Chapt 2 Windows 8

Réussis tes devoirs et examens dès maintenant avec Quizwiz!

You administer a network with a single domain. The network has 10 Windows 2008 servers and 4 Unix servers. All servers have manually assigned a static IP address. DC1 &DC2 are domain controllers that hold Active Directory integrated zones for the domain and provide DNS services for all hosts. DC3 provides DHCP services for network clients. You decide to install a 3rd DNS server to improve redundancy and performance for DNS queries. Because of server workload issues, you decide to configure one of the Unix servers as the DNS server. You create a secondary zone on a Unix server and configure it to receive zone info from DC1. Later that day, you notice that the Unix DNS server does not hold any DNS records. What should you do?

On DC1 edit the zone properties to allow zone transfers

You manage a network with a main office and one branch office. Each office has its own internet connection and two offices are connected with a WAN link. All computers in the main office are members of the westsim.private domain. All computers in the branch office are members of the tulsa.westsim.private domain. The DNS1 server in the main office holds the primary zone for the westsim.private domain while the DNS2 server in the branch office holds the primary zone for the tulsa.westsim.private domain and for all internet hosts. However, they cannot resolve hostnames for hosts in the westsim.private domain. You need to allow hosts in the branch office to resolve names in the main office while still allowing internet name resolution and minimizing WAN traffic. What should you do?

On DNS 2 configure a conditional forwarder in the westsim.private domain to fwd all requests to DNS1

You manage a network with a main office and one branch office. Each office has its own internet connection and the two offices are connected with a WAN link. All computers in the main office are members of the westsim.private domain. All computers in the branch office are members of the tulsa.westsim.private domain. The DNS1 server in the main office holds a primary zone for the westsim.private domain while the DNS2 server in the branch office holds the primary zone for the tulsa.westsim.private domain. Clients in the branch office are able to resolve hostnames for the tulsa.wesim.private domain and for all internet hosts. However they cannot resolve hostnames for hosts in the westsim.private domain. You need to allow hosts in the branch office to resolve names for hosts in the main office while still allowing internet name resolution and minimizing WAN traffic. What should you do?

On DNS2 configure a conditional forwarder for the westsim.private domain to forward all requests to DNS1

You are a network engineer for your company. Your private network uses the namespace private.westsim.com. All servers run Windows 8. All client computers run Windows XP Professional. You manage DNS servers that are authoritative for the private.westsim.com zone. Two servers are authoritative for the zone:DNS1 Hosts the primary DNS zone and DNS2 holds a secondary copy of the zone. You use the DNS Console to manually create A resource record for a new webserver on your network that is configured with a static IP address. From your workstation you open a browser and try to connect the new Web server. You get an error message stating that the website is not found. You try to test from another workstation with success. You return to your workstation only to find that it still does not work. You run ipconfig/all and find your workstation is configured to use the DNS2 server as it's preferred DNS server. You want to be able to resolve the host name on your computer as soon as possible to verify it's working correctly. What should you do?

On DNS2 right-click the zone and select reload from master

You are the network manager for the westsim.private domain. The SRV1 server runs all file and print services for the network. In the DNS database, it has an A record that maps srv1.westsim.private to the IP address of 192.168.16.10. You want to create a PTR record that maps the IP address to the hostname. In which zone should you create the record?

16.168.192.in-addr.arpa

You administer a branch office connected to the main headquarters with a T-1 line. Servers in the branch office provide DNS WINS and DHCP services. The company network has multiple domains with a single domain representing the branch office. A DNS server called DC1 at the branch office holds the primary zone for the branch domain but holds no other zone files. DNS servers at headquarters provide name resolution for hosts in other domains. One day you come to work to find a number of customer service complaints. They all report something similar-clients can resolve local host names but cannot resolve host names for other domains in the network. You contact enterprise network admin are told the IP address for the DNS server that was being used previously as a forwarder at the branch office has been changed to 10.155.11.15. What should you do to correct the problem?

Configure DC1 to forward name resolution requests to 10.155.11.15

You manage the network for the westsim.com domain. The network uses both DNS and WINS for name resolution. Client computers are configured to try DNS for name resolution first and then try WINS if that fails. You would like to transition your network to use IPv6. You want to make sure that clients can contact hosts using single-label names that resolve to the IPv6 address for that host. You want to do this with the least amount of effort possible. What should you do?

Configure Global Names zone in DNS. Create CNAME records for each host pointing to the corresponding AAAA record

You are the systems admin for Westsim Corp. You have been assigned to set up new a new branch office in Tulsa. The branch will be represented by a single domain. The branch office is connected with a T-1 line to the rest of the network. You install a single DNS server called TulsaDNS and configure a primary zone for the branch office domain. You need to configure a DHCP server to deliver the IP address for TulsaDNS to network hosts as the primary DNS server. You test name resolution and find that hosts can only resolve names for hosts within the domain. You need to enable clients in the Tulsa location to resolve name for hosts in other domains within your private network. You need to minimize network traffic across the WAN link. What should you do?

Configure TulsaDNS to use forwarders

You manage a single private domain called westsim.private. All DNS servers run Windows 2008. Client computers run Windows Vista Business and are members of the westsim.private domain. Client computers have NetBT disabled and only use DNS name resolution. You have group group computers that use only NetBIOS names and do not use DNS. Your network does not have a WINS server. You need to enable all Vista client computers to resolve host names for the NetBIOS computers. What should you do?

Configure a GlobalNames Zone. Create records in the zone for all NetBIOS computers.

You administer a branch office connected to the main headquarters a T-1 line. Servers in the branch line office provide DHCP services. DNS servers at headquarters host Active Directory integrated zones to provide name resolution throughout the company. You want to improve name resolution performance for hosts in the branch office. You get permission to install a DNS server in the branch office. You want the server in the branch office to hold as much of the zone information as possible but you are instructed that the server must not host editable copies of the zone files. How should you configure the DNS server in the branch office?

Configure a secondary zone

Your private network consists of several domains. The Forest root domain is called westsim.local with add'tl domains representing each dept (such as accounting.westsim.local & sales.westsim.local) All domains are in the same tree. Servers on your network provide DHCP DNS and WINS. During a recent upgrade you decide to upgrade all servers to Windows Server 2008 and all client computers to Windows Vista Business. As part of the upgrade you remove the WINS servers from the network and disable NetBT on all client computers. Users have been use to contacting 3 servers with a single-label name. These servers named as follows: file1.it.westsim.local graphics.art.westsim.local iweb.hr.westsim.local You want to allow all users company wide to be able to contact these servers using the names file1 graphics and iweb. What should you do?

Create a GlobalNames Zone. Configure CNAME records in the zone for the 3 servers

You manage a network with a single active directory domain named eastsim.local. The network has the following domain controllers all running Windows Server 2008. dc1.eastsim.local dc2.eastsim.local dc3.eastsim.local dc4.eastsim.local All domain controllers are also DNS servers. In addition to managing the eastsim.local zone in DNS you are in charge of maintaining the eastsim.com zone. Both zones are integrated Active Directory Zone. You want all domains controllers to have a copy of the eastsim.local zone but only dc3 and dc4 should have a copy of the eastsim.com zone. How should you configure the eastsim.com zone?

Create a custom application partition. Choose the partition for replication scope.

You a systems admin for Westsim Corp. As part of a new security initiative, the IT dept has developed a custom app that reports the host name of all clients that try to access the three sensitive servers in the Acctg Dept. The application has been working fine for the last three months. The company expands and adds a new bldg with a LAN connection to the rest of the network. The bldg has its own subnet 192.168.5.0. You create a scope on an existing DHCP server for this subnet. During a random check of reporting software you discover that the app reports only the IP address but not the host name for clients on the new subnet. Everything works as designed for hosts on other subnets. You check the DNS database and find that none of the hosts on the subnet have an associated PTR record. What should you do?

Create a primary reverse lookup zone for subnet 192.168.5.0

You are the admin for the Creative Designs company. The network uses a single domain named codesign.com A single domain controller (CDDC1) holds an Active Directory integrated zone and provides DNS services. Recently, your company purchased a competitor company Design Limited Inc. Their network uses a single domain named diminitic.com with a single domain controller (DLIDC1) holding an Active Directory integrated zone. Domains for each company are currently in different forests. You connect the creative designs location to the Design Limited location with a T-1 line. You want to enable hosts at the Creative Designs locations to be able to resolve host names for hosts in the diminitic.com zone. You need to minimize hardware costs while maximizing DNS performance. How should you configure CDDC1 server at the Creative Designs location to enable clients to resolve names at Design Limited Inc?

Create a secondary zone of the dlimitinc.com zone on CDDC1

You are the system admin for EastSim Corporation controllers at headquarters host Active Directory integrated zones for domain eastsim.com domain. The company has recently purchased a small design company located in Tampa. The new company will become a branch office connected to headquarters with a T-1 line. You have been sent to integrate the branch office into the corporate network. The existing network in Tampa is using a UNIX BIND-based DNS server. Rather than replace this server, you decide to use it to provide name resolution for the branch office. You want all clients in the branch office to be able to resolve hostnames for all hosts in the eastsim.com. What should you do?

Create a secondary zone on the UNIX DNS server. Have it replicate data from one of the domain controllers configured as a DNS server

Your company has an internet domain of westsim.com. Your network has a single active directory domain named westsim.local. You manage your networks DNS servers for the westsim.com zone and the westsim.local zone. All domain name service (DNS) servers on your network run Windows Server 2008. Your company's Asia division wants its own internet name space and wants to manage its own DNS servers. The division will use asia.westsim.com as its internet domain name. You want to minimize administrative effort and communication between the two divisions as the Asia division installs DNS servers. To support this goal, you need to make appropriate configurations on the DNS servers that you manage. What should you do?

Create and configure a stub zone named asia.westsim.com

Your private network consists of several domains. The forest root domain is called westsim.local with additional domains representing each department (such as accounting.westsim.local and sales.westsim.local) All domains are in the same tree and all DNS servers run Windows Server 2008. All client computers run Windows XP Professional or Windows Vista Business. Each client computer is a member of a department domain. You have an intranet server whose fully-qualified domain name is iweb.it.westsim.local and IP address is 192.168.199.12. You want all users to be able to access this server using the URL: http://iweb. What should you do?

Create the GlobalNames zone. Create a CNAME record in the zone pointing to iweb.it.westsim.local

You manage a network with 2 locations, the main office is in Phoenix and a branch office is located in Tulsa. Srv1 is a DNS server in Phoenix and holds the primary zone for the eastsim.local zone. To improve name resolution requests in the branch office you place a secondary copy of the zone on the srv5 in the Tulsa location. Due to recent expansion you are adding more servers to the Phoenix location. For each server you manually create the A and PTR records. You find that after you add the server, computers on the Tulsa location are unable to contact the new servers for up to 10 minutes. You want to decrease the amount of time for changes to the zone to be transferred to the server in Tulsa. What should you do?

Decrease the refresh interval in the SOA record for the zone.

You manage the intranet servers for EastSim Corp. The company network has three domains: eastsim.com, asiapac.eastsim.com and emea.eastsim.com. You create a primary zone for the eastsim.com domain on the ns1.eastsim.com server. Two add'tl servers ns2.eastsim.com and ns3.eastsim.com hold secondary copies of the zone. One day the ns3 server fails. While it is offline you want to remove n3 as an authoritative server for the zone. What should you do?

Delete the NS record for server ns3

You manage a network with 2 locations: Denver and Phoenix. Both sites are connected with a WAN link. The network uses westsim.private as the domain name. The DNS1 server is located in the Denver location and has a primary copy for the westsim.private zone. The DNS2 server is located in Phoenix and is a secondary server for the zone. You notice that you add a new A records to the zone that users in Phoenix are unable to resolve the hostname for the new host up to 15 mins after the record has been added. you want to reduce this time so that hostnames can be resolved in Phoenix as soon as possible. What should you do?

Edit the zone properties on DNS1. On the SOA tab decrease the refresh interval Edit the zone properties on DNS1. On the zone transfers tab configure the zone to automatically notify listed name servers

You manage a network with two locations: the main office is in Phoenix and a branch office is in Tulsa. Srv1 is a DNS server in Phoenix and holds the primary zone for the eastsim.local zone. To improve name resolution requests in the branch office you place a secondary copy of the zone on Srv5 in the Tulsa location. Due to a recent expansion, you are adding more servers to the Phoenix location. For each server you manually create the A and PTR records. You find that after you add the server computers in the Tulsa location are unable to connect to the new servers for up to 10 mins. You want to make sure that the hosts in Tulsa can contact these servers using DNS as quickly as possible. What should you do?

Enable DNS notify on the zone on Srv1

The image shows the current scavenging settings for the eastsim.com domain. As you check records in the zone you find several records that have not been updated for 16 days or longer. You need to make sure that records are automatically removed if they have not been updated in the last 14 days. What should you do?

Enable automatic scavenging on the zone

You are setting up a network, in a single location with a single domain named eastsim.com. All servers run Windows Server 2008 and all clients run Windows Vista Business. You install a DHCP server and configure it with a scope for the single subnet. You install a DNS server with a primary zone for the domain. You want to use dynamic updates to update DNS records in the zone automatically. What should you do?

Enable dynamic updates on the eastsim.com zone

You manage DNS servers for the eastsim.com domain. You have a domain controller named DNS1 running Windows Server 2008 that holds a standard primary zone for the eastsim.com zone. You would like to configure DNS1 to use forwarders for all unknown zones. You edit the DNS server properties for DNS1. On the forwarders tab you find that the Use root hints if no forwarders are available option is disabled. You also find you are unable to edit the forwarders list. What should you do?

Enable recursion on DNS1

You are the network administrator for a single domain with three subnets. The network has DNS WINS and DHCP servers. Two subnets have all Windows XP Professional computers. The conference room uses the third subnet. Traveling salesmen come to the conference room and plug in their laptops to gain network access. You configure a DHCP server to deliver configuration info to hosts on this subnet. DNS is configured for dynamic updates. Over time you notice the size of the DNS database continues to grow. It is beginning to have an adverse effect on DNS server performance. What should you do?

Enable scavenging of stale resource records on the zone

You are a network engineer for a new company. The company will have offices in Denver Atlanta and Phoenix. All sites will be connected using the Wide Area Network (WAN) connections. The company will have a private network based on two active directory domains. All servers including domain controllers will run Windows Server 2008. All servers will be members of an Active Directory Domain. The company's research dept will be located in Phoenix and will have it's own Active Directory domain named research.corp.westsim.com. No other depts. will be located in Phoenix. All other depts will be in Denver or Atlanta and will be part of an Active Directory Domain named corp.westsim.com. According to the Active Directory design, all research.corp.westsim domain controllers will be located in Phoenix. Domain controllers for the corp.westsim.com domain will be located in Denver & Atlanta. Each company site will have at least one DNS server running on an Active Directory domain controller. All DNS servers will be on DC's. You are designing zone configuration requirements for the company's DNS Zones. As part of your security plan you must minimize the possibility of DNS data incorrectly modified by unauthorized servers that are impersonating actual servers. What should you do?

Enable secure dynamic updates on all Zones Integrate all zones in the Active Directory

You are a network engineer for a new company. The company will have offices in Denver Atlanta and Phoenix. All sites will be connected using the Wide Area Network (WAN) connections. All servers including domain controllers run Windows Server 2008 and are domain members. The company's research dept will be located in Phoenix and will have it's own Active Directory domain named research.corp.westsim.com.All other depts will be in Denver or Atlanta and will be part of an Active Directory Domain named corp.westsim.com. You are creating the DNS zones. All DNS servers are also domain controllers. You will use Active Directory integrated zones for both zones. As part of your security plan, you must prevent zone data from being transferred to rogue DNS servers that might seek zone transfers from valid DNS servers. You must also prevent eavesdropping of any DNS data replicated between DNS servers. What should you do?

For both zones, disable the Allow zone transfers option

You are network administrator for your company. Your company's internet name space is westsim.com. The private network has a Single Active Directory domain named private.westsim.com. Two Active Directory domain controllers run the Windows 2008 DNS server service and have Active Directory integrated zones for private.westsim.com. zone. A 3rd DNS server located in the remote site runs BIND version 8 and stores a secondary copy of the private.westsim.com zone. You want to prevent the possibility that a hacker inside your company network might capture DNS and IP addressing info on your network by installing a rogue secondary DNS server and configuring it to receive zone transfers from the primary.westsim.com zone. What should you do?

In the DNS console configure the private.westsim.com zone to allow zone transfers only to the remote BIND DNS server

You are a network admin for your company. The company's namespace is westsim.com The private network has a Single Active Directory domain named private.westsim.com. Two Active Directory domain controllers run Windows Server 2008 DNS server service and have Active Directory Integrated zones for private.westsim.com zone. A third DNS server is located in a remote site runs BIND version 8 and stores a secondary copy of the private.westsim.com zone. You want to prevent the possibility that a hacker inside your company network might capture DNS and IP addressing info on your network by installing a rogue directory secondary DNS server and configuring it to receive zone transfers from the primary private.westsim.com zone. What should you do?

In the DNS console configure the private.westsim.com zone to allow zone transfers only to the remote BIND DNS server.

You manage the DNS servers for the eastsim.com domain. You have a domain controller named DC1 running Windows Server 2008 that holds an Active Directory integrated zone for the eastsim.com zone. You opened a new branch office in Denver. The DNS namespace will use the denver.eastsim.com domain for the branch office. You want to configure a server in the Denver location to hold all DNS records for computers in that domain. An admin in the Denver office will manage the new domain. What should you do?

In the DNS console, on DC1, create a zone delegation for denver.eastsim.com

Your company's internal namespace is westsim.local. This domain has two add'tl child domains named support.westsim.local and research.westsim.local. Due to security concerns your company's internal network is not connected to the internet. Following the DNS servers that you manage for your company: DNS1 authoritative for . and westsim.local IP address = 192.168.1.1 DNS2 authoritative for support.westsim.local IP address= 198.168.2.1 DNS3 authoritative for research.westsim.local IP address- 198.168.3.1

In the DNS snap in edit the properties for Dns1 Dns2 Dns3. On the root hints tab remove all entries then add an entry for Dns1

The image shows the current scavenging settings for the eastsim.com domain. Automatic scavenging has been configured on the zone to run every hour. You want to modify the existing settings so that DNS records are deleted within 10 days after they have not been refreshed. What should you do?

Set the refresh interval to 3

The image shows the current scavenging settings for the eastsim.com domain. Host (A) records within the zone are configured to refresh themselves every 7 days. You notice that sometimes a host record will be removed from the database even though the host still exists on the network. You need to make sure that records are only removed when the host no longer exists. What should you do?

Increase the refresh interval setting

You are an independent computer consultant. You have been called by your newest customer Southsim. Southsim is redesigning the corporate network. The company network consists of a single domain named southsim.local Three locations are in the company: Headquarters, Branch1 and Branch2. A single domain controller at company headquarters holds an Active Directory-integrated zone for southsim.local. DNS2 and DNS3 are Windows Server 2008 servers configured as caching-only DNS servers. DNS name resolution has been very slow. You have been given the following two priorities: Speed up DNS name resolution Provide for redundancy of the DNS Info What should you do?

Install Active Directory on DNS2 and DNS3 and make them domain controllers of the existing domain

You are the admin for the Seattle office of Westsim Corp Zone information for the entire westsim.com domain is stored in a primary zone on the portland.westim.com server located in the Portland office. There is a T1 line between the Seattle and Portland office but the line is often saturated with heavy network traffic which makes name resolution for those in the Seattle office very slow. What can you do to improve DNS performance for computers in the Seattle office?

Install a DNS server in the Seattle location. Configure it with a secondary zone of the westim.com domain

You manage the DNS infrastructure for your network. Server Dns1 holds a primary zone for the research.westsim.com domain. Server Dns2 holds a primary zone for the sales.westsim.com domain. Both servers are also domain controllers. Computer configured to use Dns1 as the preferred DNS server are unable to resolve names for hosts in the sales.westsim.com domain. You need to enable Dns1 to resolve names for the hosts in that domain. Your company security policy states that DNS zone transfers are not allow between Dns1 and Dns2. What should you do?

On Dns1 configure a conditional forwarder for sales.westsim.com

You manage the DNS infrastructure for your network. Server DNS1 holds a primary zone for the westsim.com domain. Server DNS2 holds a primary zone for the sales.westsim.com domain. Both servers are also domain controllers. Computers configured do use DNS1 as the preferred to the DNS server are unable to resolve names for the hosts in the sales.westsim.com domain. You need to enable DNS1 to resolve names for hosts in that domain. Zone data for the sales.westsim.com domain should not be stored on the Dns1 server. What should you do?

On Dns1 create a zone delegation for sales.westsim.com

Your active directory uses an internal DNS names space of private.westsim.com Several other Active Directory domains also exist which are children to the private.westsim.com domain. On the internet, your company uses westsim.com for its public domain name. Your company manages its own DNS servers that are authoritative for the westsim.com zone. The private.westsim.com zone has been delegated to your company's active directory domain controllers which are also DNS servers. Computers are members of the private.westsim..com domain and all child domains must be able to resolve DNS names of internet resources. However to help secure your network DNS queries for resources in the private.westsim.com domain and all child domains must never be sent to Internet DNS servers. Queries for Internet names must go first to your public DNS server that is Authoritative for the westsim.com domain. You need to configure your company's DNS servers to meet these requirements. What should you do?

On all DNS servers that are authoritative for the private.westsim.com zone or any child zone create a forwarders list. Forward to DNS servers that are authoritative for the parent zone Delete root hints to internet DNS servers on all DNS servers that are authoritative for the private.westsim.com zone or any child zone

Your network has a single domain named southsim.com. All clients computers run Windows 7. DNS data for the domain is stored on the following servers: DNS1 holds the primary zone for southsim.com DNS2 & DNS3 hold secondary zones for southsim.com All 3 DNS servers are located on domain controllers. The DNS zone for the domain is configured to allow dynamic updates. You want to allow client computers to send DNS updates to any of the three servers and allow any of the three servers to update the DNS records in the zone. What should you do?

On all three servers change the zone typed of the DNS zone to the Active Directory integrated

You are the DNS manager for the Southsim.com domain. You want to configure your single DNS server so that it never uses forwarders for name resolution. What should you do?

On the DNS server disable recursion

You are the DNS manager for eastsim.com domain. You have setup a website server for your intranet that holds company information for use by the employees. Employees access the website using the URL: intraweb.eastsim.com Because the large number of employees you decide to configure three different web servers that will hold the intranet content. When users enter the URL in their browsers you want the DNS server to respond with the IP address of one of these servers. The DNS server should evenly use each of the three web addresses. What should you do?

On the DNS server enable DNS round robin Configure three different host (A) records for intraweb.eastsim.com with each pointing to a different server

You are the DNS manager for the southsim.com domain. You have a domain controller named DC1 running Windows Server 2008 that holds an Active Directory-integrated zone for the eastsim.com zone. Users have complained about multiple DNS name resolution errors. You have examined the configuration but can't see anything wrong. To help identify the problem, you would like to track the DNS packets sent and received by the server as well as filter by IP address. What should you do?

On the DNS server enable bug logging

You manage the DNS servers for the eastsim.com domain. You have a domain controller running Windows Server 2008 that holds an Active Directory integrated zone for the eastsim.com zone. A second DNS server runs on a Linux server. The server holds a secondary zone for the eastsim.com zone. You install a new printer named Print1 on the network. You move all printers to this new print server and configure all logon scripts to point to the shared printers on the new server. Many users are able to successfully use the new print server however some users report getting errors that the Print1 server can't be found. For users who have the problem, their computers are configured to use the Linux server as their primary DNS server. You must correct the problem as quickly as possible . What should you do?

On the Linux server initiate zone transfer to the eastsim.com zone.

You are a network engineer for a new company. The company previously installed a DNS server to manage the company's public namespace. The DNS server runs BIND version 8.2. To provide fault tolerance you install a 2nd DNS server on a Windows Server 2008 Computer. You reconfigure the zone types so the Windows 2008 DNS Server has the primary zone and the and the BIND DNS server has a secondary zone. The BIND DNS server has an IP address of 45.25.0.2. As part of your security plan you must prevent zone data from being transferred to rogue DNS servers that might seek zone transfers from either of the company's public DNS servers. You must also prevent eavesdropping of any DNS data replicated between DNS servers. What should you do?

On the Windows Server 2008 DNS Server restrict zone transfers to the IP address of 45.25.0.1 Create IPsec tunnel between the company's two public DNS servers

You manage the DNS servers for a network with a single domain named westsim.com. You currently have 4 domain controllers, DC1 DC2 DC3 and DC4. You create an active directory integrated DNS zone named sales.westsim.com. You want the zone data to only be replicated between DC2 & DC3. What should you do first?

Run dnscmd dc2 /CreateDirectoryPartition sales.westsim.com

You are the network admin for SuperiorFlour.com. The network consists of Active Directory domains including Cookies.SuperiorFlour.com and Crackers.SuperiorFlour.com. All servers run Windows Server 2008 R2. All clients run Windows 7. Management has decided to implement a new domain for a new product division that sells diet friendly bakery products. The new domain will be named SlimTasty.com and will belong to the SuperiorFlour.com forest. You create a new active directory integrated zone using the default settings on a server named DNS1 to host the records for the new domain. You must ensure that all users in the SuperiorFlour.com forest can resolve SlimTasty.com names.

Run the dnscmd DNS1 /zonechangedirectorypartition SlimTasty.com /forest command

You manage the DNS servers for the eastsim.com domain. You company has just acquired a competitor. The competitor network uses a single domain named widgets.local. The new company is located in Denver. You connect your site to the Denver location using a WAN link. You want computers in your location and domain to be able to resolve names for computers in the widgets.local domain. You want to minimize zone transfer traffic but you also want to make sure that changes to name servers in Denver location do not disrupt name resolution. You need to configure your DNS servers in the eastsim.com domain. What should you do?

configure a stub zone to widgets.local

You manage the DNS servers for the eastsim.com domain. You have a domain controller named DC1 running Windows Server 2008 that holds an Active Directory integrated zone for the eastsim.zone You would like to configure DC1 to use fowarders and root name servers to resolve all DNS name requests for unknown zones. You edit the DNS servers properties for DC1. On the forwarders tab you find that the use root hints if no forwarders are available option disabled. You find the entire root hints tab is disabled and you are unable to add any root hint servers. You need to configure the server to use the internet root name servers for name resolution. What should you do?

delete the zone named . on DC1

You company has offices in Denver, Atlanta and Phoenix. All sites are connected using WAN connections. All servers including domain controllers run Windows Server 2008 and are domain members. The company's research dept is located in Phoenix and has its own Active Directory domain named research.corp.westsim.com. All other departments are located in Denver or Atlanta and are part of the corp.westsim.com domain. You are creating DNS zones. All DNS servers are also domain controllers. You will use Active Directory integrated zones for both zones. As part of your security plan you must prevent zone data from being transferred to rogue DNS servers that may seek zone transfers from valid DNS servers. You must also prevent eavesdropping of any DNS data replicated between DNS servers. What should you do?

for both zones disable the allow zone transfers option

You want to provide a single-name resolution on your network. You have a domain controller named DC3 that is also a DNS server. You take the following actions on DC3: You enable GlobalNames support on DC3. You create the GlobalNames zone as an Active Directory integrated zone You manually create CNAME records for each host that requires single-label name resolution

run dnscmd with the /enableglobalnamessupport 1 option on both servers.


Ensembles d'études connexes

Lab Practicum #2 Question Set - 7. Oxidase Test

View Set

Alabama Insurance License- Alabama Insurance Law Common to All Lines

View Set

Life insurance - practice test questions

View Set

Chapter 17 Objectives Anatomy and Physiology II

View Set

Functional Assessment and Behavior Intervention Plans

View Set

Chapter 9- Nail Structure and Growth

View Set

Pathopharmacology 1: Musculoskeletal System (University of Toledo)

View Set

Ch 23: Management of Patients with Lower Respiratory Tract Disorders,

View Set

4.1 Furthering Your Customer Service Skills

View Set

Depth of Field and Camera Lenses

View Set