单项选择题
You are an administrator of a single Active Directory forest that contains one domain. All servers run Windows Server 2003. A server named VPN1 is configured with Routing and Remote Access. VPN1 is configured to allow only inbound VPN connections that use L2TP. You assign the Server (Request Security) IPSec policy on VPN1. You configure the policy to use Kerberos and certificates for authentication.From a Windows XP Professional computer named Client1, which does not belong to the domain, you attempt to establish a VPN connection to VPN1 and receive the error message shown in the exhibit. (Click the Exhibit button.)
You verify that the VPN ports on VPN1 are not being blocked by any intermediate devices. You need to configure Client1 to allow it to establish a VPN connection to VPN1.
What should you do?()
A.Assign the Client (Respond Only) IPSec policy.
B.Assign the Server (Request Security) IPSec policy.
C.Install a valid IPSec certificate in the local machine store.
D.Configure the VPN connection so that only L2TP IPSec VPN is enabled.
相关考题
-
单项选择题
You are the administrator of an Active Directory domain. All servers run Windows Server 2003. All client computers run Windows XP Professional. All computers are members of the domain. The Secure Server (Require Security) IPSec policy is assigned to a file server named Server6. The policy is configured as shown in the exhibit. (Click the Exhibit button.) Users report that they cannot access shared folders on Server6. Users were able to access shared folders on Server6 prior to the implementation of the IPSec policy. You need to ensure that all client computers in the domain can access the shared folders on Server6. You must ensure that all communications between client computers and Server6 be encrypted. What should you do?()
A.On Server6, enable the All ICMP Traffic IP Security rule in the properties of the Secure Server (Require Security) IPSec policy.
B.On Server6, enable theIP Security rule in the properties of the Secure Server (Require Security) IPSec policy.
C.On all client computers, assign the Client (Respond Only) IPSec policy.
D.On all client computers, install an IPSec communication certificate in the local machine store. -
单项选择题
You are the network administrator for your company. All servers run Windows Server 2003. All servers are configured with static IP addresses. All client computers run Windows XP Professional. All client computers are configured as DHCP clients.The company has a main office and one branch office. The offices are separated by a router. A DHCP server is deployed in each office. The DHCP servers are named DHCP1 and DHCP2. You configure scopes on the DHCP1 and DHCP2 as shown in the following table. You shut down DHCP1 for scheduled maintenance. While DHCP1 is shut down, client computers in both offices continue to receive correct IP address assignments from DHCP2. You restart DHCP1. Several users report that when they restart their computers, they receive error messages stating that a duplicate IP address exists on the network. You need to ensure that these error messages do not appear when you shut down and restart a DHCP server. You need to ensure that changes you make does not affect the current DHCP functionality. What should you do?()
A.On each DHCP server, configure a superscope that includes both DHCP scopes.
B.Configure the router between the offices to block all broadcasts.
C.Modify the Main scope on DHCP1 to include addresses 10.1.16.0 through 10.1.27.254. Modify the Branch scope on DHCP2 to include addresses 10.2.16.0 through 10.2.27.254.
D.Modify the Main scope on DHCP2 to include addresses 10.1.16.0 through 10.1.31.254. Modify the Branch scope on DHCP1 to include addresses 10.2.16.0 through 10.2.31.254. -
多项选择题
You are the network administrator for your company. The network consists of a single Active Directory domain. All servers run Windows Server 2003.The network contains a Web server named Server1 that runs IIS 6.0 and hosts a secure Web site. The Web site is accessible from the intranet, as well as from the Internet. All users must authenticate when they connect to Server1. All users on the Internet must use a secure protocol to connect to the Web site. Users on the intranet do not need to use a secure protocol.You need verify that all users are using a secure protocol to connect to Server1 from the Internet. What are two possible ways to achieve this goal?()
A.Monitor the events in the application log on Server1.
B.Monitor the events in the security log on Server1.
C.Monitor the Web server connections on Server1 by using a performance log.
D.Monitor network traffic to Server1 by using Network Monitor.
E.Monitor the IIS logs on Server1.
