You are the administrator of an Active Directory domain. All servers run Windows Server 2003. You configure a server named Server3 as the DNS server for the domain.The company recently started using a new ISP. Since the change to the new ISP occurred, users report that they cannot access Internet Web sites by using their fully qualified domain names (FQDNs).You manually configure a test computer to use the DNS server address of the new ISP. The test computer can successfully access Internet Web sites by using their FQDNs.You need to ensure that network users can access Internet Web sites by using their FQDNs, while ensuring that user access to internal resources is not disrupted.
What are two possible ways to achieve this goal?()
A.Create a root zone on Server3.
B.Configure Server3 to use the default root hints.
C.Configure a forwarder on Server3 to the new ISP’s DNS server.
D.Configure all computers on your network to use the new ISP’s DNS server.
您可能感兴趣的试卷
你可能感兴趣的试题
You are the network administrator for your company. All servers run Windows Server 2003. Twenty company employees connect to a terminal server named Server2 to run applications and to gain access to the Internet.The 20 employees report that they receive security messages while browsing Internet Web sites.
The employees report that they cannot modify the Internet Explorer security settings on their client computers while connected to Server2.You need to allow these 20 employees to modify the Internet Explorer security settings on their client computers while connected to Server2.
What should you do?()
A.Log on to Server2 as Administrator and add http:// to the list of trusted sites in Internet Explorer.
B.Instruct the 20 employees to add http:// to the list of trusted sites in Internet Explorer on their client computers.
C.Instruct the 20 employees to change the Internet Explorer privacy settings on their client computers to Low.
D.Uninstall Internet Explorer Enhanced Security Configuration on Server2.
You are the administrator of an Active Directory domain. All servers run Windows Server 2003. All client computers run Windows XP Professional and are members of the domain. The domain contains a single DNS server named Server1. Root hints are enabled on Server1. Internet access for the company is provided by a Network Address Translation (NAT) server named Server2. Server2 is connected to the Internet by means of a permanent connection to the company’s ISP. Users report that they can no longer connect to http://www.adatum.com. Users can connect to internal resources and to other Internet Web sites. You can successfully access http://www.adatum.com from a computer outside of the corporate network.You need to ensure that the users can access http://www.adatum.com. You must also ensure that users retain their ability to access internal resources.
Which two actions should you perform?()
A.Disable Routing and Remote Access on Server2.
B.Create a root zone on Server1.
C.On all affected users’ computers, run the ipconfig /flushdns command.
D.Configure all affected users’ computers to use the ISP’s DNS server.
E.Use the DNS console on Server1 to clear the DNS cache.
You are the administrator of an Active Directory domain. The network contains a Windows Server 2003 domain controller named Server1Users report that they experience intermittent delays when they log on to Server1. Administrators report that replication attempts between Server1 and other domain controllers are occasionally delayed.You need to verify the cause of the intermittent connection delays to Server1. You also need to find out whether the problem is related to a hardware deficiency on Server1. You need to track these delays over a period of one day.
What should you do first?()
A.Run the netdiag /verbose command to perform a network diagnostic test on Server1.
B.Run the replmon command to view the Active Directory replication status on Server1.
C.Use Network Monitor to view the network traffic packet contents between Server1 and all other computers.
D.Create a System Monitor counter to track the queue lengths on the network adapter on Server1.
You are the administrator of a Windows Server 2003 computer named Server1. Server1 is an FTP server located in the company’s internal network.Administrators report an increased amount of FTP traffic to Server1.
You need to configure Server1 to achieve the following goals: Identify the media access control (MAC) address of any computer that is performing FTP transfers from Server1.Find out the exact FTP commands that were executed. Ensure that you do not disrupt the operation of Server1.
What should you do?()
A.Configure a performance alert to write an event to the application event log whenever the number of established FTP connections exceeds 1.
B.Use a Network Monitor filter to capture IP traffic from any computer to Server1.
C.Run the finger command on Server1 to identify the source of the FTP requests.
D.Run the arp command on Server1 to identify the source of the FTP requests.
You are the administrator of a Windows Server 2003 computer named Server1. The network contains another Windows Server 2003 computer named Server2 that has the DNS and WINS services installed. Two hundred Windows 2000 Professional computers regularly connect to Server1 to access file and print resourcesAdministrators report that network traffic has increased and that response times for requests for network resources on Server1 have increased.
You need to identify whether Server1 is receiving requests for resources through NetBIOS broadcasts.
What should you do?()
A.Use Network Monitor to capture traffic between Server1 and all client computers.
B.Use Network Monitor to capture traffic between Server1 and Server2.
C.Monitor Event Viewer for Net Logon error or warning events.
D.Run the tracert command on Server1.
You are the administrator of an Active Directory domain. All servers run Windows Server 2003. All client computers run Windows XP Professional.A server named Filesrv1 contains confidential data that is only available to users in the human resources (HR) department.You want all computers in the HR department to connect to Filesrv1 by using an IPSec policy. You assign the Server (Request Security) IPSec policy to Filesrv1. Using Network Monitor, you notice that some computers in the HR department connect to Filesrv1 without using the IPSec policy.You need to configure Filesrv1 to ensure that all computers connect to it by using the IPSec policy.
What should you do?()
A.Assign the Secure Server (Require Security) IPSec policy.
B.Assign the Client (Respond Only) IPSec policy.
C.Unassign the Server (Request Security) IPSec policy.
D.Restart the IPSec Services service.
You are the network administrator for your company. The network consists of a single Active Directory domain. All servers run Windows Server 2003.
The network contains a Web server that runs IIS 6.0 and hosts a secure intranet site. All users are required to connect to the intranet site by authenticating and using HTTPS. However, because an automated Web application must connect to the Web site by using HTTP, you cannot configure the intranet site to require HTTPS. You need to collect information about which users are connecting to the Web site by using HTTPS.
What should you do?()
A.Check the application log on the Web server.
B.Use Network Monitor to capture network traffic on the Web server.
C.Review the log files created by IIS on the Web server.
D.Configure a performance log to capture all Web service counters. Review the performance log data.
ou are the network administrator for your company. The network consists of a single Active Directory domain. All servers run Windows Server 2003. All client computers run Windows XP Professional.Two of the servers on the network contain highly confidential documents. The company’s written security policy states that all network connections with these servers must be encrypted by using an IPSec policy.You place the two servers in an organizational unit (OU) named SecureServers. You configure a Group Policy object (GPO) that requires encryption for all connections. You assign the GPO to the SecureServers OU. You need to verify that users are connecting to the two servers by using encrypted connections.
What should you do?()
A.Run the net view command.
B.Run the gpresult command.
C.Use the IP Security Monitor console.
D.Use the IPSec Policy Management console.
You are the network administrator for your company. The network consists of a single Active Directory domain. The domain contains 25 Windows Server 2003 computers and 6,000 Windows XP Professional computers.The written company security policy states that network traffic to Web servers must be audited on a regular basis. A server named Server1 is configured as a Web server on the company’s intranet. You install Network Monitor Tools from a Windows Server 2003 product CD-ROM on Server1.You run Network Monitor on Server1 for three hours. When you stop the network capture, you see that Network Monitor captured over 40,000 frames. As you look at the captured frames, you notice that an extremely large number of TCP connection requests have all come from the 131.107.0.1 IP address.In Network Monitor, you need to view only the frames for network traffic that are captured between Server1 and the 131.107.0.1 IP address.
What should you do?()
A.Create an Address Capture filter for all network traffic between Server1 and the 131.107.0.1 IP address.
B.Create a Find Frame Expression filter for network traffic captured between Server1 and the 131.107.0.1 IP address.
C.Create an Address Display filter for all network traffic captured between Server1 and the 131.107.0.1 IP address.
D.Create a Pattern Match capture trigger for the 131.107.0.1 IP address.
You are the network administrator for your company. A Windows Server 2003 computer named Router11 is used to connect the network to the Internet. You find out that some computers on the network are infected with a worm, which occasionally sends out traffic to various hosts on the Internet. This traffic always uses a certain source TCP port number.You need to identify which computers are infected with the worm. You need to configure a solution on Router11 that will perform the following two tasks: Detect and identify traffic that is sent by the worm.
Immediately send a notification to a network administrator that the infected computer needs to be repaired.
What should you do?()
A.Configure a WMI event trigger.
B.Configure a Network Monitor capture filter.
C.Configure a Network Monitor trigger.
D.Configure a System Monitor alert.
最新试题
你是Humongous Insurance公司网络管理员。网络是一单活动目录域环境,域名humongous.com。域中有Windows server 2003 和Windows XP Pro计算机。你配置了几个组策略对象(GPOs)使用IPSec来加强那些特定计算机间的可靠通信安全。在Server2上运行着Telnet服务(远程登录)。一个GPO使用IPSec策略来确保对所有到Server2上的Telnet通信加密。但是,你监视网络通信发现这些Telnet连接并未被加密。 你要察看由GPO规定并应用在Server2上的所有IPSec设置。你将使用哪个工具()?
你是一活动目录域的管理员。所有的服务器运行Windows Server 2003。所有的客户端计算机都是域中成员,运行Windows XP Professional。域中包含唯一的DNS服务器Server1。Server上的根提示功能开启。公司对Internet的访问由服务器Server2提供的网络地址转换功能(NAT)实现。Server2通过ISP和互联网永久连接。用户报告说不能访问http://www.adatum.com..但是可以访问其他的外网站点和内网络的资源。你可以从公司网络之外的计算机上访问http://www.adatum.com.站点。 你需要确保这些用户能够访问http://www.adatum.com.站点。同时要确保这些用户能够继续访问内网资源。下列哪两种操作你将采用?()
你是公司网络管理员。所有的服务器运行Windows Server 2003。你配置了Server2作为网络地址转换(NAT)服务器。Server2上有一块网卡和一个猫(调制解调器)。Server2通过demand-dial(拨号连接)互联网。用户反应当他们试图连接互联网上的站点时。间歇性的收到如下错误提示信息“Page not find”。在等待几分钟后,又能够连上站点了。这种情况整天都出现。你需要配置Server2让用户始终都能够连接互联网站点。 你该怎么操做?()
你是Fabrikam.Inc公司网络管理员。网络是一单活动目录域环境,域名fabrikam.com。一台Windows server 2003服务器Server1为域中提供DNS服务器功能。WingTip Yoys是Fabrikam公司的一个分部。WingTip Toys中有一单活动目录域环境,域名Wingtipyoys.com。Server1是的Wingtipyoys.com的辅助区域服务器。你监视着两个域间的通知通信。当Wingtipyoys.com的主要区域服务器上有可用变化并通知Server1服务器数据同步时,你要将之记录下来。你该怎么操做?()
你是公司网络管理员。网络中有一台Windows server 2003服务器Server1。三个管理员都是Server1的管理员本地组的成员。另外12个管理员是域管理组成员。域管理组也是Server1上的管理员本地组成员。有人未经授权修改了Server1的HKEY_LOCAL_MACHINE\SYSTEM键值。这导致了计算机当机。你要修复这问题。你需要记录下所有对Server1的注册表中HKEY_LOCAL_MACHINE\SYSTEM键值的访问尝试。你决定在Server1的本地安全策略中启用审核功能。你将采取哪两个操作步骤?()
你是公司网络管理员。公司网络是一个单活动目录域。域中有一个组织单元(OU)Webservers。在Webservers中包含12台作为内网Web Server的Windows Server 2003计算机的账号。组策略对象(GPO)WebserversPolicy链接到了组织单元Webservers。该GPO被用来配置OU中计算机的各种设置。在每个内网Web Server的管理员本地组中有一个名为WebserverAdmins的全局组成员。你计划在每个内网Webserver上安装一个安全扫描应用程序。该应用程序文档规定它必须使用一个服务账号,以此能够对安装了该应用程序的计算机的注册表的HKEY_LOCAL_MACHINE\SYSTEM键值进行修改。 你在域中创建了这个服务账号。公司的安全策略规定:安全账号只能分配得到完成功能的最低限度权利和许可。你需要配置内网的Web servers以便该安全扫描应用程序能够被安装接受。你同时也要遵从公司的安全策略。你要用最低的管理花销实现这个目的。你该怎么做?()
你是一活动目录域的管理员。所有的服务器运行Windows Server 2003。你将一台Server3配置为域中的DNS服务器。公司最近使用了新的ISP。自从ISP变更后,用户反应不能使用完全合格域名(FQDN)访问外网站点。 你手动配置了一台计算机,使用新的ISP提供的DNS服务器IP地址进行测试。测试计算机能够使用FQDN访问外网站点。你需要确保网络用户能够使用FQDN访问外网站点,同时用户对内网资源的访问不被中断。有哪两种可行的方法可以实现这目的?()
你是A.Datum公司的网络管理员。网络是一个单活动目录域环境,域名adatum.net。Adatum.com域名下的所有Web服务,电子邮件服务都外包给了一家ISP。所有对adatum.com的名称解析都由ISP提供。你无权管理ISP处的DNS服务器。你不可以在ISP的DNS服务器上使用nslookup命令列出阿datum .com的资源内容。一台Windows Server 2003计算机Server1上配置了adatum .net的一个主要区域。Server1上的所有根提示已被删除了。所有客户端计算机都向这台计算机提交名称解析。你要配置该服务器的DNS解析以保证所有的客户端计算机都能定位并访问adatum.com,adatum.net及互联网的资源。你该如何操作?()
你是公司的网络管理员。有一台Windows Server 2003服务器Server1出现连接故障。你使用了系统监视器和网络监视器来监视Server1。在监视过程中,你发现Server1的可用物理内存仅剩4MB,并且CPU的平均利用率达95%。在调查中,你还发现发给Server1的部分数据包并未被捕捉监视到。你需要确保在Server1的监视操作对Server1的影响最低且所有发送的数据包都要被截获。你该如何操作?()
你是公司网络管理员。网络是一个单活动目录域环境。所有的服务器运行Windows Server 2003系统。所有的客户端运行打了SP4补丁的Windows 2000 Professional或Windows XP Professional。你在Server2上安装WSUS服务。你创建了一个组策略对象配置所有的客户机从Server2上获取软件升级。一周后,你在所有的客户机上运行Microsoft baseline security Analyzer(MBSA,微软基准安全分析)以找出是否所有的升级都被执行应用。你发现所有的Windows 2000 Professional客户机都顺利获取利了升级,但是所有的Windows XP Professional客户机则不然。你检查验证了指派在所有Windows XP Professional客户机上的GPO设置。你要确保所有Windows XP Professional客户机都从Server2处获取升级。你该如何操作?()