E-Book Content
Exam: 070-291 Title : Implementing, Managing and Maintaining a Microsoft Windows Server 2003 Network Infrastructure Ver : 10.15.03 070-291 QUESTION 1 You are the network administrator for CertKiller.com. A server named CertKillerSrvA functions as an intranet Web server for the human resources (HR) department. A server named CertKillerSrvB is a Microsoft Exchange 2000 Server mail server. The network configuration is shown in the exhibit. CertKillerSrvA contains confidential documents that must be accessed daily by users on only the 10.9.8.0 subnet. All users must be able to connect to CertKillerSrvB. You want to configure the TCP/IP properties of CertKillerSrvA to prevent any computer in the 10.9.7.0 subnet from establishing a session with CertKillerSrvA. What should you do? A. Configure CertKillerSrvA port filtering to block TCP port 80. B. Use Internet Connection Firewall (ICF) with no services selected. C. Configure CertKillerSrvA with a default gateway address of 10.9.8.6. D. Configure CertKillerSrvA with no default gateway address. Answer: D QUESTION 2 You are the network administrator for CertKiller. The network consists of a single Active Directory domain CertKiller.com. The domain contains 25 Windows server 2003 computers and 5,000 Windows 2000 Professional computers. You install and configure Software Update Services (SUS) on a server named CertKillerSrv. All client computer accounts are in the Clients organizational unit (OU). You create a Group Policy object (GPO) named SUSupdates and link it to the Clients OU. You configure the SUSupdates GPO so that client computers obtain security updates from CertKillerSrv. Three days later, you examine the Windowsupdate.log file on several client computers and discover that they have downloaded Windows security updates from only windowsupdate.microsoft.com. You need to configure all client computers to download Windows sec