Windows Server 2003 – Network Infrastructure

  1. What is an open industry standard protocol that reduces the complexity of administering tcp/ip based networks?
    • DHCP
    • (p.3)
  2. What is based heavily on BOOTP?
    • DHCP
    • (p.3)
  3. What are my benefits for managing and maintaining a TCP/IP network?
    • Central Administration of IP Configuration
    • Dynamic Host Configuration
    • Seamless IP Host Configuration
    • Flexibility
    • Scalability
    • (p.3-4)
  4. What is the lease duration minimum?
    • 1 min
    • (p.5)
  5. What is the max lease duration if set?
    • 999 days
    • (p.5)
  6. What is the max duration of a DHCP lease?
    • unlimited
    • (p.5)
  7. When a client needs to obtain a lease waht is sent first?
    • (p.5)
  8. When will the client perform the initial lease process?
    • first boots up
    • after release of IP address
    • (p.6)
  9. What 2 MSG will always always get sent during lease process?
    • DHCP-ACK
    • (p.8)
  10. In order for a client to actually get the lease what is the msg that must be sent?
    • DHCP-ACK
    • (p.7)
  11. If the dhcp server cannot satisfy the clients request what does it send?
    • (p.9)
  12. When will the client first attempt to renew its lease?
    • T1 (50%)
    • (p.8)
  13. When is the second time the client will renew its lease?
    • T2 (87.5%)
    • (p.8)
  14. When is the last time the client will try to renew lease?
    • end of the lease
    • (p.8)
  15. Client tries to renew lease from the DHCP server it will try a total of?
    • 4 times
    • (p.8)
  16. If is not able to reach DHCP server what will it use next?
    • APIPA or
    • Alternate Configuration
    • (p.9)
  17. APIPA uses what range of IP address?
    • Class B
    • -
    • (p.11)
  18. APIPA uses what subnet mask?
    • (p.11)
  19. If the client starts to use APIPA will it continue to look for DHCP server?
    • yes every 5 min
    • (p.12)
  20. What is a DHCP server that has unauthorized server IP?
    • rogue
    • (p.13)
  21. Does a dhcp server have to be authorized to issue leases to clients?
    • yes in Active Directory
    • (p.13)
  22. What is a set of IP addresses and associated configuration information that can be supplied to a DHCP client?
    • dhcp scope
    • (p.16)
  23. Once a dhcp scope is defined and the exclusion rages get applied the remaining addresses are called?
    • pool
    • (p.17)
  24. Limited sequence of IP addresses within a scope range that will not be offered by the DHCP Server?
    • exclusion ranges
    • (p.17)
  25. What type of addresses would you use in an exclusion range?
    • static ip address
    • (p.17)
  26. What do you use to insure a specific hardware device on your network always get the same ip address?
    • reservation
    • (p.19)
  27. True/False Reservations need to be created outside the Scope?
    • False
    • (p.19)
  28. Should you exclude your reservations?
    • no
    • (p.19)
  29. You have a domain controller one is your DHCP Server and when you stared doing your scope options you put your scope range in and you excluded your domain controllers and you go to reservations and you put them in your reservations and now they don't work?
    • remove it from reservations because a dhcp server cannot lease its own ip address
    • (p.??)
  30. Should you exclude Domain controllers?
    • yes
    • (p.??)
  31. Can a printer be reserved with a permanent lease?
    • yes
    • (p.??)
  32. When you set a reservation give ip address you must associate with devices, what?
    • MAC address
    • (p.19)
  33. True/False - When you enter a MAC address us should use numbers and letters only?
    • true?
    • (p.19)
  34. How can you double your physical segments capacity for a physical network?
    • super scopes
    • (p.23)
  35. What enables clients to update their DNS dynamically?
    • DNS Dynamic Update
    • (p.32)
  36. If you have Windows2000 or later OS who updates the PTR records?
    • DHCP Server
    • (p.33)
  37. If you have a win 98 computer who updates the PTR records?
    • DHCP Server
    • (p.33)
  38. If you have a bunch of 2003, 2000, NT4 and 98 clients what do you have to do to make sure DHCP updates the A Records for those clients?
    • check the box "dynamically update DNS A and PTR records for DHCP clients that do not request updates"
    • (p.34)
  39. Secure dynamic updates are available in?
    • Active Directory-integrated zones
    • (p.35)
  40. If you want to force the client to renew its registration what can you do?
    • ipconfig /registerdns
    • (p.37)
  41. t/f - the dhcp server automatically back up the dhcp database by default?
    • true
    • (p.40)
  42. How often does the auto backup of the DHCP Server happen?
    • every 60 minutes
    • (p.40)
  43. What are the 2 types of backup for DHCP Database?
    • man and auto
    • (p.40)
  44. If i try to do a back up in man and then restore auto what is wrong?
    • need to restore man
    • (p.41)
  45. What is the process of verifying dhcp databases values against dhcp registry values?
    • reconciling
    • (p.42)
  46. What populates the client lease info from the database to the registry?
    • reconcile
    • (p.42)
  47. Where can you do reconcile from?
    • dhcp console
    • (p.42)
  48. If you want to recover unused space in the DHCP Database what will you use?
    • compacting
    • (p.43)
  49. If you have an audit log if the auto logging file is there but was not modified w/n the last 24 hours it will be?
    • overwritten
    • (p.50)
  50. If the DHCP Log has been modified it will?
    • be appended with new info at the bottom
    • (p.50)
  51. What is the primary name resolution protocol for Windows?
    • DNS
    • (p.62)
  52. What are the 4 benefits of DNS?
    • Scalability
    • Constancy
    • Ease of Use
    • Simplicity
    • (p.62)
  53. How is the root level domain expressed?
    • “.” - Root-level domain
    • (p.64)
  54. What do each node and leaf object in the domain namespace tree represents?
    • domain name
    • (p.63)
  55. How many levels in domain
    • 2
    • (p.64)
  56. How many levels in domain
    • 3
    • (p.64)
  57. The DNS name space has what type of structure?
    • Hierarchical
    • (p.63)
  58. What does each DNS domain name have to be?
    • Unique
    • (p.65)
  59. What is a FQDN?
    • Fully qualified domain name
    • (p.64)
  60. What type of lookup zone use FQDN to map hostname to IP address?
    • forward look-up zone
    • (p.70)
  61. Do valid zones need to be contiguous?
    • Yes
    • (p.66)
  62. What are the 4 standard zones?
    • Standard Primary Zones
    • Standard Secondary Zones
    • Zones
    • Stub Zones
    • (p.67-68)
  63. What zone is contained in Active Directory?
    • Active Directory-integrated Zones
    • (p.69)
  64. Of the standard zones which holds read/write copy?
    • Standard Primary Zones
    • (p.67)
  65. Which of the standard zones is there to identify the authoritative?
    • Stub Zones
    • (p.68)
  66. Which of the standard zones provides fault tolerance?
    • Standard Secondary Zones
    • (p.67)
  67. Which type of zone replicates zone information?
    • Active Directory-interrogated zone
    • (p.69)
  68. What are the 3 ways Active Directory replicates zones?
    • To all domain controllers in the domain
    • To all domain controllers that are DNS servers in the local domain
    • To all domain controllers that are also DNS server in the entire forest
    • (p.69)
  69. What type of lookup is needed if you have the ip and want the domain name?
    • Reverse Lookup Zones
    • (p.70)
  70. If server does not contain the requested data and is not authoritative for the name query it may perform recursive resolution and return a referral. What is this process?
    • Root Hints
    • (p.70)
  71. What contains the names and IP address of the DNS authoritative for the root zone?
    • root hints
    • (p.70)
  72. By default what is the name that DNS servers use for Root Hints file?
    • cache.dns
    • (p.71)
  73. If changes have to be made on a name server and then propagated what zone will it be?
    • Primary Name Server
    • (p.73)
  74. What server cannot be directly updated by the Primary Name Server?
    • Secondary Name Server
    • (p.73)
  75. Which server does not host any zones but are can fulfill client requests?
    • Caching-Only Server
    • (p.73)
  76. What is an A record?
    • Hostname
    • (p.76)
  77. What is represented by the NS record that in the parent zone that lists the authoritative DNS server hosting the child zone?
    • Delegation Record
    • (p.81)
  78. An “A” record in the parent zone for the authoritative DNS server hosting the child zone for the delegated subdomain?
    • Glue Record
    • (p.81)
  79. What resource record is used to advertise the servername and authoritative subdomain?
    • NS Record
    • (p.76)
  80. What is a DNS query sent to a DNS server in which the querying host requests it to return the best answer?
    • Iterative
    • (p.82)
  81. Which type of query stays inside your network?
    • Iterative
    • (p.82)
  82. What type of request is sent to the server and goes outside the network?
    • Recursive
    • (p.84)
  83. What is IXFR?
    • incremental zone transfer
    • (p.90)
  84. What kind of query can help you find out if you root hint is configured correct?
    • Recursive
    • (p.106)
  85. What command line tool that performs DNS queries and enables examination of the content of zone files on local and remote servers?
    • Nslookup
    • (p.107)
  86. What command line too is used to verify the configuration of DNS zones and to diagnose and solve name resolution problems?
    • Nslookup
    • (p.107)
  87. What command line tool can be used to resolve IP addresses to host names?
    • Nslookup
    • (p.108)
  88. What command line tool used to verify the consistency of a particular set of DNS records on multiple DNS servers?
    • Dnslint
    • (p.112)
  89. What command line tool can help you diagnose missing DNS and gives HTML file output?
    • DNSlint
    • (p.112)
  90. This command line tool performs most of the actions you can do in DNS console?
    • DNScmd
    • (p.115)
  91. If you are getting 500 hits per hour and you wanted to balance what would you use?
    • round robin
    • (p.119)
  92. When you have dynamic updates all are given a time stamp - if you manually change it and given value of 0. What looks for this and removes?
    • aging and scavenging
    • (p.123)
  93. What will let you see your dns at command line?
    • ipconfig /displaydns
    • (p.124)
  94. What is the way to purge dns?
    • ipconfig /flushdns
    • (p.124)
  95. What are the 4 security threats?
    • Footprinting
    • DoS – Denial of Service
    • Data Modification
    • Redirection
    • (p.125)
  96. What are the 3 DNS security levels?
    • low
    • medium
    • high
    • (p.125)
  97. What is the name of the log for DNS?
  98. This is a graphical tool that allows you to monitor and troubleshoot Active Directory replication.
    • replmon
    • (p.135)
  99. What determines what you can and cannot do on a network after authenticated?
    • authorization
    • (p.146)
  100. What proves you are who you say you are?
    • authentication
    • (p.146)
  101. What is to keep data secret?
    • confidentiality
    • (p.146)
  102. What ensures that data received are the same as data sent?
    • integrity
    • (p.146)
  103. What defines the type of access granted to a user or group for an object property?
    • permissions
    • (p.147)
  104. You can grant permissions to objects for what?
    • Groups, users, and special identities in the domain
    • Groups and users in and trusted domains
    • Local groups and users on the computer where the object resides
    • (p.147)
  105. What type of file system do you need to grant permissions to files and folders?
    • NTFS
    • (p.148)
  106. What if you want to set permissions on the folders only?
    • FAT32/NTFS
    • (p.148)
  107. What group is only in the forest domain?
    • Enterprise Admins
    • (p.151)
  108. What helps you efficiently and consistently apply security settings across your organization?
    • Security baseline
    • (p.152)
  109. What can you use to determine if your security settings are effective?
    • Auditing
    • (p.152)
  110. What is a means that you can see an attack in process?
    • Auditing
    • (p.152)
  111. What states that no user or object should have more privileges or access that necessary?
    • Principle of Least Privilege
    • (p.154)
  112. If you are an admin and login as a user what would you use to access admin rights?
    • run as
    • (p.155)
  113. Are encryption and compression mutually exclusive?
    • Yes
    • (p.161)
  114. Is encryption data secure when sent over the network?
    • No
    • (p.161)
  115. What utility has the ability to encrypt from command line?
    • cipher.exe
    • (p.162)
  116. How many security configuration tools are snapins?
    • 3
    • Security Config Analysis
    • Security Templates
    • Group Policy
    • (p.163)
  117. What is the command line tool that helps with Security configuration and analyze?
    • secedit.exe
    • (p.166)
  118. What refreshes Group Policy after updates?
    • gpupdate
    • (p.168)
  119. What is the first tool you should use when you want to verify the security status of computers on your network?
    • Microsoft Baseline Security Analyzer - MBSA
    • (p.169)
  120. What is the default lease duration?
    8 days
  121. What is the single required message in a DHCP request?
  122. If you have configured your DHCP server and no client is able to get to resources. What may be the problem?
    need to Activate Scope
  123. Where should you have DHCP Service (Server) installed?
    Domain Controller
  124. If you have a Windows XP workstations how will A Records and PRT be updated?
    • A Recored by client
    • PRT by DHCP
  125. Give an example of a top-level domain?
  126. What is a reverse lookup zone similar to in the standard zones?
  127. What are the 4 kinds of DNS Servers?
    • Primary
    • Secondary
    • Caching-Only
    • Master
  128. When a change is made to the Primary DNS Server who will initiate the transfer?
    Secondary (this is part of the notify list)
  129. If a DNS Server find a record what does it do with the answer?
    • puts it in the cache
    • (p.87)
  130. How would you improve DNS service on network without adding to network bandwidth?
    Caching-Only Server
  131. What is an AXFR?
    • full zone transfer
    • (p.90)
  132. What is the default name for the DNSlint output?
    • DNSlint.html
    • (p.112)
  133. Where does the Windows 2003 DNS server load its configuration from?
    • Active Directory Directory and server Registry
    • (p.122)
  134. What is the used to create Security Templates?
    • Security Templates snap-in MMC
    • (p.156)
  135. What is file created by the Security Templates?
    • .inf
    • (p.157)
  136. If the owners private key is not available and you need to recover an encrypted file what should you do?
    • recovery agent
    • recovery agent key
    • (p.163)
  137. Users are not able to get on the Internet but are able to get to local network. What would you need to check in the DNS Console?
  138. If you are trying to encrypt a file and it will not encrypt what could be the problem(s)?
    • FAT32 file system
    • File is compressed
    • (p.161)
  139. What are the two IPSEC modes?
    • transport
    • tunnel
  140. What mode uses site-to-site?
  141. What can be used in combination with ESP?
  142. What will you use to see bandwidth usage?
    task manager
  143. What has to be on to get alerts?
    alert service
  144. What has to be on to receive alerts?
    messanger service
  145. Where to you go to automate the start and stop of alerts?
  146. What command line tool would you use to see all listening ports?
    netstat -a
  147. What command line tool would you use to see all open ports?
    netstat -o
  148. What network monitor is included in Windows Server 2003?
    Network Monitor Lite
  149. What network monitor monitor needs to be installed on Windows Server?
    Network Monitor Standard
  150. What network monitor mode lets you see all traffic on the network?
  151. What are the things a computer must have to get on the Internet?
    • IP address
    • Subnet Mask
    • Default Gateway
    • DNS Server address
  152. What is a tool that can be used from the command line to perform a series of test on the network?
  153. What can be used used to perform a series of tools with just one click?
  154. What are the 3 methods to configure a service?
    • automatic
    • manual
    • disable
  155. What account is used to run most services?
    Local System account
  156. How do you start the performance monitor from the run command?
Card Set
Windows Server 2003 – Network Infrastructure
Windows Server 2003 – Network Infrastructure REVIEW (CH 1-2)