Objective 200: Name Resolution, All Questions
You are the network manager for the *westsim.private* domain. The SRV1 server runs all file and print services for the network. In the DNS database, it has an A record that maps *srv1.westsim.private* to the IP address of 192.168.16.10. You want to create a PTR record that maps the IP address to the hostname. In which zone should you create the record?
16.168.182.in.addr.arpa
Your network has a single Active Directory domain named *westsim.local*. All *westsim.local* authoritative DNS servers are configured to forward DNS requests across a firewall to a public DNS server. All client computers are members of the *westsim.local* Active Directory domain, and are configured to use *westsim.local* authoritative DNS servers. Your company has opened one new site in South America. The South America site has its own Internet connection, and uses a dedicated wide area network ( WAN ) link to company headquarters in North America for intranet traffic.
* Install a DNS server with no zones in the South America site. Configure the server to conditionally forward *westsim.local* DNS requests to *westsim.local* authoritative DNS servers and to forward all other DNS requests to the local Internet service provider's DNS server. * Configure all client computers in the South America site to use the new DNS server in the South America site.
You are the network manager for the *westsim.private* domain. You are in the process of transitioning from IPv4 to IPv6 on your internal network. You want to configure DNS to provide hostname-to-IPv6 address and IPv6 address-to-hostname resolution for a specific IPv6-only host.
AAAA PTR
You are the network administrator for *costcut.com*. The network consists of two Active Directory domains named *costcut.com* and *sales.costcut.com*. All of the servers run Windows Server 2008 R2. All of the clients run Windows 7. The domain controllers in each domain provide DNS services to the members of their respective domains. There is a delegation on the DNS servers *costcut.com* for the *sales.costcut.com* DNS domain pointing to the servers in the *sales.costcut.com* domain.
Add the *costcut.com* domain to the global suffix search list in the DNSSuffixes GPO.
You are the network administrator for *westsim.com*. The network consists of a single Active Directory domain. All of the servers run Windows Server 2008 R2. Most of the clients run Windows 7, however, there are 10 clients located in the mail room running a legacy software application that requires Windows 98. There is one main office and several satellite offices. There are two domain controllers at the main office named DC1 and DC2. There is one Active Directory Integrated zone named *westsim.com*. One Dynamic Host Configuration Protocol (DHCP) server named DHCP1 located at the main office provides IP addresses to the clients at the main office.
Add the DHCP1 and DC1 computer accounts to the *DnsUpdateProxy* group.
You have a Windows Server 2008 R2 server that has Windows Server core installed. You would like to add the DNS server role to this server. What should you do?
At command prompt, run *ocsetup*.
You administer a branch office connected to the main headquarters with a T-1 line. Servers in the branch office provide DNS and DHCP services. The company network has multiple domains, with a single domain representing the branch office. A DNS server called DC1 at the branch office holds the primary zone for the branch but holds no other zone files. DNS servers at headquarters provide name resolution for hosts in other domains.
Configure DC1 to forward name resolution requests to 10.155.11.15.
You manage the intranet servers for EastSIm Corporation. The company network has three domains: *eastsim.com , asiapac.eastsim.com , and emea.eastsim.com*. The main company Web site runs on the *web1.eastsim.com* server with a public IP address of 101.12.155.99. A host record for the server already exists in the *eastsim.com* zone.
CNAME
You are the network administrator for *northsim.com*. The network consists of a single Active Directory domain. There is one main office in the company located in one building. All the servers run Windows Server 2008 R2. All the clients run Windows 7. A server named DC1 hosts the PDC Emulator flexible single master operations (FSMO) role. There are three other domain controllers named DC2, DC3 and DC4. Users complain that it sometimes takes several minutes to be authenticated to the domain. You determine that this occurs when users are authenticated by DC1. You need to permanently reduce the number of authentication requests being serviced by DC1 in order to improve authentication performance in the domain. DC1 must still remain able to authenticate users if necessary.
Change the weight for the DNS SRV record for DC1 to a weight less than 100.
You are a network engineer for a large private network. The network has a corporate headquarters site, six regional sites, and dozens of branch sites per region. The network's private namespace consists of a single DNS domain that is subdomain of a registered public DNS domain. To provide DNS name resolution fault tolerance and performance, each site has it's own DNS server. All DNS servers run Windows Server 2008 R2. The DNS server in the corporate headquarters site is a primary DNS server. All other DNS servers are secondary DNS servers for the private namespace.
Configure DNS servers in branch sites to receive zone transfers from a DNS server in a regional site.
You are the systems administrator for WestSim Corporation. You have been assigned to set up a new branch office in Tulsa. The branch will be represented by a single domain. The branch office is connected with a T-1 line to the rest of the network. You install a single DNS server called TulsaDNS and configure a primary zone for the branch office domain. You configure a DHCP server to deliver the IP address for TulsaDNS to network hosts as the primary DNS server.
Configure TulsaDNS to use forwarders.
You manage a network with a single location and a single domain, *westsim.com*. All client computers on the private network are members of the *westsim.com* domain. The *westsim.com* zone is configured as a primary zone on the DNS1 server.
Configure a DNS server in the branch office without any zones. Configure all client computers in the branch office to use the new DNS server.
You manage the branch office for your company network. The branch office has a single Active Directory domain, *branch1.westsim.private*. All computers in the branch office are members of the domain. All client computers run Windows 7. The branch office consists of two subnets and 50 host computers. A single DHCP server on Subnet1 delivers IP address information to all clients. A single server on Subnet2 is both the domain controller and DNS server. Dynamic updates are enabled on the DNS zone.
Configure a GPO with the DNS server and search suffix settings.
You manage a single private domain called *westsim.private*. All DNS servers run Windows Server 2008 R2. Client computers run Windows 7, and are members of the *westsim.private* domain. Client computers have multicast name resolution disabled, and use only DNS for name resolution.
Configure a GlobalNames zone. Create records in the zone for each computer.
You administer a branch office connected to the main headquarters with a T-1 line. Servers in the branch office provide DHCP services. DNS servers at headquarters host Active Directory integrated zones to provide name resolution throughout the company. You want to improve name resolution performance for hosts in the branch office. You get permission to install a DNS server in the branch office.
Configure a secondary zone.
You are a network engineer working for WestSim Corporation. The company has an Internet domain named *westsim.com*. The private network uses the namespace of *private.westsim.com*. Your company manages its own Domain Name System (DNS) servers that are authoritative for both the company's namespaces.
Configure each client computer's HOSTS file with an entry for *www.private.westsim.com*.
You manage the network for the *westsim.com* domain. Client computers run Windows 7. You would like to transition your network to use IPv6. You want to make sure that clients can contact certain hosts using single-label names that resolve to the IPv6 address for that host. You want to do this with the least amount of effort possible.
Configure the GlobalNames zone in the DNS. Create a CNAME records for each host pointing to the corresponding AAAA record.
You are configuring the network for a new company with two sites: the main office is in Denver, and a branch office is in Phoenix. The sites are connected by a WAN link. All servers, including domain controllers, will run Windows Server 2008 R2. All servers will be members of an Active Directory.
Configure the replication scope for *corp.westsim.com* as *To all DNS servers in this forest*. Configure the replication scope for *research.corp.westsim.com* as *To all DNS servers in this domain*.
You are the administrator of the *corp.westsim.com* domain. All servers in the domain run Windows Server 2008 R2, and all clients run Windows 7. The domain has two subdomains: *acct.corp.westsim.com* and *sales.corp.westsim.com*. The *acct.corp.westsim.com* zone is an Active Directory-integrated zone, while the *sales.corp.westsim.com* zone is a primary zone.
Convert the *sales.corp.westsim.com* secondary zone on Srv3 to a primary zone.
You manage a network with a single Active Directory domain named *eastsim.local*. The network has the following domain controllers, all running Windows Server 2008 R2: * dc1.eastsim.local * dc2.eastsim.local * dc3.eastsim.local * dc4.eastsim.local All domain controllers are also DNS servers.
Create a custom application partition. Choose the partition for the replication scope.
You are configuring the network for a new company with two sites: the main office is in Denver, and a branch office is in Phoenix. The sites are connected by a WAN link. All servers, including domain controllers, will run Windows Server 2008 R2. All servers will be members of an Active Directory domain.
Create a custom directory partition for *corp.westsim.com.* Add srvA, srvB, and srv4 to the replication scope. Create a custom directory partition for *research.corp.westsim.com*. Add *srv1* and *srv2* to the replication scope.
You are the systems administrator for WestSim Corporation. The network has multiple domains with DNS and DHCP services configured in each domain. All servers are running Windows 2008 R2, and all clients are running Windows 7. DHCP, DNS, and client computers are configured for dynamic DNS updates. As part of a new security initiative, the IT department has developed a custom application that reports the host name of all clients that try to access three sensitive servers in the Accounting department. The application has been working fine for the last three months.
Create a primary reverse lookup zone for subnet 192.168.5.0.
The image shows the current scavenging settings for the *eastsim.com* domain. As you check records in the zone, you find several records that have not been updated for 16 days or longer. You need to make sure that records are automatically removed if they have not been updated in the last 14 days.
Enable automatic scavenging on the zone.
You are the administrator for the Creative Designs company. The network uses a single domain named *cdesign.com*. A single domain controller (CDCC1) holds an Active Directory integrated zone and provides DNS services. Recently, your company purchased a competitor company, Design Limited, Inc. Their network uses a single domain named *dlimitinc.com*, with a single domain controller (DLIDC1) holding an Active Directory integrated zone.
Create a secondary zone of the *dlimitinc.com* zone on CDDC1.
You are the systems administrator for EastSim Corporation. Domain controllers at headquarters host Active Directory integrated zones for the domain *eastsim.com* domain. The company has recently purchased a small design company located in Tampa. The new company will become a branch office connected to headquarters with a T-1 line. You have been sent to integrate the branch office into the corporate network.
Create a secondary zone on the UNIX DNS server. Have it replicate data from one of the domain controllers configured as a DNS server.
You are a network engineer for a new company. The company previously installed a DNS server to manage the company's public namespace. The DNS server runs BIND version 8.2. To provide fault tolerance, you install a second DNS server on a Windows Server 2008 R2 computer. You reconfigure the zone types so the Windows 2008 DNS server has the primary zone and the BIND DNS server has a secondary zone. The BIND DNS server has an IP address of 45.25.0.1 and the Windows 2008 DNS server has an IP address of 45.25.0.2.
Create an IPsec tunnel between the company's two public DNS servers. On the Window's Server 2008 DNS server, restrict zone transfers to the IP address 45.25.0.1
Your company has an Internet domain of *westsim.com*. Your network also has a single Active Directory domain named *westsim.local*. You manage your network's DNS servers for the *westsim.com* zone and the *westsim.local* zone. All Domain Name System (DNS) servers on your network run Windows Server 2008 R2.
Create and configure a stub named *asia.westsim.com*.
Your private network consists of several domains. The forest root domain is called *westsim.local*, with additional domains representing each department (such as *accounting.westsim.local* and *sales.westsim.local*) All domains are in the same tree. Servers on your network provide DHCP and DNS.
Create the GlobalNames zone. Configure CNAME records in the zone for the three servers.
Your private network consists of several domains. The forest root domain is called *westsim.local* , with additional domains representing each department (such as *accounting.westsim.local* and *sales.westsim.local*). All domains are in the same tree, and all DNS servers run Windows Server 2008 R2.
Create the GlobalNames zone. Create a CNAME record in the zone pointing to *iweb.it.westsim.local*. In the *westsim.local* zone, create a CNAME record named *iweb* pointing to *iweb.it.westsim.local*. Configure all clients to append parent search suffixes.
You manage a network with two locations: the main office is in Phoenix, and a branch office is in Tulsa. Srv1 is a DNS server in Phoenix, and holds the primary zone for the *eastsim.local* zone. To improve name resolution requests in the branch office, you place a secondary copy of the zone on Srv5 in the Tulsa location. Due to recent expansion, you are adding more servers to the Phoenix location....
Decrease the *refresh interval* in the SOA record for the zone.
You manage the branch office for your company network. The branch office consists of two subnets and 10 host computers. You use static addressing for all hosts on both subnets. To provide name resolution between subnets, you configure static entries on each computer.
Delete the HOSTS file on each client.
You manage the intranet servers for EastSim Corporation. The company network has three domains: *eastsim.com , asiapac.com , and emea.eastsim.com*. You create a primary zone for the *eastsim.com* domain on the *ns1.eastsim.com* server. Two additional servers, *ns2.eastsim.com* and *ns3.eastsim.com* hold secondary copies of the zone.
Delete the NS record for server *ns3*.
You are the network administrator for a company that has just implemented Windows Server 2008. To provide Internet access for your corporate office, you have decided to use a firewall that provides NAT. On the private network, you install and configure DNS on a Windows Server 2008 server to provide name resolution. After you finish the configuration, you realize that no one is able to access the Internet, but they are able to contract internal servers by their FQDN. A ping test using the IP address of Internet hosts is successful.
Delete the root forward lookup zone on the internal DNS server.
Your company uses *westsim.com* as its public Internet domain name. Your private network has a single Active Directory domain named *westsim.local*. All *westsim.local* authoritative DNS servers are configured to forward DNS requests across a firewall to external *westsim.com* authoritative DNS servers. Based on your security policy, the *westsim.local* authoritative DNS servers are not to contact other computers across the firewall.
Delete the root zone on all *westsim.com* authoritative DNS servers. Delete the *cache.dns* file on all *westsim.local* authoritative DNS servers. Delete the root zone on all *westsim.local* authoritative DNS servers.
You are configuring the network for a new company with two sites: the main office is in Denver, and a branch office is in Phoenix. The sites are connected by a WAN link. All servers, including domain controllers, will run Windows Server 2008 R2. All servers will be members of an Active Directory domain. The main office uses the domain of *corp.westsim.com*. All domain members are currently located only in the Denver location. The branch office uses the domain of *research.corp.westsim.com*. All domain members are located only in the Phoenix location.
Disable zone transfers on both zones. Configure the replication scope for both zones as to *To all DNS servers in this domain*.
You work as the network administrator for *southsim.com*. The network consists of a single Active Directory domain. All the servers run Windows Server 2008 R2. *southsim.com* has three main offices and twelve branch offices. Each of the main offices has two domain controllers. Each of the branch offices has one domain controller. Users at one of the branch offices complain that they are having trouble logging on after password resets. After troubleshooting Active Directory, you become convinced the problem is related to the Domain Name System (DNS). You need to verify that the DNS records used for replication are in place and can be resolved.
Dnslint
You manage a company network with a single Active Directory domain running on two domain controllers. The two domain controllers are also DNS servers, and hold an Active Directory integrated copy of the zone used on the private network. The network has five subnets, with DHCP servers delivering IP address and other configuration to host computers. All host computers run Windows 7.
Edit the default domain group policy object (GPO). Enable the *Turn off Multicast Name Resolution* policy.
You manage a network with two locations: Denver and Phoenix. Both sites are connected with a WAN link. The network uses *westsim.private* as the domain. The DNS1 server is located in the Denver location and has the primary copy of the *westsim.private* zone. The DNS2 server is located in Phoenix and is a secondary server for the zone.
Edit the zone properties on DNS1. On the Zone Transfers tab, configure the zone to automatically notify listed name servers. Edit the zone properties on DNS1. On the SOA tab, decrease the refresh interval.
You are the administrator for *eastsim.com*. The network consists of a single Active Directory domain. All the servers run Windows Server 2008 R2. All the clients run Windows 7. *eastsim.com* has one main site. There are two domain controllers named DC1 and DC2, which also provide DNS services to clients. There is a single Active Directory Integrated zone named *eastsim.com*.
Enable *Audit Directory Service Access* in the Audit policy of the Default Domain Controllers Policy Group Policy Object (GPO) and then use the DNS Console snap-in to enable auditing on the zone.
You are the network administrator for *westsim.com*. The network consists of a single Active Directory domain. All the servers run Windows Server 2008 R2. All the clients run Windows 7. *westsim.com* has one main office with a single subnet. There are two application servers located in the main office that host a custom web application named APP1 and APP2. You have been instructed to ensure that APP1 and APP2 each service about half of the clients who need access to the custom web application using the minimum amount of administrative effort.
Enable *Round Robin* on the DNS server.
You manage a network with two locations: the main office is in Phoenix, and branch office is in Tulsa. Srv1 is a DNS server in Phoenix, and holds the primary zone for *eastsim.local* zone. To improve name resolution requests in the branch office, you place a secondary copy of the zone on Srv5 in the Tulsa location. Due to recent expansion, you are adding more servers to the Phoenix location. For each server, you manually create the A and PTR records. You find that after you add the server, computers in the Tulsa location are unable to contact the new servers for up to 10 minutes. You want to make sure that hosts in Tulsa can contact these servers using DNS as quickly as possible.
Enable DNS Notify on the zone on Srv1.
You administer the DNS and DHCP servers on your network. The network has just added a new subnet. The subnet is represented as a new domain in DNS named *acct.istp.private.* The subnet uses address 192.168.16.0/24. All servers on the subnet run Windows 2008 R2 and all clients run Windows 7. The new subnet will use existing DNS and DHCP servers on another subnet.
Enable dynamic updates on the *acct.istp.private* and the reverse lookup zone for the subnet.
You are setting up a new network in a single location with a single domain named *eastsim.com*. All servers run Windows Server 2008 R2, and all clients run Windows 7. You install a DHCP server and configure it with a scope for a single subnet. You install a DNS server with a primary zone for the domain.
Enable dynamic updates on the *eastsim.com* zone.
You are the network administrator for a single domain with three subnets. The network has DNS and DHCP servers. Two subnets have all Windows 7 computers. The conference room uses the third subnet. Traveling salesmen come to the conference room and plug in their laptops to gain network access.
Enable scavenging of stale resource records on the zone.
You are a network engineer for a new company. The company will have offices in Denver, Atlanta, and Phoenix. All sites will be connected using wide area network ( WAN ) connections. The company will have a private network based on two Active Directory domains. All servers, including domain controllers, will run Windows Server 2008 R2. All servers will be members of an Active Directory domain.
Enable secure dynamic updates on all zones. Integrate all zones into Active Directory.
You are the network administrator for *westsim.com*. The network consists of two Active Directory domains named *westsim.com* and *sales.westsim.com*. All of the servers run Windows Server 2008 R2. All of the clients run Windows 7. The domain controllers in each domain provide DNS services to the members of their respective domains. There is a delegation on the DNS servers in *westsim.com* for the *sales.westsim.com* DNS domain pointing to the servers in the *sales.westsim.com* domain. A user in the *sales.westsim.com* domain complains that after adjusting the properties of his network adapter, he is unable to contact servers in the *westsim.com* domain using single-label names.
Enable the *Append parent suffixes of the primary DNS suffix* option in the Properties of the network adapter.
You are the network administrator for *eastsim.com*. The network consists of a single Active Directory domain. All the servers run Windows Server 2008 R2. All of the clients run Windows 7. There are two main sites: one in New York and one in Los Angles. All of the computers in the New York site are configured with IP addresses in the 10.0.0.0/24 subnet. All of the computers in the Los Angles site are configured with IP addresses in the 172.16.0.0/24 subnet. There is an application server located in New York named APP1 with an IP address of 10.0.0.10...
Enable the Netmask Ordering option on the DNS server.
Your company has offices in Denver, Atlanta, and Phoenix. All sites are connected using wide area network (WAN) connections. All servers, including domain controllers, run Windows Server 2008 R2 and are domain members.
For both zones, disable the *Allow zone transfers* option.
You are the network administrator for *eastsim.com*. The network consists of a single Active Directory domain. All the servers run WIndows Server 2008 R2 Standard edition. All the clients run Windows 7. A domain controller named DC1 functions as a DNS server that hosts a standard primary zone *eastsim.com*. All of the other domain controllers host standard secondary zones for *eastsim.com*.
Implement DNS security Extensions (DNSSec).
You are in the process of setting up a new network at a new location. The network uses a single domain named *eastsim.com*. The DC1 server is a domain controller that also provides DNS services. It hosts a primary zone for the *eastsim.com* zone. The network has 150 hosts on three subnets, all of which receive IP addresses from a DHCP server. The dhcp1 server is configured with three scopes, one for each subnet.
In the DNS snap-in, enable dynamic DNS on the *eastsim.com* zone.
You manage the intranet servers for EastSim Corporation. The company network has three domains: *eastsim.com , asiapac.eastsim.com, and emea.eastsim.com*. The main company Web site runs on the *web1.eastsim.com* server with public IP address of 101.12.155.99. A host record for the server already exists in the *eastsim.com* zone.
In the *eastsim.com* domain, create a CNAME record with a blank name pointing to server *web1.eastsim.com*.
Mary is in charge of DNS administration for her network. The private network consists of a single Active Directory domain called *private.westsim.com*. DNS data stored in a Active Directory-integrated zone. The Sales department has just installed a Web server called *SalesWeb*.
In the *westsim.com* domain, create a CNAME record called *sales*. Identify *SalesWeb.private.westsim.com* as the target.
You are a network administrator for your company. Your company's Internet namespace is *westsim.com*. The private network has a single Active Directory domain named *private.westsim.com*. Two Active Directory domain controllers run Windows Server 2008 R2 with the DNS Server role and have Active Directory integrated zones for the *private.westsim.com* zone. A third DNS server located in a remote site runs BIND version 8 and stores a secondary copy of the *private.westsim.com* zone.
In the DNS console, configure the *private.westsim.com* zone to allow zone transfers only to the remote BIND DNS server.
You are the administrator of the *corp.westsim.com* domain. All servers in the domain run Windows Server 2008 R2, and all clients run Windows 7. The domain has two subdomains: *acct.corp.westsim.com* and *sales.corp.westsim.com*. To improve name resolution, you set up DNS on the *srv3.acct.corp.westsim.com* server. You create a secondary zone on that server pointing to the *sales.corp.westsim.com* zone.
In the DNS console, right-click the zone and choose *Reload from Master*.
Your company's internal namespace is *westsim.local*. This domain has two additional child domains named *support.westsim.local* and *research,westsim.local*. Due to security concerns, your company's internal network is not connected to the Internet. Following are the DNS servers that you manage for your company: * Dns1, authoritative for *.* and *westsim.local*, IP address = 192.168.1.1 * Dns2, authoritative for *support.westsim.local* , IP address = 192.168.2.1 *Dns3, authoritative for *research.westsim.local* , IP address = 192.168.3.1
In the DNS snap-in, edit the properties for Dns2 and Dns3. On the Root Hints rab, remove all entries, then add an entry for Dns1.
You are the network administrator for *northsim.com*. The network consists of a single Active Directory domain. All the servers run Windows Server 2008 R2. All the clients run Windows 7. *Northsim.com* has one main site. A server named DNS1 provides DNS services to the domain and it hosting a single Active Directory Integrated zone named *northsim.com*.
In the properties of the Client1 host record, you should modify the *Security* tab.
You are the administrator of the *westsim.private* domain. The data for the *westsim.private* zone is stored in Active Directory. You have just opened a branch office in Phoenix. The branch office is connected to the main offices with a slow WAN link.
Increase the *Expires after* value to 4 days.
The image shows the current scavenging settings for *eastsim.com* domain. Host (A) records within the zone are configured to refresh themselves every 7 days. You notice that sometimes a host record will be removed from the database, even through the host still exists on the network. You need to make sure that records are only removed when the host no longer exists.
Increase the *refresh interval* setting.
You are the administrator for the Seattle office of WestSim Corporation. Zone information for the entire *westsim.com* domain is stored in a primary zone on the *Portland.westsim.com* server located in the Portland office.
Install a DNS server in the Seattle location. Configure it with a secondary zone of the *westsim.com* domain.
Your network has a single Active Directory domain named *westsim.local*. All *westsim.local* authoritative DNS servers are configured to forward DNS requests across a firewall to a public DNS server. All client computers of the *westsim.local* Active Directory domain, and are configured to use *westsim.local* authoritative DNS servers.
Install a caching-only DNS server in the Seattle site. Configure the new DNS server to forward all DNS requests to *westsim.local* authoritative DNS servers at company headquarters.
You are the independent computer consultant. You have been called in by your newest customer, SouthSim. SouthSim is redesigning the corporate network. The company network consists of a single domain named *southsim.local*. Three locations are in the company. Headquarters, Branch1, and Branch2. A single domain controller at company headquarters holds an Active Directory-integrated zone for *southsim.local*. DNS2 and DNS3 are Windows Server 2008 R2 servers configured as caching-only DNS servers.
Intall Active Directory on DNS2 and DNS3 and make them domain controllers of the existing domain.
Emma is a systems administrator for WestSim Corporation. The network has multiple domains with DNS, WINS, and DHCP services configured in each domain. All servers are running Windows Server 2008 R2 and all clients are running Windows 7. All hosts are members of the acct.westsim.com domain, the records of which are stored in a primary zone.
Manually create a PTR record in the 3.168.192.in-addr.arpa zone for each host.
Mary administers a network with ten Windows Server 2008 R2 servers and four UNIX servers. All servers have been manually assigned a static IP address. A single domain is used on the network. DC1 is a domain controller that holds an Active Directory-integrated zone for the entire network and provides DNS services for all hosts. DC2 provides DHCP services for network clients.
Manually create an A record in the DNS database for each UNIX server.
You are the network administrator for your company's network. Your network consists of 8 Windows Server 2008 R2 computers, 500 Windows 7 client computers, and 5 UNIX servers. One of your Windows Server 2008 R2 computers is your DNS server. The DNS zone is configured as an Active Directory-integrated zone. The DNS zone is also configured to allow dynamic updates.
Manually enter A (host) records for the UNIX servers in the zone database.
Mary is the network administrator for the Seattle location of the WestSim Corporation. The Seattle location has direct connection to the Portland location. The rest of the company's network is accessible through the link to the Portland site. Currently, computers in the Seattle location use the WSDNS4 server in the Portland location for DNS name resolution..
Modify the DHCP options so that clients use SEA7 for DNS lookups. Configure SEA7 to use WSDNS4 as a forwarder.
You administer a network with a single domain. The network has ten Windows 2008 R2 servers and four UNIX servers. All servers have been manually assigned a static IP address. DC1 and DC2 are domain controllers that hold active directory integrated zones for the domain and provide DNS services for all hosts. DC3 provides DHCP services for the network clients.
On DC1, edit the zone properties to allow zone transfers.
Your company's Internet namespace is *westsim.com*, and your company's internal namespace is *internal.westsim.com*. Your network has two Windows Server 2008 R2 DNS servers: DNS1 and DNS2. DNS1 is configured with a root zone and is authoritative for the *internal.westsim.com* domain. DNS2 is authoritative for the *westsim.com* domain.
On DNS1, delete the . zone.
You are a network engineer for your company. Your private network uses the namespace *private.westsim.com*. All servers run Windows Server 2008 R2. All client computers run Windows 7. You manage the DNS servers that are authoritative for the *private.westsim.com* zone. Two servers are authoritative for the zone: DNS1 hosts the primary DNS zone, and DNS2 holds a secondary copy of the zone.
On DNS2, right-click the zone and select *Reload from Master*.
Your Active Directory network uses an internal DNS namespace of *private.westsim.com*. Several other Active Directory domains also exist, which are children to the *private.westsim.com* domain. On the Internet, your company uses *westsim.com* for its public domain name.
On all DNS servers that are authoritative for the *private.westsim.com* zone or any child zone, create a forwarders list. Forward to DNS servers that are authoritative for the parent zone. Delete root hints to Internet DNS servers on all DNS servers that are authoritative for the *private.westsim.com* zone or any child zone.
Your network has a single domain named *southsim.com.* All client computers run Windows 7. DNS data for the domain is stored on the following servers: * DNS1 holds the primary zone for *southsim.com* * DNS2 and DNS3 hold the secondary zones for *southsim.com*
On all three servers, change the zone type of the DNS zone to Active Directory integrated.
You want to provide single-label name resolution on your network. You have a domain controller named DC3 that is also a DNS server. You take the following actions on DC3: 1. You enable GlobalNames support on DC3. 2.You create the GlobalNames zone as an Active Directory-integrated zone. 3. You manually create CNAME records for each host that requires single-label name resolution.
Run dnscmd with the */enableglobalnamessupport 1* option on both servers.
You manage the branch office for your company network. The branch office has a single Active Directory domain, *branch1.westsim.private*. All computers in the branch office are members of the domain. all client computers run Windows 7, and run only IPv6. The branch office consists of two subnets and 50 host computers. Each subnet has it's own DHCP server, while a single sever on Subnet2 is both the domain controller and DNS server. Dynamic updates are enabled on the DNS zone.
On each client on Subnet1, make sure that LLMNR is enabled.
You are the network administrator for *westsim.com*. The network consists of two Active Directory domains named *westsim.com* and *sales.westsim.com*. The DNS servers in the *westsim.com* domain are authoritative for the *westsim.com* DNS domain. The DNS servers in the *sales.westsim.com* domain are authoritative for the *sales.westsim.com* DNS domain. All the servers run Windows Server 2008 R2. All clients run Windows 7.
On the DNS servers in *westsim.com* you should create a delegation for *private.westsim.com* and point the delegation to the DNS servers that are authoritative for *private.westsim.com*.
You are the administrator for the *corp.westsim.com* domain. The network has two child domains, *acct.corp.westsim.com* and *sales.corp.westsim.com*. You need to configure DNS name resolution properties on the *Srv2.sales.corp.westsim.com* server.
On the DNS tab, configure custom search suffixes of *sales.corp.westsim.com, acct.corp.westsim.com, corp.westsim.com, and westsim.com*
You are the administrator for the *corp.westsim.com*. The network has two child domains, *acct.corp.westsim.com* and *sales.corp.westsim.com.* You need to configure DNS name resolution properties on the *Srv2.sales.corp.westsim.com* server. When an unqualified name is submitted for name resolution, you want the server to search using the following suffixes:
On the DNS tab, select *Approval parent suffixes of the primary DNS suffix*
You manage a network with a main office and one branch office. Each office has its own Internet connection, and the two offices are connected with a WAN link. All computers in the main office are members of the *westsim.private* domain. All computers in the branch office are members of the *Tulsa.westsim.private* domain.
On the DNS2, configure conditional forwarder for the *westsim.private* domain to forward all requests to DNS1.
Your company has an Internet domain of *westsim.com*. Your internal network has three Active Directory domains named *westsim.local*, *support.westsim.local*, and *research.westsim.local* You install a server named SL-SRV1 as a member of the *westsim.local* domain. You configure SL-SRV1 with a static IP address of 192.168.0.23. You configure the server to dynamically register its DNS name.
On the SL-SRV1 server, edit the advanced TCP/IP properties of the server's local area connection. Add a connection-specific suffix of *support.westsim.local*. Apply the changes, then run *Ipconfig /registerdns*.
You are a network engineer for your company. Your private network uses the namespace *private.westsim.com*. All servers run Windows Server 2008 R2. All client computers run Windows 7. You manage the DNS servers that are authoritative for the *private.westsim.com* zone. Two servers are authoritative for the zone: DNS1 hosts the primary DNS zone, and DNS2 holds a secondary copy of the zone.
On your computer, run *ipconfig /flushdns*
You need to create a DNS record that identifies a service, protocol, and port number. Which record type would you create?
SRV
Listed below are several DNS record types. Match the record type on the left with its function on the right...
SRV MX A PTR
The image shows the current scavenging settings for the *eastsim.com* domain. Automatic scavenging has been configured on the zone to run every hour. You want to modify the existing settings so that DNS records are deleted within 10 days after they have not been refreshed.
Set the refresh interval to 3.
You manage the branch office for your company network. The branch office has a single Active Directory domain, *branch1.westsim.private*. All computers in the branch office are members of the domain. All client computers run Windows 7. The branch office consists of two subnets and 50 host computers. Each subnet has its own DHCP server, while a single server on Subnet2 is both the domain controller and DNS server. Dynamic updates are enabled on the DNS zone.
Use LLMNR for clients on Subnet1, and a static HOSTS file entry for clients on Subnet2.
You are the network administrator for *northsim.com*. The network consists of a single Active Directory domain. All the servers run Windows Server 2008 R2. All the clients run Windows 7. *northsim.com* has one main office with 1,500 users. There are two domain controllers named DC1 and DC2, as swell as several file servers and an application server. DC1 hosts a standard primary zone for the *northsim.com* domain. A new corporate security policy requires that all clients perform Secure Dynamic Updates to DNS records. You open the Properties of the *northsim.com* forward lookup zone. However, the *Secure Only* option is missing from the Dynamic Updates drop-down combo box. You must ensure that all updates to the *northsim.com* DNS domain are secure.
You should convert the *northsim.com* zone to an Active Directory Integrated zone.
You are the network administrator for *westsim.com*. The network consists of a single Active Directory domain. All the servers run Windows Server 2008 R2. All the clients run Windows 7. Clients routinely access a web application on a server named *web1.westsim.com*. During the course of business day you receive complaints that users attempting to access *web1.westsim.com* were directed to an unknown IP address on the Internet. They accessed a web site that looked similar to the web application on *web1.westsim.com*, but provided no functionality.
You should implement the *DNS Cache Locking* feature.
You are the network administrator for *westsim.com*. The network consists of a single Active Directory domain. All the servers run Windows Server 2008 R2. All the clients run Windows 7. There is one main office and several branch offices, one of which is located in New York. The main office has four domain controllers and each branch office has two domain controllers. The domain controllers in the New York branch office are named NYDC1 and NYDC2.
You should restart the netlogon service on NYDC2.
You are the network administrator for *westsim.com*. The network consists of a single Active Directory domain. All the servers run Windows Server 2008 R2. All the clients run Windows 7. The company has one main office. There is one server named DNS1 with the DNS Server role installed.
You should set the *SocketPoolExcludedPortRanges* setting in the registry on the DNS servers to 49308-49308.
You are the network administrator for *northsim.com.* The network consists of a single Active Directory domain. All the servers run Windows Server 2003. All the clients run Windows XP. There is one main office located in New York. The main office is connected to the Internet using a T1 connection. The company has implemented a hardware based firewall between the internal network and the Internet. The internal DNS servers are set up to forward all Internet name queries to an external DNS server named DNS.ISP.com.
You should set the *SocketPoolSize* setting in the registry on the DNS servers to 0.
You are the manager for the *westsim.com* domain. All computers are members of the *westsim.com* domain. A single Windows Server 2008 R2 server is the domain controller and DNS for the domain. You have recently installed a new server, srv12, with IP address 192.168.3.199/24. You need to manually create a record in the DNS database that provides IP address-to-hostname resolution. which command would you use?
dnscmd /recordadd 3.168.192.in-addr-arpa 199 PTR srv12.westsim.com