enable traffic on TCP 1542 as a Windows Firewall exception on the user's computer. D. Install a WDS server on the user's local subnet.
    • A. 

      A. Install a DHCP Relay Agent on the user's local subnet. ------ In Windows Server 2008, the DHCP Relay Agent service is installed as a service of the RRAS server role. The DHCP Relay Agent allows DHCP broadcast messages to cross router interfaces.

    • B. 

      B. Disable PXE on the user's computer. ------ The Preboot Execution Environment (PXE) represents an alternate way for a device to obtain an IP address lease from DHCP. However, PXE does not factor into this scenario.

    • C. 

      C. Enable traffic on TCP 1542 as a Windows Firewall exception on the user's computer. ------ DHCP Relay is defined in Request for Comments (RFC) 1542. Traditional DHCP traffic is not blocked by Windows Firewall due to its mission-critical nature.

    • D. 

      D. Install a WDS server on the user's local subnet. ------ Windows Deployment Service (WDS) is an operating system deployment technology that relies upon DHCP. However, the WDS service itself will not allow DHCP Discover packets to cross router interfaces.

  • 2. 
    Your organization consists of an Active Directory domain in which all servers run Windows Server 2008 and all client computers are laptops that run Windows Vista with Service Pack 1. You need to configure TCP/IP on the laptops such that users are able to seamlessly connect to both the corporate network, which uses static IP addressing, and their own home networks, which use dynamic IP addressing. What action should you perform? A. Configure the users with IPv6 addresses. B. Configure the users' computers with APIPA IP addresses. C. Use the Alternate Configuration feature to configure the laptop computers with static primary IP addresses. D. Use the Alternate Configuration feature to configure the laptop computers with a static secondary address.
    • A. 

      A. Configure the users with IPv6 addresses. ------ We must be careful never to make assumptions on IT certification exams. Because the scenario says nothing about an IPv6 deployment, we can safely determine that we are using the current industry standard, which is IPv4.

    • B. 

      B. Configure the users' computers with APIPA IP addresses. ------ Automatic Private IP Addressing (APIPA) addresses, which exist in the range 169.254.X.Y, are invoked automatically whenever a DHCP client is unable to reach a DHCP server. APIPA addresses won't work for the users when they are at home.

    • C. 

      C. Use the Alternate Configuration feature to configure the laptop computers with static primary IP addresses. ------ The primary connection method for LAN adapters must be set for DHCP to have the ability to use a static configuration as an alternate configuration.

    • D. 

      D. Use the Alternate Configuration feature to configure the laptop computers with a static secondary address. ------ If the primary (DHCP) configuration fails, then the alternate configuration (either APIPA or static addressing) takes over.

  • 3. 
    Your organization uses the IPv4 network address 172.16.30.0/22. All client computers in the domain run Windows Vista. HostA (IP address 172.16.8.111, subnet mask 255.255.252.0) is unable to connect to HostB (IP address 172.16.12.23, subnet mask 255.255.252.0) when using NetBIOS broadcasts. What is the most likely explanation of the problem? A. The network's DHCP server is offline. B. HostA and HostB are using an incorrect subnet mask. C. HostA and HostB reside on different IP subnets. D. HostA and HostB are using different default gateway addresses.
    • A. 

      A. The network's DHCP server is offline. ------ The scenario does not state if these hosts are statically or dynamically assigned their IP addresses. However, if a DHCP server were unavailable then the default behavior would be for each machine to auto-generate APIPA addresses.

    • B. 

      B. HostA and HostB are using an incorrect subnet mask. ------ The decimal subnet mask 255.255.252.0 (22 bits) is correct.

    • C. 

      C. HostA and HostB reside on different IP subnets. ------ HostA belongs to subnet ID 172.16.8.0, and HostB belongs to subnet ID 172.16.12.0.

    • D. 

      D. HostA and HostB are using different default gateway addresses. ------ These two hosts SHOULD be using different default gateway addresses, as their IP network addresses are different. Remember that routers typically discard NetBIOS broadcast traffic, which accounts for why the hosts are unable to communicate by using this method.

  • 4. 
    You have deployed a Group Policy Object (GPO) containing Connection Security Rules to your users. However, you discover that none of the domain workstations are communicating by using IPSec packet encryption when they are connected to the Active Directory domain. What action should you perform? A. Verify that the authentication method in use in the domain is Kerberos V5. B. Ensure that the Connection Security Rule is associated with the Domain Profile. C. Ensure that the Connection Policy contains the Isolation rule. D. Verify that the policy requirement is set to the Require authentication for inbound and outbound connections.
    • A. 

      A. Verify that the authentication method in use in the domain is Kerberos V5. ------ With Connection Security Rules, you can mandate Kerberos, digital certificate, or default authentication options.

    • B. 

      B. Ensure that the Connection Security Rule is associated with the Domain Profile. ------ Remember that Windows Firewall supports three profiles: Domain, Private, and Public. In domain networking we need to configure the Domain profile.

    • C. 

      C. Ensure that the Connection Policy contains the Isolation rule. ------ You have much choice in the rules that govern whether an IPSec policy will proceed or not.

    • D. 

      D. Verify that the policy requirement is set to the Require authentication for inbound and outbound connections. ------ While this is a good and effective policy requirement, it won't amount to a proverbial hill of beans unless the Connection Security Rule is attached to the proper Windows Firewall profile.

  • 5. 
    Your organization's single Active Directory domain consists of a mixed IPv4/IPv6 environment. All servers run Windows Server 2008 and all client workstations run Windows Vista. You need to ping a file server named FS01.BIRCO.LAN that uses an IPv6 address. What actions should you perform? (Select two answers. Each correct answer represents an independent solution.) A. Ping the site-local address of the server. B. Issue the command ping -426 fs01.birdco.com from your administrative workstation. C. Ping the link-local address of the server. D. Issue the command ping -6 fs01.birdco.lan from your administrative workstation.
    • A. 

      A. Ping the site-local address of the server. ------ You can ping the link-local address of the server, but not the site-local address.

    • B. 

      B. Issue the command ping -426 fs01.birdco.com from your administrative workstation. ------ The -426 switch is invalid.

    • C. 

      C. Ping the link-local address of the server. ------ You can ping IPv6 addresses by using the -6 flag or by specifying the link-local address of the target host.

    • D. 

      D. Issue the command ping -6 fs01.birdco.lan from your administrative workstation. ------ The -6 flag of the ping.exe command enables you to lookup the AAAA record for the host in DNS and issue the ping.

  • 6. 
    Your organization consists of a single Active Directory domain in which all servers run Windows Server 2008 and all client computers run Windows Vista. You need to ensure that IPv6 is disabled on six development workstations in the domain. Your solution must involve the least amount of administrative effort. What action should you perform? A. Disable IPv6 by adding the DisabledComponents DWORD value to the Registry of the development workstations. B. Uninstall Windows Meeting Space on the development workstations. C. Disable IPv6 by configuring the Local Area Connection properties of the six development workstations. D. Uninstall IPv6 from the Programs and Features Control Panel item on the development workstations.
    • A. 

      A. Disable IPv6 by adding the DisabledComponents DWORD value to the Registry of the development workstations. ------ Although this option is technically correct, it is more cumbersome and prone to error than is modifying the LAN connection properties on the development workstations.

    • B. 

      B. Uninstall Windows Meeting Space on the development workstations. ------ If you disable IPv6, then programs that use the Windows Peer-to-Peer networking protocols won't work anymore. However, simply uninstalling Meeting Space does not affect the running status of the IPv6 stack itself.

    • C. 

      C. Disable IPv6 by configuring the Local Area Connection properties of the six development workstations. ------ The easiest way to disable IPv6 on a per-interface basis is to deselect the "Internet Protocol version 6" option in the appropriate computers' Local Area Connection properties.

    • D. 

      D. Uninstall IPv6 from the Programs and Features Control Panel item on the development workstations. ------ You cannot uninstall IPv6 in Windows Vista and Windows Server 2008; you can only disable the protocol stack.

  • 7. 
    Your organization consists of a multi-domain Active Directory forest in which all servers run Windows Server 2008 and all client computers run Windows Vista. Hosts in all domains are configured to use both IPv4 and IPv6. You need to ensure that hosts in different domains in the forest can communicate through networks that are separated by NAT firewalls. Your solution must involve the least amount of administrative effort. What action should you perform? A. Enable the Peer Name Resolution Protocol (PNRP) on all organizational firewalls. B. Create at least one IPv6 scope on all DHCP servers. C. Create static NAT translation entries on all organizational firewalls. D. Enable Teredo on all organizational firewalls.
    • A. 

      A. Enable the Peer Name Resolution Protocol (PNRP) on all organizational firewalls. ------ PNRP is an IPv6-based discover technology that underpins Microsoft applications such as Meeting Space. However, without Teredo enabled on all firewalls, the firewalls will not let IPv6 packets traverse NAT.

    • B. 

      B. Create at least one IPv6 scope on all DHCP servers. ------ This answer choice represents a classic "red herring." That is, we don't need to worry about IP addressing. There is nothing in the scenario that would lead us to believe there is a problem with addressing.

    • C. 

      C. Create static NAT translation entries on all organizational firewalls. ------ Although this would solve the problem, it is almost mind-numbingly complex compared to enabling Teredo on all firewalls.

    • D. 

      D. Enable Teredo on all organizational firewalls. ------ Teredo technology allows IPv6 packets to traverse IPv4 Network Address Translation (NAT) firewalls. The Teredo client is enabled by default in Windows Server 2008 and Windows Vista.

  • 8. 
    You have recently had to delete and recreate a scope on your organization's DHCP server. You need to ensure that no duplicate IP addresses are leased to network clients. What action should you perform? A. Reauthorize the DHCP server in Active Directory. B. Reboot the DHCP server. C. Enable conflict detection on the server. D. Enable audit logging on the DHCP server.
    • A. 

      A. Reauthorize the DHCP server in Active Directory. ------ Deleting and recreating scopes is not an action that would unauthorize an already authorized DHCP server in Active Directory.

    • B. 

      B. Reboot the DHCP server. ------ Simply rebooting the server won't ensure that IP address conflicts do not occur.

    • C. 

      C. Enable conflict detection on the server. ------ Conflict detection involves the server sending out one or more ICMP ping messages to clients before leasing addresses to them. The purpose of this is to prevent IP address conflicts from occurring on the network.

    • D. 

      D. Enable audit logging on the DHCP server. ------ While it is a terrific idea to audit DHCP for security and performance reasons, doing so in this case will not solve the stated problem.

  • 9. 
    Your network consists of a single Active Directory domain in which all servers run Windows Server 2008. You are deploying four additional file servers, all of which are configured with static IPv4 addresses. You need to ensure that the IP addresses that are statically assigned to the servers are not distributed to other hosts in the domain. What action should you perform? A. Create a new exclusion range in DHCP. B. Configure the appropriate scope option in DHCP. C. Configure the appropriate server option in DHCP. D. Create reservations for the new servers in DHCP.
    • A. 

      A. Create a new exclusion range in DHCP. ------ An exclusion range removes one or more IP addresses from a DHCP scope, ensuring that DHCP will never offer those addresses to DHCP clients.

    • B. 

      B. Configure the appropriate scope option in DHCP. ------ Scope and/or server options will not help us solve the problem that is outlined in this scenario.

    • C. 

      C. Configure the appropriate server option in DHCP. ------ There exists no scope or server option that would prevent duplicate addresses from being delivered. We need to use either exclusions or client reservations.

    • D. 

      D. Create reservations for the new servers in DHCP. ------ Because the scenario states that the new servers are configured with static IP addresses, client reservations will not work in this situation.

  • 10. 
    Your organization consists of a routed internetwork in which internal routers are multihomed Windows Server 2008 member servers that are configured with the RRAS server role. One Windows Server 2008-based DHCP server exists in the organization. You need to support RFC 1542 on the network to ensure smooth DHCP operations throughout the enterprise. What action should you perform? A. Configure one RRAS server as a WINS Proxy Agent. B. Configure all RRAS servers as DHCP Relay Agents. C. Configure all RRAS servers as WINS Proxy Agents. D. Configure one RRAS server as a DHCP Relay Agent.
    • A. 

      A. Configure one RRAS server as a WINS Proxy Agent. ------ WINS proxy is not the issue here because Request for Comments (RFC 1542) discusses how to route DHCP/BOOTP broadcast messages through router interfaces.

    • B. 

      B. Configure all RRAS servers as DHCP Relay Agents. ------ This methodology ensures that BOOTP/DHCP broadcast traffic is routed to the network's single live DHCP server.

    • C. 

      C. Configure all RRAS servers as WINS Proxy Agents. ------ We need DHCP Relay on this routed internetwork, not WINS Proxy.

    • D. 

      D. Configure one RRAS server as a DHCP Relay Agent. ------ We need to ensure that DHCP messages can be captured and transmitted via IP unicast on all subnets. Therefore, we need DHCP relay on all subnets.

  • 11. 
    Your organization consists of a single Active Directory domain in which all servers run Windows Server 2008 and all client computers run Windows Vista with Service Pack 1. You need to define a policy such that all LAN traffic between users and a high-security file server named FS01 is encrypted at the packet level. What action should you perform? A. Deploy a NAP policy. B. Define a Wired Network (IEEE 802.3) policy. C. Define a Network List Manager policy. D. Define an IPSec policy.
    • A. 

      A. Deploy a NAP policy. ------ Network Access Protection (NAP) represents a method for ensuring system health in a network.

    • B. 

      B. Define a Wired Network (IEEE 802.3) policy. ------ Wired Network policies enable IEEE 802.1X authentication to take place. These policies do not govern packet-level data encryption.

    • C. 

      C. Define a Network List Manager policy. ------ These policies control which networks a domain member computer can associate with.

    • D. 

      D. Define an IPSec policy. ------ IPSec policies are known as Connection Security Rules in Windows Server 2008 and Windows Vista.

  • 12. 
    Your organization has a Windows Server 2008-based DHCP server named IP01. You have recently installed a second network interface card and configured the server bindings such that the server listens for DHCP client requests on both network interfaces. However, you notice that one of the network interfaces is not being used to service DHCP client requests. Your solution must involve the least amount of disruption to network services and operations. What action should you perform? A. Restart the DHCP server. B. Authorize the new network interface in Active Directory. C. Install Windows Deployment Services (WDS) on the DHCP server. D. Restart the DHCP Server service.
    • A. 

      A. Restart the DHCP server. ------ This option (a) would not solve the problem and (b) cause a disruption of service on the network.

    • B. 

      B. Authorize the new network interface in Active Directory. ------ DHCP Server is authorized in Active Directory on a per-interface (IP address) basis.

    • C. 

      C. Install Windows Deployment Services (WDS) on the DHCP server. ------ WDS interacts very closely with DHCP for obvious reasons; however, these are fundamentally two different technologies with two different purposes.

    • D. 

      D. Restart the DHCP Server service. ------ The issue here is that the second NIC and its associated IP address are not authorized to perform DHCP Server services in Active Directory. Therefore, simply restarting the DHCP service will have no positive effect on this situation.

  • 13. 
    Your organization consists of a single Active Directory domain in which all servers run Windows Server 2008 and all client computers run Windows Vista. You are planning to migrate from IPv4 and IPv6 and need to educate yourself as to how IPv6 addressing works. Which of the following represents an invalid IPv6 transmission type? A. Anycast B. Multicast C. Unicast D. Digicast
    • A. 

      A. Anycast ------ IPv6 supports anycast data transmission.

    • B. 

      A. Anycast ------ IPv6 supports anycast data transmission.

    • C. 

      C. Unicast ------ IPv6 supports point-to-point (unicast) data transmission.

    • D. 

      C. Unicast ------ IPv6 supports point-to-point (unicast) data transmission.

  • 14. 
    Your organization includes a newly deployed Windows Server 2008 e-mail server that is configured with the following IP configuration information: IP Address: 172.16.16.3 Subnet mask: 255.255.224.0 You receive complaints from users who state that they are unable to connect to the email server. What action should you perform? A. Change the server's IP address to 172.16.0.3. B. Configure the server to use a /20 subnet mask. C. Change the server's IP address to 172.16.32.3. D. Configure the server to use the subnet mask 255.255.128.0.
    • A. 

      A. Change the server's IP address to 172.16.0.3. ------ The problem here is that the given IP address and the subnet mask do not match.

    • B. 

      B. Configure the server to use a /20 subnet mask. ------ The given IP address is invalid with a 19-bit subnet mask. Here we need to use a /20 (255.255.240.0 in decimal) subnet mask.

    • C. 

      C. Change the server's IP address to 172.16.32.3. ------ The problem here is in the subnet mask.

    • D. 

      D. Configure the server to use the subnet mask 255.255.128.0. ------ This subnet mask masks only 17 bits, which continues to render the server's IP address as invalid.

  • 15. 
    Your organization contains a Windows Server 2008 member server that is configured with the RRAS server role. Its two network adapters are named LAN1 and LAN2. You need to configure the network adapters such that outbound network traffic is favored toward LAN2. What action should you perform? A. Set the interface metric of LAN1 to 2 and the interface metric of LAN2 to 1. B. Set the interface metric of LAN1 to 1 and the interface metric of LAN2 to 2. C. Install the Microsoft Loopback Adapter and set its interface metric to 2. D. Install the Microsoft Loopback Adapter and set its interface metric to 1.
    • A. 

      A. Set the interface metric of LAN1 to 2 and the interface metric of LAN2 to 1. ------ Because, in this case, the LAN1 interface has a higher metric, the server will prefer the wrong interface.

    • B. 

      B. Set the interface metric of LAN1 to 1 and the interface metric of LAN2 to 2. ------ Higher metric numbers denote higher-priority network adapters. Therefore, in this case, the server will favor the LAN2 interface to the LAN1 interface.

    • C. 

      C. Install the Microsoft Loopback Adapter and set its interface metric to 2. ------ We can be very certain that we don't want to use the Loopback Adapter on a production server-ever.

    • D. 

      D. Install the Microsoft Loopback Adapter and set its interface metric to 1. ------ We never want to use the Loopback Adapter on a production server.

  • 16. 
    Your organization consists of an IP internetwork that is routed by a multihomed Windows Server 2008 member server that is configured with the RRAS server role. You need to configure a persistent default route on the server from the command prompt that sends all default traffic out of the interface with IP address 192.168.1.1. What action should you perform? A. Issue the command route print 192.168.1.0 on the server. B. Issue the command route -p add 0.0.0.0 mask 0.0.0.0 192.168.1.1 on the server. C. Issue the command route -persistent 192.168.1.0 on the server. D. Issue the command route -p add 255.255.255.255 mask 255.255.255.255 192.168.1.1 on the server.
    • A. 

      A. Issue the command route print 192.168.1.0 on the server. ------ The Route Print command simply displays all or part of the server's routing table.

    • B. 

      B. Issue the command route -p add 0.0.0.0 mask 0.0.0.0 192.168.1.1 on the server. ------ The -p flag of the route command makes the static route persistent across server reboots.

    • C. 

      C. Issue the command route -persistent 192.168.1.0 on the server. ------ The -p flag of the route command is used, not the word "persistent." Besides, the syntax of this statement is incorrect.

    • D. 

      D. Issue the command route -p add 255.255.255.255 mask 255.255.255.255 192.168.1.1 on the server. ------ We need to use decimal 0, not decimal 255, in our route statement.

  • 17. 
    Your organization consists of a single Active Directory domain in which all servers run either Windows Server 2003 or Windows Server 2008 and all client computers run Windows Vista. You are planning to migrate the IP infrastructure of your company to IPv6. In particular, you need to ensure that the Windows Server 2003 can support IPv6. What action should you perform? A. Upgrade the Windows Server 2003 servers to Windows Server 2008. B. Install IPv6 by downloading the component from the Microsoft Web site. C. Install IPv6 by using the Network Connections Control Panel item. D. Install IPv6 by using the Server Manager application.
    • A. 

      A. Upgrade the Windows Server 2003 servers to Windows Server 2008. ------ Windows Server 2003 natively supports IPv6; however, you have to install the component from the Network Connections Control Panel item.

    • B. 

      B. Install IPv6 by downloading the component from the Microsoft Web site. ------ You do not need to do this because Windows Server 2003 includes IPv6 as an optional, installable component.

    • C. 

      C. Install IPv6 by using the Network Connections Control Panel item. ------ You can use this method to install IPv6 as an additional network component for the appropriate network adapter(s) on the Windows Server 2003 computer.

    • D. 

      D. Install IPv6 by using the Server Manager application. ------ Remember that Windows Server 2003 does not include a Server Manager tool like Windows Server 2008 does.

  • 18. 
    You are configuring a multihomed Windows Server 2008 member server as a DHCP server. The server will serve DHCP client requests on two physical networks. What action should you perform? A. Enable UDP ports 67 and 68 in Windows Firewall for both network interfaces. B. Modify the server bindings in the DHCP console. C. Disable IPv6 on the server. D. Set the WINS/NBT Node Type as a Server Option in the DHCP console.
    • A. 

      A. Enable UDP ports 67 and 68 in Windows Firewall for both network interfaces. ------ When you install the DHCP server role in Windows Server 2008, the operating system creates the appropriate Windows Firewall rules automatically. Incidentally, DHCP does use User Datagram Protocol (UDP) ports 67 and 68.

    • B. 

      B. Modify the server bindings in the DHCP console. ------ In the DHCP Manager console, you can adjust the network interface card (NIC) bindings such that the server will service DHCP client requests on all, or only selected, network interfaces.

    • C. 

      C. Disable IPv6 on the server. ------ Remember that Windows Server 2008 DHCP can seamlessly service IPv6 requests as easily as it can service IPv4 requests.

    • D. 

      D. Set the WINS/NBT Node Type as a Server Option in the DHCP console. ------ DHCP server or scope options have absolutely nothing to do with this situation.

  • 19. 
    Your organization consists of a single Active Directory forest in which servers run either Windows Server 2003 or Windows Server 2008 and all client computers run Windows Vista. Your network consists of two subnets and you plan to deploy a Windows Server 2008 DHCP server on each subnet. You need to ensure that neither server distributes a different IP address to the DHCP-enabled workgroup printers in the enterprise. What action should you perform? A. Create a domain DFS in the forest. B. Create a reservation for the workgroup printers on both DHCP servers. C. Create a reservation for the workgroup printers on one DHCP server. D. Create an exclusion for the workgroup printers on both DHCP servers.
    • A. 

      A. Create a domain DFS in the forest. ------ Here, we are concerned with IP address configuration (DHCP), not making filesystem resources available in a redundant way (Distributed File System or DFS).

    • B. 

      B. Create a reservation for the workgroup printers on both DHCP servers. ------ When you have multiple DHCP servers in an enterprise, you need to be careful to plan and create scopes, keeping in mind that the servers never synchronize their scope data. The configurations must be manually duplicated on all servers.

    • C. 

      C. Create a reservation for the workgroup printers on one DHCP server. ------ If we perform this action, there exists the possibility that the workgroup printers, which are configured as DHCP clients, may pick up a different IP address from the other DHCP server.

    • D. 

      D. Create an exclusion for the workgroup printers on both DHCP servers. ------ An exclusion removes one or more IP addresses from a DHCP scope. The scenario in this case states explicitly that the workgroup printers are DHCP clients.

  • 20. 
    Your organization consists of a single Active Directory domain in which all servers run Windows Server 2008 and all client computers run Windows XP SP2. You need to deploy Connection Security Rules to protect network traffic to and from a series of secure files servers that reside in the domain. What action should you perform? A. Install Service Pack 3 on the client computers. B. Install the NAP client software on the client computers. C. Install the Network Policy Server role on all member servers. D. Upgrade all client computers to Windows Vista.
    • A. 

      A. Install Service Pack 3 on the client computers. ------ Windows XP SP3 is required in order for Windows XP domain workstations to participate in NAP health policy screens. However, Windows XP computers are unable to participate in IPSec Connection Security Rules that are created in Windows Server 2008.

    • B. 

      B. Install the NAP client software on the client computers. ------ The Network Access Protection (NAP) client is included in Windows XP Service Pack 3, not as a separate download. Besides, NAP client is not what is needed in this scenario.

    • C. 

      C. Install the Network Policy Server role on all member servers. ------ This scenario can be accomplished by using simple Group Policy in Active Directory Domain Services (AD DS).

    • D. 

      D. Upgrade all client computers to Windows Vista. ------ Only Windows Server 2008 and Windows Vista can participate in Connection Security Rules.

  • 21. 
    You need to take your network's Windows Server 2008 DHCP server offline briefly for scheduled maintenance. Now that the server is online, you need to ensure that no duplicate IP addresses are assigned by the DHCP server. What action should you perform? A. Change the server connection bindings on the server. B. Create a superscope on the DHCP server. C. Restart the DHCP Server service on the server. D. Increase the conflict detection attempts in the DHCP server properties.
    • A. 

      A. Change the server connection bindings on the server. ------ The server connection binding option enables you to scope the DHCP listener service to a particular network interface.

    • B. 

      B. Create a superscope on the DHCP server. ------ A superscope involves IP addresses from more than one subnet being distributed over the same LAN segment. This has nothing to do with the issue under consideration.

    • C. 

      C. Restart the DHCP Server service on the server. ------ Simply restarting the DHCP Server service on the computer is not enough. We need to use the Conflict Detection feature to ensure that ready-to-lease IP addresses are not already in use on the network.

    • D. 

      D. Increase the conflict detection attempts in the DHCP server properties. ------ The conflict detection feature in Windows Server DHCP uses PING to ensure that an IP address is not in use on the network before the server offers a lease to a client.

  • 22. 
    Your organization contains a Windows Server 2008 DHCP server named IP01. You need to ensure that incorrect or missing information for client IP addresses that are stored in the server's scopes are purged and/or corrected. What action should you perform? A. Unauthorized and reauthorize the DHCP server in Active Directory. B. Enable conflict detection on IP01. C. Reconcile the scopes on IP01. D. Restart the DHCP Server service on IP01.
    • A. 

      A. Unauthorized and reauthorize the DHCP server in Active Directory. ------ There is utterly no need to perform this action to fix inconsistencies in a DHCP scope database.

    • B. 

      B. Enable conflict detection on IP01. ------ Conflict detection uses ICMP ping messages to ensure that an IP address is not already in use on the network before a lease is granted to a requesting host.

    • C. 

      C. Reconcile the scopes on IP01. ------ Reconciling scopes is an online action in which inconsistencies in scope data are fixed.

    • D. 

      D. Restart the DHCP Server service on IP01. ------ Restarting the service, much less the DHCP server, will not automatically repair inconsistencies in the scope data.

  • 23. 
    Your organization consists of a single Active Directory domain in which all servers run Windows Server 2008 and all client computers run Windows Vista. You are planning to migrate from IPv4 to IPv6 and need to educate yourself as to how IPv6 addressing works. Which of the following represents an invalid IPv6 address? A. 2001:cgba::3257:9654 B. 2001:cdba::3257:9651 C. 2001:cdba:0000:0000:0000:0000:3257:9656 D. 2001:cdba:0:0:0:0:3257:9655
    • A. 

      A. 2001:cgba::3257:9654 ------ This IPv6 address is invalid because g is an illegal character in hexadecimal notation.

    • B. 

      B. 2001:cdba::3257:9651 ------ This is a valid IPv6 address.

    • C. 

      C. 2001:cdba:0000:0000:0000:0000:3257:9656 ------ This is a valid IPv6 address.

    • D. 

      D. 2001:cdba:0:0:0:0:3257:9655 ------ This is a valid IPv6 address.

  • 24. 
    Your organization consists of a single Active Directory domain in which all servers run Windows Server 2008 and all client computers run Windows Vista. Your company is migrating to IPv6. In particular, you need to configure DHCP to support client autoconfiguration. What action should you perform? A. Configure the DHCP server to use DHCPv6 Stateful mode. B. Configure all client computers to support PNRP. C. Configure the DHCP server to use DHCPv6 Stateless mode. D. Configure all client computers to use DHCPv6 Client mode.
    • A. 

      A. Configure the DHCP server to use DHCPv6 Stateful mode. ------ In DHCPv6 Stateful mode, clients receive both an IPv6 address as well as all other addresses/parameters from the DHCPv6 server.

    • B. 

      B. Configure all client computers to support PNRP. ------ Windows Vista supports the Peer Name Resolution Protocol (PNRP) by default. Besides, that protocol is only tangentially related to the subject that is under consideration in this item.

    • C. 

      C. Configure the DHCP server to use DHCPv6 Stateless mode. ------ In DHCPv6 Stateless mode, clients auto-assign their IP addresses and receive additional parameters (default gateway address, DNS server address, etc.) from the DHCPv6 server.

    • D. 

      D. Configure all client computers to use DHCPv6 Client mode. ------ In DHCPv6 Client mode, no IPv6 information is given to the client; this simply determines the relationship between the client devices and routers that may lie between the client and the DHCPv6 server.

  • 25. 
    Your organization currently uses the IPv4 network address 192.168.16.0/24. You need to expand the network into 7 segments of at least 28 hosts each. What action should you perform? A. Deploy the subnet mask 255.255.255.224 in the network. B. Deploy the subnet mask 255.255.255.240 in the network. C. Deploy the subnet mask 255.255.255.128 in the network. D. Deploy the subnet mask 255.255.255.248 in the network.
    • A. 

      A. Deploy the subnet mask 255.255.255.224 in the network. ------ A 27-bit mask will yield 8 subnets with 30 hosts per subnet.

    • B. 

      B. Deploy the subnet mask 255.255.255.240 in the network. ------ A 28-bit mask will yield 16 subnets, but with only 14 host IDs per subnet.

    • C. 

      C. Deploy the subnet mask 255.255.255.128 in the network. ------ A 25-bit mask will yield only two subnets with 126 host ID available on each subnet.

    • D. 

      D. Deploy the subnet mask 255.255.255.248 in the network. ------ A 29-bit mask yields 32 subnets with only 6 hosts per subnet.

Back to Top Back to top