READ Free Dumps For Microsoft- 70-411
| Question ID 14057 | You have a server named Server1 that runs Windows Server 2012 R2. Server1 has the
|
| Option A |
The four types of tunneling protocols used with a VPN/RAS server running on Windows Server 2012 include: A VPN protocol based on the legacy Point-to- Point protocol used with modems. The PPTP specification does not describeencryption or authentication features and relies on the Point-to-Point Protocol being tunneled to implement security functionality. Used with IPsec to provide security. L2TP supports either computer certificates or a preshared key as the authentication method for IPsec. IKE is short for Internet Key Exchange, which is a tunneling protocol that uses IPsec Tunnel Mode protocol. The message is encrypted with one of the following protocols by using encryption keys that are generated from the IKEv2 negotiation process. Introduced with Windows Server 2008, which uses the HTTPS protocol over TCP port 443 to pass traffic through firewalls References: http: //en. wikipedia. org/wiki/Point-to-Point_Tunneling_Protocol |
| Correct Answer | A |
| Question ID 14058 | Your network contains an Active Directory domain named contoso.com. All domain
|
| Option A | A Name Suffix value of dal.contoso.com and a blank DNS Server Address value |
| Option B | A Name Suffix value of Server1.contoso.com and a DNS Server Address value of 65.55.37.62 |
| Option C | A Name Suffix value of dal.contoso.com and a DNS Server Address value of 65.55.37.62 |
| Option D | A Name Suffix value of Server1.contoso.com and a blank DNS Server Address value |
| Option F | Answer : A Explanation: Split-brain DNS is the use of the same DNS domain for both Internet and intranet resources. For example, the Contoso Corporation is using split brain DNS; contoso.com is the domain name for intranet resources and Internet resources. Internet users use http: //www.contoso.com to access Contosos public Web site and Contoso employees on the Contoso intranet use http: //www.contoso.com to access Contosos intranet Web site. A Contoso employee with their laptop that is not a DirectAccess client on the intranet that accesses http: //www.contoso.com sees the intranet Contoso Web site. When they take their laptop to the local coffee shop and access that same URL, they will see the public Contoso Web site. When a DirectAccess client is on the Internet, the Name Resolution Policy Table (NRPT) sends DNS name queries for intranet resources to intranet DNS servers. A typical NRPT for DirectAccess will have a rule for the namespace of the organization, such as contoso.com for the Contoso Corporation, with the Internet Protocol version 6 (IPv6) addresses of intranet DNS servers. With just this rule in the NRPT, when a user on a DirectAccess client on the Internet attempts to access the uniform resource locator (URL) for their Web site (such as http: //www.contoso.com), they will see the intranet version. Because of this rule, they will never see the public version of this URL when they are on the Internet. For split-brain DNS deployments, you must list the FQDNs that are duplicated on the Internet and intranet and decide which resources the DirectAccess client should reach, the intranet version or the public (Internet) version. For each name that corresponds to a resource for which you want DirectAccess clients to reach the public version, you must add the corresponding FQDN as an exemption rule to the NRPT for your DirectAccess clients. Name suffixes that do not have corresponding DNS servers are treated as exemptions. References: http: //technet. microsoft. com/en-us |
| Correct Answer | A |
