Microsoft KB Archive/923153

= MCSA/MCSE Self-Paced Training Kit (Exam 70-350): Implementing Microsoft Internet Security and Acceleration Server 2004 Comments and Corrections =

Article ID: 923153

Article Last Modified on 3/1/2007

-

APPLIES TO


 * MCSA/MCSE Self-Paced Training Kit (Exam 70-350): Implementing Microsoft Internet Security and Acceleration Server 2004, ISBN 0-7356-2169-1

-



SUMMARY
This article contains comments, corrections, and information about known errors relating to the Microsoft Press book MCSA/MCSE Self-Paced Training Kit (Exam 70-350): Implementing Microsoft® Internet Security and Acceleration Server 2004, 0-7356-2169-1.

The following topics are covered:


 * Page xxxiv: ISA Server 2003 Standard Edition included on CD-ROM
 * Page 2-21: Correction to private IP addresses
 * Page 3-13: Production environment referenced in place of test environment
 * Page 4-21: Incorrect word usage in second step 1
 * Page 4-29: Incorrect install filename given
 * Page 5-35: Incorrect content type entry
 * Page 8-25: Correction on server type used for host file
 * Page 8-55: Correction on what the filter is applied to
 * Page 10-55: Error in the character sequence used
 * Page 10-71: L2TP protocol needs to be added
 * Page 12-24: Correction in protocol name
 * Page 12-53: Correction of duplicate policy under access rule
 * Page 13-32: Missing unattended setup parameter
 * Page 14-15: Web server name incorrect
 * Page 16-7: Location of pages incorrect
 * Page 16-7: Percent improvement incorrect
 * Page 16-14: Active Caching not available in ISA Server 2004
 * Page 17-20: Use name of Web server, not ISA Server
 * Page 17-28: Correct answers for question 6 should be A and B
 * Page 17-44: Answer A, B and D are correct
 * Page 18-26: Choose all answers which apply
 * Page 19-6: Clarification for possible answers



Page xxxiv: ISA Server 2003 Standard Edition included on CD-ROM
On page xxxiv, under the Software Requirements the first paragraph reads:

&quot;The following software is required to complete the procedures in this training kit. (A 180 day evaluation edition of ISA Server 2003, Enterprise Edition, is included on the CD-ROM).&quot;

It should read:

&quot;The following software is required to complete the procedures in this training kit. (A 180 day evaluation edition of ISA Server 2003, Standard Edition, is included on the CD-ROM).&quot;

Page 2-21: Correction to private IP addresses
On page 2-21, in the Note box it reads:

&quot;The private IP address ranges are 10.0.0.0, 172.16.0.0—172.32.0.0 and 192.168.0.0—192.168.255.0. These addresses cannot be routed on the Internet, so you can use any of these addresses internally.&quot;

It should read:

&quot;The private IP address ranges are 10.0.0.0, 172.16.0.0—172.31.255.255 and 192.168.0.0—192.168.255.255. These addresses cannot be routed on the Internet, so you can use any of these addresses internally.&quot;

Page 3-13: Production environment referenced in place of test environment
On page 3-13, the first sentence of the last bullet point reads:

&quot;Deploy the security update in the production environment.&quot;

It should read:

&quot;Deploy the security update in a test environment.&quot;

Page 4-21: Incorrect word usage in second step 1
On page 4-21, the second step 1 reads:

&quot;To do this, access the Auto Discovery tab in the Internet Network Properties dialog box,&quot;

It should read:

&quot;To do this, access the Auto Discovery tab in the Internal Network Properties dialog box,&quot;

Page 4-29: Incorrect install filename given
On page 4-29, step 2 reads:

&quot;Right-click MS_FPC.msi and click Install. Alternatively, you can double-click Setup.exe.&quot;

It should read:

&quot;Right-click MS_FWC.msi and click Install. Alternatively, you can double-click Setup.exe.&quot;

Page 5-35: Incorrect content type entry
On page 35, the first box under step 3 reads:

&quot;Type the content type set name in the Name box.&quot;

It should read:

&quot;Type the content type Schedule name in the Name box.&quot;

Page 8-25: Correction on server type used for host file
On page 8-25 the third sentence of the Exam Tip box reads:

&quot;If you do not want to configure ISA Server to use an internal DNS server, you can use a hosts file on the DNS server to provide name resolution.&quot;

It should read:

&quot;If you do not want to configure ISA Server to use an internal DNS server, you can use a hosts file on the ISA server to provide name resolution.&quot;

Page 8-55: Correction on what the filter is applied to
On page 8-55, the second sentence under How to Publish an FTP Server reads:

&quot;However, when you configure a server rule to publish the FTP protocol, the FTP application filter is automatically applied to the filter.&quot;

It should read:

&quot;However, when you configure a server rule to publish the FTP protocol, the FTP application filter is automatically applied to the rule.&quot;

Page 10-55: Error in the character sequence used
On page 10-55, under the ScriptVersion subheading it reads:

&quot;You can specify a text string using keyboard characters, except the /0 character sequence.&quot;

It should read:

&quot;You can specify a text string using keyboard characters, except the \0 character sequence.&quot;

Page 10-71: L2TP protocol needs to be added
On page 10-71 in the second sentence of the first bullet it reads:

&quot;ISA Server 2004 supports two VPN tunneling protocols: Point-to-Point Tunneling Protocol (PPTP) and ISA Server 2004 supports a variety of VPN authentication protocols.&quot;

It should read:

&quot;ISA Server 2004 supports two VPN tunneling protocols: Point-to-Point Tunneling Protocol (PPTP) and Layer Two Tunneling Protocol (L2TP). ISA Server 2004 also supports a variety of VPN authentication protocols.&quot;

Page 12-24: Correction in protocol name
On page 12-24 the second sentence under the fourth bullet point reads:

&quot;ISA Server Management Console computers must be able to communicate with the Configuration Storage server using the MS Firewall Control protocol, and with the ISA Server computers using the RPC protocol.&quot;

It should read:

&quot;ISA Server Management Console computers must be able to communicate with the Configuration Storage server using the MS Firewall Storage protocol, and with the ISA Server computers using the RPC protocol.&quot;

Page 12-53: Correction of duplicate policy under access rule
On page 12-53, the first sentence after the note box reads:

&quot;Depending on which access rule you selected when you started the New Access Rule Wizard, the access rule may be created under Enterprise Policy Rules Applied Before Array Firewall Policy, or under Enterprise Policy Rules Applied Before Array Firewall Policy, as shown in Figure 12-11.&quot;

It should read:

&quot;Depending on which access rule you selected when you started the New Access Rule Wizard, the access rule may be created under Enterprise Policy Rules Applied Before Array Firewall Policy, or under Enterprise Policy Rules Applied After Array Firewall Policy, as shown in Figure 12-11.&quot;

Page 13-32: Missing unattended setup parameter
On page 13-32, Question 3, Answer C reads:

&quot;C. E:\SETUP.EXE /X /QN \F:\MSISAUND.INI&quot;

It should read:

&quot;C. E:\FPC\SETUP.EXE /X /QN FULLPATHANSWERFILE=\F:\MSISAUND.INI&quot;

Page 14-15: Web server name incorrect
On page 14-15, Question 2, answer B reads:

&quot;When the Client Beta accesses the Web server located at webserver.fabrikam.com, it will do so directly without using the ISA Server 2004 computer.&quot;

It should read:

&quot;When the Client Beta accesses the Web server located at webserver.fabrikam.internal, it will do so directly without using the ISA Server 2004 computer.&quot;

Page 16-7: Location of pages incorrect
On page 16-7, the fourth sentence of question 6 reads:

&quot;The pages on the perimeter network ISA Server 2004 computer are updated hourly&quot;

It should read:

&quot;The pages on the perimeter network web server computer are updated hourly&quot;

Page 16-7: Percent improvement incorrect
On page 16-7, the 5th sentence of question 6 reads:

&quot;After benchmarking each of the servers, you have determined that the two 3-gigahertz (GHz) Pentium IV computers provides a 300 percent improvement over the performance of the 600-MHz Pentium III computer and a 200 percent improvement on the performance of the 1-GHz Pentium IV computer.&quot;

It should read:

&quot;After benchmarking each of the servers, you have determined that the two 3-gigahertz (GHz) Pentium IV computers provides a 200 percent improvement over the performance of the 600-MHz Pentium III computer and a 100 percent improvement on the performance of the 1-GHz Pentium IV computer.&quot;

Page 16-14: Active Caching not available in ISA Server 2004
On page 16-14, Questions 1 and 2 should be ignored. Both these questions refer to the use of Active Caching which is not available in ISA Server 2004.

Page 17-20: Use name of Web server, not ISA Server
On page 17-20, Answer B for question 2 reads:

&quot;B. Obtain a new certificate that matches the name of the ISA Server 2004 computer.&quot;

It should read:

&quot;B. Obtain a new certificate that matches the name of the web server computer.&quot;

Page 17-28: Correct answers for question 6 should be A and B
On page 17-28, the answers for question 6 read:

&quot;6. Correct Answers: A and C

A. Correct: HTTP filtering can only be applied to allow rules; it cannot be applied to deny rules.

B. Incorrect: If you set the Maximum Headers Length (done by selecting Configure HTTP for a rule from the Context menu) of a rule, it applies to all Web publishing rules

C: Correct: High-bit characters are used in URLs that contain double-byte character sets, such as those used in Japanese, Russian, and other non-English languages. Blocking high-bit characters blocks the use of non-English character URLs.

D. Incorrect: Unlike the Maximum Headers Length setting, actions configured for specific file extensions apply only to the specific rules rather than to all rules globally.

E: Incorrect: unlike the Maximum Headers Length setting, signatures configured and applied to Web publishing rules influence only that rule and do not apply globally.&quot;

It should read:

&quot;6. Correct Answers: A and B

A. Correct: HTTP filtering can only be applied to allow rules; it cannot be applied to deny rules.

B. Correct: If you set the Maximum Headers Length (done by selecting Configure HTTP for a rule from the Context menu) of a rule, it applies to all Web publishing rules

C: Incorrect: High-bit characters are used in URLs that contain double-byte character sets, such as those used in Japanese, Russian, and other non-English languages. Blocking high-bit characters blocks the use of non-English character URLs.

D. Incorrect: Unlike the Maximum Headers Length setting, actions configured for specific file extensions apply only to the specific rules rather than to all rules globally.

E: Incorrect: unlike the Maximum Headers Length setting, signatures configured and applied to Web publishing rules influence only that rule and do not apply globally.&quot;

Page 17-44: Answer A, B and D are correct
On page 17-44, Answer 5 reads:

&quot;5. Correct Answers: B and D&quot;

It should read:

&quot;5. Correct Answers: A, B and D&quot;

Page 18-26: Choose all answers which apply
On page 18-26, the last sentence for question 10 reads:

&quot; (Choose the best answer.)&quot;

It should read:

&quot; (Choose all answers which apply.)&quot;

Page 19-6: Clarification for possible answers
On page 19-6, Answer option E reads:

&quot;E. VPN Quarantined Client Sessions.&quot;

It should read:

&quot;E. Number of VPN Quarantined Client Sessions.&quot;

Microsoft Press is committed to providing informative and accurate books. All comments and corrections listed above are ready for inclusion in future printings of this book. If you have a later printing of this book, it may already contain most or all of the above corrections.

Additional query words: 0-7356-2169-1 978-0-7356-2169-5

Keywords: KB923153

-

[mailto:TECHNET@MICROSOFT.COM Send feedback to Microsoft]

© Microsoft Corporation. All rights reserved.