Finding Most recent RH302 testing material

Q71. CORRECT TEXT

Create the partition having 100MB size and mount it on /mnt/neo

Answer and Explanation:

18. Use fdisk /dev/hda àTo create new partition.

19. Type n àFor New partitions

20. It will ask for Logical or Primary Partitions. Press l for logical.

21. It will ask for the Starting Cylinder: Use the Default by pressing Enter Key.

22. Type the Size: +100M àYou can Specify either Last cylinder of Size here.

23. Press P to verify the partitions lists and remember the partitions name.

24. Press w to write on partitions table.

25. Either Reboot or use partprobe command.

26. Use mkfs -t ext3 /dev/hda? Where ? is your partition number

27. Or

28. mke2fs -j /dev/hda? àTo create ext3 filesystem.

29. mkdir /mnt/neo

30. vi /etc/fstab

31. Write:

32. /dev/hda? /mnt/neo ext3 defaults 1 2

33. Verify by mounting on current Sessions also:

34. mount /dev/hda? /mnt/neo

Q72. CORRECT TEXT

Raw (Model) printer named printer1 is installed and shared on 192.168.0.254. You should install the shared printer on your PC to connect shared printer using IPP Protocols.

Answer and Explanation:

IPP( Internet Printing Protocol), allows administrator to manage printer through browser so CUPS is called Internet Printing Protocol based on HTTP. We can Install the printer either through:

system-confing-printer tool or through Browser.

1. Open the browser and Type on address: http://localhost:631 à CUPS (Common Unix Printing System) used the IPP protocol. CUPS use the 631 port.

2. Click on Manage Printer.

3. Click on Add Printer.

4. Type Printer name, Location, Description.

5. Select Device for bb. (Select IPP).

6. Device URL: ipp://192.168.0.254/ipp/ queue name à Same printer name of shared printer.

7. Select Model/Driver RAW printer.

8. service cups restart

Q73. CORRECT TEXT

Create the group named sysadmin.

Answer and Explanation:

1. groupadd sysadmin

groupadd command is used to create the group and all group information is stored in /etc/group file.

Q74. CORRECT TEXT

You have a ftp server having IP address 192.168.0.254. Using iptables, allow the ftp connection only from the internal network where internal network is 192.168.0.0/24.

Answer and Explanation:

1. iptables -t filter -A INPUT -s ! 192.168.0.0/24 -p tcp -d 192.168.0.254 --dport 20 -j DROP

2. iptables -t filter -A INPUT -s ! 192.168.0.0/24 -p tcp -d 192.168.0.254 --dport 21 -j DROP

iptables is the build-in firewall tools, used to filter the packets and for nat. By identifying Source Address, Destination Address, type of protocol, source and destination port we can filter the packets.

-sà Source Address

-dà Destination Address

-p à Layer 3 Protocol

-dàDestination Address

--sportà Source Prot

--dportàDestination Port

-ià Incoming Interface

-oà Outgoing Interface

-t à Table either filter or nat or mangle

-Aà Chain can be either INPUT, OUTPUT, FORWARD, PREROUTING, POSTROUTING.

Q75. CORRECT TEXT

You have a dedicated internet line in your LAN and IP from your ISP is 202.2.2.2. Your LAN is in 192.168.0.0/24. Configure the SNAT that allows all system in your LAN can access the Internet.

Answer and Explanation:

1. iptables -t nat -A POSTROUTING -s 192.168.0.0/24 -p tcp -j SNAT -to-source 202.2.2.2.

POSTROUTINGà This filter point handles packets immediately prior leaving the system.

When Packets leave the system all's source address change to 202.2.2.2 and can access the internet. iptables is the build-in firewall tools, used to filter the packets and for nat. By identifying Source Address, Destination Address, type of protocol, source and destination port we can filter the packets.

-sà Source Address

-dà Destination Address

-p à Layer 3 Protocol

-dàDestination Address

--sportà Source Prot

--dportàDestination Port

-ià Incoming Interface

-oà Outgoing Interface

-t à Table either filter or nat or mangle

-Aà Chain can be either INPUT, OUTPUT, FORWARD, PREROUTING, POSTROUTING.

Q76. CORRECT TEXT

You Completely Install the Redhat Enterprise Linux ES 4 on your System. While start the system,

it's giving error to load X window System. How will you fix that problem and make boot successfully run X Window System.

Answer and Explanation:

Think while Problems occurred on booting System on Runlevel 5 (X Window)./tmp is full or notQuota is already reachedVideo card or resolution or monitor is misconfigured.xfs service is running or not.

Do These:

1. df -h /tmp à/tmp is full remove the unnecessary filequota username àif quota is already reached remove unnecessary file from home directory.Boot the System in runlevel 3.àyou can pass the Kernel Argument from boot loader.Use command: system-config-display à It will display a dialog to configure the monitor, Video card, resolution etc.Set the Default Runlevel 5 in /etc/inittab id:5:initdefault:

6. Reboot the System you will get the GUI login Screen.

Q77. CORRECT TEXT

Deny to john user login locally.

Answer and Explanation:

1. vi /etc/security/access.conf

-:john:LOCAL

2. vi /etc/pam.d/system-auth

account required /lib/security/pam_access.so

/etc/security/access.conf file helps to allow or deny login to users on the basis of origin.

Syntax of /etc/security/access.conf

permission : users : origins

The first field should be a "+" (access granted) or "-" (access denied) character.

The second field should be a list of one or more login names, group names, or ALL (always matches). A pattern of the form user@host is matched when the login name matches the "user" part, and when the "host" part matches the local machine name.

The third field should be a list of one or more tty names (for non-networked logins), host names, domain names (begin with "."), host addresses, internet network numbers (end with "."), ALL (always matches) or LOCAL (matches any string that does not contain a "." character).

In our example denied to john user to login locally.

Q78. CORRECT TEXT

Some users home directory is shared from your system. Using showmount -e localhost command, the shared directory is not shown. Make access the shared users home directory.

Answer and Explanation:

1. Verify the File whether Shared or not ? : cat /etc/exports

2. Start the nfs service: service nfs start

3. Start the portmap service: service portmap start

4. Make automatically start the nfs service on next reboot: chkconfig nfs on

5. Make automatically start the portmap service on next reboot: chkconfig portmap on

6. Check default firewall is running in your system

# service iptables status

#iptables -F

#service iptables stop

#chkconfig iptables off

6. Verify Either sharing or not: showmount -e localhost

You will see that some shared directory will display

Q79. CORRECT TEXT

There are two different networks, 192.168.0.0/24 and 192.168.1.0/24. Your System is in 192.168.0.0/24 Network. One RHEL 4 Installed System is going to use as a Router. All required configuration is already done on Linux Server. Where 192.168.0.254 and 192.168.1.254 IP Address are assigned on that Server. How will make successfully ping to 192.168.1.0/24 Network's Host?

Answer and Explanation:

1. vi /etc/sysconfig/network

GATEWAY=192.168.0.254

vi /etc/sysconf/network-scripts/ifcfg-eth0

DEVICE=eth0

BOOTPROTO=static

ONBOOT=yes

IPADDR=192.168.0.?

NETMASK=255.255.255.0

GATEWAY=192.168.0.254

2. service network restart

Q80. CORRECT TEXT

Configure the DNS server by allowing query only from the 192.168.0.0/24 Local Network.

Answer and Explanation:

1. vi /var/named/chroot/etc/named.conf

acl localnet { 192.168.0.0/24; };

options {

allow-query { localnet; };

};

2. service named restart | start

allow-query is a global option on /var/named/chroot/etc/named.conf, specifies an address match list of hosts allowed to query this server. If this option is not set, any host can query the server.

To see all sample questions go to: RH302 braindumps

Related RH302 posts: