| Question 1 | Your network is running Windows 2000 but also has two NetWare servers. SRVNW1 is running NetWare 3.12 and SRVNW2 is running NetWare 4.11. From SRVWIN2K1 , you can access resources on SRVNW2 but not on SRVNW1 . You normally have no problem accessing resources on Windows 2000 servers. What is causing the problem? -
A. SRVWIN2K1 does not have an IP address. -
B. NWLink must be set to autodetect the frame type. -
C. The frame type must be manually configured. -
D. NWLink is not installed. |
| A1: | Answer C is correct. When NWLink is set to autodetect and there are multiple frame types in use on the network, it defaults to 802.2. However, NetWare servers earlier than 3.3 default to 802.3. Therefore, SRVWIN2K1 will not be able to communicate with the NetWare 3.11 server until the frame type is configured, which means answer B is incorrect. Answer A is incorrect because NWLink does not use IP addresses. Answer D is incorrect because the Windows 2000 server can successfully communicate with SRVNW2 . |
| Question 2 | You have just installed Windows 2000 Server. During the installation you accepted the default settings. The server is being placed on an IP network. How can you install TCP/IP? -
A. Using the Add/Remove Programs applet in the Control Panel. -
B. From the Properties window of the Local Area Connection. -
C. Using the System applet within the Control Panel. -
D. TCP/IP is installed by default with Windows 2000. |
| A2: | Answer D is correct. Because none of the default settings were changed during the installation of Windows 2000 Server, TCP/IP does not need to be installed. Answers A and C are incorrect because these two applets cannot be used to install TCP/IP. Answer B is incorrect. Although this is the correct way to install the protocol, it does not need to be installed because it is done by default when Windows 2000 is installed. |
| Question 3 | What does the TCP/IP protocol use to determine whether a packet is destined for a host on the local network or a host on a remote network? [Choose all that apply.] -
A. Subnet mask -
B. Default gateway -
C. IP address -
D. DNS server |
| A3: | Answers A and C are correct. The subnet mask is used to determine whether a packet is destined for a host on the local or remote network. It compares the subnet mask of the local host with the IP address of the destination host and, through a process known as "anding," determines whether the packet is for a local or remote host. Therefore answers B and D are incorrect. |
| Question 4 | Which address class does the IP address 121.107.2.221 belong to? -
A. Class A -
B. Class B -
C. Class C -
D. Class D |
| A4: | Answer A is correct. Because the first decimal value is between 1 and 126, the IP address belongs to the range of IP addresses within Class A. Therefore, answers B, C, and D are incorrect. |
| Question 5 | You create an OU within Active Directory for a group of computers. Using the Group Policy editor, you create a new IP security policy that applies to the new OU. You configure all the necessary security settings. What is your next step in applying the policy to the OU? |
| A5: | Answer B is correct. To apply the policy to the computers within the organizational unit, you must first assign the policy. This can be done by right-clicking the policy and choosing the Assign option. Therefore, answers A, C, and D are incorrect. |
| Question 6 | You are configuring IPSec between two servers in a workgroup. You assign the Client (Respond Only) to each of the servers but notice that IP packets being sent between the two servers are not being secured. What is causing the problem? -
A. Both are configured with the Client (Respond Only) policy. -
B. IPSec can only be used with Active Directory. -
C. One of the servers must be configured as an IPSec client. -
D. The servers cannot be members of the same workgroup. |
| A6: | Answer A is correct. If both servers are configured with the Client (Respond Only) policy, they will respond only to requests for secure communications. One of the servers must be configured with Server (Request Security). Therefore, answers B, C, and D are incorrect. |
| Question 7 | You are configuring IP security for your network. You want all data to be encrypted but still want clients that do not support IPSec to be able to authenticate with the server. Which of the following policies should you use? -
A. Secure Server (Require Security) -
B. Client (Respond Only) -
C. Client (Require Security) -
D. Server (Request Security) |
| A7: | Answer D is correct. By assigning the Server (Request Security) policy, the server will always attempt secure communications. Unsecured communications will still be allowed if the client is not IPSec aware. Answer A is incorrect because communications will not be allowed if the client is not IPSec aware. Answer B is incorrect. Assigning the Client (Respond Only) means that the server will only respond to requests for secure communications but will not attempt to secure all communications. Answer C is incorrect because there is no such default IP security policy. |
| Question 8 | You have just installed TCP/IP and have statically configured the settings. You want to make sure the server can communicate with servers and workstations on other subnets. Which of the following can you use to test TCP/IP connectivity? -
A. ipconfig -
B. Network Monitor -
C. ping -
D. ARP |
| A8: | Answer C is correct. TCP/IP connectivity can be tested using the ping utility. By pinging the IP address of a host on a remote subnet, you can verify connectivity with that host. Answer A is incorrect because ipconfig only verifies the TCP/IP settings configured. Answer B is incorrect because Network Monitor is used to capture and analyze network traffic. Answer D is incorrect because ARP is part of the TCP/IP protocol suite that maps IP addresses to MAC addresses. |
| Question 9 | Which of the following transport layer protocols ensures reliable delivery of packets between two IP hosts ? -
A. ARP -
B. ICMP -
C. UDP -
D. TCP |
| A9: | Answer D is correct. Transmission Control Protocol (TCP) is a connection-based protocol that operates at the transport layer of the DoD model and ensures reliable delivery between hosts. Answer A is incorrect because ARP is used to map IP addresses to MAC addresses. Answer B is incorrect because ICMP is used for diagnostic purposes. Answer C is incorrect because UDP is connectionless and does not offer reliable delivery of packets. |
| Question 10 | Which of the following tools can be used to monitor IPSec statistics? |
| A10: | Answer B is correct. IP Security Monitor can be used to gather and monitor IPSec statistics. Answer A is incorrect because Network Monitor is used to capture and analyze IP packets. Answer C is incorrect because System Monitor is used to monitor server performance. Answer D is incorrect because IP Security Policy Management is used to create and manage IP Security policies. |
