Feedback
Home
You may like this!
31.
You have a local DHCP server for your dial-in clients, but you also want to use the DHCP relay agent to forward requests to a remote DHCP server if the local server doesn’t answer a request. To do this, you must do which of the following?
  • A.
    Add a static route to the remote server.
  • B.
    Adjust the boot threshold on the DHCP relay agent interface for the remote network so that the local server has enough time to respond.
  • C.
    Adjust the DHCP Forwarding Time parameter in the registry.
  • D.
    Adjust the forwarding time in the DHCP Relay Agent Global Properties dialog box.
  • Answer & Explanation
  • Report
Answer : [B]
Explanation :
The boot threshold for an interface controls how long the relay agent will wait before forwarding DHCP requests it hears on that interface.
Report
Name Email  
32.
You are considering multilink PPP in order to increase bandwidth available for a dial-up client. Which of the following is not a benefit of multilink?
  • A.
    Multilink can make the client experience faster by combining multiple phone lines and creating one logical PPP connection.
  • B.
    Multilink enables the encryption of data between the client and the server.
  • C.
    Multilink can be relatively low in cost and can utilize existing infrastructure.
  • D.
    Multilink is easy to use and included in Windows Server 2012 R2 for both inbound and outbound calls.
  • Answer & Explanation
  • Report
Answer : [B]
Explanation :
Multilink PPP has nothing to do with encryption of data. Multilink is easy to set up, relatively low in cost, and it makes the connection faster.
Report
Name Email  
33.
Your company has offices in five locations around the country. Most of the users’ activity is local to their own network. Occasionally, some of the users in one location need to send confidential information to one of the other four locations or to retrieve information from one of them. The communication between the remote locations is sporadic and relatively infrequent, so you have configured RRAS to use demand-dial lines to set up the connections. Management’s only requirement is that any communication between the office locations be appropriately secured. Which of the following steps should you take to ensure compliance with this requirement? (Choose all that apply.)
  • A.
    Configure CHAP on all the RRAS servers.
  • B.
    Configure PAP on all the RRAS servers.
  • C.
    Configure MPPE on all the RRAS servers.
  • D.
    Configure L2TP on all the RRAS servers.
  • E.
    Configure MS-CHAPv2 on all the RRAS servers.
  • Answer & Explanation
  • Report
Answer : [C, E]
Explanation :
MS-CHAPv2 provides encrypted and mutual authentication between the respective RRAS locations. MPPE works with MS-CHAPv2 and provides encryption for all of the data between the locations. CHAP provides encrypted authentication, but MS-CHAPv2 is needed for MPPE to work. PAP is the lowest level of authentication providing passwords, but it sends passwords in cleartext, which is not the most secure solution. L2TP needs to team up with IPsec to provide the data encryption for the secure transfer of information between the locations.
Report
Name Email  
34.
Your small financial consulting company has a stand-alone Windows 2012 R2 server that provides a central location for your home-based consultants to upload and download spreadsheet files using Windows 8. A few of the consultants still use Windows XP Professional workstations. You want to set up VPN connections between the consultants and the RRAS server. The RRAS server is connected to a small peer-to-peer network of five Windows XP Professional workstations that use the network for storing files, including the files that the consultants are uploading and downloading. What authentication protocol should you use for the VPN?
  • A.
    CHAP
  • B.
    MS-CHAPv2
  • C.
    EAP-TLS
  • D.
    PAP
  • Answer & Explanation
  • Report
Answer : [B]
Explanation :
MS-CHAPv2 authentication allows you to create VPN connections with a stand-alone server using PPTP and MPPE. MPPE employs keys that are created via MS-CHAPv2 or EAP-TLS authentication. EAP-TLS is not the correct answer because only domain controllers or member servers support EAP-TLS. Stand-alone servers support only MPPE. Neither PAP nor CHAP is supported with MPPE.
Report
Name Email  
35.
You recently migrated your company’s Windows 2003 network to Windows Server 2012 R2. This migration includes 300 Windows 7 and Windows 8 workstations and 8 Windows Server 2012 R2 servers. Your company has just acquired another company with offices down the street. It has a Windows NT network that needs to be migrated to Windows Server 2012 R2 as well, and you have already begun to move the servers to the new operating system and associated services. Because you have a tight cap on expenses for network additions, you currently can’t afford leased lines between the buildings. Until you can get support for them, you are going to create a VPN that is both encrypted and authenticated between the two facilities over the Internet connections that already exist. What do you need to implement to achieve this goal? (Choose all that apply.)
  • A.
    L2TP
  • B.
    PPTP
  • C.
    IPsec
  • D.
    RADIUS
  • E.
    MS-CHAPv2
  • Answer & Explanation
  • Report
Answer : [A and C]
Explanation :
L2TP connections can be used to authenticate both sides of the VPN. L2TP needs IPsec to provide the encryption for the connection. These two together will provide the secure and authenticated transmission of data across the Internet between the two sites. PPTP connections provide encryption using only MPPE, but they don’t provide authentication between the machines. RADIUS is a service that provides dial-in connectivity. MS-CHAPv2 is an authentication protocol for clients accessing the network.
Report
Name Email