Top 15 free samples 70-291 for client (91 to 105)

Question No. 91

You are the network administrator for your company. The network contains 100 Windows XP Professional computers. You configure a Windows Server 2003 computer named Dev1 as a DNS server. Dev1 has the IP address 192.168.1.2 and contains host (A) resource records for all network client computers that are located in the branch office. You install a Windows Server 2003 computer named Dev2 as a DHCP server. Dev2 is configured as shown in the following table. 


You install a DSL connection for Internet access. You configure a server named Dev3 as an Internet Connection Sharing (ICS) host with two network adapters. The network adapter that has the IP address 131.107.96.21 connects to the DSL modem, and the network adapter that has the IP address 192.168.0.1 connects to the LAN. The ISP's DNS server has the IP address 131.107.62.9. Your users report that they cannot access the Internet. You need to ensure that all users in the company can access the Internet through the ICS host. What should you do? 

A. Install the DNS service on Dev3, and configure 131.107.62.9 as a forwarder. 

B. Replace the DHCP scope on Dev2 with one that has a subnet mask of 

255.255.255.192. 

C. Remove DHCP from Dev2. 

D. Change the DHCP scope option 003 Default Gateway on Dev2 to 131.107.96.21. 

Answer:


Question No. 92

You are the network administrator for Humongous Insurance. The network consists of a single Active Directory domain named humongous.com. The domain contains Windows Server 2003 computers and Windows XP Professional computers. You configure several Group Policy objects (GPOs) to enforce the use of IPSec for certain types of communication between specified computers. A server named Server2 runs the Telnet service. A GPO is supposed to ensure that all Telnet connections to Server2 are encrypted by using IPSec. However, when you monitor network traffic, you notice that Telnet connections are not being encrypted. You need to view all of the IPSec settings that are applied to Server2 by GPOs. Which tool should you use? 

A. the IP Security Monitor console 

B. the IP Security Policy Management console 

C. the Resultant Set of Policy console 

D. Microsoft Baseline Security Analyzer (MBSA) 

Answer:


Question No. 93

DRAG DROP 

You are the administrator of an Active Directory domain. All servers run Windows Server 2003. All client computers run Windows XP Professional. The network is configured as shown in the exhibit. (Click the Exhibit button.) DC1 is configured as a DNS server for the domain named contoso.com. DC1 is configured to use ISP-DNS as a forwarder. A computer named NAT1 is a Network Address Translation (NAT) server. NAT1 provides Internet access for the entire company. You recently created a subnet named Subnet 10. You are configuring a DHCP server to support Subnet 10. You need to configure the DHCP server options for Subnet 10 to ensure that all users can access the Internet and internal resources. What should you do? To answer, drag the appropriate IP address or addresses to the correct location or locations in the work area. 


Answer: 


Question No. 94

Your network consists of a single Active Directory domain. You have a DHCP server named Server1 that runs Windows Server 2003 Service Pack 2 (SP2).You have a computer named Computer1 that runs Windows XP Professional Service Pack 3 (SP3). 

You need to administer the DHCP service on Server1 from Computer1. 

What should you do first? 

A. On Computer1, install adminpak.msi. 

B. On Computer1, at a command prompt run the Netsh command. 

C. On Server1, open the DHCP snap-in and select Export List. 

D. On Server1, open the DHCP snap-in and add Computer1 to the list of servers. 

Answer:


Question No. 95

Your network consists of a single Active Directory domain. All servers run Windows Server 2003 Service Pack 2 (SP2). 

You have two servers named Server1 and Server2. Both servers have Windows Server Update Services (WSUS) 3.0 installed. 

You need to configure WSUS so that Server2 uses Server1 as the upstream server. 

What should you do on Server2? 

A. From the command prompt, run wuauclt.exe. 

B. From the command prompt, run wsusutil.exe. 

C. From the Update Services console, run the WSUS Server Configuration Wizard. 

D. From the Local Computer Policy, specify the location on the intranet for the Microsoft update service. 

Answer:


Question No. 96

Your network consists of a single Active Directory domain named contoso.com.All servers run Windows Server 2003 Service Pack 2 (SP2). 

You plan to deploy a new DNS zone named adatum.com. 

You need to ensure that only computers in the contoso.com domain can update host records in the new DNS zone. 

What should you do? 

A. Create a new Active Directory forest named adatum.com. 

B. Create a new Active Directory-integrated zone named adatum.com. 

C. Create a new standard primary zone named adatum.com.Disable round robin. 

D. Create a new standard primary zone named adatum.com.Disable netmask ordering. 

Answer:


Question No. 97

Your company has two offices. 

The network consists of a single Active Directory domain. You have two domain controllers named DC2 and DC3. All servers run windows Server 2003 Service Pack 2 (SP2). The relevant portion of the network is configured as shown in the exhibit. (Click the Exhibit button.) 

You verify the IP configuration of Server1 as shown in the following Command Prompt window. 


You need to ensure that Server1 can locate a domain controller if a single server fails. 

Which IP configuration should you change on Server1? 

A. Add 10.10.0.2 as a DNS server. 

B. Add 10.10.0.2 as a WINS server. 

C. Add 10.11.0.20 as s WINS server. 

D. Add a second network adapter that has an IP address of 10.10.0.20. 

Answer:


Question No. 98

You are the network administrator for your company. A Windows Server 2003 computer named Router11 is used to connect the network to the Internet. You find out that some computers on the network are infected with a worm, which occasionally sends out traffic to various hosts on the Internet. This traffic always uses a certain source TCP port number. 

You need to identify which computers are infected with the worm. You need to configure a solution on Router11 that will perform the following two tasks: 

Detect and identify traffic that is sent by the worm. 

Immediately send a notification to a network administrator that the infected computer needs to be repaired. 

What should you do? 

A. Configure a Network Monitor trigger. 

B. Configure a Network Monitor capture filter. 

C. Configure a System Monitor alert. 

D. Configure a WMI event trigger. 

Answer:


Question No. 99

Your network consists of a single Active Directory domain. All servers run Windows Server 2003 Service Pack 2 (SP2). 

You have a DNS server named Server1 that hosts a primary zone for the domain. You have a DNS server named Server 2 that hosts a secondary zone for the domain. 

You discover that the resource records on Server2 are different from the resource records on Server1. 

You need to ensure that the resource records are the same on Server1 and Server2. 

What should you do? 

A. On Server2, select Reload in the DNS zone. 

B. On Server2, select Reload from Master in the DNS zone. 

C. On Server1, select Update Server Data File in the DNS zone. 

D. On Server1, deselect the Fail on load if bad zone data option. 

Answer:


Question No. 100

Your network consists of a single Active Directory domain named litwareinc.com.You have server named DC1 that runs Windows Server 2003 Service Pack 2 (SP2).DC1 has the DNS server role installed and is the only DNS server for the network. 

On DC1, you open the DNS snap-in as shown in the exhibit.(Click the Exhibit button.) 

At the command prompt, you run Nslookup www.contoso.com and receive the following error message; "*** 

Localhost can't find www.contoso.com: Non-existent domain." 

You need to ensure that you can connect to Internet hosts by using fully qualified domain names (FQDNs). 

What should you do? 

Exhibit: 


A. Delete the .(root) forward lookup zone. 

B. Delete the 192.168.1.x subnet reverse lookup zone. 

C. Create a new forward lookup zone named contoso.com. 

D. Enable the Disable recursion (also disables forwarders) setting. 

Answer:


Question No. 101

You are the network administrator for Margies Travel. The network consists of a single Active Directory forest that contains two domains named europe.margiestravel.com and namerica.margiestravel.com.The network contains Windows Server 2003 computers and Windows XP Professional computers. All client computers and 25 servers are dynamically assigned IP addresses by DHCP. All company computers are registered in either the europe.margiestravel.com DNS zone or the namerica.margiestravel.com DNS zone. All DNS servers contain copies of all zones. The written company network management policy states that computers cannot have duplicate host names. Client computers always connect to other computers by specifying only the name of the target computer. A fully qualified domain name (FQDN) is not required. You need to configure the client computers to ensure that all computer names can be resolved by using DNS without the domain name being specified. The configuration of client computers must be automated so that they do not need to be manually reconfigured if an additional domain is added to the forest.What should you do? 

A. Configure the Default Domain Policy Group Policy object (GPO) in each domain. Enable the Primary DNS Suffix policy setting in the GPO. 

B. Configure the Default Domain Policy Group Policy object (GPO) in each domain. Enable the DNS Suffix Search List policy setting in the GPO. 

C. Configure the 015 DNS Domain Name option on all DHCP scopes. 

D. Configure the Append these DNS suffixes option in the DNS client configuration of each client computer. 

Answer:


Question No. 102

You have a server that runs Windows Server 2003 Service Pack 2 (SP2) and Windows Server Update Services (WSUS) 3.0. 

You need to view the approved WSUS updates that have been superseded by newer updates. 

You want to achieve this goal by using the minimum amount of administrative effort. 

What should do you do? 

A. View the WindowsUpdate.log file. 

B. Create a new log view in Event Viewer. 

C. From Update Services, view the WSUS Updates update view. 

D. From Update Services, run an Update Status Summary report. 

Answer:


Question No. 103

You have a DNS server that runs Windows Server 2003 Service Pack 2 (SP2). You need to prevent the DNS server from resolving host names on the Internet. What should you do? 

A. Disable recursion. 

B. Create a stub zone. 

C. Disable round robin. 

D. Clear the DNS cache. 

Answer:


Question No. 104

You are an administrator of a single Active Directory forest that contains one domain. All servers run Windows Server 2003. A server named VPN1 is configured with Routing and Remote Access. VPN1 is configured to allow only inbound VPN connections that use L2TP. You assign the Server (Request Security) IPSec policy on VPN1. You configure the policy to use Kerberos and certificates for authentication. From a Windows XP Professional computer named Client1, which does not belong to the domain, you attempt to establish a VPN connection to VPN1 and receive the error message shown in the exhibit. (Click the Exhibit button.) You verify that the VPN ports on VPN1 are not being blocked by any intermediate devices. You need to configure Client1 to allow it to establish a VPN connection to VPN1. What should you do? 


A. Configure the VPN connection so that only L2TP IPSec VPN is enabled. 

B. Install a valid IPSec certificate in the local machine store. 

C. Assign the Client (Respond Only) IPSec policy. 

D. Assign the Server (Request Security) IPSec policy. 

Answer:


Question No. 105

DRAG DROP 

You are the administrator of an Active Directory domain. The domain contains a Windows Server 2003 computer named Serverl. Server 1 functions as a domain controller and a DNS server. The domain also contains a widows XP Professional client computer named Clientl. 

You need to establish a detailed record of as of the communications that occur when a typical member of the Domain users group named user1 logs on to the Active Directory domain from Clientl. You might need to use this information as a troubleshooting tool if communications between Client! and Server! are disrupted or degraded. You want to use Network Monitor to obtain this beseline information. 

What should you do? 

To answer, move the appropriate actions from the list of actions to the answer area, and arrange them in the correct order. 


Answer: 


Microsoft 70-291 Certification Sample Questions and Answers: http://www.braindumpsall.net/70-291-dumps/

P.S. New 70-291 dumps PDF: http://www.4easydumps.com/70-291-dumps-download.html