Configure Network Services and Access Flashcards

1
Q

How would you add a New Mail Server record on DNS?

A

PS: Add-DnsServerResourceRecordMx

CMD: Dnscmd

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

When viewing an SRV Record…

  1. What is the priority of the Servers?
  2. What is the weight?
  3. What port is it using?
A

priority= 0

weight= 100

port= 389

Weight: A load-balancing mechanism that is used when selecting a target host from those that have the same priority. Clients randomly choose SRV records that specify target hosts to be contacted, with probability proportional to the weight

Priority: The priority of the server. Clients attempt to contact the server with the lowest priority.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q
  1. What would make the server DC1.corp.net be used less?
  2. What would make the server DC1.corp.net be used more?
A
  1. Change the priority to a higher number. (I.E. 50)
  2. Change the priority of DC2 & DC3 to a higher number (I.E. 50)

priority= 0

weight= 100

port= 389

Weight: A load-balancing mechanism that is used when selecting a target host from those that have the same priority. Clients randomly choose SRV records that specify target hosts to be contacted, with probability proportional to the weight

Priority: The priority of the server. Clients attempt to contact the server with the lowest priority.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Looking at the Attached image

  1. What does the SRV Priority do?
  2. What does the SRV Weight do?
  3. What does the SRV Port do?
A

priority= 0

weight= 100

port= 389

Weight: A load-balancing mechanism that is used when selecting a target host from those that have the same priority. Clients randomly choose SRV records that specify target hosts to be contacted, with probability proportional to the weight

Priority: The priority of the server. Clients attempt to contact the server with the lowest priority.

Port: The port where the server is listening for this service.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

You have servers that have the same name configured in DNS. You need to make sure that if one goes offline, another can respond to the users. Response time needs to be reduced. What should you do?

A

Decrease the Time to Live on the web servers’ records

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

When would you use IKEv2/IPSec vs L2TP/IPsec?

A

When you want automatic resoration of a connection after a brief intrruption

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q
  1. What is a DNS Primary Zone?
  2. How many Primary Zones can you create?
A
  1. A read/write copy of DNS.
  2. Only 1
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What is a DNS Secondary Zone?

A

A Read Only copy of the DNS Zone

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What is a DNS Stub Zone?

A

Creates a copy of a Zone containing only:

  • Name Server
  • State of Authority
  • A Records

Non-Authoritative Zone

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

How do you create a primary DNS Zone?

A
  1. Select Forward Lookup Zone
  2. Right click New Zone…
  3. Select Zone Type (Primary)
  4. Create a Zone Name
  5. It will then create a new zone file with the Zone file name
  6. Select Security (AD Integrated, NonSecure/Secure, No Dynamic Updates)
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q
  1. How do you create a Secondary Zone?
  2. Can you store it in Active Directory?
A
  1. Creating a Secondary Zone
    1. Right Click on, Forward Lookup Zone
    2. Select New Zone…
    3. Select a Zone Type - Secondary Zone
    4. Create a Zone Name
    5. Select a Master Server
    6. You then need to the Master Server and Select the Zone Properties, Zone Transfers Tab and Add to the list for Allow Zone Transfers
  2. Can you store it in AD?
    1. No
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q
  1. How do you create a Stub Zone?
  2. Can you store it in AD?
A
  1. Stub Zone Creation
    1. Select how you want zone data replicated
      1. All DNS Servers running on a Domain Controller - Forest Replication
      2. All DNS Servers running on a Domain Controller - Replication
      3. All DCs in the Domain
      4. Specified Domain Controllers
    2. Select a Zone Name
    3. Select a Master DNS Server
  2. Yes
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

How do you create a Conditional Forwarder?

A
  1. Select a DNS Domain
  2. Enter the IP or Server FQDN
  3. Select to store it in AD
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

What does DNS Zone Delegation do?

A

Allows child domains to controll there own DNS. Because Lab.net is responsible for all domains ending in Lab.net

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

How would you delegate a DNS zone?

A

On the DNS Server

  1. Select the DNS zone you would delegate
  2. Right click, Select New Delegation…
  3. Specifiy the child domain you want delegated
  4. Enter the FQDN and the IP Address for the server

Then on the Child Domain DNS Server

  1. Create a New Zone using the child namespace
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

How do you configure zone transfer settings?

A
  1. Right Click on the Zone and select Properties
  2. Select the Zone Transfers Tab
  3. Select Allow Zone Transfers
    1. Select One of the Following:
      1. Any Server
      2. Servers listed on the Name Server Tab
      3. Only to the following Servers
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q
  1. How do you configure DNS Notify Settings?
  2. What does DNS Notify Do?
A
  1. Notify Settings
    1. One the Zone Properties, on the Zone Transfers Tab, Select Notify…
    2. Select Either
      1. Servers listed on the Name Server Tab
      2. Only the Servers listed here
  2. Notifies other DNS Servers of changes made in between Replication
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
18
Q

DNS Records

  1. What does a SOA Record stand for?
  2. What is different about the SOA record?
A
  1. SOA - Start of Authority
  2. It is a tab on the Zone properties and is the first record created in the Zone
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
19
Q

What informaiton is on the SOA Record?

A
  • Serial Number
  • Primary Server
  • Responsible Person
  • Refresh Interval
  • Retry Interval
  • Expires After
  • Minimum TTL
  • TTL for this record
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
20
Q

On the SOA Record

  1. What does the Serial Number do?
  2. What does the Primary Server do?
  3. What does the Responsible person used for?
A
  1. Used for keeping track of replication between servers
  2. What server is primary
  3. Used for contacting owner of DNS Zone
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
21
Q

On the SOA record

  1. What does the Refresh Interval do?
  2. What does the Retry Interval do?
  3. What does the Expires After do?
  4. What does the Minimum TTL do?
  5. What does the TTL for this record do?
A
  1. How long between the DNS servers replicate any changes
  2. Used for how long it will wait to retry if the refresh failed
  3. Used for if after this period of time the server has been upable to refresh it marks its data as stale and stops responding to queries
  4. Time to Live - how long someone can cache a query
  5. How long a client can cache the DNS SOA record
22
Q
  1. What is a Name Server Record in DNS?
  2. How is it different from other types of records?
A
  1. It lists all of the Name Servers that are hosting that zone
  2. It is a tab on the Zone properties
23
Q

What do Service Records do?

A

They point back to a A or AAAA record with a Server Name

24
Q

What creates SRV records?

A

The Net Logon Service

25
Q

What CMDs should you run?

How do you recreate SRV types if you accidently delete them?

A

Run the following CMD

  • net stop netlogon
  • net start netlogon
26
Q
  1. How do you Configure DNS Scavenging?
  2. When do records get deleted?
A
  1. How do you Configure DNS Scavenging?
  • You select the Server
  • Right Click, Select Set Aging/Svanenging for All Zones…
  • Select Scavenge Stale resource records
    • Select a No-refresh Interval
    • Select a Refresh Interval
  1. Records get deleted once it has gone past the (No-Refresh + Refresh Interval)
27
Q

Why would you turn TTL down?

A

You would use for round robin, so that a web server (if more than 1 are used) is not hit constantly. The computer would look up the web server in DNS and round robin switches which server you hit

28
Q

How do you set the deafult TTL for newly created records?

A

Edit the SOA TTL and that will affect only newly created records

29
Q

When is DNS Secure Only Dynamic Updates Avalible?

A

Only when the DNS Zone is Active Directory Integrated

30
Q

What does the following PowerShell CmdLet Do?

Add-DnsServerResourceRecord

A

Adds a resource record of a specified type to a specified DNS zone.

31
Q

What does the following PowerShell CmdLet Do?

Add-DnsServerResourceRecordA

A

Adds a type A resource record to a DNS zone.

32
Q

What does the following PowerShell CmdLet Do?

Add-DnsServerResourceRecordAAAA

A

Adds a type AAAA resource record to a DNS server.

33
Q

What does the following PowerShell CmdLet Do?

Add-DnsServerResourceRecordCName

A

Adds a type CNAME resource record to a DNS zone.

34
Q

What does the following PowerShell CmdLet Do?

Add-DnsServerResourceRecordDS

A

Adds a type DS resource record to a DNS zone.

35
Q

What does the following PowerShell CmdLet Do?

Add-DnsServerResourceRecordDnsKey

A

Adds a type DNSKEY resource record to a DNS zone.

36
Q

What does the following PowerShell CmdLet Do?

Add-DnsServerResourceRecordMX

A

Adds an MX resource record to a DNS server.

37
Q

What does the following PowerShell CmdLet Do?

Add-DnsServerResourceRecordPtr

A

Adds a type PTR resource record to a DNS server.

38
Q

What does the following command do?

dnscmd /recordadd

A

adds a resource record to a zone.

39
Q

What does the following command do?

dnscmd /recorddelete

A

removes a resource record from a zone.

40
Q

What does the following command do?

dnscmd /createdirectorypartition

A

creates a DNS application directory partition.

41
Q

What does the following command do?

dnscmd /deletedirectorypartition

A

deletes a DNS application directory partition.

42
Q

What does the following CMD do?

dnscmd /config /RoundRobin 1

A

set dns server to use roundrobin order for returning A records

43
Q

What Role Services can you install with Remote Access?

A
  1. DirectAccess and VPN (RAS)
  2. Routing
  3. Web Application Proxy
44
Q

How do you configure NAT?

A
  1. Open up Routing and Remote Access Console
  2. Select and Right Click the Server
  3. Select Configure and Enable Routing and Remote Access
  4. Select NAT (Network Address Translation)
  5. Select which interface connects to the internet
45
Q

How do you configure VPN?

A
  1. Open up Routing and Remote Access Console
  2. Select and Right Click the Server
  3. Select Configure and Enable Routing and Remote Access
  4. Select Remote Access (dail-up or VPN)
    1. Check the box for either Dial-up, VPN, or Both
  5. Select which interface connects to the internet
    1. Ensure that (Enable Security on the selected interface ) is checked
  6. Select if the IP Address is assigned via DHCP or from a specified Range
  7. Select if the Server is a RADIUS server or will authenticate on its own
46
Q

What settings do you need to configure on a user account to allow VPN access?

A
  • On the User Account
    • Select the Dial-in tab
    • Specify the Network Access Permission
      • Allow Access
      • Deny Access
      • Control through NPS
47
Q

What is Web Application Proxy?

A

It is a proxy used for Web applications for outside connections to a Server without exposing the Application Server

48
Q

What are the server requirements for Implementing DirectAccess?

A
  • Network Location Server
  • DNS
  • Direct Access Server
49
Q

What are the client requirements for DirectAccess?

A

Must be running:

Windows 7 - Ultimate/Enterprise

Windows 8 Pro/Enterprise

Windows 8.1 Pro/Enterprise

50
Q
A
51
Q

What systems can use DirectAccess to do an Offline domain Join?

A

Windows 8 and 8.1

52
Q
A