You need to prevent Server1 from attempting to resolve Internet host names for the client computers

Your network contains an Active Directory domain named contoso.com. The network
contains 500 client computers that run Windows 8.All of the client computers connect to the
Internet by using a web proxy.
You deploy a server named Server1 that runs Windows Server 2012 R2.Server1 has the
DNS Server server role installed.
You configure all of the client computers to use Server1 as their primary DNS server.
You need to prevent Server1 from attempting to resolve Internet host names for the client
computers.
What should you do on Server1?

Your network contains an Active Directory domain named contoso.com. The network
contains 500 client computers that run Windows 8.All of the client computers connect to the
Internet by using a web proxy.
You deploy a server named Server1 that runs Windows Server 2012 R2.Server1 has the
DNS Server server role installed.
You configure all of the client computers to use Server1 as their primary DNS server.
You need to prevent Server1 from attempting to resolve Internet host names for the client
computers.
What should you do on Server1?

A.
Create a primary zone named “root”.

B.
Create a primary zone named “GlobalNames”.

C.
Create a forwarder that points to 169.254.0.1.

D.
Create a primary zone named “.”.

← Previous question

Next question →

Leave a Reply 14

Michael

I’m pretty sure that in order to keep a DNS server from resolving internet host names you need to make a Dot zone or “.”, not “root”…

Reply

James

I think Michael is correct and the anwser should be D.

http://technet.microsoft.com/en-us/library/cc731879(v=ws.10).aspx

Reply

Monu

Answer C also looks valid. We can have the queries getting forwarded to a non-existent DNS server and hence they never get resolved.

Reply

B-Art

169.254.x.y are all APIPA addresses. It is a tricky answer!

Reply

B-Art

D. is correct.

Reply

Ali Dayi

D is correct.

Reply

bob jones

Correct: D) Primary zone named “.”

(“.” is also known as Root domain)
http://support2.microsoft.com/kb/298148

Reply

Paul

D is correct.

The DNS root server hosts the root zone represented as a dot ( . ). The root zone contains a delegation to a zone in the next level of the hierarchy, the com zone. The delegation in the root zone tells the DNS root server that, to find the com zone, it must contact the Com server. Likewise, the delegation in the com zone tells the Com server that, to find the contoso.com zone, it must contact the Contoso server.

https://technet.microsoft.com/en-us/library/cc731879(v=ws.10)

Reply

shadabad

reference exams says answer is D

Reply

Charitoo

Thanks a whole lot,Paul…Kudos.

Reply

soma

D. Create a “.”
https://support.microsoft.com/en-us/kb/231794

Reply

Cyrcocq

The C is not correct
If the forwader does not answer, the request is redirected to the root.

Reply

shakil.khan

it should be the “.” zone not the zone named Root. The name Root by itself has no significance, i think.

Reply

Mike

I have verified this in a newly spun up Server 2012 R2 VM with just DNS role installed.

Creating a primary zone named “root” does not block outside requests.

Creating a primary zone named “.” actually converts the DNS server into a primary root zone, thus breaking outside requests.

The proper answer is “D”.

Verified 10000000%

Reply