- Home
- Server Administration
- Windows
- Administering Windows server 2012 (70-411)
21.
You are the network administrator for the ABC Company. Your network consists of
two DNS servers named DNS1 and DNS2. The users who are configured to use DNS2
complain because they are unable to connect to Internet websites. The following table
shows the configuration of both servers:
DNS1 DNS2
________________________________________________________________________________________________
_msdcs.abc.comabc.com .(root)_msdcs.abc.comabc.com ________________________________________________________________________________________________
The users who are connected to DNS2 need to be able to access the Internet. What needs to be done?
DNS1 DNS2
________________________________________________________________________________________________
_msdcs.abc.comabc.com .(root)_msdcs.abc.comabc.com ________________________________________________________________________________________________
The users who are connected to DNS2 need to be able to access the Internet. What needs to be done?
- A.Build a new Active Directory Integrated zone on DNS2.
- B.Delete the .(root) zone from DNS2 and configure conditional forwarding on DNS2.
- C.Delete the current cache.dns file.
- D.Update your cache.dns file and root hints.
- Answer & Explanation
- Report
Answer : [B]
Explanation :
Explanation :
| Because of the .(root) zone, users will not be able to access the Internet. The DNS forwarding option and DNS root hints will not be configurable. If you want your users to access the Internet, you must remove the .(root) zone. |
22.
You are the network administrator for a large company that has one main site and one
branch office. Your company has a single Active Directory forest, ABC.com. You have a
single domain controller (ServerA) in the main site that has the DNS role installed. ServerA
is configured as a primary DNS zone. You have decided to place a domain controller
(ServerB) in the remote site and implement the DNS role on that server. You want to
configure DNS so that if the WAN link fails, users in both sites can still update records and
resolve any DNS queries. How should you configure the DNS servers?
- A.Configure ServerB as a secondary DNS server. Set replication to occur every 5 minutes.
- B.Configure ServerB as a stub zone.
- C.Configure ServerB as an Active Directory Integrated zone and convert ServerA to an Active Directory Integrated zone.
- D.Convert ServerA to an Active Directory Integrated zone and configure ServerB as a secondary zone.
- Answer & Explanation
- Report
Answer : [C]
Explanation :
Explanation :
| Active Directory Integrated zones store their records in Active Directory. Because this company has only one Active Directory forest, it’s the same Active Directory that both DNS servers are using. This allows ServerA to see all of the records of ServerB and allows ServerB to see all the records of ServerA. |
23.
You are the network administrator for a midsize computer company. You have a single
Active Directory forest, and your DNS servers are configured as Active Directory Integrated
zones. When you look at the DNS records in Active Directory, you notice that there are
many records for computers that do not exist on your domain. You want to make sure that
only domain computers register with your DNS servers. What should you do to resolve this
issue?
- A.Set dynamic updates to None.
- B.Set dynamic updates to Nonsecure And Secure.
- C.Set dynamic updates to Domain Users Only.
- D.Set dynamic updates to Secure Only.
- Answer & Explanation
- Report
Answer : [D]
Explanation :
Explanation :
| The Secure Only option is for DNS servers that have an Active Directory Integrated zone. When a computer tries to register with DNS dynamically, the DNS server checks Active Directory to verify that the computer has an Active Directory account. If the computer that is trying to register has an account, DNS adds the host record. If the computer trying to register does not have an account, the record gets tossed away and the database is not updated. |
24.
Your company consists of a single Active Directory forest. You have a Windows Server
2012 R2 domain controller that also has the DNS role installed. You also have a Unixbased
DNS server at the same location. You need to configure your Windows DNS server to
allow zone transfers to the Unix-based DNS server. What should you do?
- A.Enable BIND Secondaries.
- B.Configure the Unix machine as a stub zone.
- C.Get-Convert the DNS server to Active Directory Integrated.
- D.Configure the Microsoft DNS server to forward all requests to the Unix DNS server.
- Answer & Explanation
- Report
Answer : [A]
Explanation :
Explanation :
| If you need to complete a zone transfer from Microsoft DNS to a BIND (Unix) DNS server, you need to enable BIND Secondaries on the Microsoft DNS server. |
25.
You are the network administrator for Stellacon Corporation. Stellacon has two trees in
its Active Directory forest, stellacon.com and abc.com. Company policy does not allow
DNS zone transfers between the two trees. You need to make sure that when anyone in
abc.com tries to access the stellacon.com domain, all names are resolved from the stellacon.
com DNS server. What should you do?
- A.Create a new secondary zone in abc.com for stellacon.com.
- B.Configure conditional forwarding on the abc.com DNS server for stellacon.com.
- C.Create a new secondary zone in stellacon.com for abc.com.
- D.Configure conditional forwarding on the stellacon.com DNS server for abc.com.
- Answer & Explanation
- Report
Answer : [B]
Explanation :
Explanation :
| Conditional forwarding allows you to send a DNS query to different DNS servers based on the request. Conditional forwarding lets a DNS server on a network forward DNS queries according to the DNS domain name in the query. |