单项选择题
Your company has a main office and one branch office. All servers run Windows Server 2003 Service Pack 2 (SP2).The main office has a third-party gateway device named Gateway1. Gateway1 is connected to the internal network and the Internet. Gateway1 supports IPSec. In the branch office, you have a server named Server1. You create an IPSec policy on Server1.You need to ensure that Server1 can establish an IPSec tunnel to Gateway1.
What should you use to configure the IPSec policy?()
A.an IP filter that allows only Internet Control Message Protocol (ICMP) traffic
B.an IP filter that allows only TCP traffic on port 1701
C.a pre-shared key for authentication
D.Kerberos authentication
相关考题
-
单项选择题
Your company has a main office and one branch office. Your network consists of an Active Directory domain.You have a remote access server in the main office named Server1. You have a remote access server inthe branch office named Server2.Server2 has a demand-dial interface that connects to Server1. The demand-dial interface connects by using a domain account named Ras1.You need to prevent Server2 from establishing new demand-dial connections to the main office between 18:00 and 08:00. What should you do?()
A.Modify the dial-in properties of the Ras1 account.
B.Modify the dial-out hours on the demand-dial interface.
C.Modify the IP demand-dial filters on the demand-dial interface.
D.Enable Bandwidth Allocation Protocol (BAP) on Server2. -
单项选择题
Your company consists of a single Active Directory domain that is configured in Windows 2000 native mode. All servers run Windows Server 2003 Service Pack 2 (SP2). You deploy a Routing and Remote Access server to provide VPN access to the network.You need to ensure that only members of a group named Sales can access the network through the VPN. The solution must minimize the administrative effort required to manage remote access. What should you do?()
A.Allow dial-in access for the user accounts of all Sales group members.
B.Deny dial-in access for the user accounts of all users except the Sales group members.
C.Create a remote access policy and assign the Allow - Remote Access permission. Add the Windows-Groups condition and specify the Sales group.
D.Create a remote access policy and assign the Deny - Remote Access permission. Add the Windows-Groups condition and specify all Active Directory groups except for Sales. -
多项选择题
YournetworkconsistsofasingleActiveDirectorydomain.AllserversrunWindowsServer2003ServicePack2(SP2).YouhaveaVPNservernamedServer1.YouhaveanInternetAuthenticationService(IAS)servernamedServer2.YouneedtoensurethatallVPNconnectionstoServer1areauthenticatedbyServer2.Whichtwoactionsshouldyouperform?()
A.From the Internet Authentication Service snap-in on Server2, create a new RADIUS client.
B.From the Internet Authentication Service snap-in on Server2, create a new remote access policy.
C.From the Routing and Remote Access snap-in, configure Server1 to use RADIUS accounting.
D.From the Routing and Remote Access snap-in, configure Server1 to use RADIUS authentication.
