network implementation and support lesson 13 web resouces

Eric Vanderburg © 2006

Network Implementation & Support

Chapter 13

Web Resources


IIS (Internet Information Services)

• WWW Sites

• FTP Sites

• Discussion Groups - NNTP (Network News Transfer Protocol)

• Mail services - SMTP (Simple Mail Transfer Protocol)

• Web folders - File share over the web using HTTP. Share appears as a URL.


IIS 6.0• automatically detects memory leaks, access violations,

and other errors. The underlying architecture provides fault tolerance and the ability to restart processes as necessary. IIS 6.0 continues to queue requests without interrupting the user experience.

• HTTP Compression• Not enabled by default and all settings not installed by

default• NLB (Network Load Balancing) & QoS• IIS can isolate an individual Web application or multiple

sites into a self-contained process (called an application pool) that communicates directly with the operating system kernel.


Metabase

• Metabase.bin -> metabase.xml & MBSchema.xml

• Backup location: %systemroot%\system32\inetsrv\metaback

• Rollback - A history is kept of changes to the metabase (%systemroot%\system32\inetsrv\history)


Components

• BITS (Background Intelligent Transfer Service) - resume downloads, efficiently allocate bandwidth

• Common Files - IIS program files• FTP Service• FrontPage 2002 Extensions• IIS Manager snap-in• NNTP Service - distribute, retrieve, and post

usenet messages• SMTP Service• WWW (Intranet, Extranet, or Internet)


Folder Structure

• %systemroot%\system32\inetsrv - program files & dlls

• Inetpub - ftproot, wwwroot, nntpfile, mailroot - contains actual web and ftp files

• Windows\help\iishelp - documentation


Services

• FTP Publishing - ul/dl

• IIS Admin

• NNTP

• SMTP

• WWW Publishing


IIS

• HTTP.sys - kernel mode instead of user mode so it runs faster

• IIS 5.0 Isolation mode

• Worker process - independent processes

• Remote Administration tool - manage IIS and a number of other network services remotely– Not available for 64 bit systems


IIS MMC

• FTP Sites - View each site and where it is located on the disk

• Application Pools - Apps for web sites• Web Sites - default has the under

construction page. • We Service Extensions - Add extensions

like Front Page, ASP (Active Server Pages), CGI, Internet Printing

• Default SMTP Virtual Server• Default NNTP Virtual Server (port 119)


Master Properties

• Change global settings for all sites

• Inherited by default

• If a site is already configured, you will have the option to override or not.


Managing Sites

• Separate IP address for each site

• Single IP address with different ports for each site

• Single IP address with a different domain name for each site (requires DNS support)

• Virtual directories hide directory structure & simplify paths


Web Site Properties

• Web Site - IP, Port, Timeout, Logging• Performance - Connections, Throttling• ISAPI (Internet Server Application Programming

Interface) Filters - take action when events occur in IIS.

• Home Directory - Where the web site points• Documents - Index search order, web page

footer• HTTP Headers - content expiration dates to

specify client caching options• Custom Errors - Set own error pages (ex: 404)


Web Site Properties

• Directory Security - authentication, IP/DNS ACLs, SSL certificates– Anonymous Access (uses IUSR_servername account or a

different account can be specified)– Basic Authentication - username & password (sent in clear)– Digest Authentication - Hashed username & password using

MD5. Must run HTTP 1.1 & WebDAV– Integrated Windows Authentication - Anonymous access is

disabled. Current username and password is sent for the client automatically

– .NET Passport Authentication - Must register with Microsoft– Order of processing: Anonymous, Integrated, Digest, Basic– FTP cannot use Digest, Integrated, or .NET


FTP Site Properties

• FTP Site - Description, Port, IP, Timeout, Logging

• Security Accounts - Use either anonymous access or username and password

• Messages - welcome & exit messages

• Home directory - where the files are stored

• Directory security - IP or computername ACLs.


SSL

• Encrypts web content while in transit

• https://, Port 443

• Need a certificate from a trusted source


Command Line

• Iisweb.vbs - Create, delete, list web sites and start, stop or pause them.

• Iisweb.vbs /create /start /stop /pause /query /delete• Iisback.vbs - backup, restore• Iisvdir.vbs - create, delete, or query virtual directories• Iisftpdr.vbs - create, delete, or query ftp directories• Iisext.vbs - configures & manages web services

extensions• Iisext.vbs /enapp /listapp /addapp /remapp /enext

/disext /listext• Iiscnfg.vbs - import or export parts of the metabase


Permissions

• IIS and NTFS permissions

• Most restrictive apply

• Read, Write, Execute


Acronyms

• ISAPI, Internet Server Application Programming Interface

• SSL, Secure Sockets Layer• IPP, Internet Printing Protocol• FTP, File Transfer Protocol• IIS, Internet Information Services• NNTP, Network News Transfer Protocol• BITS, Background Intelligent Transfer Service• ASP, Active Server Pages

network implementation and support lesson 13 web resouces

Technology