View
214
Download
1
Tags:
Embed Size (px)
Citation preview
11.1 © 2004 Pearson Education, Inc.
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 11: Introducing WINS, DNS, and RRAS
Goals Understand Windows Internet Naming Service (WINS)
Understand the Domain Name System (DNS)
Understand DNS name resolution
Install and configure the DNS service
Understand Routing and Remote Access Service (RRAS)
Understand types of remote access connections
11.2 © 2004 Pearson Education, Inc.
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 11: Introducing WINS, DNS, and RRAS
Goals (2) Configure remote access services
Create a remote access policy
Create a VPN server
Examine Internet Connection Sharing (ICS)
Examine Network Address Translation (NAT)
11.3 © 2004 Pearson Education, Inc.
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 11: Introducing WINS, DNS, and RRAS
A NetBIOS Name Server (NBNS) is an application responsible for mapping NetBIOS names to IP addresses
Microsoft’s implementation of an NBNS is Windows Internet Naming Service (WINS) The computer running WINS is referred to as the WINS server WINS allows clients on a network configured to use WINS
(called WINS clients) to dynamically register their NetBIOS name-to-IP address mappings in a database called the WINS database
(Skill 1)
Understanding Windows Internet Naming Service (WINS)
11.4 © 2004 Pearson Education, Inc.
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 11: Introducing WINS, DNS, and RRAS
Microsoft WINS clients use four methods in the following order to resolve NetBIOS names NetBIOS name cache: Stores information about the most
recently resolved NetBIOS names in client memory Windows Internet Naming Service (WINS): This method is the
most likely to be used on a network and the most likely to succeed
Broadcast: The basic method of NetBIOS name resolution, which sends requests simultaneously to all network hosts on the attached subnet
LMHOSTS file: A text file, stored on the local computer, which contains the static mappings of NetBIOS names to IP addresses for computers on remote networks only
Understanding Windows Internet Naming Service (WINS) (2)
(Skill 1)
11.5 © 2004 Pearson Education, Inc.
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 11: Introducing WINS, DNS, and RRAS
Figure 11-1 NetBIOS name resolution process using WINS
(Skill 1)
11.6 © 2004 Pearson Education, Inc.
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 11: Introducing WINS, DNS, and RRAS
Figure 11-2 Resolving a NetBIOS name using a NetBIOS broadcast
(Skill 1)
11.7 © 2004 Pearson Education, Inc.
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 11: Introducing WINS, DNS, and RRAS
Figure 11-3 Resolving a NetBIOS name using the LMHOSTS file
(Skill 1)
11.8 © 2004 Pearson Education, Inc.
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 11: Introducing WINS, DNS, and RRAS
The resolution method and the order in which the methods will be used depend on the NetBIOS node type B-node (Broadcast): Uses broadcasts to resolve names P-node (Peer-to-Peer or Point-to Point): The client queries a
WINS server in order to resolve names M-node (Mixed): Broadcasts are used first to attempt to resolve
names; this node type is usually used when the WINS server is located across a WAN link
H-node (Hybrid): The client attempts to query a WINS server first in order to resolve names; this is the default node type if using WINS
Understanding Windows Internet Naming Service (WINS) (3)
(Skill 1)
11.9 © 2004 Pearson Education, Inc.
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 11: Introducing WINS, DNS, and RRAS
Figure 11-4 The Node Type key
H-node (Hybrid) is the default node type for Windows 2000, Windows XP Professional, and Windows Server 2003 if WINS is enabled. The Node Type hexadecimal value is 8.
(Skill 1)
11.10 © 2004 Pearson Education, Inc.
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 11: Introducing WINS, DNS, and RRAS
Figure 11-5 The NetBIOS name registration process
(Skill 1)
11.11 © 2004 Pearson Education, Inc.
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 11: Introducing WINS, DNS, and RRAS
Requirements on a TCP/IP networkWINS can only be installed on a Windows NT Server,
Windows 2000 Server, or Windows Server 2003 computerThe server must be configured with a static IP address, a
subnet mask, a default gateway, and other TCP/IP parameters
After a WINS server has been configured, you must make sure that the clients on the network are configured
Understanding Windows Internet Naming Service (WINS) (4)
(Skill 1)
11.12 © 2004 Pearson Education, Inc.
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 11: Introducing WINS, DNS, and RRAS
Figure 11-6 The WINS tab in the Advanced TCP/IP Settings dialog box
(Skill 1)
Click to open the TCP/IP WINS Server dialog box where you will enter the static IP address for a WINS server
11.13 © 2004 Pearson Education, Inc.
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 11: Introducing WINS, DNS, and RRAS
Figure 11-7 The Networking Services dialog box
(Skill 1)
11.14 © 2004 Pearson Education, Inc.
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 11: Introducing WINS, DNS, and RRAS
Figure 11-8 The WINS console
(Skill 1)
To view the content of the WINS database, right-click Active Registrations and select Display Records. Then, click the Find Now button to view all active registrations in the details pane. You can also create filters to search for records based on a name pattern, IP address, record owner, or record type.
11.15 © 2004 Pearson Education, Inc.
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 11: Introducing WINS, DNS, and RRAS
It is a recommended practice to back up the WINS database every time the server shuts down (by selecting Backup database during server shutdown on the General tab)
Burst handling is a method for handling a high or burst period of WINS registration and renewal traffic
Understanding Windows Internet Naming Service (WINS) (5)
(Skill 1)
11.16 © 2004 Pearson Education, Inc.
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 11: Introducing WINS, DNS, and RRAS
Figure 11-9 The General tab in the Properties dialog box for the WINS server
(Skill 1)
11.17 © 2004 Pearson Education, Inc.
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 11: Introducing WINS, DNS, and RRAS
Figure 11-10 The Intervals tab
(Skill 1)
11.18 © 2004 Pearson Education, Inc.
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 11: Introducing WINS, DNS, and RRAS
Figure 11-11 The Database Verification tab
(Skill 1)
11.19 © 2004 Pearson Education, Inc.
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 11: Introducing WINS, DNS, and RRAS
Figure 11-12 The Advanced tab
(Skill 1)
Used to force WINS replication when a new version of the WINS database has been created
11.20 © 2004 Pearson Education, Inc.
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 11: Introducing WINS, DNS, and RRAS
WINS replication process Process by which WINS servers on a network swap
information with one another It is done through “partnering” with other WINS servers so
that all WINS servers are interconnected and replication occurs between them
Understanding Windows Internet Naming Service (WINS) (6)
(Skill 1)
11.21 © 2004 Pearson Education, Inc.
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 11: Introducing WINS, DNS, and RRAS
Figure 11-13 The Advanced tab in the Replication Partners Properties dialog box
(Skill 1)
Select to use IP multicasts to identify the other WINS servers on the network and automatically configure them as Push/Pull replication partners
11.22 © 2004 Pearson Education, Inc.
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 11: Introducing WINS, DNS, and RRAS
Figure 11-14 The New Replication Partner dialog box
(Skill 1)
11.23 © 2004 Pearson Education, Inc.
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 11: Introducing WINS, DNS, and RRAS
Figure 11-15 The Replication Partners Properties dialog box
(Skill 1)
11.24 © 2004 Pearson Education, Inc.
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 11: Introducing WINS, DNS, and RRAS
WINS Push Replication Occurs when the service starts or when an address in the
database changesThe server pushes replication by notifying its partners that
changes have occurredWhen the partners receive the notification, they can pull
the replication data from the WINS server WINS Pull Replication
Is controlled by setting a schedule for the partnersBy default, this is set to occur every 30 minutes
Understanding Windows Internet Naming Service (WINS) (7)
(Skill 1)
11.25 © 2004 Pearson Education, Inc.
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 11: Introducing WINS, DNS, and RRAS
Figure 11-16 WINS replication
(Skill 1)
11.26 © 2004 Pearson Education, Inc.
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 11: Introducing WINS, DNS, and RRAS
Figure 11-17 The Push Replication tab
(Skill 1)
Figure 11-18 The Pull Replication tab
11.27 © 2004 Pearson Education, Inc.
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 11: Introducing WINS, DNS, and RRAS
Figure 11-19 The Intervals tab on the Properties dialog box for a WINS server
(Skill 1)
11.28 © 2004 Pearson Education, Inc.
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 11: Introducing WINS, DNS, and RRAS
Domain Name System (DNS) is the main name resolution service for Windows Server 2003
DNS servers, also referred to as DNS name servers, perform the task of name resolution to convert host names to IP addresses
The DNS namespace Has a hierarchical structureThe nodes in this hierarchical structure are called domainsAs you add more domains to the DNS hierarchy, the name
of the parent domain is added to the child domain or sub-domain
Understanding the Domain Name System (DNS)
(Skill 2)
11.29 © 2004 Pearson Education, Inc.
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 11: Introducing WINS, DNS, and RRAS
Understanding the Domain Name System (DNS) (2)
DNS hierarchyThe domain at the top is called a root domain and is
represented by a trailing periodThe child domain of the root domain is called a top-level
domainThe child domain of a top-level domain is called a second-
level domainA host name is at the bottom of the DNS hierarchy and
designates a particular computer A fully qualified domain name (FQDN) includes a domain
name in addition to a host name
(Skill 2)
11.30 © 2004 Pearson Education, Inc.
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 11: Introducing WINS, DNS, and RRAS
Figure 11-20 The DNS hierarchy
(Skill 2)
11.31 © 2004 Pearson Education, Inc.
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 11: Introducing WINS, DNS, and RRAS
Figure 11-21 A FQDN
(Skill 2)
11.32 © 2004 Pearson Education, Inc.
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 11: Introducing WINS, DNS, and RRAS
On a small network, a DNS server may contain just one database file that stores all of the name-to-IP-address resolution data
In larger networks, it may be necessary to create zonesZone are distinct, contiguous segments of the DNS
namespaceServers in each zone store records about the resources in
that zone in a file called a zone database fileA zone database file contains various types of resource
records
Understanding the Domain Name System (DNS) (3)
(Skill 2)
11.33 © 2004 Pearson Education, Inc.
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 11: Introducing WINS, DNS, and RRAS
When multiple DNS servers are created in a standard DNS zone, there are two kinds of DNS database files: primary and secondary
Primary database file Modifications can be made only to the primary database file Zone transfers occur to replicate any changes to the primary zone
database file to the secondary zone database file Secondary database file servers
Reduce the traffic and query load on the primary database zone server
Provide redundancy so that if the authoritative server is down, the secondary database file servers can service requests
Understanding the Domain Name System (DNS) (4)
(Skill 2)
11.34 © 2004 Pearson Education, Inc.
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 11: Introducing WINS, DNS, and RRAS
Caching-only name serversUse caching to store information collected during name
resolutionThey are not authoritative for any zoneCache query results to reduce network trafficA query result can be cached for a specific amount of time
called the Time to Live (TTL), after which it is deleted
Understanding the Domain Name System (DNS) (5)
(Skill 2)
11.35 © 2004 Pearson Education, Inc.
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 11: Introducing WINS, DNS, and RRAS
Figure 11-22 The DNS namespace subdivided into zones
(Skill 2)
11.36 © 2004 Pearson Education, Inc.
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 11: Introducing WINS, DNS, and RRAS
Client computers can make two standard types of queries to a DNS server: a forward lookup query and a reverse lookup queryA forward lookup query occurs when a client asks the DNS
server to resolve a host name to an IP addressA reverse lookup query
Involves resolving a known IP address to a host nameUses the in-addr.arpa domain, a special second-level domain
created expressly for this task
Understanding DNS Name Resolution
(Skill 3)
11.37 © 2004 Pearson Education, Inc.
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 11: Introducing WINS, DNS, and RRAS
Recursive query A type of forward lookup query used to request that a DNS name
server provides the full and complete answer to the query It is a request for the answer, not for a referral to another DNS
server that may be able to answer the query Iterative query
If the designated DNS name server is unable to resolve the destination host name on its own, it sends an iterative query on behalf of the client to assist in answering the recursive query
Iterative queries allow DNS servers to send back pointer or referrals Resolver
A host that performs a recursive search and issues iterative queries Queries other DNS name servers, including root servers, to look up
DNS records on behalf of the client
Understanding DNS Name Resolution (2)
(Skill 3)
11.38 © 2004 Pearson Education, Inc.
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 11: Introducing WINS, DNS, and RRAS
Figure 11-23 Forward lookup queries
(Skill 3)
11.39 © 2004 Pearson Education, Inc.
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 11: Introducing WINS, DNS, and RRAS
Figure 11-24 in-addr.arpa
(Skill 3)
11.40 © 2004 Pearson Education, Inc.
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 11: Introducing WINS, DNS, and RRAS
Figure 11-25 Resolving a host name to an IP address
(Skill 3)
11.41 © 2004 Pearson Education, Inc.
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 11: Introducing WINS, DNS, and RRAS
Considerations The size of your network is important because key
implementation issues will vary for small, mid-sized, and large networks
DNS resilience Refers to the hardiness of the DNS infrastructure,
specifically its ability to continue operating when individual components have been damaged
To ensure DNS resiliency, you should have at least one primary and one secondary DNS server for a domain
Installing and Configuring the DNS Service
(Skill 4)
11.42 © 2004 Pearson Education, Inc.
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 11: Introducing WINS, DNS, and RRAS
Using DNS on an intranet, the Internet, or both If you plan to use DNS on both, you must decide whether you
want to use a single domain name for both, or different domain names for internal and external resources
If you plan to have an Internet presence, you must register your domain name with an Internet naming authority such as Network Solutions
Registering your domain name is not required if you plan to implement DNS only on an intranet, but it is recommended
Types of DNS zones Root zone is a zone authoritative for the root domain Forward lookup zones are used to resolve host names to IP
addresses Reverse lookup zones are used to resolve IP addresses to host
names
Installing and Configuring the DNS Service (2)
(Skill 4)
11.43 © 2004 Pearson Education, Inc.
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 11: Introducing WINS, DNS, and RRAS
Figure 11-26 Same internal and external DNS namespace
(Skill 4)
11.44 © 2004 Pearson Education, Inc.
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 11: Introducing WINS, DNS, and RRAS
Figure 11-27 The DNS Cache file opened in Microsoft Word
(Skill 4)
11.45 © 2004 Pearson Education, Inc.
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 11: Introducing WINS, DNS, and RRAS
Main types of zones The standard primary zone is the first zone to be created and
it is authoritative for one or more domains Secondary zones
Read-only copies of another zone on the networkCreated after the primary zone to provide redundancy for
the primary name server Stub zones are an enhancement to delegated sub-domains
that were added as a new feature in Windows Server 2003’s DNS Server service
Active Directory-integrated zone uses Active Directory to store and replicate zone database files
Installing and Configuring the DNS Service (3)
(Skill 4)
11.46 © 2004 Pearson Education, Inc.
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 11: Introducing WINS, DNS, and RRAS
Locations where DNS zones can be stored in Active DirectoryDomain directory partition
Where data pertaining to a particular Active Directory domain is stored
This includes data about objects such as users and computers
Application directory partitions Implemented to improve replication efficiency in situations
where only a subset of the domain controllers needs a copy of the application data
Use them to store data that will only be replicated to a specific group of domain controllers
Installing and Configuring the DNS Service (4)
(Skill 4)
11.47 © 2004 Pearson Education, Inc.
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 11: Introducing WINS, DNS, and RRAS
Figure 11-28 Creating an application directory partition for a forest
(Skill 4)
DNS zone data will be replicated to all domain controller/DNS servers in the Active Directory forest
11.48 © 2004 Pearson Education, Inc.
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 11: Introducing WINS, DNS, and RRAS
Figure 11-29 Creating an application directory partition for a domain
(Skill 4)
DNS zone data will be replicated to all domain controller/DNS servers in the Active Directory domain
11.49 © 2004 Pearson Education, Inc.
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 11: Introducing WINS, DNS, and RRAS
Figure 11-30 Installing the DNS service
(Skill 4)
11.50 © 2004 Pearson Education, Inc.
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 11: Introducing WINS, DNS, and RRAS
Figure 11-31 The dnsmgmt console
(Skill 4)
11.51 © 2004 Pearson Education, Inc.
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 11: Introducing WINS, DNS, and RRAS
Figure 11-32 The Select Configuration Action screen
(Skill 4)
11.52 © 2004 Pearson Education, Inc.
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 11: Introducing WINS, DNS, and RRAS
Figure 11-33 The Forward Lookup Zone screen
(Skill 4)
11.53 © 2004 Pearson Education, Inc.
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 11: Introducing WINS, DNS, and RRAS
Figure 11-34 The Zone Type screen
(Skill 4)
11.54 © 2004 Pearson Education, Inc.
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 11: Introducing WINS, DNS, and RRAS
Figure 11-35 The Dynamic Update screen
(Skill 4)
11.55 © 2004 Pearson Education, Inc.
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 11: Introducing WINS, DNS, and RRAS
Figure 11-36 The Reverse Lookup Zone screen
(Skill 4)
11.56 © 2004 Pearson Education, Inc.
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 11: Introducing WINS, DNS, and RRAS
Reverse lookup zone Can be created in the console tree The first reverse lookup zone is a primary zone If your DNS server is a domain controller and you are creating an
Active Directory-integrated zone, you must configure how you want zone data to be replicated
The default configuration is for zone data to be replicated to all domain controllers in the Active Directory domain (domain directory partition)
Installing and Configuring the DNS Service (5)
(Skill 4)
11.57 © 2004 Pearson Education, Inc.
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 11: Introducing WINS, DNS, and RRAS
Resource recordsA zone must contain the resource records for all
resources in the domain for which it is responsibleWhen a zone is created, DNS automatically adds an
SOA (Start of Authority) resource record and a NS (Name Server) resource record
Installing and Configuring the DNS Service (6)
(Skill 4)
11.58 © 2004 Pearson Education, Inc.
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 11: Introducing WINS, DNS, and RRAS
Figure 11-37 Adding a resource record
(Skill 4)