310-302 Latest Test King

Exam Name: Exam Type: Doc Type:
Sun Certified Network Administrator for Solaris 10 OS Sun Exam Code: Q & A with Explanations Total Questions:
310-302 247
Question: 1 You are creating a plan to increase network security. Which two network topologies and devices should be phased out? (Choose two.) A. bus B. hub C. VLAN D. switch E. bridge Answer: A, B Question: 2 Exhibit: Using the /dev/hme device (promiscuous mode) sys12 -> sys11 ETHER Type=0800 (IP), size = 98 bytes sys12 -> sys11 IP D=192.168.1.1 S=192.168.1.2 LEN=84, ID=48009, TOS=0x0, TTL=255 sys12 -> sys11 ICMP Echo Request (ID: 345 Sequence number: 0) sys11 -> sys12 ETHER Type=0800 (IP), size = 98 bytes sys11 -> sys12 IP D=192.168.1.2 S=192.168.1.1 LEN=84, ID=45375, TOS=0x0, TTL=255 sys11 -> sys12 ICMP Echo Reply (ID: 345 Sequence number: 0) Which command yields the output shown in the exhibit? A. snoop icmp B. snoop -d hme0 192.168.1.2 C. snoop -v -d qfe0 broadcast D. snoop -d hme0 -V 192.168.1.2 E. snoop -d hme0 -o /tmp/192.168.1.2 Answer: D Question: 3 As part of a security audit, you are compiling a list of MAC addresses for systems on the subnet You administer. Given the output: Net to Media Table: IPv4 Device IP Address Mask hme0 192.168.1.14 255.255.255.255 hme0 dbms-02 255.255.255.255 hme0 dbms-01 255.255.255.255 hme0 dbms-03 255.255.255.255 hme0 224.0.0.0 240.0.0.0
Flags
SP SM
Phys Addr 59:76:6f:6e:6e:65 57:65:46:6f:76:65 59:6f:75:21:3b:29 08:00:20:ad:d5:9e 01:00:5e:00:00:00
Which two commands create this output? (Choose two.) A. arp -a B. arp -an C. kstat -av D. netstat -p E. netstat -av F. ifconfig hme0
Page 1 of 96
310-302 247
Answer: A, D Question: 4 You are attempting to configure link-based IPMP on a system containing two physical interfaces. Both interfaces are in the same group. Which two statements are true in a working link-based IPMP configuration? (Choose two.) A. Each interface must have a unique test address. B. Each interface must have a unique MAC address. C. Both interfaces must be connected to the same switch. D. All failover addresses must have the DEPRECATED flag set. E. Both interfaces must be connected to the same IP network. F. IPMP must be started by running the if_mpadmn -e command. Answer: B, E Question: 5 To more efficiently allocate and manage their network infrastructure, the Network Company is implementing Classless Inter-Domain Routing. Which routing protocol is best suited to prepare for this implementation? A. BGP B. RIPv2 C. RDISC D. RIPv1 E. ipCIDR-forwarding Answer: B Question: 6 Each DNS zone must have a primary server. Which two are features of a DNS primary server? (Choose two.) A. They maintain data about each of the top-level zones. B. They are the system on which all changes are made to the zone. C. They are never authoritative for any domain, except for the loopback address. D. They provide update information and synchronize secondary servers when the secondary servers request information. Answer: B, D Question: 7 A DNS server that you administer has stopped responding to client requests. Which four commands can you use in debugging the DNS server? (Choose four.) A. dig B. ndc C. pkill -HUP inetd D. pkill -INT in.inetd E. pkill -INT in.named F. pkill -USR1 in.named G. svcadm restart system/name-service-cache Answer: A, B, E, F
Page 2 of 96
310-302 247
Question: 8 A DHCP client is configured with the RELEASE_ON_SIGTERM=yes parameter. Which two actions force a DHCP client to relinquish the IP address it obtained through DHCP on the hme0 interface? (Choose two.) A. Shut down the DHCP client. B. Run the dhcpinfo command with the r option. C. Run the dhcpagent command with the r option. D. Run the pkill -9 dhcpagent command. E. Run the stop option of the ifconfig hme0 dhcp command. F. Run the release option of the ifconfig hme0 dhcp command. Answer: A, F Question: 9 A new system is being installed with multiple interfaces configured and IP Forwarding enabled. One interface, ge0, connects to the primary company LAN. Another interface, ge1, connects to a LAN dedicated to administration of the company's servers. Given: ge0 IP Address = 10.0.0.25/32 ge1 IP Address = 192.168.1.25/32 Admin network = 192.168.1.0/24 Primary network = 10.0.0.0/24 Solaris IP Filter firewall must be configured in a way that: 1- Systems on the admin network can reach the primary network. 2- The system itself has to be reached using ssh from all systems on the admin network. 3- Systems on the primary network cannot reach any systems on the admin network. Which three rules should be included in the Solaris IP Filter configuration? (Choose three.) A. block in all B. block out all C. block out quick log on ge0 from 192.168.1.0/24 to any D. pass out quick log from 192.168.1.0/24 to any keep state E. pass in quick from 192.168.1.0/24 to 10.0.0.0/24 flags keep state F. pass in quick proto tcp on ge1 from 192.168.1.0/24 to 192.168.1.25/32 port = 22 flags keep state G. pass out quick on ge0 from 10.0.0.25 to 10.0.0.0/24 flags keep state Answer: A, E, F Question: 10 In a given Telnet communication, two IP addresses, 194.168.85.51 and 192.9.9.6, are involved in peer-to-peer communication. Datagrams leave the source host 194.168.85.51 and are transmitted to destination host 192.9.9.6. Which should you expect to find in the IP header of an outbound datagram? A. source port number B. destination port number C. destination IP address 192.9.9.6 D. destination IP address 194.168.85.51
Page 3 of 96
310-302 247
Answer: C Question: 11 Which two statements are true about the data payload section of an Ethernet frame? (Choose two.) A. B. C. D. It includes the Ethernet address of the receiving system. It helps the receiving interface detect the beginning of the frame. It includes the Transport, Internet, and Application layer headers. Its maximum size is specific to the type of network interface on a system that receives the frame. E. It includes information used by both the sending and receiving hosts to determine if an error has occurred during frame transmission.
Answer: C, D Question: 12 What are two advantages of using a layered networking model? (Choose two.) A. Routing tables are simplified. B. Network performance is improved. C. The troubleshooting process is simplified. D. Changing one layer does NOT require changes to the other layers. E. Networking related code does NOT need to be recompiled for other systems. Answer: C, D Question: 13 Which three layers of the OSI network model are included in the Application layer of the TCP/IP network model? (Choose three.) A. Network B. Session C. Transport D. Data Link E. Application F. Presentation Answer: B, E, F Question: 14 At which layer in the TCP/IP network model are decisions about routing between networks made? A. Internet B. Transport C. Data Link D. Application Answer: A Question: 15 A user begins to establish a Telnet session with a second system located on a different subnet. The Network Interface layer is responsible for creating a packet data unit. What information does the header in the packet data unit contain?
Page 4 of 96
310-302 247
A. time to live (TTL) B. destination host address C. address of the local subnet's router D. UID of the user executing the telnet command Answer: C Question: 16 As a connectionless protocol in peer-to-peer communications, UDP interacts with which adjacent And corresponding layers of the TCP/IP model? A. Ethernet and Hardware B. Hardware, Network, and Internet C. Transport, Application, and Internet D. Application, Transport, Internet, and Network Answer: C Question: 17 Which statement is true about TCP and/or UDP? A. TCP implements flow control at the Transport layer. B. UDP implements flow control at the Transport layer. C. TCP is a Transport layer protocol; UDP is an Internet layer protocol. D. TCP segments are converted to UDP datagrams at the Internet layer. Answer: A Question: 18 Protocols are used by computer networks to communicate or exchange data. A data communication protocol is a set of rules that must be followed by electronic devices to communicate with each other. Which three describe these sets of rules? (Choose three.) A. Syntax - Data format and coding B. Internet - Manages data addressing C. Timing - Speed matching and sequencing D. Application - Handles the detail and functions E. Semantics - Controls information and error handling F. Transport - Manages the connections between cooperating applications Answer: A, C, E Question: 19 What are the four layers of the TCP/IP Model? (Choose four.) A. Internet layer B. Software layer C. Data Link layer D. Hardware layer E. Transport layer F. Application layer G. Network Interface layer Answer: A, E, F, G
Page 5 of 96
310-302 247
Question: 20 Which is an example of a Network Interface layer protocol? A. Transmission Control Protocol B. Uniform Demultiplexing Protocol C. Internet Control Message Protocol D. EIA/TIA 568 - Unshielded Twisted Pair E. IEEE 802.11 - Wireless Network Standard Answer: E Question: 21 Exhibit:
Which logical network topology is implemented in the configuration shown in the exhibit? A. bus B. ring C. VLAN D. broadcast E. fully connected Answer: B Question: 22 After connecting a new server to a network switch, you discover that the server is NOT able to communicate with other servers on the same network. You run snoop on the new server and find that it is returning traffic for a network different than the one to which you want to connect the server. Which can be the source of the problem? A. The ARP cache on the server is stale. B. The Network cable is longer than allowed. C. A switch port is configured for the wrong VLAN. D. The server is configured with the wrong IP address. E. The DHCP server is returning incorrect network settings. Answer: C
Page 6 of 96
310-302 247
Question: 23 You have been asked to reconfigure a VLAN on your network. Which device do you need to reconfigure? A. hub B. bridge C. GBIC D. switch Answer: D Question: 24 You are asked to recommend a network topology for a new server network. This network will service all of your Sun servers (approximately 50 machines) and several employee workstations (approximately 20 machines). Which network topology is suited for this environment? A. A ring topology using intelligent hubs. B. A bus topology segmented into multiple networks. C. A VLAN topology with one VLAN for servers and another for workstations. D. A star topology with one segment for servers and another for workstations. Answer: C Question: 25 You are asked to recommend a network connection type to link your office with another office approximately 1,000 meters (1,100 yards) away. This network will transfer very large files between the two offices. Which network media type should you recommend? A. 10BASE-T B. 1000BASE-SX C. 1000BASE-LX D. 1000BASE-CX E. Gigabit Ethernet Answer: C Question: 26 Which three are Ethernet cable connector types? (Choose three.) A. AUI B. DB-9 C. BNC D. RJ-45 E. HD-15 F. Centronics Answer: A, C, D Question: 27 Which two are functions of the Type field of an Ethernet frame? (Choose two.) A. It is used for error detection. B. It identifies the location of the target system on the local link. C. It defines the protocol that processes the encapsulated data.
Page 7 of 96
310-302 247
D. It describes the data encapsulated in the payload section of an Ethernet frame. E. It helps the receiving interface to determine the starting bit of an Ethernet frame. Answer: C, D Question: 28 What is CSMA/CD? A. Common Serial Multiple Access with Carrier Detection B. Collision Sensing Multiple Access with Carrier Detection C. Carrier Sensing Multiple Access with Collision Detection D. Common Serial Multiple Access with Collision Detection E. Carrier Serial Multiplexing Access with Carrier Detection Answer: C Question: 29 A system with its Ethernet port configured for full-duplex operation has what advantage over one running at half-duplex? A. It has double the throughput capacity. B. It has double the transmission speed. C. It provides more reliable transmission. D. The system's CPU processes fewer interrupts. Answer: A Question: 30 In certain configurations, Gigabit Ethernet can use 9000 byte Ethernet frames instead of the Standard 1500 byte frames. What are two advantages of using Jumbo Ethernet frames over standard frames? (Choose two.) A. higher network throughput B. VLAN complexity reduced C. lower host CPU utilization D. more reliable data transmission E. lower number of packet collisions Answer: A, C Question: 31 Ethernet addresses are 48 bits long. Ethernet addresses are always displayed as 12 hexadecimal digits (six groups of two digits) separated by colons. An example of this is: 08:00:20:b7:bc:9d What are two functions of the first three octets? (Choose two.) A. identify the vendor B. determine the interface driver C. determine if the address is multicast D. determine the multicast's group identity E. determine the size of the Ethernet frame Answer: A, C
Page 8 of 96
310-302 247
Question: 32 What is the function of the preamble in the Ethernet frame? A. It provides the length of the Ethernet frame. B. It provides error correction data for the frame. C. It describes the contents of the data section of the frame. D. It synchronizes communication between sender and receiver. Answer: D Question: 33 Which networking technique is defined as "the inclusion of a data structure within another structure so that the first data structure is temporarily hidden"? A. masking B. tunnelling C. encryption D. embedding E. encapsulation Answer: E Question: 34 You configure a second network connection on a server and attempt to configure the server to Forward packets between the two interfaces. The snoop command reveals that packets are arriving on both interfaces, but the server is refusing to forward packets between interfaces as required. Which two commands can be used to verify that the Solaris system is configured to forward IP packets between these two interfaces? (Choose two.) A. routeadm B. netstat -r C. ndd -get /dev/ip \? D. ndd -get /dev/udp ip-forward E. ndd -get /dev/ip ip_forwarding Answer: A, E Question: 35 You are an administrator for a web-hosting organization. Each website your company supports has its own IP address. You want to assign each IP address to its own virtual interface on your server. Your server needs to support more websites than the default number of virtual interfaces on the Solaris OS. Which command should you use to change the maximum number of configurable virtual interfaces so that your strategy can be implemented? A. ndd B. route C. netstat D. ifconfig E. inetinit Answer: A Question: 36 What are two results of executing the following command? (Choose two.)
Page 9 of 96
310-302 247
# snoop -v 192.168.1.4 192.168.1.7 A. B. C. D. E. You can view all broadcast packets. You can view multiple lines of output for each level of encapsulation. You can view packets sent between host 192.168.1.4 and host 192.168.1.7. You can view all packets sent to host 192.168.1.4 and all packets sent to host 192.168.1.7. You can view packets sent to all IP addresses in the range between 192.168.1.4 and 192.168.1.7.
Answer: B, C Question: 37 Users of a newly installed system are reporting network throughput below expected values. A Common indicator of a potential issue is an increasing number of collisions reported on the network interface. Which command displays network collisions on the hme0 interface? A. netstat -i B. netstat -d hme0 C. ndd -get /dev/hme collisions D. snoop -d hme0 -s collision_count Answer: A Question: 38 A system administrator is querying the status of the configured hme0 interface, but has forgotten The parameters available from the ndd command. Which command lists the parameters available for the hme driver? A. ndd /dev/hme \? B. ifconfig hme0 -list C. ndd -list /dev/hme0 D. ndd -get /dev/hme -help Answer: A Question: 39 A newly installed system is experiencing network performance problems. You suspect it may be related to the duplex or speed settings on the hme0 interface. Which two commands check the duplex and speed of the hme0 interface? (Choose two.) A. netstat -I hme B. netstat hme link_mode C. ndd -get /dev/hme speed D. ndd -get /dev/hme duplex E. ndd -get /dev/hme link_mode F. ndd -get /dev/hme link_speed G. ndd -get /dev/hme link_status Answer: E, F Question: 40 The administrator of a multi-homed Solaris system is verifying that the qfe3 interface has successfully autonegotiated a port connection. The /var/adm/messages file reports a recent entry of:
Page 10 of 96
310-302 247
NOTICE: qfe3: 100 Mbps full duplex link up However, ndd -get /dev/qfe link_speed returns a value of 0. What is causing the mismatch in reported values? A. The wrong driver is being queried by ndd. B. The switch can only negotiate half duplex connections. C. The ndd command is using the default instance value. D. Setting the link_speed value only takes effect following a reboot. Answer: C Question: 41 Given: server IP address = 192.168.123.254 client IP address = 192.168.123.21 A user reports an inability to connect to a remote server through ssh. Which command can the system administrator use on the server to see if the connection request is getting to the server? A. netstat -rn B. inetadm -v 192.168.123.21 C. snoop 192.168.123.254 and dst ssh D. snoop src 192.168.123.21 and port 22 Answer: D Question: 42 A system administrator troubleshooting nfs client to nfs server network latency issues has executed the following command: snoop -d hme0 -o /tmp/outfile Which subsequent command should be executed to view the time nfs packets were received as captured in /tmp/outfile? A. snoop -d hme0 -v | grep NFS B. snoop -i /tmp/outfile -tw -NFS C. snoop -i /tmp/outfile -time -V D. snoop -i /tmp/outfile -t a | grep NFS Answer: D Question: 43 Due to issues with a switch on your network, one of your servers needs to have the hme1 interface forced to 100 Mbps half duplex. The exhibit shows the current configuration of the hme1 interface.
Page 11 of 96
310-302 247
Which two commands need to be run to achieve this after the hme instance has been set? (Choose two.) A. ndd -get /dev/hme adv_100hdx cap B. ndd -set /dev/hme adv_10fdx_cap 0 C. ndd -set /dev/hme adv_100fdx_cap 0 D. ndd -set /dev/hme adv_100fdx_cap 1 E. ndd -set /dev/hme adv_autoneg_cap=1 F. ndd -set /dev/hme adv_autoneg_cap 0 Answer: C, F Question: 44 For security reasons, only predefined MAC addresses are allowed access to the Internet from the Internal network. You had to replace your manager's usual workstation on short notice, and the security team cannot change any settings for 24 hours. Which command can you execute to allow your manager to continue working? A. ifconfig -a ether 8:0:20:b9:73:23 B. cat "8:0:20:b9:73:23" >/etc/ethers C. ifconfig hme0 ether 8:0:20:b9:73:23 D. ifconfig hme0 plumb 8:0:20:b9:73:23 Answer: C Question: 45 You used ndd to enable IP forwarding on your network interfaces. After a system reboot, the system does not forward packets. What caused this problem? A. The svc.startd daemon was not reconfigured. B. The /etc/notrouter file was recreated during reboot. C. One of the /etc/rc2.d start scripts failed to complete. D. The effects of the ndd command did not survive reboot. Answer: D Question: 46 Given: host name host1 IP address 192.40.62.10 MAC address 8:0:20:75:6e:7d
Which command places a valid entry in the ARP table for workstation host1? A. arp -a host1 B. arp -s 192.40.62.10 C. arp -d host1 192.40.62.10 D. arp -s host1 8:0:20:75:6e:7d E. arp 8:0:20:75:6e:7d 192.40.62.10 Answer: D Question: 47 A printer is connected to the same subnet as your workstation. The printer is identified as:
Page 12 of 96
310-302 247
hostname printer1
IP address 192.204.200.12
MAC address 8:0:20:21:38:6b
Which command allows your workstation to reply to ARP requests for the printer? A. arp -p printer1 8:0:20:21:38:6b B. arp -s printer1 8:0:20:21:38:6b pub C. netconfig -p 192.204.200.12 printer1 D. rarp -s 192.204.200.12 8:0:20:21:38:6b Answer: B Question: 48 A system administrator is trying to boot a system from a network boot server. The system fails to Boot and displays the following error: Timeout waiting for ARP/RARP packet Which command indicates whether or not the RARP packet arrived at the server and the server replied? A. arp -a B. inetadm -d C. rarp -debug D. in.rarpd -da Answer: D Question: 49 Which file contains the MAC address to host name lookup table? A. /etc/ethers B. /etc/inet/ethers C. /etc/inet/inetd.conf D. /var/adm/net/config Answer: A Question: 50 A system is being configured as a network boot server. Which three must be present or online for the boot server to successfully answer RARP requests? (Choose three.) A. /etc/ethers B. /etc/inet/hosts C. /etc/resolv.conf D. svc:/network/rarp E. svc:/network/ethers Answer: A, B, D Question: 51 A server receives an ARP request to which it must reply. Where is the ARP reply sent to? A. The default router.
Page 13 of 96
310-302 247
B. The broadcast address. C. The system which originated the ARP request. D. All published entries in the local ARP table. Answer: C Question: 52 After a new installation of the Solaris 10 OS, the following message is repeatedly showing up in the /var/adm/messages file: Feb 02 10:04:52 postman sendmail[898]: [ID 702911 mail.alert] unable to qualify my own domain name (postman) -- using short name What needs to be done to resolve this problem? A. Restart the nscd daemon. B. Run the domainname command. C. Add a DNS server to the /etc/nsswitch.conf file. D. Add a fully qualified hostname to the /etc/inet/hosts file. Answer: D Question: 53 Given the following output showing the ARP table of a system: Net to Media Table: IPv4 Device IP Address iprb0 cobra_ext iprb0 192.168.1.200 iprb0 224.0.0.0
Mask 255.255.255.255 255.255.255.255 240.0.0.0
Flags SP SP SM
Phys Addr 00:00:39:e4:7d:df 00:00:39:e4:7d:df 01:00:5e:00:00:00
Which two statements are true? (Choose two.) A. cobra_ext resolves to the IP address 192.168.1.200. B. The MAC address associated to 192.168.1.200 IP address is incorrect. C. The system will respond to ARP requests for the address 192.168.1.200. D. 192.168.1.200 IP address has been statically added to the system arp table. E. The MAC address associated to 192.168.1.200 should be 01:00:5e:00:00:00. Answer: C, D Question: 54 You need to temporarily change the IP address on the hme0 interface on a system. Which command modifies the address to 192.168.20.118 with a broadcast address of 192.168.20.127 and a netmask of 255.255.255.192? A. ifconfig hme0 192.168.20.118 netmask 192.168.20.127 broadcast + B. ifconfig hme0 192.168.20.118 netmask 255.255.255.0 + broadcast C. ifconfig hme0 192.168.20.118 netmask 255.255.255.192 + broadcast D. ifconfig hme0 192.168.20.118 netmask 255.255.255.127 broadcast + E. ifconfig hme0 192.168.20.118 netmask 255.255.255.192 broadcast + Answer: E Question: 55
Page 14 of 96
310-302 247
The hme0 interface on your system does not appear to be functioning correctly. The output from ifconfig is shown in the exhibit.
Which statement accurately describes the current configuration of the hme0 interface? A. The network cable is disconnected. B. The broadcast address is incorrect. C. There is a duplicate IP address conflict. D. The interface is configured, but not enabled. E. The interface driver is not configured in the kernel. Answer: D Question: 56 Due to a restructuring of your organization, your company is divided into four separate groups. Your network is to be organized into four separate subnetworks, but you only have a single Class C address range. Which file, on every host, on each subnetwork, needs to be modified so that you can implement an appropriate subnetworking strategy? A. /etc/netgroup B. /etc/netmask C. /etc/inet/netmasks D. /etc/defaultrouter E. /etc/inet/hostname.hme0 Answer: C Question: 57 An unauthorized administrator has recently made some changes to and rebooted your server. As a result, the server is using ARP to attempt to reach hosts on a different subnetwork. Which file has been erroneously modified? A. /etc/netgroup B. /etc/inet/hosts C. /etc/inetd.conf D. /etc/inet/netmasks E. /etc/inet/services F. /etc/init.d/inetinit Answer: D Question: 58 Which three are tasks in which Internet Control and Message Protocol (ICMP) packets are used? (Choose three). A. RIPv2 routing updates B. MAC address updates C. RDISC router discovery D. encapsulating fragmented TCP packets E. ping between hosts on different networks
Page 15 of 96
310-302 247
F. ping between hosts on the same network Answer: C, E, F Question: 59 While attempting to configure an interface you receive the following error: # ifconfig hme1 plumb 232.15.8.3 netmask 255.255.255.0 up ifconfig: SIOCSLIFADDR: hme1: Cannot assign requested address Which is the cause of this error? A. No broadcast address is given. B. The interface hme1 does not exist. C. The option plumb is given with other options. D. The IP address is not a valid unicast address. Answer: D Question: 60 A Solaris system is configured with an IPv6 IPMP group named panic that contains two physical hme interfaces. A third interface, qfe0, is to be added to this same group on the next system reboot. Which entry needs to be added to the /etc/hostname6.qfe0 file? A. -failover group panic up B. -deprecated inet6 group panic -failover up C. group panic addif site-local -deprecated up D. site-local group panic addif qfe0 -failover up Answer: A Question: 61 You want to modify the failure detection time for IPMP so that failures are detected more quickly on the IPMP group containing the IPv6 interface eri0. Which file you do edit? A. /etc/default/mpathd B. /etc/hostname6.eri0 C. /etc/default/mpathd6 D. /kernel/drv/ipmp.conf E. /kernel/drv/ipmp6.conf Answer: A Question: 62 The TCP protocol has an algorithm that implements flow control on both the sender side and the receiver side. What is the function of the congestion window on the sending side? A. advertises the amount of data loss B. adjusts the rate at which data can be sent C. adjusts the rate at which data can be received D. advertises the maximum amount of data that can be sent E. advertises the maximum amount of data that can be received Answer: B
Page 16 of 96
310-302 247
Question: 63 A system administrator is asked to troubleshoot network connections between a web server and a specific client. Which command can be used to quickly investigate the TCP connection state? A. dig -a B. ping -s C. netstat -a D. iostat 10 -tcp Answer: C Question: 64 Which information is found in TCP segment headers? (Choose two.) A. MAC address B. UDP datagram C. sequence numbers D. congestion window E. window advertisements Answer: C, E Question: 65 The Transport layer manages the transport of data between communicating hosts. Which three methods are used by the Transport layer to determine whether data have been correctly delivered? (Choose three.) A. flow control B. sequencing C. expedited forwarding D. acknowledgement responses E. data fragmentation and reassembly Answer: A, B, D Question: 66 Exhibit:
Page 17 of 96
310-302 247
Which two commands must be executed to properly implement probe-based multipathing? (Choose two.) A. ifconfig hme1 group mpgrp-two B. eeprom local-mac-address?=true C. ifconfig hme1 group mpgrp-one D. ifconfig hme1 addif 192.168.1.51 deprecated netmask + broadcast + -failover up E. ifconfig hme0 addif 192.168.1.50 deprecated netmask + broadcast + -failover up F. ifconfig hme1 plumb 192.168.1.45 netmask + broadcast + group mpgrp-one up Answer: C, D Question: 67 This message appears in a system's console window: Jan 24 12:02:03 sys11 in.mpathd[853]: No test address configured on interface hme2; disabling probe-based failure detection on it What fixes this problem? A. if_mpadm -t hme2 192.168.1.10 B. inetadm enable svc:/network/mpath C. adding a test address to the /etc/default/mpathd file D. ifconfig hme2 addif 192.168.1.10 -failover deprecated up Answer: D Question: 68
Page 18 of 96
310-302 247
A section of the ifconfig -a command is run on a Solaris system with Probe-Based IPMP configured as follows: hme0:1: flags=9040843<UP,BROADCAST,RUNNING,MULTICAST,DEPRECATED,IPV4,NOFAILOVER> mtu 1500 index 2 inet 192.168.1.51 netmask ffffff00 broadcast 192.168.1.255 The address shown is marked as deprecated. In which two situations are addresses that are marked deprecated used as source addresses for outbound packets? (Choose two.) A. when the system acts as a router B. when a TCP connection is requested C. when a static default router is configured for the system D. when there are no other addresses available in the interface group E. when an application has been explicitly bound to the 192.168.1.51 address Answer: D, E Question: 69 Given: route add host lion tiger Which two statements are true? (Choose two.) A. The command adds a static route to the routing table. B. The command indicates that tiger is an intermediate host on this route. C. The command causes hosts tiger and lion to update their routing tables. D. All hosts on the lion network can be reached as a result of the command. E. The command indicates that lion is the only intermediate host on this route. Answer: A, B Question: 70 Your routing table has become corrupted. You decide to empty the routing table before you recreate it. Which command deletes all gateway entries from the routing table? A. route flush B. rmroute all C. route delete all D. route delete default E. pkill -HUP in.routed Answer: A Question: 71 The output from a netstat -r command is shown in the exhibit.
Page 19 of 96
310-302 247
In this output, the destination 192.168.160.0 is shown as an IP address. Which file should you modify to assign a name to this network so that this name is shown in the netstat r output? A. /etc/inet/hosts B. /etc/inet/networks C. /etc/networks.conf D. /etc/inet/networks.conf E. /etc/default/networks.conf Answer: B Question: 72 The default router on a network stops broadcasting RDISC packets. Which two statements about a non-router host in the same subnet as the router are true? (Choose two.) A. B. C. D. The in.rdisc daemon on the host terminates. The router address listed in /etc/defaultrouter is used instead. The default router entry for the router is immediately removed from the host's routing table. The default router entry is reestablished when the router restarts broadcasting RDISC packets. E. The default router entry for the router is removed from the host's routing table after a timeout of about 30 minutes. Answer: D, E Question: 73 Your workstation is suddenly unable to communicate with hosts on other subnets However, you can still ping hosts on the same network. No changes have been made to the workstation and it has not been rebooted. The routing table on the workstation contains: Routing Table: IPv4 Destination Gateway 129.147.12.0 129.147.12.179 224.0.0.0 129.147.12.179 127.0.0.1 127.0.0.1
Flags U U UH
Ref 1 1 23
Use 3 0 2304
Interface hme0 hme0 lo0
What is a possible cause of this problem? A. inetd has core dumped.

Page 20 of 96
310-302 247
B. The /etc/defaultrouter file is deleted. C. A router stopped broadcasting RDISC packets. D. The switch to which the workstation is connected failed. Answer: C Question: 74 A system administrator is running the snoop utility on the only interface of a newly installed Solaris system. The network in which the system is connected supports the Router Discovery Protocol. The system administrator starts the in.routed daemon. Which two are captured by the snoop utility as a result of starting the in.routed daemon? (Choose two.) A. router advertisement B. ping to the default router C. gateway timeout parameter D. packet to destination 224.0.0.2 Answer: A, D Question: 75 To assist in troubleshooting a system's routing configuration, a system administrator needs to View updates to the routing table in real time. Which command provides this information? A. route monitor B. in.routed -u root C. routeadm -u table D. routeadm -e update Answer: A Question: 76 Which two are characteristics of the RDISC protocol on a Solaris 10 OS system? (Choose two.) A. It uses multicast. B. It is independent of the routing protocol. C. It provides routing information between switches. D. The in.rdisc daemon automatically starts at system boot. Answer: A, B Question: 77 The system administrator needs to configure a static, default route to 192.168.0.1. The netmask is 255.255.255.240. Which two commands are used to ensure that the default route is installed immediately and at the next reboot? (Choose two.) A. route add default 192.168.0.1 B. routeadm -u -a default 192.168.0.1 C. echo 192.168.0.1 > /etc/defaultrouter D. echo 192.168.0.1/25 > /etc/defaultrouter E. routeadm add default -netmask 255.255.255.240 192.168.0.1 Answer: A, C Question: 78
Page 21 of 96
310-302 247
You wish to add a static route to the routing table on your system. You add the following line to the /etc/defaultrouter file: net 129.159.158.0 gateway gw-157-158 metric 1 When the system is rebooted, you observe that the in.routed daemon has not started. The svcs -x command shows no problems. The netstat -r command does not show the static route in the routing table. What is the cause of this problem? A. The entry should have been placed in the /etc/gateways file. B. The entry should have contained the static keyword. C. The entry does not contain a netmask specification. D. The entry should use the IP address of the gateway, not its name. Answer: A Question: 79 Which IP address range does the CIDR address 204.108.16/23 represent? A. 204.108.16.0 only B. 204.108.15.0 to 204.108.16.0 C. 204.108.16.0 to 204.108.19.0 D. 204.108.16.0 to 204.108.17.255 Answer: D Question: 80 You need to provision a new network segment on the 192.168.16 network, which can accommodate up to 1600 IP addresses. Using CIDR notation, what allows you to accomplish this task? A. 192.168.16.0/23 B. 192.168.16.0/22 C. 192.168.16.0/21 D. 192.168.16.0/32 Answer: C Question: 81 Following a reboot of a Solaris system, the in.routed daemon is not starting automatically as required. Execution of svcs -l svc:/network/initial reports enabled and online. Which two are possible causes? (Choose two.) A. IPv4-routing is disabled. B. The /etc/gateways file is missing. C. svc:/network/interfaces is disabled. D. The /etc/defaultrouter file contains an IP address. Answer: A, D Question: 82 The administrator of a Solaris system that functions as a router wants to modify the default configuration of the in.routed daemon. In which in.routed configuration file, should the administrator modify the time interval in which Router Discovery Advertisements are transmitted?
Page 22 of 96
310-302 247
A. /etc/system B. /etc/gateways C. /etc/defaultrouter D. /etc/inet/routing.conf Answer: B Question: 83 An old router running the Solaris 10 OS is being reused as a normal system. The second Ethernet interface is disabled and the administrator wants to disable in.routed immediately and prevent in.routed from starting on the next boot. Which command needs to be executed? A. routeadm -e ipv4-routing B. routeadm -d ipv4-routing C. routeadm -u -d ipv4-routing D. routeadm -u -e ipv4-routing Answer: C Question: 84 Exhibit:
Due to changes to the network you are managing, ClientA must access ClientB. The system HOST-GW is multi-homed and has routing and IP forwarding enabled on all of its interfaces. ClientA has a static default route configured to 192.168.100.1. ClientB has a static default route configured to ext-gw (10.1.1.1). How can you add a static route to ClientA to make it reach ClientB? A. route add int-gw B. routeadm add int-gw C. route change 10.1.1.10 ext-gw D. route add host 10.1.1.10 int-gw E. routeadm add host 10.1.1.10 ext-gw Answer: D Question: 85
Page 23 of 96
310-302 247
Exhibit:
A portion of your network has three networks: NET1, NET2, and NET3. All clients on NET2 have the default route set to 192.168.1.1. All clients on NET3 have the default route set to 192.168.3.1. Clients on the NET2 network are NOT able to reach any of the clients on NET3. You are given the following output of the netstat -rn command from sys11: # netstat -rn Routing Table: IPv4 Destination Gateway 192.168.3.0 192.168.3.1 192.168.1.0 192.168.1.1 192.168.2.0 192.168.30.2 192.168.30.0 192.168.30.31 224.0.0.0 192.168.1.1 127.0.0.1 127.0.0.1 Which entry is incorrect? A. 192.168.3.0 192.168.3.1 UG 1 0 B. 192.168.2.0 192.168.30.2 UG 1 0 C. 127.0.0.1 127.0.0.1 UH 1 3 lo0 D. 192.168.30.0 192.168.30.31 U 1 176 qfe0 E. 224.0.0.0 192.168.1.1 U 1 0 hme0 F. 192.168.1.0 192.168.1.1 U 1 191 hme0 Answer: A Question: 86
Page 24 of 96
Flags UG U UG U U UH
Ref 1 1 1 1 1 1
Use 0 191 0 176 0 3
Interface hme0 qfe0 hme0 lo0
310-302 247
A host with two interfaces has the following routing table: # netstat -rn Routing Table: IPv4 Destination Gateway 192.168.1.0 192.168.1.1 10.10.10.0 192.168.3.10 192.168.3.0 192.168.3.1 224.0.0.0 192.168.1.1 127.0.0.1 127.0.0.1
Flags U UG U U UH
Ref 1 1 1 1 1
Use 191 0 176 0 3
Interface hme0 qfe0 hme0 lo0
What can be determined from the UG flags in the second line? A. The IP address 10.10.10.0 is a gateway. B. The gateway 192.168.3.10 is up. C. The gateway 192.168.3.10 has been updated. D. It is an indirect route, and the gateway system is 192.168.3.10. Answer: D Question: 87 A host's IPv6 link-local unicast address is based on the host's Ethernet address. A 16-bit code is inserted in the 64-bit Interface ID portion of the IPv6 address to enable a 48-bit Ethernet address to become 64 bits in length. Which value represents this added 16-bit code? A. FE80 B. FEC0 C. FFFE D. FFEE E. FFFF Answer: C Question: 88 A Solaris system has an existing hme0 interface configured with an IPv4 address. hme0: flags=1004843<UP,BROADCAST,RUNNING,IPv4> mtu 1500 index 2 inet 129.147.12.179 netmask ffffff00 broadcast 129.147.12.255 ether 8:0:20:f5:d7:d7 An administrator wants to test an implementation of IPv6 on this system. Which two commands can the administrator use to add an IPv6 address to hme0? (Choose two.) A. routeadm -e -i hme0 inet6 B. ifconfig hme0 ipv6 plumb up C. ifconfig hme0 inet6 plumb up D. touch /etc/hostname6.hme0; init 6 E. ifconfig -d hme0 addif inet6 -auto Answer: C, D Question: 89 Given:
Page 25 of 96
310-302 247
hme0: flags=2000841<UP,RUNNING,MULTICAST,IPv6> mtu 1500 index 2 inet6 fe80::a00:20ff:fef5:d7d7/10 ether 8:0:20:f5:d7:d7 Which two statements are true about this interface? (Choose two.) A. It is part of a multipath group. B. It is a link-local unicast address. C. It contains an embedded IPv4 address. D. It was autoconfigured using the host's MAC address. E. It can communicate with systems on different subnets. Answer: B, D Question: 90 You have configured an IPv6 router that is having problems routing correctly to a default router connected to the Internet. You need to investigate the machine's routing table and check that the default route is in place. You also need to check the neighbor cache to see whether the MAC address of the default router has been learned. Which two commands enable you to perform these tasks? (Choose two.) A. arp -n B. netstat -r C. netstat -m D. netstat -p E. ifconfig -a Answer: B, D Question: 91 Exhibit:
Page 26 of 96
310-302 247
You configure a 6to4 router, and try to communicate from system A to system B. The interfaces of the source and destination systems are shown in the exhibit. Your ping: systemA# ping -s fe80::203:baff:fe02:7aa5 yields: ICMPv6 Address Unreachable from gateway 2002:8193:c9f::1 for icmp6 from 2002:8193:c9f::1 to fe80::203:baff:fe02:7aa5 What is the cause of the problem? A. You did not add a default route for the IPv6 traffic. B. You do not have a route to gateway 2002:8193:c9f::1. C. You can NOT reach the system on the local link address. D. The system you are pinging on does not have IPv6 configured. Answer: C Question: 92 You configure and set up a tunnel, and need to ping the host at the remote end of the tunnel to ensure the tunnel will work. The remote end of the tunnel can be pinged without a tunnel in place. What are two good reasons to create a tunnel? (Choose two.) A. Tunnelling ensures privacy of data through encryption. B. Tunnelling allows Ethernet packets to be encapsulated in IPv6 packets. C. Tunnelling allows for IPv6 datagrams to be routed within IPv4 datagrams. D. Tunnelling results in faster routing because the router has fewer headers to inspect. E. Tunnelling allows for IPv6 networks to be routed over IPv4 network infrastructures. Answer: C, E Question: 93 While diagnosing an IPv6 problem, you run snoop and receive the output shown in the exhibit.
What can be determined from this output? A. Both hosts are on the same local network. B. The two hosts are connected through the Internet. C. The telnet session is passing through an IPv4 to the IPv6 tunnel. D. The telnet session is using a source port of 6ef2 (hex) and a destination port of 5148 (hex).
Page 27 of 96
310-302 247
Answer: A Question: 94 You have a system that is directly connected to three local IPv6 networks. Currently this machine can talk to other hosts on each of the three networks. However, machines on different networks cannot talk to each other, even though they all have this system configured as their default IPv6 router. The output of routeadm is shown in the exhibit.
Which command do you need to run to allow this machine to immediately begin forwarding packets between the three directly connected networks? A. /usr/lib/inet/in.ripngd B. routeadm -e ipv6-routing C. routeadm -e ipv6-forwarding D. routeadm -u -e ipv6-forwarding E. ndd -set /dev/ip ipv6_send_redirects 1 Answer: D Question: 95 Your company is setting up a new branch office that is connected to the Internet through the main office. You are asked to set up a DNS server in the new branch office. What type of DNS server should you configure? A. A root server. B. A replica server. C. A forwarding server. D. An authoritative server. E. A Top-Level Domain server. Answer: C
Page 28 of 96
310-302 247
Question: 96 A DNS zone file is shown in the exhibit.
The configuration for this domain is removed from the primary server, but the secondary server is not modified. How long after the domain is removed from the primary server will the secondary server stop returning authoritative replies for this domain? A. immediately B. approximately 1 hour after C. approximately 10 days after D. approximately 15 minutes after E. approximately 30 minutes after Answer: C Question: 97 An administrator is setting up a new Solaris server named logger, and has forgotten the appropriate mail relay server to use for this subnet. # cat /etc/resolv.conf domainname central.company.com nameserver 170.63.2.10 nameserver 163.120.15.10 Which command can the administrator use to discover this information? A. cat /etc/nsswitch.conf B. dig -relay 163.120.15.10 C. dig central.company.com mx D. dig mailrelay logger.central.company.com E. nslookup type=A logger.central.company.com Answer: C Question: 98 A Solaris OS user executing the command dig host.newcompany.com receives a record that indicates a non-authoritative response. What does this indicate? A. The default DNS server in /etc/resolv.conf is unavailable. B. The TTL has expired for the host.newcompany.com DNS entry. C. The default DNS server does not own the newcompany.com zone.
Page 29 of 96
310-302 247
D. The newcompany.com SOA record needs the serial number updated. Answer: C Question: 99 Given the contents of a zone file: ; $TTL 3D @ IN SOA ns1.store.com. hostmaster.store.com. ( 200411152 3600 3600 3600 3600 ) ; NS ns1 store.com. MX 10 mail ; localhost A 127.0.0.1 ns1 A 170.63.2.2 buy A 170.63.2.51 mail A 170.63.2.5 dhcp CNAME ns1 www CNAME buy relay CNAME mail Which two statements are true? (Choose two.) A. This is a reverse zone file. B. The hosts www and buy are the same system. C. A remote DNS server caching a record for mail.store.com flushes the entry every 10 days. D. The command dig @ns1.store.com relay.store.com returns an A record entry of 170.63.2.5. Answer: B, D Question: 100 Company A owns, and is authoritative, for the domain aco.com. Company A is in the process of consolidating systems as a result of the purchase of Company B. As part of this transition effort, network administrators have configured Company A's DNS server zone files to include and become authoritative for Company B's bco.com domain. The administrators want to turn off Company B's DNS servers. Which two steps should be completed prior to this shutdown? (Choose two.) A. reduce the TTL value for the aco.com domain B. initiate zone transfer to A.root-servers.net C. update the .com Top-Level name server entries for bco.com D. create an aco.com to bco.com reverse zone configuration file E. require hosts on bco.com to update the IP address used for DNS resolution Answer: C, E Question: 101 Which is the source of answers from authoritative DNS servers?
Page 30 of 96
310-302 247
A. Local cache B. A root server C. A disk-based file D. The loopback device Answer: C Question: 102 The Solaris OS allows the resolution of name-to-address or address-to-name in many ways with different orders. Which file specifies the name resolution order? A. /etc/domainame B. /etc/inet/hosts C. /etc/named.conf D. /etc/resolv.conf E. /etc/nsswitch.conf Answer: E Question: 103 Configuration information for BIND 8 and 9 is provided by statements in the file /etc/named.conf. Which four tasks can be accomplished using this file? (Choose four.) A. configuring DNS dynamic updates B. defining security for specific zones C. specifying a DNS server's zones of authority D. indicating the location of the DNS server's data files E. defining the order in which root servers are contacted F. specifying name-to-address mappings for the root servers G. defining the order in which the DNS server performs host name resolution Answer: A, B, C, D Question: 104 The responses that a DNS server returns to DNS client requests are classified as either authoritative or non-authoritative. What are two characteristics of non-authoritative responses? (Choose two.) A. are always correct B. are sourced from a disk-based file C. are sourced from a server's cache D. can be incorrect if the server's cache contains stale data E. if validated from at least two other sources, are promoted to an authoritative response Answer: C, D Question: 105 A new administrator makes changes to the zone file on the primary DNS server and now the secondary DNS server fails to synchronize. The secondary server is rebooted but this fails to help. Which failure caused this problem? A. failure to update the NS record of the updated zone file B. failure to update the time record of the updated zone file C. failure to update the serial number of the updated zone file D. failure to update the SOA ttl number of the updated zone file
Page 31 of 96
310-302 247
Answer: C Question: 106 A DNS server is successfully providing information related to zones for which it is authoritative. A problem occurs when it attempts to resolve addresses in zones for which it is not authoritative. What is a cause of this problem? A. The server has no /etc/resolv.conf file. B. The server has only a single Ethernet interface. C. The server does NOT support the .com domain. D. The server has no knowledge of the root-level servers. E. The server is NOT authoritative for any reverse domains. Answer: D Question: 107 A DNS server is correctly configured to resolve queries. On a system on the network, you run the command, ping www.sun.com, and immediately receive the error message: ping: unknown host www.sun.com What are two possible causes of this problem? (Choose two.) A. The nscd daemon is NOT running on the system. B. The DNS server is not a secondary server for sun.com. C. The www.sun.com host does not reply to ping requests. D. The file, /etc/nsswitch.conf, does NOT reference DNS. E. The file, /etc/dns.conf, has NOT been configured on the system. F. The file, /etc/resolv.conf, has NOT been configured on the system. Answer: D, F Question: 108 A DNS server is experiencing problems resolving hosts. Your troubleshooting efforts identify the following SOA record as the cause of the problem: @ soa in host1.abc.com. root.abc.com. ( 1002 ; Version number 43200 ; Refresh after 12 hours 3600 ; Retry after 1 hour 604800 ; Expire after 1 week 3600) ; Minimum TTL of 1 hr What is causing the error? A. The () pair should be {}. B. The soa must be in uppercase. C. A serial number of 1002 is too small. D. The final ")" must be on a line by itself. E. The soa and in fields are in the wrong order. Answer: E Question: 109
Page 32 of 96
310-302 247
The primary DNS server for Company.com is having problems delegating authority and responsibility for the subdomain sales.Company.com. Investigation reveals that the delegation is not functioning. The current origin is Company.com. Given the lines from the Company.com zone file: sales. in ns centauri.Company.com. centauri.Company.com in a 194.168.85.2 Which two errors are present? (Choose two.) A. The ns is in lower case. B. The two lines are not separated by a blank line. C. The name field sales is terminated with a dot (.). D. The name field of the second line is NOT terminated with a dot (.). E. The file lacks a PTR record for the name server centauri.Company.com. Answer: C, D Question: 110 Exhibit:
Given the BIND configuration shown in the exhibit, which statement is true about the mycompany.com domain? A. The user bob can modify the domain. B. The zone configuration is invalid as there is no serial number. C. Any host in 192.168.10.0/24 can act as a secondary server. D. Another DNS server in 192.168.10.0/24 can forward requests to this server. Answer: D Question: 111 The DNS configuration file on your system contains the following lines: search training.sun.com education.sun.com suned.sun.com nameserver 129.156.142.113 nameserver 129.156.137.108 nameserver 129.156.128.83
Page 33 of 96
310-302 247
Which statement is true? A. This system is allowed to query only three DNS domains. B. This system is a secondary server for three primary servers. C. This system is a DNS server for three domains and has three network interfaces. D. This system searches the three domains specified to find a match for a given host name. Answer: D Question: 112 While trying to configure an existing DNS server to be a secondary server for the domain mydomain.com, you receive the following error: Dec 25 08:12:52 frogstar named[1531]: transfer of 'mydomain.com/IN' from 192.168.10.11#53: failed while receiving responses: REFUSED Which setting needs to be modified to resolve this problem? A. SOA record on the secondary server B. allow-query entry on the secondary server C. allow-query entry on the master server D. allow-transfer entry on the master server E. allow-update entry on the secondary server Answer: D Question: 113 Given the following /etc/named.conf DNS server configuration file: zone "one.edu" in { type master; file "forward.zone"; allow-update { 127.0.0.1; 192.168.1.2; }; }; zone "1.168.192.in-addr.arpa" in { type master; file "reverse.rzone"; allow-update { 127.0.0.1; 192.168.1.2; }; }; In which way does the allow-update option change the behavior of the primary DNS server? A. The DNS server dynamically updates forward DNS servers. B. The DNS server dynamically updates reverse DNS servers. C. The DNS server dynamically updates secondary DNS servers. D. The DNS server can be dynamically updated by root DNS servers. E. The DNS server can be dynamically updated with host information from a DHCP server. Answer: E Question: 114 Given the following subsection of the /etc/named.conf file on a primary DNS server: acl "inside" { 192.168.2.0/24; 192.168.3.0/24; }; acl "pusher" { 192.168.2.10/32; };
Page 34 of 96
310-302 247
zone "one.edu" in { type master; file "forward.zone"; allow-query { "inside"; }; allow-transfer { 192.168.1.10/32; }; allow-update { 127.0.0.1; "pusher"; } }; Which two statements are true? (Choose two.) The primary DNS server can NOT be dynamically updated. The secondary DNS server 192.168.1.10/32 can receive zone transfers. Only systems with IP addresses 192.168.1.0/24 receive responses from the name server. Only the system with IP addresses 192.168.1.10/32 can dynamically update the zone one.edu. E. The system "pusher" with IP address 192.168.2.10/32 receives responses from the name server. Answer: B, E Question: 115 Your users complain that they can NOT log into the newly installed compute server. You check the log files and see this line: Jan 28 11:36:33 compserv in.telnetd[1430]: [ID 913506 daemon.warning] refused connect from 129.169.214.218 (name/address mismatch) Which is a cause of this message? A. The system has been hacked. B. Another system on the network used the server's address. C. The Telnet service has been disabled due to security problems. D. The forward and reverse DNS mappings used different IP addresses. Answer: D Question: 116 A DNS server fails when attempting to resolve whizwheel.magicthings.org to an IP address. You want to make the nslookup command reference the DNS server 129.147.22.222 without modifying the /etc/resolv.conf file. Which command accomplishes this? A. nslookup 129.147.22.222 B. nslookup - 129.147.22.222 C. nslookup / 129.147.22.222 D. dig @129.147.22.222 force E. smreg replace -m -s dns 129.147.22.222 Answer: B Question: 117 A DHCP server's IP address is 192.168.1.1. This DHCP server supports clients in two different class C networks. A DHCP client in one of the networks has an IP address of 192.168.2.50. A DHCP client in the other network has an IP address of 192.168.30.50. Which two files must exist on the DHCP server to support these clients? (Choose two.)
Page 35 of 96
A. B. C. D.
310-302 247
A. /etc/inet/dhcpsvc.conf B. /var/dhcp/SUNWfiles1_dhcptab C. /var/dhcp/SUNWfiles1_192_168_1_0 D. /var/dhcp/SUNWfiles1_192_168_2_0 E. /var/dhcp/SUNWfiles1_192_168_30_0 Answer: D, E Question: 118 Which two are benefits of using DHCP? (Choose two.) A. DHCP is a replacement for JumpStart. B. DHCP allows setting up BOOTP and RARP relays. C. DHCP on Solaris OS includes a VPN feature that allows for the dynamic setup of an IP-overIP tunnel. D. DHCP reduces the cost of managing networks by automatic assignment of available IP addresses from a pool of addresses. E. DHCP supports clients that boot over a network, effectively replacing the need for RARP and the bootparams file. Answer: D, E Question: 119 Which two commands can be used to configure a new DHCP server? (Choose two.) A. dhcpsvc B. dhcpmgr C. dhcpagent D. dhcpsetup E. dhcpconfig Answer: B, E Question: 120 While making configuration changes on your DHCP server, you want to test the changes on a Solaris OS workstation, which is configured as a DHCP client. Rather than rebooting the client or waiting for the DHCP lease to expire, which command can you use to cause the workstation to re-query the DHCP server? A. dhcpagent -f B. svcadm restart dhcpagent C. ifconfig hme0 down; ifconfig hme0 up D. ifconfig hme0 dhcp release; ifconfig hme0 dhcp start E. This cannot be done. You must reboot. Answer: D Question: 121 A Solaris system administrator wants to change a workstation so it no longer uses a static IP address but rather acquires a DHCP address at boot time on its hme0 interface. Which step needs to be executed on the workstation to accomplish this? A. create /etc/dhcp.hme0 B. execute ndd -set /dev/hme dhcp bind
Page 36 of 96
310-302 247
C. modify /etc/hostname.hme0 to include the dhcp-client tag D. execute svcadm restart svc:/network/dhcp-server:default Answer: A Question: 122 Given the following portion of in.dhcpd output running in debug mode: 3cdbc114: There is no 192.6.17.0 dhcp-network table. 3cdbc114: Datagram received on network device: hme0. Which two commands need to be run on the DHCP server for the DHCP client to obtain an IP address? (Choose two.) A. init 6 B. touch /etc/dhcp.hme0 C. pntadm -C 192.6.17.0 D. ifconfig hme0 dhcp start E. svcadm restart svc:/network/dhcp-server F. pntadm -p /var/dhcp -A 192.6.17.97 192.6.17.0 Answer: C, F Question: 123 Given the following DHCP debug output: 3cdbd723: Datagram received on network device: hme0 3cdbd723: Reserved offer: 192.1.29.72 3cdbd724: Unicasting datagram to 192.1.29.72 address. 3cdbd724: Adding ARP entry: 192.1.29.72 == 080020CBCBCB 3cdbd724: Updated offer: 192.1.29.72 3cdbd725: Datagram received on network device: hme0 3cdbd725: Client: 01080020CBCBCB maps to IP: 192.1.29.72 3cdbd725: Unicasting datagram to 192.1.29.72 address. 3cdbd725: Adding ARP entry: 192.1.29.72 == 080020CBCBCB Which two statements are true? (Choose two.) A. B. C. D. E. The original client request was a DHCPREQUEST. The original client request was a DHCPDISCOVER. The IP address assignment was successfully completed. The IP address was permanently reserved for another client. The server received the client's request, but was NOT able to send an answer to the client, and therefore repeated its answer unicast.
Answer: B, C Question: 124 A network administrator correctly configures a DHCP server that is serving JumpStart and nonJumpStart clients. One of the DHCP clients asks for an IP address. It does NOT ask for any other parameters such as subnet mask, router, and encapsulated vendor options. A variable must be modified in the /etc/default/dhcpagent file on the client to configure the DHCP client's dhcpagent to request additional networking information from the DHCP server. Which variable must be modified?
Page 37 of 96
310-302 247
A. PARAM_REQUEST B. PARAM_REQUEST_LIST C. PARAM_REQUEST_ROWS D. PARAM_REQUEST_ADDRESS E. PARAM_REQUEST_NETWORKING Answer: B Question: 125 A system administrator is configuring the company DHCP server to allow Sun systems to be Installed using JumpStart with DHCP boot. Which two steps configure the DHCP server? (Choose two.) A. run setup_install_server B. use dhtadm to create the required options C. use dhtadm to create the required macros D. use dhtadm -R to restart the DHCP daemon E. run the dhcp command using the admin options Answer: B, C Question: 126 An address in your DHCP server is marked as being unuseable. Which can cause this to occur? A. The DHCP server failed. B. The address is an invalid IP address. C. The client the address is assigned to is not responding. D. The address responded to a ping from the DHCP server. Answer: D Question: 127 Given the following snoop trace: sys4 -> sys10 NTP client [st=0] (2005-01-26 17:13:29.73040) sys10 -> sys4 NTP server [st=4] (2005-01-26 17:15:08.79499) sys4 -> sys10 NTP client [st=0] (2005-01-26 17:13:29.79606) sys10 -> sys4 NTP server [st=4] (2005-01-26 17:15:08.86071) sys4 -> sys10 NTP client [st=0] (2005-01-26 17:13:29.86199) sys10 -> sys4 NTP server [st=4] (2005-01-26 17:15:08.92638) sys4 -> sys10 NTP client [st=0] (2005-01-26 17:13:29.92734) sys10 -> sys4 NTP server [st=4] (2005-01-26 17:15:08.99198) Why do the system clocks remain unsynchronized despite several queries? A. The NTP server daemon is disabled. B. The NTP client is configured as a broadcast client. C. The /etc/init/ntp.client file is misconfigured. D. The NTP client requires more updates from the NTP server. Answer: D Question: 128 A network administrator configured an NTP server and an NTP client, but the client is refusing to synchronize with the server. The client and server clocks have drifted too much for the xntpd
Page 38 of 96
310-302 247
daemon to align them and for the NTP protocol to synchronize them. Which two tools will synchronize the two systems? (Choose two.) A. zdate B. rdate C. ntpdate D. syncdate E. ntptrace Answer: B, C Question: 129 The IP address of an NTP Stratum 4 server is 192.168.30.30. Which entry in this server's NTP configuration file indicates undisciplined local clock usage? A. server 192.168.30.30 B. server 127.127.1.0 local C. server 127.127.1.0 prefer D. server 192.168.30.30 local Answer: C Question: 130 An NTP server is configured to synchronize from three other NTP servers, all of which are Stratum 2 servers. By default, which Stratum level does your NTP server report itself as? A. Stratum 1 B. Stratum 2 C. Stratum 3 D. Stratum 4 E. Stratum 6 Answer: C Question: 131 You configure an NTP server to use its local undisciplined clock and also an external server at address 192.20.20.1. Additionally, you create a fudge line: fudge 127.127.1.0 stratum 12 Which is the purpose of the fudge line? A. to ensure that only servers below stratum 12 are queried B. to ensure that the server's local clock is seen as a stratum 12 server C. to ensure that the synchronization is checked at 12:00 P.M. each day D. to make the xntpd daemon check the clients clock every 12 minutes Answer: B Question: 132 The administrator of a Solaris OS workstation has configured and enabled an NTP client to use The default multicast address for communicating with an available local NTP server. Which command can be used on the client to discover if the clock is being synchronized with a public reference NTP server or with some alternate undisciplined local clock?
Page 39 of 96
310-302 247
A. ntptrace B. ntpq localhost C. cat /etc/inet/ntp.conf D. svcadm enable svc:/network/ntp Answer: A Question: 133 A Solaris 10 OS administrator needs to configure a host to operate as an NTP server. Which two must be performed on the host? (Choose two.) A. edit the /etc/inet/ntp.server file B. populate a /etc/inet/ntp.conf file C. execute snoop -d hme0 | grep NTP D. execute /usr/sbin/ntp.server start E. execute svcadm enable svc:/network/ntp Answer: B, E Question: 134 In the context of packet filtering, the Solaris IP Filter firewall provides a set of user level utility and kernel modules. Which two are kernel modules of Solaris IP Filter? (Choose two.) A. ipf B. ipfs C. pfil D. ipnat E. ipmon F. ippool Answer: A, C Question: 135 The default configuration of the Solaris 10 OS has packet filtering disabled on all network interfaces. To enable packet filtering on the hme0 interface of a running system, the related hme line in the /etc/ipf/pfil.ap file must be uncommented: # IP Filter pfil autopush setup # # See autopush(1M) manpage for more information. # # Format of the entries in this file is: # #major minor lastminor modules #le -1 0 pfil #qe -1 0 pfil hme -1 0 pfil #qfe -1 0 pfil #eri -1 0 pfil #ce -1 0 pfil #bge -1 0 pfil #be -1 0 pfil #vge -1 0 pfil #ge -1 0 pfil #nf -1 0 pfil
Page 40 of 96
310-302 247
#fa -1 0 pfil #ci -1 0 pfil #el -1 0 pfil #ipdptp -1 0 pfil #lane -1 0 pfil #dmfe -1 0 pfil Which UNIX command must be executed to enable Solaris IP Filter firewall for the hme0 interface without rebooting the system? A. ifconfig hme0 pfil; ifconfig hme0 modlist B. autopush -f /etc/ipf/pfil.ap; ifconfig hme0 modlist C. ifconfig hme0 modlist; autopush -f /etc/ipf/pfil.ap D. ifconfig hme0 down; ifconfig hme0 unplumb; ifconfig hme0 plumb; autopush -f /etc/ipf/pfil.ap E. autopush -f /etc/ipf/pfil.ap; ifconfig hme0 down unplumb; ifconfig hme0 plumb Answer: E Question: 136 On a running Solaris 10 OS server, packet filtering is enabled, and the configuration of the Solaris IP Filter firewall is stored in the /etc/ipf/ipf.conf file, which contains: pass in proto tcp from any to any port = 23 pass in proto tcp from any to any port = 21 block in all With this configuration in place, how does the Solaris 10 OS server respond to clients that try to establish a tcp connection? A. The server blocks all incoming packets. B. The server only permits ftp connections. C. The server only permits telnet connections. D. The server only permits telnet and ftp connections. Answer: A Question: 137 Exhibit
Page 41 of 96
310-302 247
ClientA has IP address 192.168.1.10/32. ClientB has IP address 192.168.2.10/32. The Solaris 10 OS ServerA with IP address 10.10.10.10/32 has the packet filter enabled and the configuration of the firewall is stored in the /etc/ipf/ipf.conf file which contains: passin quick from 192.168.1.10/32 to any passin proto tcp from 192.168.2.10/32 to any port = 23 blockin all With this Solaris IP Filter configuration, which statement is true about Solaris 10 ServerA? A. ServerA drops all packets coming from either ClientA or ClientB. B. ServerA accepts any packets from ClientA and none from ClientB. C. ServerA accepts only telnet packets from ClientB and none from ClientA. D. ServerA accepts any packets from ClientA and only telnet packets from ClientB. Answer: B Question: 138 A Solaris 10 OS server has packet filtering enabled. The rule set includes: pass in all pass in quick from any to any port = 22 pass in quick from any to any port = 80 pass in from any to any port = 23 pass in from any to any port = 25 block in all Which three network connections are blocked by the ipfilter software? (Choose three.)
Page 42 of 96
310-302 247
A. FTP connections from all hosts B. SSH connections from all hosts C. HTTP connections from all hosts D. SMTP connections from all hosts E. Telnet connections from all hosts Answer: A, D, E Question: 139 An administrator of the company firewall has modified the set of Solaris IP Filter rules contained in the /etc/ipf/ipf.conf file enabling inbound HTTP traffic to reach a newly implemented web server. Following activation of the new rule set, outbound response packets from the web server are being blocked. The output of ipfstat -o reports: block out all What has the administrator forgotten? A. a restart of the ipfilter service B. a rule allowing outbound auth fragments C. a keep state keyword on the inbound rule D. to enable the default web server group for HTTP traffic Answer: C Question: 140 A system administrator auditing a host running Solaris IP Filter verifies the contents of /etc/ipf/ipf.conf, but is unsure if the rules listed in this configuration file have been applied to the currently running Solaris IP Filter service. Which command lists the current rules being applied by Solaris IP Filter? A. ipstate -a B. ipfstat -io C. autopush -l ipf D. cat /etc/ipf/ipf.conf Answer: B Question: 141 Given this Solaris IP Filter rule enabled on a host: pass out quick all block in all pass in from 192.168.1.55/32 to any block out on hme0 Which two statements describe rule processing behavior for this configuration? (Choose two.) A. All outbound packets are permitted. B. All outbound packets leaving hme0 are blocked. C. Outbound packets are applied to a total of two rules. D. All inbound packets from host 192.168.1.55 are permitted. Answer: A, D
Page 43 of 96
310-302 247
Question: 142 Investigating the output of ipfstat -in on a system running Solaris IP Filter, which is the sequence of rules matched for an inbound telnet connection from system 192.168.1.55? 1 block in all 2 pass in from 192.168.1.0/24 to any 3 pass in quick from any to any port = 80 4 block in from 192.168.1.6/32 to any 5 pass in quick from any to any port = 23 6 block in all A. 1 and 5 B. 1, 2, and 5 C. 1, 2, 5, and 6 D. 1, 2, 3, 4, 5, and 6 Answer: B Question: 143 Which two statements about Solaris IP Filter are correct? (Choose two.) A. Solaris IP Filter blocks all packets by default. B. Solaris IP Filter can be configured as a routing firewall. C. Solaris IP Filter can be configured as a host-based firewall. D. Solaris IP Filter can be configured as an application-level firewall. E. You must configure SunScreen software before running Solaris IP Filter. Answer: B, C Question: 144 You configure Solaris IP Filter on a Solaris system named myhost as a host-based firewall. While attempting to telnet to myhost from another host named remotehost, you receive this error: $ telnet myhost Trying 192.168.1.100... telnet: Unable to connect to remote host: Connection timed out You run netstat -a on myhost and find this entry : Local Address myhost.23 Remote Address remotehost.39846 Swind 0 Send-Q 0 Rwind 49640 Recv-Q 0 State SYN_RCVD
What is the cause of this problem? A. The ipf kernel module is not loaded. B. remotehost does not have a route to myhost. C. myhost and remotehost are on different networks. D. myhost has a block out rule for traffic to remotehost. E. Telnet is an insecure protocol and therefore Solaris IP Filter always blocks it. Answer: D Question: 145 You configure Solaris IP Filter on your bge0 network interface to block all incoming connections,
Page 44 of 96
310-302 247
But you are still able to telnet to the server. Which two commands can be used to confirm that the Solaris IP Filter kernel modules are loaded and bound to your network interface? (Choose two.) A. ipf -kernel B. ipmon -f bge0 C. modinfo | grep ipf D. ifconfig bge0 pfil E. ifconfig bge0 modlist Answer: C, E Question: 146 A Solaris IP Filter administrator is tasked with creating rules granting access to a new system for beta testing. The testing is only to be done by a select group of users originating from a large number of different subnets. Which Solaris IP Filter feature can be used to simplify the required rule additions? A. group B. quick C. keep flag D. address pool Answer: D Question: 147 Your network is made of many servers running many services. One of these systems is named system-ssh, which is an ssh server. The ssh server is on Solaris 10 OS with the packet filter enabled and configured. The rule set is: pass in quick proto tcp from any to any port = 22 keep state block in all Due to maintenance on the ssh software, a telnet connection must be used instead. You change the rule set in: pass in quick proto tcp from any to any port = 23 keep state block in all These are added as an inactive rule set to the ipf kernel module of Solaris 10 OS. Which command do you execute to list the inactive rule set and make it active? A. ipmon -i; ipf -I B. ipmon -i; ipf -s C. ipfstat -i; ipf -I D. ipfstat -iI; ipf -s E. ipmon -l; ipfstat -i Answer: D Question: 148 As the firewall administrator, you are asked to log all outbound connections from the workstation with the IP address 192.168.1.36. The Internet facing IP address of the firewall is 10.0.0.1. Which rule should be added to your firewall's Solaris IP Filter configuration file to accomplish this task? A. pass out log quick from 10.0.0.1 to any flags keep state
Page 45 of 96
310-302 247
B. pass in log quick from 192.168.1.36 to any flags keep state C. pass in quick from 192.168.1.36 to any flags keep state log D. pass out quick from 192.168.1.36 to any flags keep state log Answer: B Question: 149 A Solaris system router 192.168.1.55 running Solaris IP Filter is configured with two network Interfaces on different subnets. The system needs to be configured to route all HTTP traffic and allow SSH login access only from the qfe0 interface. pass in quick from any to any port = 80 keep state pass in on qfe0 from any to 192.168.1.55/32 port = 22 block in all block out all What are two outcomes of applying this ipf.conf configuration? (Choose two.) A. Outbound HTTP traffic is blocked. B. Inbound SSH traffic on qfe0 is blocked. C. Port 80 traffic to host 192.168.1.55 is blocked. D. Access from hosts on 192.168.1.0/24 is allowed. Answer: A, B Question: 150 You have a Solaris system with address 192.168.1.55 running Solaris IP Filter that is configured to block all outbound packets. Which additional rule allows the system to initiate ping requests to other systems on a Class B network? A. pass out quick proto icmp from 192.168.1.55/32 to 172.16.0.0/16 B. pass out quick proto tcp/udp from 192.168.1.55/32 to any C. block out quick proto icmp from 172.16.0.0/32 icmp-type 9 D. pass out proto ping from 192.168.1.55/32 to 192.168.1.55/24 keep state Answer: A Question: 151 A firewall administrator creates the /tmp/newrules file containing additional Solaris IP Filter rules. What are two results of running the ipf -f /tmp/newrules command? (Choose two.) A. The inactive rule set is updated. B. The /etc/ipf/ipf.conf file is updated. C. Packets are now filtered, based on the added rules. D. The active rule set is flushed and replaced by rules in /tmp/newrules. E. Rules contained in /tmp/newrules are appended to the running rule set. Answer: C, E Question: 152 A system administrator is implementing Solaris IP Filter for the first time. Solaris IP Filter is enabled and an initial set of filtering rules in /etc/ipf/ipf.conf is applied. Unexpectedly, the rules, as implemented, are preventing users from accessing the system. The administrator wants to quickly restore user access to the system while troubleshooting incorrect rule processing in the configuration file. Which two commands should the administrator use? (Choose two.)
Page 46 of 96
310-302 247
A. halt B. ipf -D C. ipf -Fa D. ipf -f /etc/ipf/ipf.conf E. autopush -f /etc/ipf/pfil.ap Answer: B, C Question: 153 You are attempting to filter all UDP network traffic between two Solaris zones on the same machine. Zone 1 is using the IP address 192.168.84.1 on the interface ce0:1 Zone 2 is using the IP address 192.168.84.2 on the interface ce0:2 The Solaris IP Filter rules are in effect : block in quick proto udp from 192.168.84.1 to 192.168.84.2 block in quick proto udp from 192.168.84.2 to 192.168.84.1 With these rules in effect, UDP traffic still passes between the two zones. Why is this traffic NOT being blocked? A. At least one pass in rule is required. B. Solaris IP Filter does NOT support CE interfaces. C. Solaris IP Filter can NOT be used to filter UDP traffic. D. Solaris IP Filter can NOT filter traffic between zones on the same machine. Answer: D Question: 154 You are configuring a new Solaris 10 OS system to act as a firewall between the hme0 and ce1 interfaces. What must you do in addition to using the Solaris IP Filter configuration? A. enable IPv4 routing B. enable IPv4 forwarding C. apply the latest Solaris 10 OS kernel patch D. disable directed broadcasts on hme0 and ce1 Answer: B Question: 155 While configuring Solaris IP Filter on a system, you want to block all ICMP Redirect packets. /usr/include/netinet/ip_icmp.h contains the following entry : #define ICMP_REDIRECT 5 /* shorter route, codes:/ Which rule should you add to your Solaris IP Filter configuration to block all such packets? A. block in quick proto 5 from any to 0/32 B. block in quick proto ip 5 from any to 0/32 C. block in quick proto icmp-type 5 from any to 0/32 D. block in quick proto ip icmp-type 5 from any to 0/32 E. block in quick proto icmp from any to 0/32 icmp-type 5
Page 47 of 96
310-302 247
Answer: E Question: 156 A Solaris IP Filter rule with the keyword quick bypasses the normal rule checking sequence by immediately acting on the network packet if it matches the rule. When does a packet that matches a Solaris IP Filter rule with the quick keyword continue to be processed? A. when the packet is originally redirected by the NAT layer B. when the quick keyword matching is disabled with the ipf command C. when an earlier rule is also applied to the packet, negating the quick option D. when the rule passes the packet to a numbered group where it matches a later rule Answer: D Question: 157 Exhibit:
A system on your network is named sys-01. This system has Solaris 10 OS with packet filtering enabled and configured. The Solaris IP Filter configuration, stored in the /etc/ipf/ipf.conf file of this system was: pass in quick proto tcp from any to any port = 22 keep state block in all and allowed an ssh connection into your sys-01 system from both hme0 and hme1 interfaces. Due to a change in your network, you had to modify the packet filtering rules of the sys-01 system. The packet filtering rules now allow ssh connections into sys-01 only using the hme0 interface. The following changes are made to /etc/ipf/ipf.conf: pass in quick on hme0 proto tcp from any to 192.168.1.1/32 port = 22 keep state block in all Which command loads the new packet filtering rules? A. ipf -f /etc/ipf/ipf.conf B. ipmon -f /etc/ipf/ipf.conf C. ipf -Fa -f /etc/ipf/ipf.conf D. ipf -Fo -f /etc/ipf/ipf.conf E. ippool -Fa -f /etc/ipf/ipf.conf Answer: C Question: 158 The network in your company is divided into different subnets. All Solaris 10 OS servers on your network have Solaris IP Filter firewall enabled with a default policy rule that blocks all incoming
Page 48 of 96
310-302 247
connections. One subnet, with address space 10.1.1.0/24, has a server named sys-x with the IP address 10.1.1.100/32. Due to changes in your network, the sys-x server must accept connections to its X:0 to X:9 terminal ports only from the 10.1.1.0/24 subnet. Which line must be added in the /etc/ipf/ipf.conf firewall configuration file in order to implement these changes? A. pass in quick proto tcp from 10.10.1.100/32 to any B. pass in quick proto tcp from 10.1.1.0/24 to any port 5999 >< 6010 C. pass in quick proto rpc from 10.1.1.0/24 to any port 5999 <> 6010 D. pass in quick proto tcp from 10.1.1.0/24 to any port 5999 <> 6010 E. pass in quick proto tcp from 10.1.1.100/32 to any port 5999 >< 6010 Answer: B Question: 159 A Solaris 10 OS server on your network has the packet filter enabled. The rule of Solaris IP Filter firewall is: block in proto icmp all This rule, stored in the /etc/ipf/ipf.conf file, blocks all Internet Control Message Protocol (ICMP) traffic. Which command modifies this rule so it prevents only ping traffic? A. block in proto icmp from any to any B. block in proto icmp all icmp-type echo C. block in proto icmp all icmp-type dest-unreach D. block in proto icmp from any to any icmp-type dest-unreach Answer: B Question: 160 The system administrator of a firewall running Solaris IP Filter writes an updated set of rules in /root/newrules. Before implementing the rules, the rule set needs to be tested for syntax errors. Which command accomplishes this? A. ipf -n -f /root/newrules B. ipf -Fa -f /root/newrules C. svcadm restart svc:/network/ipfilter:/root/newrules D. inetadm restart svc:/network/ipfilter:/root/newrules Answer: A Question: 161 A Solaris 10 OS server has packet filtering enabled. Which command displays information on stdout regarding packets that match rules? A. ipmon B. ipf -l block C. netstat -a block D. syslogd -d sysout Answer: A
Page 49 of 96
310-302 247
Question: 162 By default, to which syslog facility will Solaris IP Filter send logging information? A. kern B. auth C. local0 D. daemon Answer: C Question: 163 Solaris IP Filter is configured to log blocked packets to syslog using the default facility and levels. Which line in the /etc/syslog.conf file logs blocked packets to the /var/adm/ipflog file? A. kern.error /var/adm/ipflog B. auth.error /var/adm/ipflog C. daemon.warning /var/adm/ipflog D. local0.warning /var/adm/ipflog E. local0.error /var/adm/ipflog F. /var/adm/ipflog local0.warning Answer: D Question: 164 The Solaris IP Filter firewall includes the ability to log its actions. The logging device of Solaris IP Filter is /dev/ipl. The log keyword ensures that packets are available to the logging device. To configure a rule match to be logged, the log keyword must be used. Which rule match is logged by the Solaris IP Filter firewall? A. log block in all B. block in all log C. block in quick on eri0 from any to any log D. block in log quick on eri0 from any to any E. block in quick on hme0 proto tcp log from any to any Answer: D Question: 165 Exhibit:
Page 50 of 96
310-302 247
A portion of the network you are managing is composed of a firewall system (fw-01) running the Solaris IP Filter firewall. The fw-01 firewall has a rule set to log and NAT the web-int system with IP 192.168.1.10/32 as web-ext with IP 129.157.1.10/32. Because the fw-01 firewall is logging its activity, which Solaris IP Filter user-level utility must you run to print only NAT log records? A. ipf -l N B. ipnat -l N C. ipfstat -n D. ipmon -o N Answer: D Question: 166 Much information can be found in log records of the Solaris IP Filter firewall. When using state, the output of the ipmon -o I command is: 15:34:33.803147 ppp0 @0:2 b 100.100.100.103,443 -> 20.20.20.10,4923 PR tcp len 20 1488 -A Which statement accurately describes the third field, @0:2? A. There are two ppp interfaces. B. The size of the packet is two kilobytes. C. Two packets are logged on the interface ppp0. D. Rule 2 in group 0 caused this event to happen. Answer: D Question: 167 A Solaris 10 OS has packet filtering enabled and configured. Within the configuration file there is the log keyword, so the Solaris IP Filter firewall logs packets. Given the following command: ipmon -D /var/tmp/filterlog.txt Which two statements are true? (Choose two.) A. ipmon is instructed to run as a daemon. B. The contents of the /var/tmp/filterlog.txt file gets deleted. C. Logging information is captured to the /var/tmp/filterlog.txt file. D. The firewall rule-set is downloaded into the /var/tmp/filterlog.txt file. E. Only the logging rule-set is downloaded into the /var/tmp/filterlog.txt file. Answer: A, C Question: 168 You need to log attempts to connect to the SMTP port on your web server. Which rule should you add to your Solaris IP Filter configuration file on the web server? A. block in from any to port = 25 log B. block in log quick from any to port = 25 C. log block in quick from any to any port = 25 D. block in log quick from any to any port = 25 Answer: D
Page 51 of 96
310-302 247
Question: 169 After configuring and enabling Solaris IP Filter on your workstation, you want to confirm that it is correctly blocking packets. The filtering rules you have configured are: pass in quick from any to any port = 22 pass in quick from any to any port = 80 pass out all keep state block in any Which command can you use to see if packets are being blocked? A. ipmon B. ipfstat C. netstat -f ipf D. tail -f /var/adm/messages Answer: B Question: 170 You want to log the TCP packets your web server is receiving, without blocking any traffic. Which Solaris IP Filter rule should you use to achieve this? A. Solaris IP Filter cannot log without filtering B. pass in proto tcp from any to 0/32 port = 80 C. ignore in log tcp from any to 0/32 port = 80 D. pass in log proto tcp from any to 0/32 port = 80 E. pass in log-only proto tcp from any to 0/32 port = 80 Answer: D Question: 171 Solaris IP Filter logs messages using the /dev/ipl device. The events logged can be configured in the Solaris IP Filter configuration file. Which command or daemon can be used to collect messages from /dev/ipl? A. ipmon B. ipf -l C. ipfstat D. syslogd Answer: A Question: 172 Which configuration line caused the following message to be logged? Jan 15 19:16:24 ennovy ipmon[757]: 19:16:23.701981 qfe1 @100:3 b 10.1.100.70,59967 -> 192.168.1.4,139 PR tcp len 20 48 -S IN A. block in log on qfe1 all head 100 B. block in log on qfe2 all head 200 C. block in log on qfe1 from 10.1.100.70 to any D. pass in quick on qfe1 from 10.0.0.138 to any group 100 E. block in log on qfe1 proto tcp all flags S/SA group 100 F. pass in quick proto icmp from any to 192.168.1.4/32 group 100
Page 52 of 96
310-302 247
Answer: E Question: 173 A server system runs the Solaris 10 OS with the Solaris IP Filter software installed. You enable the Solaris IP Filter software for the IPv4 addresses on the eri0 interface and start the Solaris IP Filter software without rebooting. You create a rule set for Solaris IP Filter in /etc/ipf/ipf.conf. The interface eri0 is unplumbed. Given the IP address 10.19.24.1 for the interface eri0, which three steps must be completed to complete your task? (Choose three.) A. edit /etc/ipf/pfil.ap B. autopush -f /etc/iu.ap C. autopush -f /etc/ipf/pfil.ap D. ipf -f /etc/ipf/ipf.conf start E. svcadm enable svc:/network/ipfilter:default F. inetadm enable svc:/network/ipfilter:default Answer: A, C, E Question: 174 You are configuring Solaris IP Filter on your Solaris 10 OS system so that it logs all packets that are blocked to the /var/adm/ipf.blocked file. Syslog and IP Filter are already running on the system. Which three commands must you use to enable logging? (Choose three.) A. ipmon -D -s B. edit /etc/syslog.conf C. ipf -f /var/adm/ipf.blocked D. inetadm -e svc:/system/system-log:default E. svcadm restart svc:/system/system-log:default Answer: A, B, E Question: 175 DRAG DROP The network you are managing has many services. One of the servers on your network with IP Address 129.157.10.10, on the interface eri0, is an HTTP server. The HTTP server shown in the graphic has the Solaris IP Filter firewall enabled. The rule, which allows any incoming Internet connections on the interface eri0 for the HTTP service, must be designed. Use three options to complete the Solaris IP Filter firewall rule.
Page 53 of 96
310-302 247
Answer:
Question: 176 DRAG DROP Place each LAN component next to its description.
Page 54 of 96
310-302 247
Answer:
Question: 177 DRAG DROP Place the Ethernet media on the cabling it requires.
Page 55 of 96
310-302 247
Answer:
Question: 178 Place each component of an Ethernet-II frame on its corresponding position in the frame.
Answer:
Page 56 of 96
310-302 247
Question: 179 DRAG DROP Place each object on its description. Not all descriptions are used.
Answer: Explanation :
Page 57 of 96
310-302 247
Question: 180 DRAG DROP Place each frame error on its description.
Answer:
Page 58 of 96
310-302 247
Question: 181 DRAG DROP A Sun UltraSparc machine is being configured for network access. Place the possible value of the "local-mac-address?" OBP variable on its definition. Note: Not all definitions are used.
Answer:
Question: 182 DRAG DROP Place the action on the command/file that produces it on the hme0 interface.
Page 59 of 96
310-302 247
Answer:
Question: 183 DRAG DROP A system on your network, which runs HTTP services, has link-based IPMP configured on two Ethernet interfaces (eri0 and eri1). Due to a future re-cabling of your site, you must test the IPMP configuration by taking the eri0 interface offline and failing network access over to the eri1 interface. Place the command used to force the failover in the space provided. Note: Only one command is used.
Page 60 of 96
310-302 247
Answer:
Page 61 of 96
310-302 247
Question: 184 DRAG DROP A Solaris 10 OS host named (HOST-GW) is a multi-homed host with three interfaces. All three Interfaces are properly configured. HOST-GW has routing disabled and forwarding disabled as well. Which command must be executed to turn on IP forwarding permanently without rebooting the system? Place the command that enables IP forwarding in the space provided. Note: Only one command is used.
Page 62 of 96
310-302 247
Answer: Explanation:
Question: 185 DRAG DROP When you investigate tunneling, you decide to use the snoop utility to examine the way IPv6 encapsulation works. You ping the destination address of the tunnel and get a successful reply. In the the snoop utility output you discover these protocols: - ICMPv6 - ETHER - IPv6 - IPv4 Place the protocol types in the order of encapsulation in which they would be observed in the the snoop utility output. Note: Box1should contain the outermost protocol in terms of encapsulation, and Box4should contain the innermost encapsulated protocol.
Answer:
Page 63 of 96
310-302 247
Question: 186 DRAG DROP Resource records are entries contained in the name server zone files. The general format of any resource record is: [name] [ttl] class type data
Place the record type in its place to complete the resource record.
Answer:
Question: 187 DRAG DROP Place each DNS record type on its description.
Page 64 of 96
310-302 247
Answer:
Question: 188 DRAG DROP Place each DHCP packet type on its DHCP client-server interaction step.
Page 65 of 96
310-302 247
Answer:
Question: 189 DRAG DROP Place each file name or identifier on its corresponding action.
Page 66 of 96
310-302 247
Answer:
Question: 190 DRAG DROP In the context of writing filtering rule sets for the Solaris 10 OS IP Filter firewall, complete the rule That blocks outgoing ICMP echo replies on the qfe0 interface. Use three options to complete the rule.
Page 67 of 96
310-302 247
Answer:
Question: 191 DRAG DROP The NAT function of the Solaris IP Filter software can provide various functions. Match the ipnat configuration keyword with its function. Note: Not all ipnat keywords are used.
Answer:
Page 68 of 96
310-302 247
Question: 192 A system that normally boots from the network continues to report: Timeout waiting for ARP/RARP packet The snoop command shows the RARP packet arriving at the boot server. Which command helps you determine the reason for server not responding? A. ndd -set /dev/arp debug 1 B. svcadm restart svc:/network/rarp:debug C. inetadm restart svc:/network/rarp:debug D. pkill in.rarpd ; /usr/sbin/in.rarpd -da E. svcadm disable -t /network/rarp; /usr/sbin/in.rarpd -da Answer: E Question: 193 Which four are features of optical fiber cabling? (Choose four.) A. resistant to RFI B. resistant to EMI C. requires shorter cables D. less resistant to physical stress E. less expensive than other cable types F. more difficult to intercept data sent through the cable Answer: A, B, D, F Question: 194 Place each term on its corresponding layer of the model.
Page 69 of 96
310-302 247
Answer:
Question: 195 Place each network component on the layer at which it operates.
Answer:
Page 70 of 96
310-302 247
Question: 196 Place the options in the correct order to complete the structure of the Ethernet frame.
Answer:
Question: 197 Place each TCP/IP protocol or standard on its corresponding layer of the model.
Page 71 of 96
310-302 247
Answer:
Question: 198. A DHCP client has previously been assigned the IP address 192.168.1.154. After the client is rebooted, a number of DHCP packets to and from the client are seen in snoop running on the DHCP server. Place the packets in the sequence they would be displayed using the snoop command.
Page 72 of 96
310-302 247
Answer:
Question: 199. Solaris IP Filter provides facilities for both filtering network packets as well as performing Network Address Translation (NAT) on network packets. The packets make it through all the filtering steps. Place the steps in order to create the path a network packet takes through a Solaris 10 OS system acting as a routing firewall and using Solaris IP Filter and NAT. Note: Some steps are used more than once.
Page 73 of 96
310-302 247
Answer:
Question: 200. Place the default minimum syslog logging level on the type of packet Solaris IP Filter logs at that level.
Page 74 of 96
310-302 247
Answer:
Question: 201. Complete the design of the Solaris IP Filter rule to permit incoming RPC requests to the rpcbind daemon from the 192.168.1.0 network on the hme0 interface only. Use three options to complete the rule.
Answer:
Page 75 of 96
310-302 247
Question: 202. A Solaris 10 OS has packet filtering enabled and configured. Logging of Solaris IP Filter activity is also enabled. You assume a role that includes the Solaris IP Filter Management right profile. Place the commands in the proper order of execution. 1. Save logged packets to a file (log_file) 2. Flush the packet log buffer 3. Print the content of log_file to stdout Note: Not all commands are used.
Answer:
Page 76 of 96
310-302 247
Question: 203. Place the text in its proper place to create a Solaris IP Filter rule that blocks, returns RST, and logs only incoming auth connections on tcp port 113.
Answer:
Question: 204. Place the address fields of an aggregatable global unicast address in the correct order.
Page 77 of 96
310-302 247
Answer:
Question: 205.
Answer: Explanation:
Page 78 of 96
310-302 247
Reference: http://docs.sun.com/app/docs/doc/816-4554/6maoq01lq?a=view Question: 206. Two commands are used to configure an IPv6 6to4 Router. Place command segments in their places to complete these commands. Note: Not all text segments will be used.
Answer:
Page 79 of 96
310-302 247
Question: 207. The UDP Transport layer protocol receives data from the application and encapsulates the data in UDP datagrams. UDP datagrams have a leading header section. Place the items on the appropriate UDP header section. Note: Only four items are used.
Answer:
Page 80 of 96
310-302 247
Question: 208. You have recently received a new Sun server that will be deployed as an Internet firewall. You have been tasked with creating a redirection rule that translates your internal IP addresses to a single externally route able IP address. The IP address on the Internet facing interface, ge0, is assigned by DHCP. Internal IP addresses are part of the 192.168.42.0/24 subnet. Place the keywords in the correct location in the NAT rule to accomplish this task. Note: Not all keywords are used.
Answer:
Question: 209. Place each object on its description. Not all descriptions are used.
Page 81 of 96
310-302 247
Answer:
Page 82 of 96
310-302 247
Question: 210. You need to display the Ethernet address of a system connected to a server you administer. Which command displays all entries in the current ARP table? A. arp -a B. arp -list C. netstat -av D. ndd -get /dev/arp ethers Answer: A Question: 211. Given: host name myhost server1 IP address 192.29.10.101 192.29.10.20 MAC address 8:0:20:50:10:20 8:0:20:75:6e:8f
The workstation myhost reboots. It needs to mount a file system from server1 on the local subnet. Which address is returned by server1 in the ARP reply? A. 192.29.10.255 B. 8:0:20:ff:ff:ff C. 8:0:20:75:6e:8f D. 8:0:20:50:10:20 E. 255.255.255.255 Answer: C Question: 212. You have a SPARC workstation with a single hme Ethernet interface. Which file is required for the interface to be configured at boot time? A. /etc/hosts B. /etc/nodename C. /etc/inet/hosts D. /etc/hostname.hme0 E. /etc/nodename.hme0 Answer: D Question: 213. Ethernet frames include a unique address indicating the source of the frame. What is this unique address called? A. IP address B. source VLAN C. MAC address D. Calling Party Address Answer: C Question: 214. Given the following portion of the /etc/inet/dhcpsvc.conf file:
Page 83 of 96
310-302 247
DAEMON_ENABLED=TRUE RUN_MODE=relay RESOURCE=SUNWfiles PATH=/var/dhcp On which system are these entries found? A. a DHCP client B. a DHCP server C. a system running in.dhcpd -r D. a system running in.dhcpd in debug mode Answer: C Question: 215. On a DHCP client, the interface is down and configured with the IP address 0.0.0.0. After typing ifconfig hme0 dhcp start, you observe snoop output that does not include a DHCPDISCOVER packet : OLD-BROADCAST -> BROADCAST DHCP/BOOTP DHCPREQUEST 192.168.10.1 -> 192.168.10.10 DHCP/BOOTP DHCPACK Which command was used to shut down the interface in such a way that a DHCPDISCOVER was NOT required? A. dhcpagent -r hme0 B. dhcpconfig -r hme0 C. ifconfig hme0 dhcp drop D. ifconfig hme0 dhcp release Answer: C Question: 216. The /etc/dhcp/inittab file contains information about the DHCP options passed from DHCP servers to clients. Which four are valid data types used to specify the kind of data that can be assigned as a value for the option? (Choose four.) A. B. C. D. E. F. ASCII - text string value VENDOR - a string representing the vendor class OCTET - uninterpreted ASCII representation of binary data CLASS - an ASCII string representing the client machine type IP - one or more IP addresses in dotted decimal format (xxx.xxx.xxx.xxx) BOOLEAN - no value is associated with this data type but its presence indicates that a condition is true
Answer: A, C, E, F Question: 217. While testing a new DHCP server, you discover that clients on the 192.168.120.0 network are being assigned an incorrect subnet mask. Which file on the DHCP server needs to be updated? A. /etc/netmasks B. /var/dhcp/Locale C. /etc/inet/dhcpsvc.conf D. /var/dhcp/SUNWfiles1_dhcptab
Page 84 of 96
310-302 247
E. /var/dhcp/SUNWfiles1_192_168_120_0 Answer: D Question: 218. The /var/adm/messages file on an NTP client shows many time reset (step) messages at regular intervals with the sign of the step alternating positive and negative with an amount that is nearly the same. For example: Jan 26 11:10:56 crater xntpd[6079]: time reset (step) 0.312899 s Jan 26 11:17:18 crater xntpd[6079]: time reset (step) -0.318915 s Jan 26 11:22:40 crater xntpd[6079]: time reset (step) 0.312903 s Jan 26 11:29:02 crater xntpd[6079]: time reset (step) -0.318887 s Jan 26 11:34:24 crater xntpd[6079]: time reset (step) 0.313149 s Jan 26 11:40:46 crater xntpd[6079]: time reset (step) -0.319057 s Jan 26 11:46:09 crater xntpd[6079]: time reset (step) 0.312988 s Which three commands are useful in determining the cause of the messages? (Choose three.) A. ntpq B. xntpdc C. ntpstat D. ntpdate E. ntptrace Answer: A, B, E Question: 219. On a system of your network, which is an NTP client, the output of the system administration command ntpq -p (standard Network Time Protocol query program) is: remote refid st t when poll reach delay offset disp =================================================================== *sun-roma02 sunital 4 m 26 64 377 0.98 0.340 1.50 Which two statements are true? (Choose two.) A. The NTP server is sunital. B. The type of the peer is multicast. C. The polling interval is 26 seconds. D. The current estimated delay is 0.98 seconds. E. The current estimated offset is 0.340 milliseconds. Answer: B, E Question: 220. You are tasked with securing a web server running Solaris 10 OS. You must use the Solaris IP Filter software to only accept incoming connection requests to the following ports: ssh http The IP address of the server is 10.0.0.1.
Page 85 of 96
310-302 247
Which two lines should be added to the Solaris IP Filter configuration file to pass the required connection requests? (Choose two.) A. pass in from 10.0.0.1 to port = 22 B. pass in from 10.0.0.1 to port = 80 C. pass in from any to 10.0.0.1 port = 80 D. pass in from any to 10.0.0.1 port = 22 E. pass in from any to 10.0.0.1 port = 25 Answer: C, D Question: 221. You have taken over management of a Solaris system with the Solaris IP Filter configuration shown in the exhibit.
You want to improve the performance of this system. Which two changes could you make to optimize the Solaris IP Filter configuration without changing its functionality? (Choose two.) A. remove line 2 B. remove line 3 C. remove line 4 D. remove line 5 E. modify line 1 to be "block in quick all" F. modify all pass in entries to be pass in quick Answer: B, D Question: 222. You are an administrator for a large organization that uses a single registered Class B address range. Your organization contains a number of departments that range in size from 25 to 400 employees. Each department is to be given its own separate range of network addresses. Which networking strategy efficiently uses the addresses allocated to your organization? A. configuring static routing tables on all hosts and routers B. using switches with more ports in the larger departments C. using variable length subnet masks to divide the address space D. obtaining some Class A address ranges for the smaller departments E. using /etc/netgroup to create network names for each department Answer: C Question: 223. A Solaris system is configured with multiple interfaces connected to different networks. Which command enables this system to forward packets between these networks?
Page 86 of 96
310-302 247
A. route -a enable B. route -u -e ipv4-forwarding C. ndd -set /dev/ip ip_ire_status D. ndd -set /dev/ip ip_forwarding 1 E. ndd -set /dev/tcp ip_forwarding 1 Answer: D Question: 224. You want to configure the hme0 interface with an IPv6 address and the prefix fec0. Which two configurations achieve this? (Choose two.) A. The file /etc/hostname6.hme0:1 contains a host name, which is defined in the /etc/hosts file. This entry has an IPv6 address prefix of fec0. B. The file /etc/hostname6.hme0 contains a host name defined in the /etc/inet/ipnodes file. This entry has an IPv6 address prefix of fec0. C. The file /etc/hostname6.hme0:1 contains a host name, which is defined in the /etc/inet/ipnodes file. This entry has an IPv6 address prefix of fec0. D. The file /etc/hostname6.hme0 contains an addif hostname entry in addition to the normal host name. This cross-references an entry in /etc/inet/ipnodes with IPv6 address prefix fec0:. Answer: C, D Question: 225. Exhibit:
Page 87 of 96
310-302 247
The if_mpadm -d qfe1 command is executed. Which is the name of the interface that is used to pass network traffic? A. hme0 B. hme0:1 C. qfe0:2 D. qfe1:1
Page 88 of 96
310-302 247
Answer: C Question: 226. A user on the system with the IP routing table shown in the exhibit runs the command, ping s 192.168.2.234.
To which router will the packets generated by this command be forwarded? A. routerAA B. routerBB C. routerCC D. routerDD E. They will not be forwarded as there is no route to this address. Answer: A Question: 227. Given: host name myhost printsvr IP address 200.54.42.10 200.55.42.30
The system myhost needs to send data to printsvr. The routing table on myhost has no entry for printsvr. The routing table on myhost has no entry for the 200.55.42.0 network. Which entry does the routing algorithm look for next? A. RARP B. default C. loopback D. ARP cache E. 200.54.42.255 Answer: B
Page 89 of 96
310-302 247
Question: 228. You have installed a Solaris OS system with two physical network interfaces in addition to the loopback interface. You have not manually modified the IP forwarding properties in any way. Which two statements regarding IP forwarding between the two interfaces are true? (Choose two.) A. IP forwarding is always enabled between the interfaces. B. IP forwarding is NOT enabled between the two interfaces. C. IP forwarding is configured using the routeadm command. D. IP forwarding is enabled unless the file /etc/notrouter exists. E. IP forwarding is enabled unless the file /etc/defaultrouter exists. Answer: B, C Question: 229. You have a requirement to configure two new network ranges. One of these networks requires 200 IP addresses and the other requires 600 IP addresses. Which network should you use to obtain the most efficient usage of IP address space? A. 10.10.10/24 and 192.168/16 B. 10.12.53/24 and 10.12.48/22 C. 10.12.60/24 and 10.12.48/21 D. 192.168.2/24 and 192.168.3.0/23 Answer: C Question: 230. A new system administrator tries to determine the IPv6 IPMP configuration and sees the following: # grep failover /etc/hostname6* /etc/hostname6.hme0: -failover group mgrp6 /etc/hostname6.qfe0: -failover group mgrp6-1 /etc/hostname6.qfe1: -failover group mgrp6-1 Which statement is true? A. There has definitely been an error configuring hme0. B. The hme0 is a spare interface for the mgrp6-1 failover group. C. Interface hme0 has priority over qfe0/qfe1 when doing a failover. D. The system is configured so that notifications are generated when hme0 fails. Answer: D Question: 231. The TCP/IP network model is a four-layered structure resting on a common hardware platform. In this model, the Transport layer is responsible for transporting data to and from the correct application. Which two protocols are found in the Transport layer? (Choose two.) A. IP B. FTP C. TCP D. ARP
Page 90 of 96
310-302 247
E. UDP F. HTTP Answer: C, E Question: 232. In the context of naming resolution, which is the source of answers from authoritative DNS servers? A. sourced from cache B. sourced from a root server C. sourced from a disk-based file D. sourced from the loopback device Answer: C Question: 233. Given that the NTP server IP address is 128.50.2.10, which is a valid entry in the NTP client configuration file? A. multicastclient B. unicastclient 128.50.2.10 C. multicastclient 128.50.2.10 D. broadcastclient 255.255.255.255 Answer: A Question: 234. Which four functions can be performed using the graphical dhcpmgr utility? (Choose four.) A. configure BOOTP relay agents B. install DHCP packages on a client C. modify DHCP configuration macros D. start, stop, enable, and disable DHCP services on the client E. update the NIS database with the DHCP-generated host names F. update the DNS database with the DHCP-generated host names G. modify IP address records within the DHCP network management tables Answer: A, C, F, G Question: 235. A DHCP client is unable to obtain an IP address using DHCP, although other clients on the same network are able to. Which two commands can be used to assist with the diagnosis of this problem? (Choose two.) A. snoop -v dhcp on the DHCP server B. dhcpagent -f -d 2 on the DHCP client C. snoop -V port bootps on the DHCP server D. ifconfig hme0 dhcp start verbose on the DHCP client E. svcadm -d restart svc:/network/dhcp-server on the DHCP server Answer: B, C Question: 236.
Page 91 of 96
310-302 247
A system administrator has configured a Solaris system to operate as an NTP server supporting peer NTP servers and clients on a local subnet. The NTP configuration file contains the line: enable auth What impact does this have on NTP behavior? A. The server is authoritative for a reference clock. B. Time adjustments are only be accepted by Stratum 0 servers. C. The network router must broadcast the NTP server IP address. D. All NTP clients on the local subnet must be configured to support key negotiation. E. All NTP servers on the local subnet must be configured to support key negotiation. Answer: E Question: 237. Given the following DHCP server debug output: 3cdbc797: Datagram received on network device: hme0 3cdbc797: No more IP addresses on network 192.6.17.0 network (01080020F81CE0) Which two statements are true? (Choose two.) A. The DHCPOFFER has timed out. B. DHCP is NOT configured on the client. C. All available addresses are allocated to other hosts. D. An IP address is unavailable from the DHCP network table. E. A DHCP network table does NOT exist for the DHCP client's network. Answer: C, D Question: 238. Given the following output: Routing Table: IPv4 Destination Gateway 192.168.1.0 192.168.1.1 224.0.0.0 192.168.1.1 default sys-gw 127.0.0.1 127.0.0.1
Flags U U UG UH
Ref 1 1 1 2
Use 0 0 0 6
Interface hme0 hme0 lo0
This output shows that the system has a default gateway set. How can the default gateway be set? A. set by in.routed through the RDISC protocol B. set manually through: route add sys-gw default C. set by inetd through the use of configuration text files D. set through the command: routeadm add default -UG sys-gw Answer: A Question: 239. Given:
Page 92 of 96
310-302 247
Network 192.20.20.64
Netmask 255.255.255.192
Gateway gwhost
Which command adds a routing table entry for the network? A. route -net 192.20.20.64 192.20.20.192 B. route add -netmask 192.20.20.255 gwhost C. route add net 192.20.20.64 gwhost -netmask 192.20.255.255 D. route add net 192.20.20.64 gwhost -netmask 255.255.255.192 E. ifconfig hme0 inet 192.20.20.64 netmask 192.20.20.192 broadcast 192.20.20.64 Answer: D Question: 240. A system administrator needs to enable access to a system with IP address 200.20.50.100. Other systems on the 200.20.50.0/24 network must remain inaccessible. Which command accomplishes this? A. route add myrouter 200.20.50.100 B. route add net 200.20.50.100 myrouter C. netstat -a 200.20.50.100 200.20.50.0 D. route add host 200.20.50.100 myrouter E. ifconfig -a qfe2 200.20.50.100 broadcast 200.20.50.255 Answer: D Question: 241. Which two statements are true when you use IPMP with IPv6? (Choose two.) A. All interfaces must have a unique MAC address. B. All test interfaces must be marked as DEPRECATED. C. IPMP can be configured on a single network interface. D. Multiple test addresses can use the same link-local address. E. All test addresses must be manually assigned a unique link-local address. Answer: A, C Question: 242. Which two commands display the IP address of the remote host system, assuming the local system only uses local files for hostname lookups? (Choose two.) A. arp -a |grep remotehost B. getent hosts remotehost C. netstat -rn |grep remotehost D. ypcat hosts |grep remotehost E. grep remotehost /etc/inet/hosts Answer: B, E Question: 243. Exhibit:
Page 93 of 96
310-302 247
You have configured a Jump Start server. When you attempt to install a client machine, it starts booting, but stops responding shortly afterwards. Which command, when run on the Jump Start server, helps diagnose this problem? A. snoop dhcp B. snoop -d eri0 C. snoop 8:0:20:fd:e9:3c D. /usr/sbin/in.rarpd -d -a E. ndd -get /dev/eri0 errors Answer: C Question: 244. Given: host name host1 IP address 192.40.62.10 MAC address 8:0:20:75:6e:7d
Which command removes the ARP table entry for host1? A. rarp host1 B. arp -d host1 C. rm -a 192.40.62.10 D. rarp 8:0:20:75:6e:7d E. rmarp -r 192.40.62.10 Answer: B Question: 245 You are asked to configure a DHCP server for your office. The DHCP server will be used to assign a dynamic IP address to workstations that are occasionally moved between networks and are left powered on 24 hours a day. Which is a suitable DHCP lease time to configure?
Page 94 of 96
310-302 247
A. 1 hour B. 1 week C. 10 minutes D. 10 seconds E. No lease time is required. Answer: B Question: 246 Place each IPv6 address type on its address description.
Answer:
Question: 247 In order to add static routes to in.routed at startup time, you add the following line to /etc/defaultrouter: net 129.159.158.0 gateway gw-157-158 metric 1 When the system is rebooted, you notice that the in.routed has NOT started. The svcs -x does NOT show anything wrong. What is the cause of this problem? A. You did not use /etc/gateways. B. You did not add the static keyword. C. You did not specify a netmask as well. D. You specified the routers by name, rather than by address.
Page 95 of 96
310-302 247
Answer: A
End of Document
Page 96 of 96

310-302 Latest Test King

Transféré par

Informations du document

Description originale:

Copyright

Formats disponibles

Partager ce document

Partager ou intégrer le document

Options de partage

Avez-vous trouvé ce document utile ?

Ce contenu est-il inapproprié ?

Droits d'auteur :

Formats disponibles

310-302 Latest Test King

Transféré par

Droits d'auteur :

Formats disponibles

Exam Name: Exam Type: Doc Type:

Phys Addr 59:76:6f:6e:6e:65 57:65:46:6f:76:65 59:6f:75:21:3b:29 08:00:20:ad:d5:9e 01:00:5e:00:00:00

Exam Name: Exam Type: Doc Type:

Exam Name: Exam Type: Doc Type:

Exam Name: Exam Type: Doc Type:

Exam Name: Exam Type: Doc Type:

Exam Name: Exam Type: Doc Type:

Exam Name: Exam Type: Doc Type:

Exam Name: Exam Type: Doc Type:

Exam Name: Exam Type: Doc Type:

Exam Name: Exam Type: Doc Type:

Exam Name: Exam Type: Doc Type:

Exam Name: Exam Type: Doc Type:

Exam Name: Exam Type: Doc Type:

MAC address 8:0:20:21:38:6b

Exam Name: Exam Type: Doc Type:

Mask 255.255.255.255 255.255.255.255 240.0.0.0

Phys Addr 00:00:39:e4:7d:df 00:00:39:e4:7d:df 01:00:5e:00:00:00

Exam Name: Exam Type: Doc Type:

Exam Name: Exam Type: Doc Type:

Exam Name: Exam Type: Doc Type:

Exam Name: Exam Type: Doc Type:

Exam Name: Exam Type: Doc Type:

Exam Name: Exam Type: Doc Type:

Interface hme0 hme0 lo0

What is a possible cause of this problem? A. inetd has core dumped.

Exam Name: Exam Type: Doc Type:

Exam Name: Exam Type: Doc Type:

Exam Name: Exam Type: Doc Type:

Exam Name: Exam Type: Doc Type:

Use 0 191 0 176 0 3

Interface hme0 qfe0 hme0 lo0

Exam Name: Exam Type: Doc Type:

Use 191 0 176 0 3

Interface hme0 qfe0 hme0 lo0

Exam Name: Exam Type: Doc Type:

Exam Name: Exam Type: Doc Type:

Exam Name: Exam Type: Doc Type:

Exam Name: Exam Type: Doc Type:

Question: 96 A DNS zone file is shown in the exhibit.

Exam Name: Exam Type: Doc Type:

Exam Name: Exam Type: Doc Type:

Exam Name: Exam Type: Doc Type:

Exam Name: Exam Type: Doc Type:

Exam Name: Exam Type: Doc Type:

Exam Name: Exam Type: Doc Type:

Exam Name: Exam Type: Doc Type:

Exam Name: Exam Type: Doc Type:

Exam Name: Exam Type: Doc Type:

Exam Name: Exam Type: Doc Type:

Exam Name: Exam Type: Doc Type:

Exam Name: Exam Type: Doc Type:

Exam Name: Exam Type: Doc Type:

Exam Name: Exam Type: Doc Type:

Exam Name: Exam Type: Doc Type:

Exam Name: Exam Type: Doc Type:

Exam Name: Exam Type: Doc Type:

Exam Name: Exam Type: Doc Type:

Exam Name: Exam Type: Doc Type:

Exam Name: Exam Type: Doc Type:

Exam Name: Exam Type: Doc Type:

Exam Name: Exam Type: Doc Type:

Exam Name: Exam Type: Doc Type: