Note: This question is part of a series of questions that present the same scenario. Each question in the series
contains a unique solution. Determine whether the solution meets the stated goals.
Your network contains an Active Directory domain named contoso.com. The domain contains a DNS server
named Server1. All client computers run Windows 10.
On Server1, you have the following zone configuration.
You have the following subnets defined on Server1.
You need to prevent Server1 from resolving queries from DNS clients located on Subnet4. Server1 must
resolve queries from all other DNS clients.
Solution: From Windows Firewall with Advanced Security on Server1, you create an inbound rule.
Does this meet the goal?
A.
Yes
B.
No
Explanation:
https://technet.microsoft.com/en-us/library/dd421709(v=ws.10).aspx
In firewall u can add inbound rule and specify UDP, TCP ports and IP subnet to block list, so the answer is YES.
New 70-741 Exam Questions Updated Recently (26/Dec/2017):
NEW QUESTION 124
You have a server named Server1 that runs Windows Server 2016. Server1 has the DHCP Server and the Windows Deployment Service server roles installed. Server1 is located on the same subnet as client computers. You need to ensure that clients can perform a PXE boot from Server1. Which two IPv4 options should you configure in DHCP? (Each correct answer presents part of the solution. Choose two.)
A. 003 Router
B. 066 Boot Server Host Name
C. 015 DNS Domain Name
D. 006 DNS Servers
E. 060 Option 60
Answer: BE
NEW QUESTION 125
You network contains an Active Directory domain named contoso.com. The domain contains a member server named Server1 that runs Windows Server 2016 and has the DNS Server role installed. Automatic scavenging of state records is enabled and the scavenging period is set to 10 days. All client computers dynamically register their names in the contoso.com DNS zone on Server1. You discover that the names of multiple client computers that were removed from the network several weeks ago can still be resolved. You need to configure Server1 to automatically remove the records of the client computers that have been offline for more than 10 days.
Solution: You set the Expires after value of the zone.
Does this meet the goal?
A. Yes
B. No
Answer: B
NEW QUESTION 126
You have an IP Address Management (IPAM) server named IPAM1 that runs Windows Server 2016. IPAM1 manages 10 DHCP servers. You need to provide a user with the ability to track which clients receive which IP addresses from DHCP. The solution must minimize administrative privileges.
A. IPAM MSM Administrators
B. IPAM ASM Administrators
C. IPAM IP Audit Administrators
D. IPAM User
Answer: A
NEW QUESTION 127
You are implementing a new network. The network contains a DHCP server named DHCP1 that runs Windows Server 2016. DHCP1 contains a scope named Scope1 for the 192.168.0/24 subnet. Your company has the following policy for allocating IP addresses:
– All server addresses must be excluded from DHCP scopes.
– All client computer must receive IP addresses from Scope1.
– All Windows servers must have IP addresses in the range of 192.168.0.200 to 192.168.0.240.
– All other network devices must have IP addresses in the range of 192.168.0.180 to 192.168.0.199.
You deploy a print device named Print1. You need to ensure that Print1 adheres to the policy for allocating IP addresses. Which command should you use?
A. Add-DhcpServerv4Lease
B. Add-DhcpServerv4ExclusionRange
C. Add-DhcpServerv4Filter
D. Add-DhcpServerv4Reservation
Answer: B
NEW QUESTION 128
You have an Active Directory forest that contains 30 servers and 6,000 Client computers. You deploy a new DHCP server that runs Windows Server 2016. You need to retrieve the list of the authorized DHCP servers. Which command should you run?
A. Get-DHCPServerDatabase
B. Netstat -p IP -s -a
C. Get-DHCPServerInDc
D. Show-ADAuthenticationPolicyExpression-AllowedToAuthenticateTo
Answer: C
Explanation:
To get all authorized DHCP servers in Active Directory, you can use the following PowerShell cmdlet: Get-DhcpServerinDC.
NEW QUESTION 129
You have a DHCP server named Server1. Server1 has an IPv4 scope that contains 100 addresses for a subnet named Subnet! Subnet1 provides guest access to the Internet. There are never more than 20 client computers on Subnet1 simultaneously; however, the computers that connect to Subnet 1 are rarely the same computers. You discover that some client computers are unable to access the network. The computers that have the issue have IP addresses in the range of 169.254.0.0/16. You need to ensure that all of the computers can connect successfully to the network to access the Internet. What should you do?
A. Create a new scope that uses IP addresses in the range of 169.254.0.0/16.
B. Modify the scope options.
C. Modify the lease duration.
D. Configure Network Access Protection (NAP) integration on the existing scope.
Answer: A
NEW QUESTION 130
You have a Hyper-V server named Server1 that runs Windows Server 2016. Server1 has an IP address of 192.168.1.78. Server1 has a container named Container1 that hosts a web application on port 84. Container1 has an IP address of 172.16.5.6. Container1 has a port mapping from port 80 on Server1 to port 84 on Container1. You have a server named Server2 that has an IP address of 192.168.1.79. You need to connect to the web application from Server2. To which IP address and port should you connect?
A. 172.16.5.6:80
B. 192.168.1.78:80
C. 172.16.5.6:84
D. 192.168.1.78:84
Answer: A
NEW QUESTION 131
You have a remote access server named Server1 that runs Windows Server 2016. Server1 has DirectAccess enabled. You have a proxy server named Server2. All computers on the internal network connect to the Internet by using the proxy. On Server1, you run the command Set-DAClient -forceTunnel Enabled. You need to ensure that when a DirectAccess client connects to the network, the client accesses all the Internet resources through the proxy. What should you run on Server1?
A. Set-DnsClientGlobalSetting
B. Set-DAEntryPoint
C. Set-DnsClientNrptRule
D. Set-DnsClientNrptGlobal
Answer: B
NEW QUESTION 132
You have an IP Address Management (IPAM) deployment that is used to manage all of the DNS servers on your network. IPAM is configured to use Group Policy provisioning. You discover that a user adds a new mail exchanger (MX) record to one of the DNS zones. You want to identify which user added the record. You open Event Catalog on an IPAM server, and you discover that the most recent event occurred yesterday. You need to ensure that the operational events in the event catalog are never older than one hour. What should you do?
A. From the properties on the DNS zone, modify the refresh interval.
B. From an IPAM_DNS Group Policy object (GPO), modify the Group Policy refresh interval.
C. From Task Scheduler, modify the Microsoft\Windows\IPAM\Audit task.
D. From Task Scheduler, create a scheduled task that runs the Update-IpamServer cmdlet.
Answer: A
NEW QUESTION 133
……
P.S. These New 70-741 Exam Questions Were Just Updated From The Real 70-741 Exam, You Can Get The Newest 70-741 Dumps In PDF And VCE From — https://www.passleader.com/70-741.html (135q VCE and PDF)
Good Luck!
BTW, part of that new 135Q 70-741 dumps are available here:
https://drive.google.com/open?id=0B-ob6L_QjGLpRUl1Y0xaTTdfTjQ
Best Regards!
I don’t know why everywhere answer : NO
I think firewall can block it… So YES.
BTW: thank you Jose, but there are lot of bad answer in the list.
Question 129
ansewer is: A. Create a new scope that uses IP addresses in the range of 169.254.0.0/16.
WTF??!