單項選擇題

You are an administrator of a single Active Directory forest that contains one domain. All servers run Windows Server 2003. A server named VPN1 is configured with Routing and Remote Access. VPN1 is configured to allow only inbound VPN connections that use L2TP. You assign the Server （Request Security） IPSec policy on VPN1. You configure the policy to use Kerberos and certificates for authentication.From a Windows XP Professional computer named Client1， which does not belong to the domain， you attempt to establish a VPN connection to VPN1 and receive the error message shown in the exhibit. （Click the Exhibit button.）

You verify that the VPN ports on VPN1 are not being blocked by any intermediate devices. You need to configure Client1 to allow it to establish a VPN connection to VPN1.
What should you do？（）

A.Assign the Client （Respond Only） IPSec policy.
B.Assign the Server （Request Security） IPSec policy.
C.Install a valid IPSec certificate in the local machine store.
D.Configure the VPN connection so that only L2TP IPSec VPN is enabled.

你可能感興趣的試題

單項選擇題

You are the administrator of an Active Directory domain. All servers run Windows Server 2003. All client computers run Windows XP Professional. All computers are members of the domain.
The Secure Server （Require Security） IPSec policy is assigned to a file server named Server6. The policy is configured as shown in the exhibit. （Click the Exhibit button.）

Users report that they cannot access shared folders on Server6. Users were able to access shared folders on Server6 prior to the implementation of the IPSec policy.
You need to ensure that all client computers in the domain can access the shared folders on Server6. You must ensure that all communications between client computers and Server6 be encrypted.
What should you do？（）

A.On Server6， enable the All ICMP Traffic IP Security rule in the properties of the Secure Server （Require Security） IPSec policy.
B.On Server6， enable the IP Security rule in the properties of the Secure Server （Require Security） IPSec policy.
C.On all client computers， assign the Client （Respond Only） IPSec policy.
D.On all client computers， install an IPSec communication certificate in the local machine store.

單項選擇題

You are the network administrator for your company. All servers run Windows Server 2003. All servers are configured with static IP addresses. All client computers run Windows XP Professional. All client computers are configured as DHCP clients.The company has a main office and one branch office. The offices are separated by a router. A DHCP server is deployed in each office. The DHCP servers are named DHCP1 and DHCP2. You configure scopes on the DHCP1 and DHCP2 as shown in the following table.

You shut down DHCP1 for scheduled maintenance. While DHCP1 is shut down， client computers in both offices continue to receive correct IP address assignments from DHCP2.
You restart DHCP1. Several users report that when they restart their computers， they receive error messages stating that a duplicate IP address exists on the network.
You need to ensure that these error messages do not appear when you shut down and restart a DHCP server. You need to ensure that changes you make does not affect the current DHCP functionality.
What should you do？（）

A.On each DHCP server， configure a superscope that includes both DHCP scopes.
B.Configure the router between the offices to block all broadcasts.
C.Modify the Main scope on DHCP1 to include addresses 10.1.16.0 through 10.1.27.254. Modify the Branch scope on DHCP2 to include addresses 10.2.16.0 through 10.2.27.254.
D.Modify the Main scope on DHCP2 to include addresses 10.1.16.0 through 10.1.31.254. Modify the Branch scope on DHCP1 to include addresses 10.2.16.0 through 10.2.31.254.