| Author |
Thu 70-216 Question of the Day
|
|
| wbafrank 2002-04-04, 9:47 am |
|  And today's poser is ....
Q64. You administer your company's network and you need to implement a remote access solution that has high availability and security. Your network consists of a single location with a single T1 connection to the Internet. Your network consists of Windows 2000 Advanced Server computers, Windows 2000 Server computers, and Windows 2000 Professional computers. One of your Windows 2000 Server computers is your primary DNS server. Another Windows 2000 Server computer acts as a secondary DNS server.
Your company has 500 salespeople who need reliable connectivity to your company's network from any remote location. These salespeople have been issued laptops with Windows 2000 Professional installed on them.
You must accomplish the following goals:
1. Aside from the loss of the T1 line, there must be no single point of failure.
2. At least 200 simultaneous connections must be supported.
3. No authentication traffic should be transmitted in clear text.
4. No data traffic should be transmitted in clear text.
You take the following actions:
1. You install a VPN server on a computer at the main office.
2. You configure the VPN to support 250 PPTP connections and configure the clients to use CHAP.
Which goal or goals are accomplished with these actions? (Choose all that apply)
A. There is no single point of failure aside from the T1 line.
B. At least 200 simultaneous connections are supported.
C. No authentication traffic is transmitted in clear text.
D. No data traffic is transmitted in clear text.
Good Luck .... see you tomorrow for the answer!! | |
| emtek 2002-04-04, 10:11 am |
| B & C | |
| jeff_j_black 2002-04-04, 1:44 pm |
| 'A,B & C' | |
| cross36 2002-04-04, 1:48 pm |
| I'm going with "A" "B" & "C" on this one | |
|
| the question states that you setup a VPN server, meaning one. is this not a single point of failure? if the server goes down, it takes VPN functionality with it as well. or am i just reading too much into the question as usual? | |
| KScheler 2002-04-04, 7:00 pm |
| B.C. & D.
A. Wrong - One vpn server; single point of failure
B. Correct - 200 connections met.
C. Correct - Chap uses Message Digest-5 for encrytion of passwords
D. Correct - VPN uses PPTP which encapsulates PPP packets into IP datagrams for transmission over the Internet | |
| unreal 2002-04-04, 7:22 pm |
| All of the above. | |
| Zaraspook 2002-04-04, 7:43 pm |
| How about B & C?  | |
| allbombguy 2002-04-04, 10:35 pm |
| Which goal or goals are accomplished with these actions? (Choose all that apply)
A. There is no single point of failure aside from the T1 line. There is only 1 server, so wrong.
B. At least 200 simultaneous connections are supported. Yes 250 are supported
C. No authentication traffic is transmitted in clear text. Right, PPTP inherits encryption from PPP. CHAP is used here.
D. No data traffic is transmitted in clear text. Wrong, MS CHAP would have to be used to support MPPE, which supplys link encryption.
B and C
From 2000 Server Resource Kit | |
| jp_d55 2002-04-04, 11:58 pm |
| i think im going on
b,c,d | |
| atanu_b 2002-04-05, 12:40 am |
| I think its "B","C" and "D" | |
| Tech Ranger 2002-04-05, 7:03 am |
| Its B&C. You have 1 VPN server, hence a single point of failure. I don't believe CHAP supports data encryption | |
| wbafrank 2002-04-05, 8:19 am |
| quote:
Originally posted by wbafrank
And today's poser is ....
Q64. You administer your company's network and you need to implement a remote access solution that has high availability and security. Your network consists of a single location with a single T1 connection to the Internet. Your network consists of Windows 2000 Advanced Server computers, Windows 2000 Server computers, and Windows 2000 Professional computers. One of your Windows 2000 Server computers is your primary DNS server. Another Windows 2000 Server computer acts as a secondary DNS server.
Your company has 500 salespeople who need reliable connectivity to your company's network from any remote location. These salespeople have been issued laptops with Windows 2000 Professional installed on them.
You must accomplish the following goals:
1. Aside from the loss of the T1 line, there must be no single point of failure.
2. At least 200 simultaneous connections must be supported.
3. No authentication traffic should be transmitted in clear text.
4. No data traffic should be transmitted in clear text.
You take the following actions:
1. You install a VPN server on a computer at the main office.
2. You configure the VPN to support 250 PPTP connections and configure the clients to use CHAP.
Which goal or goals are accomplished with these actions? (Choose all that apply)
A. There is no single point of failure aside from the T1 line.
B. At least 200 simultaneous connections are supported.
C. No authentication traffic is transmitted in clear text.
D. No data traffic is transmitted in clear text.
Good Luck .... see you tomorrow for the answer!!
And the answer is ....
Correct Answers: B and C
To have no single point of failure aside from the T1 line, there should be at least two VPN servers and two DNS servers, therefore this goal is not met.
Since 250 PPTP VPN connections are created, at least 200 simultaneous connections are supported.
When using the CHAP authentication protocol, no authentication traffic is transmitted in clear text.
To prevent data traffic transmission in clear text, PPTP must use MPPE to encrypt the data. EAP-TLS or MS-CHAP must be used in order for the packets to be encrypted using MPPE. MPPE provides only link encryption. Since CHAP is the protocol used, you will not be able to use MPPE, therefore, this goal is not met. | |
| KScheler 2002-04-05, 8:23 am |
| That was a good one Frank. I saw a number of VPN questions on the 216 test. Isn't VPN considered part of RRAS? |
|
|
|