bundle

Question 1

You have an Active Directory domain that contains several Hyper-V hosts that run Windows Server 2016.
You plan to deploy network virtualization and to centrally manage Datacenter Firewall policies.
Which component must you install for the planned deployment?

Answer 1

Network Controller Server Role

Question 2

You have a server named Server1 that runs Windows Server 2016. Server1 is a Hyper-V host.
You have two network adapter cards on Server1 that are Remote Direct Memory Access (RDMA)-capable.
You need to aggregate the bandwidth of the network adapter cards for a virtual machine on Server1. The solution must ensure that the virtual machine can use the
RDMA capabilities of the network adapter cards.
Which command should you run first after DCB installed to setup with SET?

Answer 2

First make sure DCB is installed.

New-VMSwitch -Name SETswitch -NetAdapterName “SLOT 2”,”SLOT 3” -EnableEmbeddedTeaming $true

Question 3

what command enables RDMA on adapter?

Answer 3

Enable-NetAdapterRDMA “vEthernet (SMB_1)”,”vEthernet (SMB_2)” “SLOT 2”, “SLOT 3”

Question 4

You have two Hyper-v hosts, each host has a external vswitch. You want VM’s on each switch to not be able to packet capture on other hosts switch endpoints, and endpoints on its own switch?

Answer 4

Use Hyper-v network virtualization HNV. This helps with multi-tenant clients so they are separated from each other irrespective of host and switch they are on

Question 5

What is MPIO multi-path IO

Answer 5

Multipath I/O is a Windows Server 2016 feature that enables a server connected to iSCSI, Fi
bre
Channel, or Serial Attached SCSI (SAS) SAN devices to revert to an alternate path through
the network when a connection fails.

Question 6

What is datacenter bridging DCB

Answer 6

provides bandwidth allocation to specific network traffic improving Ethernet transport reliability

Question 7

Your company has 5,000 users who work remotely.
You have 40 VPN servers that host the remote connections for the users.
You plan to deploy a RADIUS solution that contains five RADIUS servers.
You need to ensure that client authentication requests are distributed evenly between the five RADIUS servers.
What should you do?

Answer 7

Deploy a RADIUS proxy to a new server. Configure all of the RADIUS clients to connect to the RADIUS proxy.

Question 8

Your network contains an Active Directory forest named contoso.com. The forest contains two domains named contoso.com and litwareinc.com.
Your company recently deployed DirectAccess for the members of a group named DA_Computers. All client computers are members of DA_Computers.
You discover that DirectAccess clients can access the resources located in the contoso.com domain only. The clients can access the resources in the litwareinc.com domain by using an L2TP VPN connection to the network.
You need to ensure that the DirectAccess clients can access the resources in the litwareinc.com domain.
What should you do?

Answer 8

From a Group Policy object (GPO), modify the Name Resolution Policy Table (NRPT).

Question 9

You want a server with RAS role installed to use another RADIUS server to authenticate to?

Answer 9

On that server in Routing and remote access configure authentication provider. basically setup this server as RADIUS client

Question 10

You want to configure server 2 as a radius proxy?

Answer 10

first add as RADIUS client
next create remote RADIUS server group
lastly create connection request policy

Question 11

You want to exclude certain mac address’s from getting a DHCP lease?

Answer 11

use a DHCP deny filter

Question 12

what 3 steps do you do to enable dns recursion scope?

Answer 12

disable default recursion and add recursion scope
Set-DnsServerRecursionScope -Name . -EnableRecursion $False
Add-DnsServerRecursionScope -Name “InternalAdatumClients” -EnableRecursion $True
finally you would set a query resolution policy
Add-DnsServerQueryResolutionPolicy -Name “RecursionControlPolicy” -Action ALLOW
-ApplyOnRecursion -RecursionScope “InternalAdatumClients” -ServerInterfaceIP
“EQ,10.24.60.254”

Question 13

how to enable response rate limiting

Answer 13

set-dnsserverresponseratelimiting
add-dnsserverclientsubnet
set-dnsserverresponseratelimitingexceptionlist

Question 14

when creating a nic team in a hyper-v vm what load balancing mode are you allowed to only use?

Answer 14

address hash

Question 15

what are the 3 load balancing modes for nic teams?

Answer 15

address hash, hyper-v port, and dynamic

Question 16

set teaming has only what mode?

Answer 16

hyper-v and dynamic

Question 17

in set teaming you have what teaming mode available?

Answer 17

switch independent

Question 18

You have a DHCP server named Server1.
Server1 has an IPv4 scope that serves 75 client computers that run Windows 10.
When you review the address leases in the DHCP console, you discover several leases for devices that you do not recognize.
You need to ensure that only the 75 Windows 10 computers can obtain a lease from the scope.
What should you do?

Answer 18

Create DHCP policy for scope

Question 19

BGP has already been setup. you want to setup multitenancy between vm’s what cmds do you run?

Answer 19

install-remoteaccess -multitenancy

enable-remoteaccessroutingdomain -name Tenant1 -type all -passthru

Question 20

You want to view the shared secret in a NPS template how do you view it?

Answer 20

export configuration to xml or run cmd below

get-npssharesecrettemplate

Question 21

if you need to resolve ip 192.168.5.10 to hello.com what kind of record should you create?

Answer 21

ptr record

Question 22

how do you authorize dhcp server using netsh

Answer 22

netsh dhcp add server

Question 23

how do you authorize dhcp server using powershell

Answer 23

Add-DhcpServerInDC -DnsName “dhcp01.contoso.com” -IPAddress 10.10.10.50

Question 24

how would you enable dns on nano server using dism?

Answer 24

Dism /online /Enable-Feature /FeatureName:DNS-Server-Full-Role /All

Question 25

Is virtual subnet ID the same as a vlan?

Answer 25

no it is different

Question 26

how to check virtual subnet ID?

Answer 26

get-vmnetworkadapter -vmname

Question 27

what four commands do you run to enable network controller cluster

Answer 27

install-windowsfeature
new-networkcontrollernodeobject
install-networkcontrollercluster
install-networkcontroller

Question 28

What cmd do you run to verify set is enabled?

Answer 28

Get-vmswitch

Question 29

You need to have direct access server accessed on feb.cont.com what command do you run in set-daentrypoint

Answer 29

Set-daentrypoint -computername

Question 30

Which authentication method do you use for always on vpn?

Answer 30

Protected eap