1.You are the administrator for your company network, which contains a single Microsoft Windows 2000 domain. You add all the client computers in your finance department to an organizational unit (OU) named Finance.  You install and configure an ISA Server computer on the network for Internet access. You configure this computer to allow PPTP packets. You also configure all client computers on the network as SecureNAT clients. Users can now access external Web sites.  A VPN server named VPN-server1 is located at the main office of one of your business partners. Users in the finance department need to access VPN-server1, but they cannot establish a VPN tunnel to it.  You need to configure only the client computers in the finance department to connect to VPN-server1. What should you do? A: Deploy and assign MS_FWC.msi to the Finance OU.B: Deploy and publish the setup file for the Firewall Client software to the Finance OU.C: Configure each client computer in the finance department so that the address of the internal network adapter of your ISA Server computer is its default gateway.D: Configure Routing and Remote Access on VPN-server1. Enable TCP ports 1723 and 47 on this computer.Correct Answers:  A 2.You are hired to administer a Microsoft Windows 2000 network. This network was already configured before you began your job. The relevant portion of the current configuration is shown in the exhibit. (Click the Exhibit button.)  The current configuration includes an ISA Server computer named ISA1 and a Windows 2000 Server computer named RRAS1. Both ISA1 and RRAS1 provide VPN access to internal resources. ISA1 also provides firewall and caching services, and it is the Web server for your company's Internet site.  You now need to reconfigure WWW2, which is your internal Web server. WWW2 should be available to all employees, even if they are working from home. It requires a high level of security.  Your solution must provide public access to ISA1 and employee-only access to WWW2. It must also ensure the highest possible level of security.  What should you do?A: Change the TCP port used by the Web server component on ISA1. Create a Web publishing rule to use the new port. Decommission RRAS1. Configure ISA1 to act as a VPN server and to allow remote users to connect by using PPTP.B: Ensure that the Web server component on ISA1 uses the default TCP port. Create a Web publishing rule to use the default TCP port. Configure RRAS1 to act as a VPN server and to allow remote users to connect by using PPTP.C: Change the TCP port used by the Web server component on ISA1. Create a Web publishing rule to use the new port. Install a digital certificate on WWW2 to encrypt HTTP session traffic. Configure ISA1 to redirect HTTPS requests to WWW2.D: Ensure that the Web server component on ISA1 uses the default TCP port. Create a Web publishing rule to use the default TCP port. Configure WWW2 to use integrated Windows authentication. Configure ISA1 to redirect HTTP requests to WWW2.Correct Answers:  A 3.You are the administrator of your company network. You recently upgraded your Microsoft Proxy Server 2.0 computer to ISA Server. Before the upgrade, the Proxy Server computer was your Web server. It also published Web content on the Internet. After the upgrade, you discover that the Web server component on the ISA Server computer no longer functions.  You issue a command to view the active connections on the ISA Server computer. The output of the command is shown in the exhibit. (Click the Exhibit button.)  You want to restore Web server functionality to the ISA Server computer. You will use the Microsoft Management Console (MMC) to accomplish this goal.  Which two actions should you take? (Each correct answer presents part of the solution. Choose two.)A:In the MMC for Internet Information Services (IIS), change the port used by the Web server to TCP port 8080. Start the WWW Publishing Service.B:In the MMC for Internet Information Services (IIS), change the port used by the Web server to TCP port 81. Start the WWW Publishing Service.C:In the MMC for ISA Server, create a site and content rule that allows IP traffic to all internal destinations.D:In the MMC for ISA Server, create a Web publishing rule that redirects external HTTP requests to the internal network adapter of the ISA Server.E:In the MMC for ISA Server, create a packet filter that allows external traffic on the TCP port used for HTTP requests.Correct Answers:  B, D 4.You administer an array of ISA Server computers. This array makes your company's public Web site available to Internet users. The relevant portion of your network configuration is shown in the exhibit. (Click the Exhibit button.)  The ISA Server array has one Web publishing rule for incoming Web requests. Each array member is configured to use a cache of 5 GB. The Web servers use Network Load Balancing (NLB).  When you monitor network traffic between the ISA Server array and the Web servers, you notice that the same Web objects are cached by more than one of the array members.  You need to reconfigure your network so that the array behaves as one logical cache of 15 GB. What should you do?A: Configure NLB on the external network adapter of the three array members.B: Configure a single IP address for intra-array communication on each array member.C: Configure a cache load factor of 100 for each array member.D: Configure a routing rule on each array member to forward inbound requests to the other array members.E: Configure the array to resolve inbound Web requests within the array before routing.Correct Answers:  E 5.You are the administrator of your company network, which consists of a main office and three branch offices. Each branch office has a dedicated T1 connection to the main office. The main office has a T1 connection to the Internet. In addition, each branch office has a dedicated 128-Kbps DSL line for Internet connectivity.

本新闻共3页,当前在第1页  1  2  3