01-fundamentals of network infrastructure
TRANSCRIPT
-
8/12/2019 01-Fundamentals of Network Infrastructure
1/51
01-Fundamentals of NetworkInfrastructure
-
8/12/2019 01-Fundamentals of Network Infrastructure
2/51
What Is a LAN?
A LAN:
Is a single physical location
Has fast network connectivity
Server
Switch
Printer
Workstations
-
8/12/2019 01-Fundamentals of Network Infrastructure
3/51
What Is a WAN?
A WAN:
Is used between physical locations
Has slower connection speed than a LAN
Is more expensive than LAN connectivity
Uses connectivity typically provided by anothercompany
Branch Office
Head Office
Server
LAN
LAN
Server
Router
Router
-
8/12/2019 01-Fundamentals of Network Infrastructure
4/51
What Is a Branch Office?
A branch office is remote location that is
connected by WAN links to the head office with:
A generally small number of users
Limited local support resources
Limited local computing resources
Branch Office
Head Office
Server
LANLAN
ServerBranch Office
LAN
-
8/12/2019 01-Fundamentals of Network Infrastructure
5/51
-
8/12/2019 01-Fundamentals of Network Infrastructure
6/51
DHCP
DHCP Client DHCP Client
DHCP ServerDHCP Database
IP Address1
IP Address2
IP Address3
.
.
.
IP AddressN
IP Address2
IP Address1
DHCP Client
-
8/12/2019 01-Fundamentals of Network Infrastructure
7/51
DHCP Scope
Ascopeis a range of IP addresses that are availableto be leased
Scope Properties
Scope name
Exclusion range
Lease duration
Network IPaddress range
Network ID
Subnet mask
LAN A
DHCP Server
Scope A
-
8/12/2019 01-Fundamentals of Network Infrastructure
8/51
WINS Servers
Common scope options are:
DHCP Options
DHCP optionsare values for common configuration datathat applies to the scope
Default Gateway
DNS Servers
-
8/12/2019 01-Fundamentals of Network Infrastructure
9/51
Verifying DHCP client IP address
C:\>ipconfigTo display only the IP address, subnetmask and default gateway for eachadapter bound to TCP/IP
Ethernet adapter Local Area Connection:
IPv4 Address. . . . . . . . . . . : 192.168.1.198
Subnet Mask . . . . . . . . . . : 255.255.255.0Default Gateway . . . . . . . .: 192.168.1.1
-
8/12/2019 01-Fundamentals of Network Infrastructure
10/51
Verifying DHCP client IP address
C:\>ipconfig /allTo display detailed information.Ethernet adapter Local Area Connection:
Connection-specific DNS Suffix . :Description . . . . . . . . . . . : Realtek PCIe FE Family Controller
Physical Address. . . . . . . . . : 00-26-2D-B8-7C-28
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
IPv4 Address. . . . . . . . . . . : 192.168.1.198(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0Lease Obtained. . . . . . . . . . : Monday, February 20, 2012 4:39:48 AM
Lease Expires . . . . . . . . . . : Tuesday, February 21, 2012 7:18:13 AM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.10
DNS Servers . . . . . . . . . . . : 192.168.1.15
NetBIOS over Tcpip. . . . . . . . : Enabled
-
8/12/2019 01-Fundamentals of Network Infrastructure
11/51
Verifying DHCP client IP address
C:\>ipconfig /release
To release the IP address
C:\>ipconfig /renew
To renew the IP address
-
8/12/2019 01-Fundamentals of Network Infrastructure
12/51
DNS
The Domain Name System (DNS) is a service
designed to resolve IP addresses to host names and
host names to IP addresses
The forward lookup zone resolves
host names to IP addresses
The reverse lookup zone resolves
IP addresses to host names
-
8/12/2019 01-Fundamentals of Network Infrastructure
13/51
DNS Client2
DNS Client3
Forward and Reverse Lookup Zones
DNS Client1
Forwardlookupzone
DNS Client1 192.168.2.45
DNS Client2 192.168.2.46
DNS Client3 192.168.2.47
Reverselookupzone
192.168.2.45 DNS Client1
192.168.2.46 DNS Client2
192.168.2.47 DNS Client3
DNS Client2 = ?
192.168.2.46 = ?
DNS Server
d
-
8/12/2019 01-Fundamentals of Network Infrastructure
14/51
DNS Resource Records
In a DNS server, all information is stored in basic
data elements called resource records (RR), which
hold information associated with the domain name.
DNS resource records include:
SOA: Start of Authority
NS: Name Server
A: Host Record
CNAME: Alias Record
MX: Mail Exchange Record
-
8/12/2019 01-Fundamentals of Network Infrastructure
15/51
Adding a New Reverse Lookup Zone
-
8/12/2019 01-Fundamentals of Network Infrastructure
16/51
Adding a New Host (A) Record
-
8/12/2019 01-Fundamentals of Network Infrastructure
17/51
Adding a New Host (A) Record
-
8/12/2019 01-Fundamentals of Network Infrastructure
18/51
Adding a New Host (A) Record
-
8/12/2019 01-Fundamentals of Network Infrastructure
19/51
Adding a New Host (A) Record
-
8/12/2019 01-Fundamentals of Network Infrastructure
20/51
Associated Pointer (PTR) Record
-
8/12/2019 01-Fundamentals of Network Infrastructure
21/51
Adding a New Alias (CNAME) Record
-
8/12/2019 01-Fundamentals of Network Infrastructure
22/51
Adding a New Alias (CNAME) Record
-
8/12/2019 01-Fundamentals of Network Infrastructure
23/51
Adding a New Alias (CNAME) Record
Configuring Preferred DNS server on hosts using
-
8/12/2019 01-Fundamentals of Network Infrastructure
24/51
Configuring Preferred DNS server on hosts usingstatic IP address
-
8/12/2019 01-Fundamentals of Network Infrastructure
25/51
Adding DNS option on DHCP server
-
8/12/2019 01-Fundamentals of Network Infrastructure
26/51
Adding DNS option on DHCP server
ddi i
-
8/12/2019 01-Fundamentals of Network Infrastructure
27/51
Adding DNS option on DHCP server
-
8/12/2019 01-Fundamentals of Network Infrastructure
28/51
Testing the DNS Server
Verify the DNS using the nslookup tool
Fil S
-
8/12/2019 01-Fundamentals of Network Infrastructure
29/51
File Server
Fil S
-
8/12/2019 01-Fundamentals of Network Infrastructure
30/51
File Server
A file server provides a central location on
your network where you can store files andshare them with users across your network
When NTFSfile system permissions andsharedfolder permissions are combined,the resulting permission is the mostrestrictivepermission
Sh i F ld
-
8/12/2019 01-Fundamentals of Network Infrastructure
31/51
Sharing Folders
Sh i F ld
-
8/12/2019 01-Fundamentals of Network Infrastructure
32/51
Sharing Folders
Sh i F ld
-
8/12/2019 01-Fundamentals of Network Infrastructure
33/51
Sharing Folders
Sharing Folders
-
8/12/2019 01-Fundamentals of Network Infrastructure
34/51
Sharing Folders
-
8/12/2019 01-Fundamentals of Network Infrastructure
35/51
Print Permissions
-
8/12/2019 01-Fundamentals of Network Infrastructure
36/51
Print Permissions
Windows Network Models
-
8/12/2019 01-Fundamentals of Network Infrastructure
37/51
Windows Network Models
On a Microsoft network, computers are
grouped logically into either:
Workgroup (Windows Peer-to-Peer Network)or
Domain(Active Directory Network)
Workgroup
-
8/12/2019 01-Fundamentals of Network Infrastructure
38/51
Workgroup
Workgroups are designed to support
small groups of users.
There is no centralized management ofuser accounts or of resources, and eachmachine requires a separateadministrator.
Windows server 2008/2012 in aworkgroup is referred to as standalone
server
Workgroup
-
8/12/2019 01-Fundamentals of Network Infrastructure
39/51
Workgroup
Workgroup
-
8/12/2019 01-Fundamentals of Network Infrastructure
40/51
WorkgroupThe identity store is the security accounts manager (SAM) database on
each Windows system
No shared identity storeMultiple user accounts
Management of passwords is challenging
Domain
-
8/12/2019 01-Fundamentals of Network Infrastructure
41/51
Domain
Once there are a certain number of machines
on the network, the workgroup model nolonger suits, and the domain model should beutilized to manage the resources.
The key benefits of a domain are:
Centralized logon control
Centralized user and group management
Better control of resources
Single group policy for whole domain
Domain
-
8/12/2019 01-Fundamentals of Network Infrastructure
42/51
Domain
Windows server 2008 /2012 in a domain can be a Domain
controller or a Member server.Domain controller: The server keeps and maintains a copyof the Active Directory database and provides secure accountmanagement for domain member users and computers.
Member server: The server is not operating as a domaincontroller but has joined a domain in which it has amembership account in the Active Directory database.
Domain
-
8/12/2019 01-Fundamentals of Network Infrastructure
43/51
Domain
Domain
-
8/12/2019 01-Fundamentals of Network Infrastructure
44/51
Domain
Centralized identity
store trusted by alldomain members
Centralizedauthentication service
Hosted by a serverperforming the role ofan Active Directory
Domain Services (ADDS)
-
8/12/2019 01-Fundamentals of Network Infrastructure
45/51
Active Directory and DNS High Availability
-
8/12/2019 01-Fundamentals of Network Infrastructure
46/51
Active Directory and DNS High Availability
Because Active Directory depends on DNS, eachdomain controller must be a DNS server (Microsoft
recommends that you use Active Directory-integratedzones).
It is recommended to have a domain controller in
remote sites to protect against an unavailable WANconnection.
All domain controllers in a domain essentially areequal. Each domain controller holds a copy of the
directory store, and updates can be made to the AD DSdata on all domain controllers.
Active Directory and DNS High Availability
-
8/12/2019 01-Fundamentals of Network Infrastructure
47/51
Active Directory and DNS High Availability
Active Directory and DNS High Availability
-
8/12/2019 01-Fundamentals of Network Infrastructure
48/51
Active Directory and DNS High Availability
To add an additional server running AD DS and DNS,you need to:
1. Join the new server to the domain
2. Add the role AD DS
3. Select :Add a domain controller to an existing
domainin the Choose a DeploymentConfiguration Windows
4. In the windows of Additional Domain ControllerOptions , check the two boxes : DNS server andGlobal catalog.
Active Directory and DNS High Availability
-
8/12/2019 01-Fundamentals of Network Infrastructure
49/51
Active Directory and DNS High Availability
Active Directory and DNS High Availability
-
8/12/2019 01-Fundamentals of Network Infrastructure
50/51
Active Directory and DNS High Availability
Active Directory and DNS High Availability
-
8/12/2019 01-Fundamentals of Network Infrastructure
51/51
Active Directory and DNS High Availability