Monday, April 4, 2011
Tuesday, March 22, 2011
CCDP 642-873 ARCH (Authorized Self-Study Guide) (2nd Edition)
Designing Cisco Network Service Architectures (ARCH), Second Edition, is a Cisco®-authorized, self-paced learning tool for CCDP® foundation learning. This book provides you with knowledge of the latest developments in network design and technologies, including network infrastructure, intelligent network services, and converged network solutions. By reading this book, you will gain a thorough understanding of issues and considerations for fundamental infrastructure services, including security, network management, QoS, high availability, bandwidth use optimization through IP multicasting, and design architectures for network solutions such as voice over WLAN and e-commerce.
Download Here!
Download Here!
Sunday, March 20, 2011
Saturday, March 19, 2011
Thursday, March 17, 2011
Monday, March 14, 2011
Friday, March 11, 2011
Tuesday, March 8, 2011
Saturday, March 5, 2011
Wednesday, March 2, 2011
100 Networking Questions Pt. 2
Q51. What are the data units at different layers of the TCP / IP protocol suite?
Ans. The data unit created at the application layer is called a message, at the transport layer the data unit created is called either a segment or an user datagram, at the network layer the data unit created is called the datagram, at the data link layer the datagram is encapsulated in to a frame and finally transmitted as signals along the transmission media.
Q52. What is Project 802?
Ans. It is a project started by IEEE to set standards that enable intercommunication between equipment from a variety of manufacturers. It is a way for specifying functions of the physical layer, the data link layer and to some extent the network layer to allow for interconnectivity of major LAN protocols.
It consists of the following:
802.1 is an internetworking standard for compatibility of different LANs and MANs across protocols.
802.2 Logical link control (LLC) is the upper sublayer of the data link layer which is non-architecture-specific, that is remains the same for all IEEE-defined LANs.
Media access control (MAC) is the lower sublayer of the data link layer that contains some distinct modules each carrying proprietary information specific to the LAN product being used. The modules are Ethernet LAN (802.3), Token ring LAN (802.4), Token bus LAN (802.5).
802.6 is distributed queue dual bus (DQDB) designed to be used in MANs.
Q53. What is Bandwidth?
Ans. Every line has an upper limit and a lower limit on the frequency of signals it can carry. This limited range is called the bandwidth.
Q54. Difference between bit rate and baud rate.
Ans. Bit rate is the number of bits transmitted during one second whereas baud rate refers to the number of signal units per second that are required to represent those bits.
baud rate = bit rate / N where N is no-of-bits represented by each signal shift.
Q55. What is MAC address?
Ans. The address for a device as it is identified at the Media Access Control (MAC) layer in the network architecture. MAC address is usually stored in ROM on the network adapter card and is unique.
Q56. What is attenuation?
Ans. The degeneration of a signal over distance on a network cable is called attenuation.
Q57. What is cladding?
Ans. A layer of a glass surrounding the center fiber of glass inside a fiber-optic cable.
Q58. What is RAID?
Ans. A method for providing fault tolerance by using multiple hard disk drives.
Q59. What is NETBIOS and NETBEUI?
Ans. NETBIOS is a programming interface that allows I/O requests to be sent to and received from a remote computer and it hides the networking hardware from applications.
NETBEUI is NetBIOS extended user interface. A transport protocol designed by microsoft and IBM for the use on small subnets.
Q60. What is redirector?
Ans. Redirector is software that intercepts file or prints I/O requests and translates them into network requests. This comes under presentation layer.
Q61. What is Beaconing?
Ans. The process that allows a network to self-repair networks problems. The stations on the network notify the other stations on the ring when they are not receiving the transmissions. Beaconing is used in Token ring and FDDI networks.
Q62. What is terminal emulation, in which layer it comes?
Ans. Telnet is also called as terminal emulation. It belongs to application layer.
Q63. What is frame relay, in which layer it comes?
Ans. Frame relay is a packet switching technology. It will operate in the data link layer.
Q64. What do you meant by “triple X” in Networks?
Ans. The function of PAD (Packet Assembler Disassembler) is described in a document known as X.3. The standard protocol has been defined between the terminal and the PAD, called X.28; another standard protocol exists between hte PAD and the network, called X.29. Together, these three recommendations are often called “triple X”
Q65. What is SAP?
Ans. Series of interface points that allow other computers to communicate with the other layers of network protocol stack.
Q66. What is subnet?
Ans. A generic term for section of a large networks usually separated by a bridge or router.
Q67. What is Brouter?
Ans. Hybrid devices that combine the features of both bridges and routers.
Q68. How Gateway is different from Routers?
Ans. A gateway operates at the upper levels of the OSI model and translates information between two completely different network architectures or data formats.
Q69. What are the different type of networking / internetworking devices?
Ans. Repeater:
Also called a regenerator, it is an electronic device that operates only at physical layer. It receives the signal in the network before it becomes weak, regenerates the original bit pattern and puts the refreshed copy back in to the link.
Bridges:
These operate both in the physical and data link layers of LANs of same type. They divide a larger network in to smaller segments. They contain logic that allow them to keep the traffic for each segment separate and thus are repeaters that relay a frame only the side of the segment containing the intended recipent and control congestion.
Routers:
They relay packets among multiple interconnected networks (i.e. LANs of different type). They operate in the physical, data link and network layers. They contain software that enable them to determine which of the several possible paths is the best for a particular transmission.
Gateways:
They relay packets among networks that have different protocols (e.g. between a LAN and a WAN). They accept a packet formatted for one protocol and convert it to a packet formatted for another protocol before forwarding it. They operate in all seven layers of the OSI model.
Q70. What is mesh network?
Ans. A network in which there are multiple network links between computers to provide multiple paths for data to travel.
Q71. What is passive topology?
Ans. When the computers on the network simply listen and receive the signal, they are referred to as passive because they don’t amplify the signal in any way. Example for passive topology – linear bus.
Q72. What are the important topologies for networks?
Ans. BUS topology:
In this each computer is directly connected to primary network cable in a single line.
Advantages:
Inexpensive, easy to install, simple to understand, easy to extend.
STAR topology:
In this all computers are connected using a central hub.
Adva
ntages:
Can be inexpensive, easy to install and reconfigure and easy to trouble shoot physical problems.
RING topology:
In this all computers are connected in loop.
Advantages:
All computers have equal access to network media, installation can be simple, and signal does not degrade as much as in other topologies because each computer regenerates it.
Q73. What are major types of networks and explain
Server-based network
Peer-to-peer network.
Ans. Peer-to-peer network, computers can act as both servers sharing resources and as clients using the resources.
Server-based networks provide centralized control of network resources and rely on server computers to provide security and network administration
Q74. What is Protocol Data Unit?
Ans. The data unit in the LLC level is called the protocol data unit (PDU). The PDU contains of four fields a destination service access point (DSAP), a source service access point (SSAP), a control field and an information field. DSAP, SSAP are addresses used by the LLC to identify the protocol stacks on the receiving and sending machines that are generating and using the data. The control field specifies whether the PDU frame is a information frame (I -frame) or a supervisory frame (S – frame) or a unnumbered frame (U – frame).
Q75. What is difference between baseband and broadband transmission?
Ans. In a baseband transmission, the entire bandwidth of the cable is consumed by a single signal. In broadband transmission, signals are sent on multiple frequencies, allowing multiple signals to be sent simultaneously.
Q76. What are the possible ways of data exchange?
Ans. (i) Simplex (ii) Half-duplex (iii) Full-duplex.
Q77. What are the types of Transmission media?
Ans. Signals are usually transmitted over some transmission media that are broadly classified in to two categories.
Guided Media:
These are those that provide a conduit from one device to another that include twisted-pair, coaxial cable and fiber-optic cable. A signal traveling along any of these media is directed and is contained by the physical limits of the medium. Twisted-pair and coaxial cable use metallic that accept and transport signals in the form of electrical current. Optical fiber is a glass or plastic cable that accepts and transports signals in the form of light.
Unguided Media:
This is the wireless media that transport electromagnetic waves without using a physical conductor. Signals are broadcast either through air. This is done through radio communication, satellite communication and cellular telephony.
Q78. Difference between the communication and transmission.
Ans. Transmission is a physical movement of information and concern issues like bit polarity, synchronization, clock etc.
Communication means the meaning full exchange of information between two communication media.
Q79.The Internet Control Message Protocol occurs at what layer of the seven layer model?
Ans. Network
Q80.Which protocol resolves an IP address to a MAC address?
Ans. ARP
Q81.MIDI and MPEG are examples of what layer of the OSI seven layer model?
Ans. Presentation
Q82.What is the protocol number for UDP?
Ans. 17
Q83.Which protocol is used for booting diskless workstations?
Ans. RARP
Q84.Which layer is responsible for putting 1s and 0s into a logical group?
Ans. Physical
Q85.What does ‘P’ mean when running a Trace?
Ans. Protocol unreachable
Q86.UDP works at which layer of the DOD model?
Ans. Host to Host
Q87.What is the default encapsulation of Netware 3.12?
Ans. 802.2
Q88.Ping uses which Internet layer protocol?
Ans. ICMP
Q89.Which switching technology can reduce the size of a broadcast domain?
Ans. VLAN
Q90.What is the first step in data encapsulation?
Ans. User information is converted into data.
Q91.What is the protocol number for TCP?
Ans. 6
Q92.What do you use the Aux port for?
Ans. Modem
Q93.Repeaters work at which layer of the OSI model?
Ans. Physical
Q94.WAN stands for which of the following?
Ans. Wide Area Network
Q95.What ISDN protocol specifies concepts, terminology, and services?
Ans. I
Q96.LAN stands for which of the following?
Ans. Local Are Network
Q97.DHCP stands for
Ans. Dynamic Host Configuration Protocol
Q98.What does the acronym ARP stand for?
Ans. Address Resolution Protocol
Q99.Which layer is responsible for identifying and establishing the availability of the intended communication partner?
Ans. Application.
Q100.Which OSI layer provides mechanical, electrical, procedural for activating, maintaining physical link?
Ans. Physical.
Ans. The data unit created at the application layer is called a message, at the transport layer the data unit created is called either a segment or an user datagram, at the network layer the data unit created is called the datagram, at the data link layer the datagram is encapsulated in to a frame and finally transmitted as signals along the transmission media.
Q52. What is Project 802?
Ans. It is a project started by IEEE to set standards that enable intercommunication between equipment from a variety of manufacturers. It is a way for specifying functions of the physical layer, the data link layer and to some extent the network layer to allow for interconnectivity of major LAN protocols.
It consists of the following:
802.1 is an internetworking standard for compatibility of different LANs and MANs across protocols.
802.2 Logical link control (LLC) is the upper sublayer of the data link layer which is non-architecture-specific, that is remains the same for all IEEE-defined LANs.
Media access control (MAC) is the lower sublayer of the data link layer that contains some distinct modules each carrying proprietary information specific to the LAN product being used. The modules are Ethernet LAN (802.3), Token ring LAN (802.4), Token bus LAN (802.5).
802.6 is distributed queue dual bus (DQDB) designed to be used in MANs.
Q53. What is Bandwidth?
Ans. Every line has an upper limit and a lower limit on the frequency of signals it can carry. This limited range is called the bandwidth.
Q54. Difference between bit rate and baud rate.
Ans. Bit rate is the number of bits transmitted during one second whereas baud rate refers to the number of signal units per second that are required to represent those bits.
baud rate = bit rate / N where N is no-of-bits represented by each signal shift.
Q55. What is MAC address?
Ans. The address for a device as it is identified at the Media Access Control (MAC) layer in the network architecture. MAC address is usually stored in ROM on the network adapter card and is unique.
Q56. What is attenuation?
Ans. The degeneration of a signal over distance on a network cable is called attenuation.
Q57. What is cladding?
Ans. A layer of a glass surrounding the center fiber of glass inside a fiber-optic cable.
Q58. What is RAID?
Ans. A method for providing fault tolerance by using multiple hard disk drives.
Q59. What is NETBIOS and NETBEUI?
Ans. NETBIOS is a programming interface that allows I/O requests to be sent to and received from a remote computer and it hides the networking hardware from applications.
NETBEUI is NetBIOS extended user interface. A transport protocol designed by microsoft and IBM for the use on small subnets.
Q60. What is redirector?
Ans. Redirector is software that intercepts file or prints I/O requests and translates them into network requests. This comes under presentation layer.
Q61. What is Beaconing?
Ans. The process that allows a network to self-repair networks problems. The stations on the network notify the other stations on the ring when they are not receiving the transmissions. Beaconing is used in Token ring and FDDI networks.
Q62. What is terminal emulation, in which layer it comes?
Ans. Telnet is also called as terminal emulation. It belongs to application layer.
Q63. What is frame relay, in which layer it comes?
Ans. Frame relay is a packet switching technology. It will operate in the data link layer.
Q64. What do you meant by “triple X” in Networks?
Ans. The function of PAD (Packet Assembler Disassembler) is described in a document known as X.3. The standard protocol has been defined between the terminal and the PAD, called X.28; another standard protocol exists between hte PAD and the network, called X.29. Together, these three recommendations are often called “triple X”
Q65. What is SAP?
Ans. Series of interface points that allow other computers to communicate with the other layers of network protocol stack.
Q66. What is subnet?
Ans. A generic term for section of a large networks usually separated by a bridge or router.
Q67. What is Brouter?
Ans. Hybrid devices that combine the features of both bridges and routers.
Q68. How Gateway is different from Routers?
Ans. A gateway operates at the upper levels of the OSI model and translates information between two completely different network architectures or data formats.
Q69. What are the different type of networking / internetworking devices?
Ans. Repeater:
Also called a regenerator, it is an electronic device that operates only at physical layer. It receives the signal in the network before it becomes weak, regenerates the original bit pattern and puts the refreshed copy back in to the link.
Bridges:
These operate both in the physical and data link layers of LANs of same type. They divide a larger network in to smaller segments. They contain logic that allow them to keep the traffic for each segment separate and thus are repeaters that relay a frame only the side of the segment containing the intended recipent and control congestion.
Routers:
They relay packets among multiple interconnected networks (i.e. LANs of different type). They operate in the physical, data link and network layers. They contain software that enable them to determine which of the several possible paths is the best for a particular transmission.
Gateways:
They relay packets among networks that have different protocols (e.g. between a LAN and a WAN). They accept a packet formatted for one protocol and convert it to a packet formatted for another protocol before forwarding it. They operate in all seven layers of the OSI model.
Q70. What is mesh network?
Ans. A network in which there are multiple network links between computers to provide multiple paths for data to travel.
Q71. What is passive topology?
Ans. When the computers on the network simply listen and receive the signal, they are referred to as passive because they don’t amplify the signal in any way. Example for passive topology – linear bus.
Q72. What are the important topologies for networks?
Ans. BUS topology:
In this each computer is directly connected to primary network cable in a single line.
Advantages:
Inexpensive, easy to install, simple to understand, easy to extend.
STAR topology:
In this all computers are connected using a central hub.
Adva
ntages:
Can be inexpensive, easy to install and reconfigure and easy to trouble shoot physical problems.
RING topology:
In this all computers are connected in loop.
Advantages:
All computers have equal access to network media, installation can be simple, and signal does not degrade as much as in other topologies because each computer regenerates it.
Q73. What are major types of networks and explain
Server-based network
Peer-to-peer network.
Ans. Peer-to-peer network, computers can act as both servers sharing resources and as clients using the resources.
Server-based networks provide centralized control of network resources and rely on server computers to provide security and network administration
Q74. What is Protocol Data Unit?
Ans. The data unit in the LLC level is called the protocol data unit (PDU). The PDU contains of four fields a destination service access point (DSAP), a source service access point (SSAP), a control field and an information field. DSAP, SSAP are addresses used by the LLC to identify the protocol stacks on the receiving and sending machines that are generating and using the data. The control field specifies whether the PDU frame is a information frame (I -frame) or a supervisory frame (S – frame) or a unnumbered frame (U – frame).
Q75. What is difference between baseband and broadband transmission?
Ans. In a baseband transmission, the entire bandwidth of the cable is consumed by a single signal. In broadband transmission, signals are sent on multiple frequencies, allowing multiple signals to be sent simultaneously.
Q76. What are the possible ways of data exchange?
Ans. (i) Simplex (ii) Half-duplex (iii) Full-duplex.
Q77. What are the types of Transmission media?
Ans. Signals are usually transmitted over some transmission media that are broadly classified in to two categories.
Guided Media:
These are those that provide a conduit from one device to another that include twisted-pair, coaxial cable and fiber-optic cable. A signal traveling along any of these media is directed and is contained by the physical limits of the medium. Twisted-pair and coaxial cable use metallic that accept and transport signals in the form of electrical current. Optical fiber is a glass or plastic cable that accepts and transports signals in the form of light.
Unguided Media:
This is the wireless media that transport electromagnetic waves without using a physical conductor. Signals are broadcast either through air. This is done through radio communication, satellite communication and cellular telephony.
Q78. Difference between the communication and transmission.
Ans. Transmission is a physical movement of information and concern issues like bit polarity, synchronization, clock etc.
Communication means the meaning full exchange of information between two communication media.
Q79.The Internet Control Message Protocol occurs at what layer of the seven layer model?
Ans. Network
Q80.Which protocol resolves an IP address to a MAC address?
Ans. ARP
Q81.MIDI and MPEG are examples of what layer of the OSI seven layer model?
Ans. Presentation
Q82.What is the protocol number for UDP?
Ans. 17
Q83.Which protocol is used for booting diskless workstations?
Ans. RARP
Q84.Which layer is responsible for putting 1s and 0s into a logical group?
Ans. Physical
Q85.What does ‘P’ mean when running a Trace?
Ans. Protocol unreachable
Q86.UDP works at which layer of the DOD model?
Ans. Host to Host
Q87.What is the default encapsulation of Netware 3.12?
Ans. 802.2
Q88.Ping uses which Internet layer protocol?
Ans. ICMP
Q89.Which switching technology can reduce the size of a broadcast domain?
Ans. VLAN
Q90.What is the first step in data encapsulation?
Ans. User information is converted into data.
Q91.What is the protocol number for TCP?
Ans. 6
Q92.What do you use the Aux port for?
Ans. Modem
Q93.Repeaters work at which layer of the OSI model?
Ans. Physical
Q94.WAN stands for which of the following?
Ans. Wide Area Network
Q95.What ISDN protocol specifies concepts, terminology, and services?
Ans. I
Q96.LAN stands for which of the following?
Ans. Local Are Network
Q97.DHCP stands for
Ans. Dynamic Host Configuration Protocol
Q98.What does the acronym ARP stand for?
Ans. Address Resolution Protocol
Q99.Which layer is responsible for identifying and establishing the availability of the intended communication partner?
Ans. Application.
Q100.Which OSI layer provides mechanical, electrical, procedural for activating, maintaining physical link?
Ans. Physical.
100 Networking Interview Questions Pt. 1
Q1. What are 10Base2, 10Base5 and 10BaseT Ethernet LANs?
Ans. 10Base2—An Ethernet term meaning a maximum transfer rate of 10 Megabits per second that uses baseband signaling, with a contiguous cable segment length of 100 meters and a maximum of 2 segments.
10Base5—An Ethernet term meaning a maximum transfer rate of 10 Megabits per second that uses baseband signaling, with 5 continuous segments not exceeding 100 meters per segment.
10BaseT—An Ethernet term meaning a maximum transfer rate of 10 Megabits per second that uses baseband signaling and twisted pair cabling.
Q2. What is the difference between an unspecified passive open and a fully specified passive open?
Ans. An unspecified passive open has the server waiting for a connection request from a client. A fully specified passive open has the server waiting for a connection from a specific client.
Q3. Explain the function of Transmission Control Block.
Ans. A TCB is a complex data structure that contains a considerable amount of information about each connection.
Q4. What is a Management Information Base (MIB)?
Ans. A Management Information Base is part of every SNMP-managed device. Each SNMP agent has the MIB database that contains information about the device’s status, its performance, connections, and configuration. The MIB is queried by SNMP.
Q5. What is anonymous FTP and why would you use it?
Ans. Anonymous FTP enables users to connect to a host without using a valid login and password. Usually, anonymous FTP uses a login called anonymous or guest, with the password usually requesting the user’s ID for tracking purposes only. Anonymous FTP is used to enable a large number of users to access files on the host without having to go to the trouble of setting up logins for them all. Anonymous FTP systems usually have strict controls over the areas an anonymous user can access.
Q6. What is a pseudo tty?
Ans. A pseudo tty or false terminal enables external machines to connect through Telnet or rlogin. Without a pseudo tty, no connection can take place.
Q7. Which layer of the 7 layer model provides services to the Application layer over the Session layer connection?
Ans. Presentation.
Q8. What does the Mount protocol do ?
Ans. The Mount protocol returns a file handle and the name of the file system in which a requested file resides. The message is sent to the client from the server after reception of a client’s request.
Q9. What is External Data Representation?
Ans. External Data Representation is a method of encoding data within an RPC message, used to ensure that the data is not system-dependent.
Q10. Which OSI Reference Layer controls application to application communication?
Ans. Session
Q11. BOOTP helps a diskless workstation boot. How does it get a message to the network looking for its IP address and the location of its operating system boot files ?
Ans. BOOTP sends a UDP message with a subnetwork broadcast address and waits for a reply from a server that gives it the IP address. The same message might contain the name of the machine that has the boot files on it. If the boot image location is not specified, the workstation sends another UDP message to query the server.
Q12. What is a DNS resource record?
Ans. A resource record is an entry in a name server’s database. There are several types of resource records used, including name-to-address resolution information. Resource records are maintained as ASCII files.
Q13. What protocol is used by DNS name servers?
Ans. DNS uses UDP for communication between servers. It is a better choice than TCP because of the improved speed a connectionless protocol offers. Of course, transmission reliability suffers with UDP.
Q14. What is the difference between interior and exterior neighbor gateways?
Ans. Interior gateways connect LANs of one organization, whereas exterior gateways connect the organization to the outside world.
Q15. What is the HELLO protocol used for?
Ans. The HELLO protocol uses time instead of distance to determine optimal routing. It is an alternative to the Routing Information Protocol.
Q16. What are the advantages and disadvantages of the three types of routing tables?
Ans. The three types of routing tables are fixed, dynamic, and fixed central. The fixed table must be manually modified every time there is a change. A dynamic table changes its information based on network traffic, reducing the amount of manual maintenance. A fixed central table lets a manager modify only one table, which is then read by other devices. The fixed central table reduces the need to update each machine’s table, as with the fixed table. Usually a dynamic table causes the fewest problems for a network administrator, although the table’s contents can change without the administrator being aware of the change.
Q17. What is a characteristic of Store and Forward switches?
Ans. They read the entire frame and check CRC before forwarding.
Q18. What is source route?
Ans. It is a sequence of IP addresses identifying the route a datagram must follow. A source route may optionally be included in an IP datagram header.
Q19. What is RIP (Routing Information Protocol)?
Ans. It is a simple protocol used to exchange information between the routers.
Q20. What is SLIP (Serial Line Interface Protocol)?
Ans. It is a very simple protocol used for transmission of IP datagrams across a serial line.
Q21. What is Proxy ARP?
Ans. It is using a router to answer ARP requests. This will be done when the originating host believes that a destination is local, when in fact is lies beyond router.
Q22. What is OSPF?
Ans. It is an Internet routing protocol that scales well, can route traffic along multiple paths, and uses knowledge of an Internet’s topology to make accurate routing decisions.
Q23. What is Kerberos?
Ans. It is an authentication service developed at the Massachusetts Institute of Technology. Kerberos uses encryption to prevent intruders from discovering passwords and gaining unauthorized access to files.
Q24. What is a Multi-homed Host?
Ans. It is a host that has a multiple network interfaces and that requires multiple IP addresses is called as a Multi-homed Host.
Q25. What is NVT (Network Virtual Terminal)?
Ans. It is a set of rules defining a very simple virtual terminal interaction. The NVT is used in the start of a Telnet session.
Q26. What is Gateway-to-Gateway protocol?
Ans. It is a protocol formerly
used to exchange routing information between Internet core routers.
Q27. What is BGP (Border Gateway Protocol)?
Ans. It is a protocol used to advertise the set of networks that can be reached with in an autonomous system. BGP enables this information to be shared with the autonomous system. This is newer than EGP (Exterior Gateway Protocol).
Q28. What is autonomous system?
Ans. It is a collection of routers under the control of a single administrative authority and that uses a common Interior Gateway Protocol.
Q29. What is EGP (Exterior Gateway Protocol)?
Ans. It is the protocol the routers in neighboring autonomous systems use to identify the set of networks that can be reached within or via each autonomous system.
Q30. What is IGP (Interior Gateway Protocol)?
Ans. It is any routing protocol used within an autonomous system.
Q31. What is Mail Gateway?
Ans. It is a system that performs a protocol translation between different electronic mail delivery protocols.
Q32. What is wide-mouth frog?
Ans. Wide-mouth frog is the simplest known key distribution center (KDC) authentication protocol.
Q33. What are Digrams and Trigrams?
Ans. The most common two letter combinations are called as digrams. e.g. th, in, er, re and an. The most common three letter combinations are called as trigrams. e.g. the, ing, and, and ion.
Q34. What is silly window syndrome?
Ans. It is a problem that can ruin TCP performance. This problem occurs when data are passed to the sending TCP entity in large blocks, but an interactive application on the receiving side reads 1 byte at a time.
Q35. What is region?
Ans. When hierarchical routing is used, the routers are divided into what we call regions, with each router knowing all the details about how to route packets to destinations within its own region, but knowing nothing about the internal structure of other regions.
Q36. What is multicast routing?
Ans. Sending a message to a group is called multicasting, and its routing algorithm is called multicast routing.
Q37. What is traffic shaping?
Ans. One of the main causes of congestion is that traffic is often busy. If hosts could be made to transmit at a uniform rate,congestion would be less common. Another open loop method to help manage congestion is forcing the packet to be transmitted at a more predictable rate. This is called traffic shaping.
Q38. What is packet filter?
Ans. Packet filter is a standard router equipped with some extra functionality. The extra functionality allows every incoming or outgoing packet to be inspected. Packets meeting some criterion are forwarded normally. Those that fail the test are dropped.
Q39. What is virtual path?
Ans. Along any transmission path from a given source to a given destination, a group of virtual circuits can be grouped together into what is called path.
Q40. What is virtual channel?
Ans. Virtual channel is normally a connection from one source to one destination, although multicast connections are also permitted. The other name for virtual channel is virtual circuit.
Q41. What is logical link control?
Ans. One of two sublayers of the data link layer of OSI reference model, as defined by the IEEE 802 standard. This sublayer is responsible for maintaining the link between computers when they are sending data across the physical network connection.
Q42. Why should you care about the OSI Reference Model?
Ans. It provides a framework for discussing network operations and design.
Q43. What is the difference between routable and non- routable protocols?
Ans. Routable protocols can work with a router and can be used to build large networks. Non-Routable protocols are designed to work on small, local networks and cannot be used with a router.
Q44. What is MAU?
Ans. In token Ring , hub is called Multistation Access Unit(MAU).
Q45. Explain 5-4-3 rule?
Ans. In a Ethernet network, between any two points on the network, there can be no more than five network segments or four repeaters, and of those five segments only three of segments can be populated.
Q46. What is the difference between TFTP and FTP application layer protocols?
Ans. The Trivial File Transfer Protocol (TFTP) allows a local host to obtain files from a remote host but does not provide reliability or security. It uses the fundamental packet delivery services offered by UDP. The File Transfer Protocol (FTP) is the standard mechanism provided by TCP / IP for copying a file from one host to another. It uses the services offered by TCP and so is reliable and secure. It establishes two connections (virtual circuits) between the hosts, one for data transfer and another for control information.
Q47. What is the range of addresses in the classes of internet addresses?
Ans. Class A 0.0.0.0 – 127.255.255.255
Class B 128.0.0.0 – 191.255.255.255
Class C 192.0.0.0 – 223.255.255.255
Class D 224.0.0.0 – 239.255.255.255
Class E 240.0.0.0 – 247.255.255.255
Q48. What is the minimum and maximum length of the header in the TCP segment and IP datagram?
Ans. The header should have a minimum length of 20 bytes and can have a maximum length of 60 bytes.
Q49. What is difference between ARP and RARP?
Ans. The address resolution protocol (ARP) is used to associate the 32 bit IP address with the 48 bit physical address, used by a host or a router to find the physical address of another host on its network by sending a ARP query packet that includes the IP address of the receiver. The reverse address resolution protocol (RARP) allows a host to discover its Internet address when it knows only its physical address.
Q50. What is ICMP?
Ans. ICMP is Internet Control Message Protocol, a network layer protocol of the TCP/IP suite used by hosts and gateways to send notification of datagram problems back to the sender. It uses the echo test / reply to test whether a destination is reachable and responding. It also handles both control and error messages.
Ans. 10Base2—An Ethernet term meaning a maximum transfer rate of 10 Megabits per second that uses baseband signaling, with a contiguous cable segment length of 100 meters and a maximum of 2 segments.
10Base5—An Ethernet term meaning a maximum transfer rate of 10 Megabits per second that uses baseband signaling, with 5 continuous segments not exceeding 100 meters per segment.
10BaseT—An Ethernet term meaning a maximum transfer rate of 10 Megabits per second that uses baseband signaling and twisted pair cabling.
Q2. What is the difference between an unspecified passive open and a fully specified passive open?
Ans. An unspecified passive open has the server waiting for a connection request from a client. A fully specified passive open has the server waiting for a connection from a specific client.
Q3. Explain the function of Transmission Control Block.
Ans. A TCB is a complex data structure that contains a considerable amount of information about each connection.
Q4. What is a Management Information Base (MIB)?
Ans. A Management Information Base is part of every SNMP-managed device. Each SNMP agent has the MIB database that contains information about the device’s status, its performance, connections, and configuration. The MIB is queried by SNMP.
Q5. What is anonymous FTP and why would you use it?
Ans. Anonymous FTP enables users to connect to a host without using a valid login and password. Usually, anonymous FTP uses a login called anonymous or guest, with the password usually requesting the user’s ID for tracking purposes only. Anonymous FTP is used to enable a large number of users to access files on the host without having to go to the trouble of setting up logins for them all. Anonymous FTP systems usually have strict controls over the areas an anonymous user can access.
Q6. What is a pseudo tty?
Ans. A pseudo tty or false terminal enables external machines to connect through Telnet or rlogin. Without a pseudo tty, no connection can take place.
Q7. Which layer of the 7 layer model provides services to the Application layer over the Session layer connection?
Ans. Presentation.
Q8. What does the Mount protocol do ?
Ans. The Mount protocol returns a file handle and the name of the file system in which a requested file resides. The message is sent to the client from the server after reception of a client’s request.
Q9. What is External Data Representation?
Ans. External Data Representation is a method of encoding data within an RPC message, used to ensure that the data is not system-dependent.
Q10. Which OSI Reference Layer controls application to application communication?
Ans. Session
Q11. BOOTP helps a diskless workstation boot. How does it get a message to the network looking for its IP address and the location of its operating system boot files ?
Ans. BOOTP sends a UDP message with a subnetwork broadcast address and waits for a reply from a server that gives it the IP address. The same message might contain the name of the machine that has the boot files on it. If the boot image location is not specified, the workstation sends another UDP message to query the server.
Q12. What is a DNS resource record?
Ans. A resource record is an entry in a name server’s database. There are several types of resource records used, including name-to-address resolution information. Resource records are maintained as ASCII files.
Q13. What protocol is used by DNS name servers?
Ans. DNS uses UDP for communication between servers. It is a better choice than TCP because of the improved speed a connectionless protocol offers. Of course, transmission reliability suffers with UDP.
Q14. What is the difference between interior and exterior neighbor gateways?
Ans. Interior gateways connect LANs of one organization, whereas exterior gateways connect the organization to the outside world.
Q15. What is the HELLO protocol used for?
Ans. The HELLO protocol uses time instead of distance to determine optimal routing. It is an alternative to the Routing Information Protocol.
Q16. What are the advantages and disadvantages of the three types of routing tables?
Ans. The three types of routing tables are fixed, dynamic, and fixed central. The fixed table must be manually modified every time there is a change. A dynamic table changes its information based on network traffic, reducing the amount of manual maintenance. A fixed central table lets a manager modify only one table, which is then read by other devices. The fixed central table reduces the need to update each machine’s table, as with the fixed table. Usually a dynamic table causes the fewest problems for a network administrator, although the table’s contents can change without the administrator being aware of the change.
Q17. What is a characteristic of Store and Forward switches?
Ans. They read the entire frame and check CRC before forwarding.
Q18. What is source route?
Ans. It is a sequence of IP addresses identifying the route a datagram must follow. A source route may optionally be included in an IP datagram header.
Q19. What is RIP (Routing Information Protocol)?
Ans. It is a simple protocol used to exchange information between the routers.
Q20. What is SLIP (Serial Line Interface Protocol)?
Ans. It is a very simple protocol used for transmission of IP datagrams across a serial line.
Q21. What is Proxy ARP?
Ans. It is using a router to answer ARP requests. This will be done when the originating host believes that a destination is local, when in fact is lies beyond router.
Q22. What is OSPF?
Ans. It is an Internet routing protocol that scales well, can route traffic along multiple paths, and uses knowledge of an Internet’s topology to make accurate routing decisions.
Q23. What is Kerberos?
Ans. It is an authentication service developed at the Massachusetts Institute of Technology. Kerberos uses encryption to prevent intruders from discovering passwords and gaining unauthorized access to files.
Q24. What is a Multi-homed Host?
Ans. It is a host that has a multiple network interfaces and that requires multiple IP addresses is called as a Multi-homed Host.
Q25. What is NVT (Network Virtual Terminal)?
Ans. It is a set of rules defining a very simple virtual terminal interaction. The NVT is used in the start of a Telnet session.
Q26. What is Gateway-to-Gateway protocol?
Ans. It is a protocol formerly
used to exchange routing information between Internet core routers.
Q27. What is BGP (Border Gateway Protocol)?
Ans. It is a protocol used to advertise the set of networks that can be reached with in an autonomous system. BGP enables this information to be shared with the autonomous system. This is newer than EGP (Exterior Gateway Protocol).
Q28. What is autonomous system?
Ans. It is a collection of routers under the control of a single administrative authority and that uses a common Interior Gateway Protocol.
Q29. What is EGP (Exterior Gateway Protocol)?
Ans. It is the protocol the routers in neighboring autonomous systems use to identify the set of networks that can be reached within or via each autonomous system.
Q30. What is IGP (Interior Gateway Protocol)?
Ans. It is any routing protocol used within an autonomous system.
Q31. What is Mail Gateway?
Ans. It is a system that performs a protocol translation between different electronic mail delivery protocols.
Q32. What is wide-mouth frog?
Ans. Wide-mouth frog is the simplest known key distribution center (KDC) authentication protocol.
Q33. What are Digrams and Trigrams?
Ans. The most common two letter combinations are called as digrams. e.g. th, in, er, re and an. The most common three letter combinations are called as trigrams. e.g. the, ing, and, and ion.
Q34. What is silly window syndrome?
Ans. It is a problem that can ruin TCP performance. This problem occurs when data are passed to the sending TCP entity in large blocks, but an interactive application on the receiving side reads 1 byte at a time.
Q35. What is region?
Ans. When hierarchical routing is used, the routers are divided into what we call regions, with each router knowing all the details about how to route packets to destinations within its own region, but knowing nothing about the internal structure of other regions.
Q36. What is multicast routing?
Ans. Sending a message to a group is called multicasting, and its routing algorithm is called multicast routing.
Q37. What is traffic shaping?
Ans. One of the main causes of congestion is that traffic is often busy. If hosts could be made to transmit at a uniform rate,congestion would be less common. Another open loop method to help manage congestion is forcing the packet to be transmitted at a more predictable rate. This is called traffic shaping.
Q38. What is packet filter?
Ans. Packet filter is a standard router equipped with some extra functionality. The extra functionality allows every incoming or outgoing packet to be inspected. Packets meeting some criterion are forwarded normally. Those that fail the test are dropped.
Q39. What is virtual path?
Ans. Along any transmission path from a given source to a given destination, a group of virtual circuits can be grouped together into what is called path.
Q40. What is virtual channel?
Ans. Virtual channel is normally a connection from one source to one destination, although multicast connections are also permitted. The other name for virtual channel is virtual circuit.
Q41. What is logical link control?
Ans. One of two sublayers of the data link layer of OSI reference model, as defined by the IEEE 802 standard. This sublayer is responsible for maintaining the link between computers when they are sending data across the physical network connection.
Q42. Why should you care about the OSI Reference Model?
Ans. It provides a framework for discussing network operations and design.
Q43. What is the difference between routable and non- routable protocols?
Ans. Routable protocols can work with a router and can be used to build large networks. Non-Routable protocols are designed to work on small, local networks and cannot be used with a router.
Q44. What is MAU?
Ans. In token Ring , hub is called Multistation Access Unit(MAU).
Q45. Explain 5-4-3 rule?
Ans. In a Ethernet network, between any two points on the network, there can be no more than five network segments or four repeaters, and of those five segments only three of segments can be populated.
Q46. What is the difference between TFTP and FTP application layer protocols?
Ans. The Trivial File Transfer Protocol (TFTP) allows a local host to obtain files from a remote host but does not provide reliability or security. It uses the fundamental packet delivery services offered by UDP. The File Transfer Protocol (FTP) is the standard mechanism provided by TCP / IP for copying a file from one host to another. It uses the services offered by TCP and so is reliable and secure. It establishes two connections (virtual circuits) between the hosts, one for data transfer and another for control information.
Q47. What is the range of addresses in the classes of internet addresses?
Ans. Class A 0.0.0.0 – 127.255.255.255
Class B 128.0.0.0 – 191.255.255.255
Class C 192.0.0.0 – 223.255.255.255
Class D 224.0.0.0 – 239.255.255.255
Class E 240.0.0.0 – 247.255.255.255
Q48. What is the minimum and maximum length of the header in the TCP segment and IP datagram?
Ans. The header should have a minimum length of 20 bytes and can have a maximum length of 60 bytes.
Q49. What is difference between ARP and RARP?
Ans. The address resolution protocol (ARP) is used to associate the 32 bit IP address with the 48 bit physical address, used by a host or a router to find the physical address of another host on its network by sending a ARP query packet that includes the IP address of the receiver. The reverse address resolution protocol (RARP) allows a host to discover its Internet address when it knows only its physical address.
Q50. What is ICMP?
Ans. ICMP is Internet Control Message Protocol, a network layer protocol of the TCP/IP suite used by hosts and gateways to send notification of datagram problems back to the sender. It uses the echo test / reply to test whether a destination is reachable and responding. It also handles both control and error messages.
Friday, February 25, 2011
CCDP 642-873 ARCH (Authorized Self-Study Guide) (2nd Edition)
Designing Cisco Network Service Architectures (ARCH), Second Edition, is a Cisco®-authorized, self-paced learning tool for CCDP® foundation learning. This book provides you with knowledge of the latest developments in network design and technologies, including network infrastructure, intelligent network services, and converged network solutions. By reading this book, you will gain a thorough understanding of issues and considerations for fundamental infrastructure services, including security, network management, QoS, high availability, bandwidth use optimization through IP multicasting, and design architectures for network solutions such as voice over WLAN and e-commerce.
Link
Link
CCNA 640-802 Testinside v 21.24 – 436 Qs – Latest
Carefully read the “Read Me’ file and view the provided screenshots to understand the working of this new software.
Download Here
Download Here
CCNA Security 640-553 Official Exam Certification Guide
CCNA Security Official Exam Certification Guide is a best of breed Cisco® exam study guide that focuses specifically on the objectives for the CCNA® Security IINS exam. Senior security instructors Michael Watkins and Kevin Wallace share preparation hints and test-taking tips, helping you identify areas of weakness and improve both your conceptual knowledge and hands-on skills. Material is presented in a concise manner, focusing on increasing your understanding and retention of exam topics.
The official study guide helps you master all the topics on the IINS exam, including Network security threats Security policies Network perimeter defenseAAA configuration Router security Switch security Endpoint security SAN security VoIP security IOS firewalls Cisco IOS® IPS Cryptography Digital signatures PKI and asymmetric encryption IPsec VPNs.
Downloan Link
The official study guide helps you master all the topics on the IINS exam, including Network security threats Security policies Network perimeter defenseAAA configuration Router security Switch security Endpoint security SAN security VoIP security IOS firewalls Cisco IOS® IPS Cryptography Digital signatures PKI and asymmetric encryption IPsec VPNs.
Downloan Link
Thursday, February 17, 2011
Monday, February 14, 2011
INTERVIEW QUESTIONS FOR SYSTEM/NETWORK ADMINISTRATORS
Q. Please describe the technical environment of your current (or most recent) position.
A. When describing the technical environment that you currently support, be sure to include the number of users you support, the number of IT staff, the technical infrastructure including servers, types of connections, desktop operating systems, your job duties, and your work schedule.
You should be prepared to talk about each of the positions you have listed on your résumé in this way. Also be prepared with a follow-up statement of your most significant accomplishment.
You should be prepared to talk about each of the positions you have listed on your résumé in this way. Also be prepared with a follow-up statement of your most significant accomplishment.
Q. How do you keep your technical knowledge and skills current?
A. Keeping your skills current demonstrates initiative and a desire to perform at high standards. Be prepared with a list of resources including professional groups.
A. Keeping your skills current demonstrates initiative and a desire to perform at high standards. Be prepared with a list of resources including professional groups.
Q. Please describe your greatest technical challenge and how you overcame it.
A. Ah, an opportunity for a story. Great examples to draw on: how you taught yourself a new operating system, the installation of a complex system, integration of multiple systems, building of an e-commerce web site.
A. Ah, an opportunity for a story. Great examples to draw on: how you taught yourself a new operating system, the installation of a complex system, integration of multiple systems, building of an e-commerce web site.
Q. What are some of the tools you use to make your job easier?
A. All network administrators have a bag of tricks. You should share some of your trade secrets as a way of demonstrating that you can be efficient in your job as a network administrator. These can include ghosting tools, troubleshooting tools, and documentation tools.
A. All network administrators have a bag of tricks. You should share some of your trade secrets as a way of demonstrating that you can be efficient in your job as a network administrator. These can include ghosting tools, troubleshooting tools, and documentation tools.
Q. How do you document your network?
A. One of the toughest parts of network administration is keeping track of an always changing environment. You must have basic documentation for user administration, file system planning, and address planning. Share your documentation with your interviewer.
A. One of the toughest parts of network administration is keeping track of an always changing environment. You must have basic documentation for user administration, file system planning, and address planning. Share your documentation with your interviewer.
Planning Questions
The interviewer will be interested in your network planning methodologies. The following questions provide insight into these skills.
Q. What are some of the things you need to take into consideration when planning an upgrade from one network operating system to another?
A. This is the mother of all planning activities because it will affect so many resources. The key here is testing and backups and that’s what the interviewer wants to hear. Other considerations include:
A. This is the mother of all planning activities because it will affect so many resources. The key here is testing and backups and that’s what the interviewer wants to hear. Other considerations include:
- Network documentation
- Ensuring that your hardware meets the minimum hardware requirements for the new operating system
- Creating a test network for testing the compatibility of applications, hardware, and drivers with the new operating system
- Gathering all updated drivers and patches/service packs required for upgrade compatibility
- Identifying workflow issues before converting
- Separating workstation conversions from server conversions
- Ensuring you have backups of data and the servers so that you can revert back
- Network addressing scheme
Q. Describe the backup/restore policy you use most.
A. First of all, the interviewer wants to ensure that you do backups! There are different methods, but the most common backup strategy used is to perform incremental backups Monday through Thursday and a normal backup on Friday. An alternative backup strategy is to perform differential backups Monday through Thursday and a normal backup on Friday.
A. First of all, the interviewer wants to ensure that you do backups! There are different methods, but the most common backup strategy used is to perform incremental backups Monday through Thursday and a normal backup on Friday. An alternative backup strategy is to perform differential backups Monday through Thursday and a normal backup on Friday.
Q. How would you ensure that your servers are secure?
A. Security always begins at the physical level—it makes little difference that you’ve provided all the security the operating system and software can provide if someone can walk away with the box or the portable hard drive. The next step is to ensure you have the latest service packs for the operating system and applications running on the server.
A. Security always begins at the physical level—it makes little difference that you’ve provided all the security the operating system and software can provide if someone can walk away with the box or the portable hard drive. The next step is to ensure you have the latest service packs for the operating system and applications running on the server.
Installation
Q. What steps do you go through as part of your server installation process?
A. The interviewer wants to know whether your typical work habits are to just jump in or whether you do some planning. You obviously want to ensure that your hardware meets the minimum requirements, that you have all the right drivers for the new operating system, and whether you need a ROM upgrade for your hardware. Depending on how many installations you’ve done, you may have a process that you like to follow. If you do, describe it to the interviewer.
A. The interviewer wants to know whether your typical work habits are to just jump in or whether you do some planning. You obviously want to ensure that your hardware meets the minimum requirements, that you have all the right drivers for the new operating system, and whether you need a ROM upgrade for your hardware. Depending on how many installations you’ve done, you may have a process that you like to follow. If you do, describe it to the interviewer.
Q. How do you determine which file system is best for your environment?
A. This question tests how well you plan for a variety of different environments. The key here is to take into consideration the file format support required for backward compatibility with other operating systems like NetWare or older versions of Windows NT. You’ll also want to make sure there’s enough disk space for drivers and files that must reside in the system partition, as well as space for a dump file if anything goes wrong.
A. This question tests how well you plan for a variety of different environments. The key here is to take into consideration the file format support required for backward compatibility with other operating systems like NetWare or older versions of Windows NT. You’ll also want to make sure there’s enough disk space for drivers and files that must reside in the system partition, as well as space for a dump file if anything goes wrong.
Q. What’s the first thing you should do after installing the network operating system?
A. This is a test of your security skills. The first thing you should do is either change the password on the administrator account or change the name of the account itself.
A. This is a test of your security skills. The first thing you should do is either change the password on the administrator account or change the name of the account itself.
Q. You just installed a service pack on the e-mail, SQL, print, and file servers. You rebooted all the servers, and now the service pack installation is complete. What’s the final step for the evening?
A. The interviewer wants to make sure that testing is an integral part of your routine whenever you install software or make updates to systems. You may also want to review the Event Viewer logs and look for any errors that have been registered. It’s a good idea to also examine the administrative interfaces for SQL and the e-mail server to satisfy yourself that no anomalies have appeared there.
A. The interviewer wants to make sure that testing is an integral part of your routine whenever you install software or make updates to systems. You may also want to review the Event Viewer logs and look for any errors that have been registered. It’s a good idea to also examine the administrative interfaces for SQL and the e-mail server to satisfy yourself that no anomalies have appeared there.
Configuration
Ninety percent of your day is spent configuring network services, whether it’s installing applications, creating users, or adding printers.
Q. What methods are available for configuring a WINS server for use by various Microsoft computers?
A. This question demonstrates to the interviewer that you are familiar with the various methods for configuring routing using WINS. You can either configure the WINS server manually or by way of a Dynamic Host Configuration Protocol Server.
A. This question demonstrates to the interviewer that you are familiar with the various methods for configuring routing using WINS. You can either configure the WINS server manually or by way of a Dynamic Host Configuration Protocol Server.
Q. A user has left the company and you need to create a new user with the same rights and permissions. What are some of the ways to create the new user?
A. By asking you to describe multiple ways of getting the job done, the interviewer can assess your experience level with the operating system. Some of the correct answers to this question include the following:
A. By asking you to describe multiple ways of getting the job done, the interviewer can assess your experience level with the operating system. Some of the correct answers to this question include the following:
- You could copy an existing user’s account to create a new account. However, the rights and permissions for the new, copied account will be based purely on its group memberships, not permissions g
ranted strictly to the original account itself. - Using Active Directory, you could use the CSVDE.exe program to create a new account with specific group memberships; however, this program is usually intended for bulk creation of accounts in your domain.
- You could create the new account from scratch, assigning group permissions or individual rights manually.
Q. What are some of the alternative ways for mapping a drive letter to a file server if you wish to connect to one of the server’s shared folders?
A. This question tests your experience by asking for alternate methods of getting the job done. In addition to mapped drives you can use a Universal Naming Convention path: \\servername\ sharename. You can also browse the Network Neighborhood.
A. This question tests your experience by asking for alternate methods of getting the job done. In addition to mapped drives you can use a Universal Naming Convention path: \\servername\ sharename. You can also browse the Network Neighborhood.
Q. You shared a printer from your NT server. What could you do to ensure that the printer is easily accessible to your Windows 98 clients?
A. You may have to support older clients on your network. This question tests your experience with older technology. In this case, you should load the Windows 98 printer drivers on the share point.
A. You may have to support older clients on your network. This question tests your experience with older technology. In this case, you should load the Windows 98 printer drivers on the share point.
Q. How large can I make a file allocation table partition using the NT operating system?
A. This question tests your familiarity with system capabilities and limitations. The maximum FAT partition size is 4 gigabytes.
A. This question tests your familiarity with system capabilities and limitations. The maximum FAT partition size is 4 gigabytes.
Q. Is it necessary for an NT client computer to use the server’s name in that UNC path?
A. There are typically multiple ways of accomplishing the same task. Thank goodness, because you sometimes need them while troubleshooting. Using very basic questions, the interviewer can assess your real knowledge and experience with various operating systems. In this case, you can also use the server’s TCP/IP address.
A. There are typically multiple ways of accomplishing the same task. Thank goodness, because you sometimes need them while troubleshooting. Using very basic questions, the interviewer can assess your real knowledge and experience with various operating systems. In this case, you can also use the server’s TCP/IP address.
Q. We are creating a web site on our NT server using Internet Information Server 4.0. We expect users to log on anonymously. How many client access licenses must we purchase to allow up to 100 simultaneous connections to our web site?
A. This is a trick question to see if you understand the concept of user licensed connections. Anonymous logons on IIS 4.0 do not require client access licenses.
A. This is a trick question to see if you understand the concept of user licensed connections. Anonymous logons on IIS 4.0 do not require client access licenses.
Troubleshooting
Q. A user contacts you and reports that their Windows 2000 workstation is having trouble connecting to the Web. You run the ipconfig command on the computer and you find that the computer is not referencing the correct primary DNS server. What must you do to remedy this?
Q. A user contacts you and reports that their Windows 2000 workstation is having trouble connecting to the Web. You run the ipconfig command on the computer and you find that the computer is not referencing the correct primary DNS server. What must you do to remedy this?
A. Using this question, the interviewer can assess your routing troubleshooting skills, an essential part of network administration. In this case, you would want to check the primary DNS setting in the IP configuration of the computer. If ipconfig shows a setting for the default DNS server other than what you want, this means the computer’s IP configuration is incorrect. Therefore, the Windows 2000 client computer needs to be reconfigured.
Q. Users are complaining of slow performance when they run server-based applications.
The server has the following specifications:
> Compaq 1600
> 800 MHz Pentium 3
> 256MB of RAM
> 18GB EIDE hard drive
> 10/100 NIC
> Connected to a Cisco switch
The performance monitor shows the following:
Memory Pages/Sec: 5
Physical Disk % Disk Time: 20 percent
Processor % Processor Time: 90 percent
What is the best way to improve the system’s performance?
The server has the following specifications:
> Compaq 1600
> 800 MHz Pentium 3
> 256MB of RAM
> 18GB EIDE hard drive
> 10/100 NIC
> Connected to a Cisco switch
The performance monitor shows the following:
Memory Pages/Sec: 5
Physical Disk % Disk Time: 20 percent
Processor % Processor Time: 90 percent
What is the best way to improve the system’s performance?
A. This question tests your knowledge of server optimization. In this case, the recommendation should be to upgrade the processor. Microsoft recommends you do so if the CPU utilization averages over 70 to 75 percent.
Q. A user is having trouble sharing a folder from their NT Workstation. What is a likely cause?
A. The interviewer is testing your basic knowledge of rights. In order to share a folder you must be logged on as an administrator, server operator (in a domain), or power user (in a workgroup).
A. The interviewer is testing your basic knowledge of rights. In order to share a folder you must be logged on as an administrator, server operator (in a domain), or power user (in a workgroup).
Q. You’ve shared a folder and set the share permissions to “Everyone = Full Control.” However, none of the users can save information in the folder. What’s the likely cause?
A. This is another question that tests your knowledge of permissions. The likely cause is that someone has set the NTFS permissions in a more restrictive manner than the share permissions. Between those two categories of permissions, the more restrictive of the two always applies to users accessing the folder over the network.
A. This is another question that tests your knowledge of permissions. The likely cause is that someone has set the NTFS permissions in a more restrictive manner than the share permissions. Between those two categories of permissions, the more restrictive of the two always applies to users accessing the folder over the network.
Q. What is the most likely cause for the failure of a user to connect to an NT remote access server?
A. Supporting remote users may be a big part of your job. It’s important to understand the proper configuration and troubleshooting of the NT RAS. In this case, the user must be granted the RAS dial-in permission.
A. Supporting remote users may be a big part of your job. It’s important to understand the proper configuration and troubleshooting of the NT RAS. In this case, the user must be granted the RAS dial-in permission.
Q. A remote user in Montana, who is not technical and is scared to death of computers, calls for help. The user logged in to your network via the terminal server. You determine that the solution to the user’s problem requires an edit of a hidden read-only file, deleting a system file in the winnt\system32 folder, and creating a simple batch file on the user’s computer. What tools would you use to resolve this problem?
A. This question tests your ability for remote troubleshooting. An administrator can edit these files on the user’s computer by connecting to it over the network via the Computer Management console in Windows 2000. Using this console, you can access the administrative shares (C$, D$, and so on) that represent the partitions on the user’s computer. From there, you can edit or create any files necessary to repair the problem.
A. This question tests your ability for remote troubleshooting. An administrator can edit these files on the user’s computer by connecting to it over the network via the Computer Management console in Windows 2000. Using this console, you can access the administrative shares (C$, D$, and so on) that represent the partitions on the user’s computer. From there, you can edit or create any files necessary to repair the problem.
Windows NT Networking Questions
Windows NT is still the most popular operating system around. You should be comfortable with this environment to be able to respond to the following questions that an interviewer may ask you.
Q. Why is Windows Internet Name Server needed in a Windows NT domain?
A. An important part of network administration is setting up the server and clients so they can find one another. WINS is necessary to achieve NetBIOS name resolution. Your desktop clients can then log on to the domain, and the domain controllers can authenticate to one another.
A. An important part of network administration is setting up the server and clients so they can find one another. WINS is necessary to achieve NetBIOS name resolution. Your desktop clients can then log on to the domain, and the domain controllers can authenticate to one another.
Q. What is the normal replication interval between the primary domain controll
er and the backup domain controller?
A. The PDC waits five minutes after a change in the domain database before “pulsing,” or notifying, the BDCs.
er and the backup domain controller?
A. The PDC waits five minutes after a change in the domain database before “pulsing,” or notifying, the BDCs.
Q. How can you synchronize a BDC immediately?
A. Within the server manager, select the BDC’s account, choose the Computer menu, and select Synchronize With Primary Domain Controller.
A. Within the server manager, select the BDC’s account, choose the Computer menu, and select Synchronize With Primary Domain Controller.
Q. Users change their passwords in the NT domain every 30 days. Our primary domain controller is in New York, but we have users in our California office. When a California user changes their password, will they be able to use the new password immediately, or must they wait for replication to occur to a backup domain controller in California?
A. You must have a firm grasp of replication. In this case, waiting for a replication will not be necessary. If a BDC doesn’t recognize a user’s password, it will automatically appeal to the PDC to establish its validity.
A. You must have a firm grasp of replication. In this case, waiting for a replication will not be necessary. If a BDC doesn’t recognize a user’s password, it will automatically appeal to the PDC to establish its validity.
Q. I’ve created logon scripts for my users on the primary domain controller. I’ve correctly mapped them in the properties of my users’ accounts. Some run, some do not. What should I check next?
A. The scripts should be replicated to all of your backup domain controllers. The domain controller that validates the logon is the one that runs the script.
A. The scripts should be replicated to all of your backup domain controllers. The domain controller that validates the logon is the one that runs the script.
Q. Is it possible to create a domain account from an NT member server?
A. Yes. By using User Manager for Domains, you can create the account from the member server. The account will actually be created on the primary domain controller, however.
A. Yes. By using User Manager for Domains, you can create the account from the member server. The account will actually be created on the primary domain controller, however.
Q. Someone just dropped a safe on our primary domain controller. What should we do next?
A. You should promote one of your backup domain controllers to become the primary domain controller.
A. You should promote one of your backup domain controllers to become the primary domain controller.
Q. After the promotion, what happens if we bring the old PDC back online?
A. When the old PDC gets back online, its Netlogon service will fail. You can resolve this through Server Manager by first demoting it to a backup domain controller and then promoting it to a primary domain controller.
A. When the old PDC gets back online, its Netlogon service will fail. You can resolve this through Server Manager by first demoting it to a backup domain controller and then promoting it to a primary domain controller.
Q. One of your users logs on to the domain from his NT Workstation. Due to a network failure the following day, he is unable to contact a domain controller when he tries to log on. Can the user log on with his domain account?
A. Yes. He will be able to log on with locally cached credentials.
A. Yes. He will be able to log on with locally cached credentials.
Q. Someone deleted the account of one of my backup domain controllers in Server Manager. When the BDC boots up, it is unable to authenticate to the primary domain controller, and its Netlogon service fails. What can I do?
A. Either restore the account from a backup or reinstall the backup domain controller from scratch.
A. Either restore the account from a backup or reinstall the backup domain controller from scratch.
Q. How can I promote one of my member servers to become a backup domain controller?
A. You can’t. You must reinstall the entire operating system as a domain controller (either a backup or primary domain controller).
A. You can’t. You must reinstall the entire operating system as a domain controller (either a backup or primary domain controller).
Q. Does it matter which of my domain controllers I upgrade to Windows 2000 first?
A. Yes. You must upgrade the primary domain controller to Windows 2000 before any of the backup domain controllers.
A. Yes. You must upgrade the primary domain controller to Windows 2000 before any of the backup domain controllers.
Q. What about the member servers and workstations? Must I upgrade them in any particular order?
A. No. member servers and workstations can be upgraded in any order.
A. No. member servers and workstations can be upgraded in any order.
Active Directory
In order to manage an Active Directory Services environment, you must be comfortable with planning, security and permissions, authentication, and synchronization. The following questions may be asked by the interviewer to assess your experience with performing these functions.
Q. What rights must your logged-in account have when creating a Windows 2000 forest?
A. You must understand rights and permissions thoroughly. In this instance, the account must have administrative rights on the Windows 2000 server used to create the new forest.
A. You must understand rights and permissions thoroughly. In this instance, the account must have administrative rights on the Windows 2000 server used to create the new forest.
Q. What rights must your account have when adding a domain to an existing forest?
A. In this case, you must be a member of the Enterprise Administrators group.
A. In this case, you must be a member of the Enterprise Administrators group.
Q. My account has the proper rights, but when I try to create a new domain I get an error message stating that the Domain Naming Master cannot be contacted. What does this mean?
A. An experienced network administrator will be able to readily troubleshoot for problems such as this one. This scenario can mean network connectivity issues or a failed Domain Naming Master, which is the domain controller for the forest root domain.
A. An experienced network administrator will be able to readily troubleshoot for problems such as this one. This scenario can mean network connectivity issues or a failed Domain Naming Master, which is the domain controller for the forest root domain.
Q. Why is Domain Name System (DNS) so important to an Active Directory forest?
A. As a network administrator you must understand name resolution. DNS is critical to your forest because it possesses all of the service (SRV) records. These records indicate the TCP/IP address and port necessary to locate a specific service offered by a server.
A. As a network administrator you must understand name resolution. DNS is critical to your forest because it possesses all of the service (SRV) records. These records indicate the TCP/IP address and port necessary to locate a specific service offered by a server.
Q. Does the DNS server have to be a Windows 2000 server?
A. This is a trick question. DNS is independent of Windows 2000 and so the answer is no. To support Active Directory, the DNS server must support two BIND (Berkeley Internet Name Domain) version standards: 4.9.6 (SRV records) and 8.1.2 (dynamic updates).
A. This is a trick question. DNS is independent of Windows 2000 and so the answer is no. To support Active Directory, the DNS server must support two BIND (Berkeley Internet Name Domain) version standards: 4.9.6 (SRV records) and 8.1.2 (dynamic updates).
Q. What rights does a user need in order to create computer accounts in an Active Directory domain?
A. By default, a user only needs to be recognized as a member of the Authenticated Users group to add workstations to a domain. This permission is established in the Default Domain Controllers policy, and permits users to create up to ten accounts.
A. By default, a user only needs to be recognized as a member of the Authenticated Users group to add workstations to a domain. This permission is established in the Default Domain Controllers policy, and permits users to create up to ten accounts.
Q. Is it possible to have entirely separate domain name spaces within the same forest?
A. When it comes to Active Directory, you must have a thorough understanding of forest limitations. In this case, you can have multiple domain name spaces within the same forest.
A. When it comes to Active Directory, you must have a thorough understanding of forest limitations. In this case, you can have multiple domain name spaces within the same forest.
Q. Do clocks synchronize automatically between Windows 2000 computers?
A. This question tests your understanding of Active Directory synchronization. Clocks do synchronize only within a domain. The Primary Domain Controller Emulator handles this task for you. But there is no server that automatically synchronizes clocks between your separate domains.
A. This question tests your understanding of Active Directory synchronization. Clocks do synchronize only within a domain. The Primary Domain Controller Emulator handles this task for you. But there is no server that automatically synchronizes clocks between your separate domains.
Q. To create Group Policy objects in a domain, what group must you be a member of?
A. You must be a member of the Group Policy Creator Owners group in your domain to create these objects.
A. You must be a member of the Group Policy Creator Owners group in your domain to create these objects.
Q. Is it possible to prevent the application of a Group Policy to a user account within one of our organizational units?
A. To prevent the application of a
Group Policy to a user, you would deny the Read and Apply Group Policy permissions to the user in that organizational unit.
A. To prevent the application of a
Group Policy to a user, you would deny the Read and Apply Group Policy permissions to the user in that organizational unit.
Q. Is it possible to schedule replication between two domain controllers in Active Directory?
A. This question assesses your knowledge of configuration options for domain controllers within Active Directory. In this case, place the domain controllers in different sites. Then set the schedule on the Site Link object that connects the sites.
A. This question assesses your knowledge of configuration options for domain controllers within Active Directory. In this case, place the domain controllers in different sites. Then set the schedule on the Site Link object that connects the sites.
Q. My Windows 98 users cannot search for published objects in our Active Directory domain. How do I add this capability to their computers?
A. Add the DSClient utility to their computers from the Windows 2000 Server CD.
A. Add the DSClient utility to their computers from the Windows 2000 Server CD.
Q. What are some of the ways of propagating permissions set on an Active Directory object to lower-level child objects?
A. Administering security is a big part of an administrator’s job. One way to accomplish this task is the following: On the Security tab of the parent object, click the Advanced button. Using the special permissions list, be sure to select “Apply onto…This object and all child objects.” Another method is to use the Delegation of Control Wizard.
A. Administering security is a big part of an administrator’s job. One way to accomplish this task is the following: On the Security tab of the parent object, click the Advanced button. Using the special permissions list, be sure to select “Apply onto…This object and all child objects.” Another method is to use the Delegation of Control Wizard.
Q. An organization is running a web site using Internet Information Server 5.0 on a Windows 2000 Server. The site allows both Anonymous and Integrated Windows authentication. When our domain users connect to the site, which authentication method is used?
A. Understanding authentication modes is a critical part to troubleshooting and effectively securing resources. In this case, they will authenticate as the Anonymous account. An exception to this would be seen if the Anonymous account lacked permissions to a particular resource on the web site, in which case Integrated Windows authentication would be attempted.
A. Understanding authentication modes is a critical part to troubleshooting and effectively securing resources. In this case, they will authenticate as the Anonymous account. An exception to this would be seen if the Anonymous account lacked permissions to a particular resource on the web site, in which case Integrated Windows authentication would be attempted.
Q. How can I move the Active Directory database and log files to a different drive on the domain controller?
A. This can be accomplished by rebooting the domain controller using Directory Services Restore Mode and running the ntdsutil tool.
A. This can be accomplished by rebooting the domain controller using Directory Services Restore Mode and running the ntdsutil tool.
Q. An administrator accidentally deleted an entire organizational unit containing 200 users from our domain. How can you recover the organizational unit?
A. Everyone has these types of situations. You must know how to recover from these mistakes. In this case, rebooting a domain controller using Directory Services Restore Mode and conducting an authoritative restore of the OU from a backup will solve the problem.
A. Everyone has these types of situations. You must know how to recover from these mistakes. In this case, rebooting a domain controller using Directory Services Restore Mode and conducting an authoritative restore of the OU from a backup will solve the problem.
Q. We demoted our Primary Domain Controller Emulator to become a member server in our domain. What do we need to do to transfer the PDC Emulator role to another domain controller?
A. This question tests how well you understand how the PDC Emulator works. In this situation, the role was automatically transferred when the former PDC Emulator was demoted.
A. This question tests how well you understand how the PDC Emulator works. In this situation, the role was automatically transferred when the former PDC Emulator was demoted.
Subscribe to:
Comments (Atom)