8/6/2019 Network and System Final Documentation

1/17

Network and SystemAdministration

4/6/2010

8/6/2019 Network and System Final Documentation

2/17

Lab One

Objective: To design a network based on a service requirements narrative

Goal:Design a network map that solves the problems identified in the narrative

Course of Action:

Problems

1. No planning2. Using a peer to peer network3. Several of the desktop computer acting as servers4. Network degraded and unreliable5. Sales Manager can not access MYOB from his computer, has his own copy of

MYOB which causes problems with the integration of files. Files cant beaccess if hes not in.

6. Access restriction problem with server7. Payroll system crashed. No backup system in place8. Bakery is not networked. Data transfer via floppy disk.9. Bakery computers are stored where its regularly accessed by the bakers

which frequently causes flour dust to corrupt floppy disks10. Incorrectly installed web server11. Website created by an amateur to save money12. Employee is surfing the internet during work hours. Manager unaware

employees had access13. Hackers gain access to an unprotected web server and deface website

Solutions1. Identify the different groups of user based on their requirements. Separate

them into two groups Power User Group and Non Power User Group. The aim of separating into groups is its cost effective.

Power Users Non-Power Users

Accounts Accountant Bakery Shop Floor ManagerAccounts Receivable 14 x BakersAccounts PayablePayroll Dispatch Dispatch Clerk

2 x DriversAdmin Office Sales Manager

1x SalesmanReceptionist/PA

8/6/2019 Network and System Final Documentation

3/17

Power Users1. 6 computers2. 4 printersConnect to the network using 10 Mbps Ethernet Switch

Non Power User1. 4 computers2. 2 printersConnect to the network using 10 Mbps Ethernet hub

1. Upgrade to a File Server network. Typically with a high performancecomputer, this will ensure faster data access and delivery.

2. Where is the server to be located?3. Centralise all the database applications on the server eg MYOB, People

Manager, Recipe Database and Accounts DHCP, DNS, Email, Web Server4. Security Policy - Identify scope of control(who needs access to what)5. Password change Policy (How often should this be changed)6. Backup Policy (what files need to be backed up on Server or PCs and how

often).7. Train staff on devices and technology8. Employ a Network Manager or company to oversee problems that arise or

future expansion

8/6/2019 Network and System Final Documentation

4/17

Lab Two

Objective: To create a three station sub-network

Goal:Read documentation on VBox and downloadDownload and install Windows2008 on VBox to act as serverDownload and install Windows XP on VBox to act as a clientDownload and install Ubuntu on VBox to act as a second clientEstablish network connectivity between the server and the two clients

Course of Action:

1. Downloaded and installed VBox onto hard drive2. Downloaded and installed Windows2008, Windows XP and Ubuntu onto harddrive3. Read documentation on VBox4. Opened VBox and connected the above three

Windows ServerInstalled an add-on called install guest additionsGave it a static IP address of 192.168.2.17

Windows XPChanged the IP address to 192.168.2.18

UbuntuChecked what the eth no was first in system>Administration>network toolsIn the command window typed sudo pico /etc/network/interfaces. Asked forpassword Administrator then entered

Auto lo

Iface lo inet loopbackAuto eth1 this was where you entered the eth no. from network toolsIface eth1 inet staticAddress 192.168.2.19Gateway 192.168.2.14Netmask 255.255.255.0Network 192.168.2.0Broadcast 192.168.2.255

Saved it and had to restart the network by sudo/etc/init.d/networking restart

Once the above was done then pinged

8/6/2019 Network and System Final Documentation

5/17

ProblemsPinging was timing out and no connectivity could be established.

ResolutionAfter many questions and researching found that the Server and the two clientsnetwork settings had to be changed in VBox toAdapter type: pcnet-fast III(Am79c973Attach to: internal network

Firewalls needed to be disabled in XP and win2008 server

Once this was done connectivity was established.

8/6/2019 Network and System Final Documentation

6/17

Lab Three

Objective:Create sample users and groups on the server and log in as the user fromclients with right & permissions

Goal:1. Create 3 user groups with 1 sample user suited to case study2. Configure the network on client machines so users can log on using

accounts created on the server3. Users to have access to one logical drive for personal storage and access to

two shared drives

4. User to have read/write and execute rights on one drive and read only onthe other

Course of Action:

ServerProblems1. Where to create users and groups so they could be seen from the client

machines2. Where to create partitioning and logical drive3.

Solutions1. Researched on adding users and groups on win server2008. Found that they

needed to be added under Active Directory users and Computers in ServerManager NOT user accounts

Created users and GroupsUser Email Group LogonUser X userx@windowsreference.int Accounts userx

User XX userxx@windowsreference.int Bakery userxxUser XXX userxxx@windowsreference.int Sales Teamuserxxx

2. Went to Microsoft websiteand search for create apartition or logical driveand followed the steps

mailto:userx@windowsreference.intmailto:userxx@windowsreference.intmailto:dfahkri@windowsreference.intmailto:userx@windowsreference.intmailto:userxx@windowsreference.intmailto:dfahkri@windowsreference.int

8/6/2019 Network and System Final Documentation

7/17

XPProblems1. Couldnt connect users to server2. Object name was a challenge was entering the group name , kept getting

error message that object (user) couldnt be foundSolution1. Had to change location from entire directory to windowsreference.int2. Went back to the server to see how I set the users up and realised I needed

to enter user name (eg. userx) NOT group name

Once I had figured that out users were created

UbuntuProblems1. The only real problem that I had with Ubuntu was forgetting to change the

eth no all the time.

Ubuntu wasnt really a problem. The challenge was more finding whereeverything was. Basically it was the same as windows but reworded differently

8/6/2019 Network and System Final Documentation

8/17

Lab Four

Objective:Install and configure a DHCP and DNS server to deliver IP addresses and nameresolution for client machines

Goal:1. Install and configure a DHCP and DNS server on the networked server2. Configure the DHCP server to deliver IP addresses in a range to client/s

machine3. Ensure IP address is obtained from the DHCP server by stopping the service

and the expected IP address is not picked up by the client machine

4. Install and configure DNS server and names can be pinged from client/s toserver

5. DNS starts automatically when windows server is booted and clients canpick up the IP address after the server

Course of Action:In windows server installed and configured DHCP from Roles in Server ManagerIP Address range: 192.168.2.1 192.168.2.100Subnet mask: 255.255.255.0Default Gateway: 192.168.2.17Domain Network: windowsreference.intComputer: USERX.windowsreference.intDomain Controller: UserX.windowsreference.intAddress Leases: Client1.windowsreference.int

Client2.windowsreference.int

In windows server installed and configured DNS from Roles in Server Manager The new domain name is windowsreference.int The name of the new forest is windowsreference.intNetBIOS of the domain is USERX

I checked to make sure it was correct by going into DHCP server MMC andchecking in the address pool and scope options then in the command windowtyping ipconfig/release and ipconfig /renew. The results show below that client1 has obtained the IP address automatically and its within the IP address rangein the Address Pool on the server.

8/6/2019 Network and System Final Documentation

9/17

A double check is to look in Address Leases (as above) and you can see theaddress that client1 (XP)was given automatically

8/6/2019 Network and System Final Documentation

10/17

Lab Five

Objective:Create a firewall on server to block access to all unauthorised and unnecessaryservices

Goal:1. Create a list of services running on the server as part of previous

assessments or running as support services. Find the protocol and port IDsof these

2. Test all services to ensure they operate correctly3. Using server or Ubuntu to deny all except the required ports

4. Need to allow access to ICMP but once firewall is operating correctly and hasbeen fully tested reconfigure to block PING. Test that this works

ResolutionProtocol Port ID

ADDS TCP 588DHCP TCP 1724DNS TCP 1736DHCP client TCP 944DNS client UDP 1224

1. Tested the above worked correctly by in Client 1 typing in the commandwindow telnet UserX and the port number

2. Going into windows firewall settings then exceptions you can untick theports not required

3. Local Security Policies/IP security Policies on Local computer you can set upBLOCK PING

Problems

The main problem was not knowing or understanding what and where to go. This was by far the hardest Lab worksheet. A lot of how we got this to workwas through http://www.petri.co.il/windows-server-2008.htm .

http://www.petri.co.il/windows-server-2008.htmhttp://www.petri.co.il/windows-server-2008.htm

8/6/2019 Network and System Final Documentation

11/17

Lab Six

Objective:Activate and schedule a backup system to back up user and shared directories

Goal:

1. Configure and schedule a backup system for your organisation.2. Backup data and all essential files that is required to get your network

running ASAP in case of a disaster.3. Make a list of the files/directories that you think are important and have

included in the backup.

4. Run backup at a non-intrusive time of the day at regular intervals so that itdoesnt affect the daily operations of the network.

ServerInstall backup features in Server ManagerCreated three Batch files Batch: xcopy "C:\Windows/winsxs" "M:\registry\%date:~0,3%\" /C/E/H/R/K/M/Y/

Batch1: xcopy "C:\Program Files" "M:\backup\%date:~0,3%\" /C/E/H/R/K/M/Y/xcopy "C:\PerfLogs" "M:\backup\%date:~0,3%\" /C/E/H/R/K/M/Y/xcopy "C:\Users" "M:\backup\%date:~0,3%\" /C/E/H/R/K/M/Y/

Batch2: xcopy "Q:\" "M:\SharedFiles\%date:~0,3%\" /C/E/H/R/K/M/Y/xcopy "U:\" "M:\SharedFiles\%date:~0,3%\" /C/E/H/R/K/M/Y/

Used task scheduler to create backups and scheduling

8/6/2019 Network and System Final Documentation

12/17

ProblemsFound there wasnt enough space available in C drive, had to create a backupfile on the hard drive.

SolutionsConnected by using the command net use m\\vboxsvr\SYSTEM BACKUP

8/6/2019 Network and System Final Documentation

13/17

Lab Seven

Objective:Install and configure an operational email server on your network.

Goal:1. Providing email services to 3 users who may log in and access those

services from an email client.2. The users should be able to access their emails from an email client such as

thunderbird or MSoutlook as well as from a web browser.

ServerConnected to the internet and downloaded Surge Mail and installed. Setup theuser accountsUser X userx@windowsreference.int User XX userxx@windowsreference.intUser XXX userxxx@windowsreference.int

Problems

Solutions

mailto:userx@windowsreference.intmailto:userxx@windowsreference.intmailto:userxxx@windowsreference.intmailto:userx@windowsreference.intmailto:userxx@windowsreference.intmailto:userxxx@windowsreference.int

8/6/2019 Network and System Final Documentation

14/17

XPProblems1. Couldnt connect to Surge MailSolutions

UbuntuProblemsError message cannot connect to server

Solutions1. Had the wrong sending protocol, needed to change it to POP from IMAP2. Had to change server name from windowsreference to

Userx.windowsreference.int3. Typed USERX.windowsreference.int where it should have been

Userx windowsreference.int

8/6/2019 Network and System Final Documentation

15/17

Lab Eight

Objective:Configure remote server administrator and perform typical tasks remotely fromclients

Goal:1. Configure and use remote server administration from both client machines 2. Use terminal services on server logged in as a non admin user to access

applications on server

Course of Action:

Set up the remote settings in system, adding the users that can connect fromanother computer other than the administrator.From the server logging into Remote Desktop Connection entering in the IPaddress for Client 1 and Client2 and the same back from the Clients to theserver.ServerProblemsNo problems

XPProblemsNo problems. Set up was similar to the server

UbuntuProblemsNo problems with Ubuntu either. Set up the different users in Terminal ServerSolutions

8/6/2019 Network and System Final Documentation

16/17

Lab Nine

Objective:Install and configure a Web Server

Goal:1. Install and configure a web server and test it with a basic index page for the

bakery as a minimum.2. You should be able to load the page with the name as well as with the ip

address of the server.3. Access the index page from both clients

Course of Action:ServerInstall IIS from Roles in Server ManagerIn IIS Manager created a site called windowsreference and in C drive created afolder called windowsreference.int.Created a .html file called Baker and saved in folder windowsreference.int in Cdrive.

Problems1. Entered either the IP or server name into the address bar online it displayed

the default .html page from IIS. Would not display the file I created for theBakers.

Solutions1. Looked at the view source from the default .html page and found it could be

located in C:/inetpub/wwwroot. Deleted the IIS file and added theBaker.html file.

XPProblems1. Kept getting error message 404 online.Solutions

Researched my problem and found I needed to create a folderwindowsreference.int in C drive.

UbuntuProblems1. Also wouldnt connectSolutions1. Found that I had spelt my domain name wrong in the Terminal Server.

Realised by chance that the server leaves off the e in windowsreference(WINDOWSREFERENC/ADMINISTRATOR). Corrected the spelling and itworked.

8/6/2019 Network and System Final Documentation

17/17