network implementation and support lesson 13 web resouces
DESCRIPTION
Network Implementation and Support Lesson 13 Web ResoucesTRANSCRIPT
Eric Vanderburg © 2006
Network Implementation & Support
Chapter 13
Web Resources
Eric Vanderburg © 2006
IIS (Internet Information Services)
• WWW Sites
• FTP Sites
• Discussion Groups - NNTP (Network News Transfer Protocol)
• Mail services - SMTP (Simple Mail Transfer Protocol)
• Web folders - File share over the web using HTTP. Share appears as a URL.
Eric Vanderburg © 2006
IIS 6.0• automatically detects memory leaks, access violations,
and other errors. The underlying architecture provides fault tolerance and the ability to restart processes as necessary. IIS 6.0 continues to queue requests without interrupting the user experience.
• HTTP Compression• Not enabled by default and all settings not installed by
default• NLB (Network Load Balancing) & QoS• IIS can isolate an individual Web application or multiple
sites into a self-contained process (called an application pool) that communicates directly with the operating system kernel.
Eric Vanderburg © 2006
Metabase
• Metabase.bin -> metabase.xml & MBSchema.xml
• Backup location: %systemroot%\system32\inetsrv\metaback
• Rollback - A history is kept of changes to the metabase (%systemroot%\system32\inetsrv\history)
Eric Vanderburg © 2006
Components
• BITS (Background Intelligent Transfer Service) - resume downloads, efficiently allocate bandwidth
• Common Files - IIS program files• FTP Service• FrontPage 2002 Extensions• IIS Manager snap-in• NNTP Service - distribute, retrieve, and post
usenet messages• SMTP Service• WWW (Intranet, Extranet, or Internet)
Eric Vanderburg © 2006
Folder Structure
• %systemroot%\system32\inetsrv - program files & dlls
• Inetpub - ftproot, wwwroot, nntpfile, mailroot - contains actual web and ftp files
• Windows\help\iishelp - documentation
Eric Vanderburg © 2006
Services
• FTP Publishing - ul/dl
• IIS Admin
• NNTP
• SMTP
• WWW Publishing
Eric Vanderburg © 2006
IIS
• HTTP.sys - kernel mode instead of user mode so it runs faster
• IIS 5.0 Isolation mode
• Worker process - independent processes
• Remote Administration tool - manage IIS and a number of other network services remotely– Not available for 64 bit systems
Eric Vanderburg © 2006
IIS MMC
• FTP Sites - View each site and where it is located on the disk
• Application Pools - Apps for web sites• Web Sites - default has the under
construction page. • We Service Extensions - Add extensions
like Front Page, ASP (Active Server Pages), CGI, Internet Printing
• Default SMTP Virtual Server• Default NNTP Virtual Server (port 119)
Eric Vanderburg © 2006
Master Properties
• Change global settings for all sites
• Inherited by default
• If a site is already configured, you will have the option to override or not.
Eric Vanderburg © 2006
Managing Sites
• Separate IP address for each site
• Single IP address with different ports for each site
• Single IP address with a different domain name for each site (requires DNS support)
• Virtual directories hide directory structure & simplify paths
Eric Vanderburg © 2006
Web Site Properties
• Web Site - IP, Port, Timeout, Logging• Performance - Connections, Throttling• ISAPI (Internet Server Application Programming
Interface) Filters - take action when events occur in IIS.
• Home Directory - Where the web site points• Documents - Index search order, web page
footer• HTTP Headers - content expiration dates to
specify client caching options• Custom Errors - Set own error pages (ex: 404)
Eric Vanderburg © 2006
Web Site Properties
• Directory Security - authentication, IP/DNS ACLs, SSL certificates– Anonymous Access (uses IUSR_servername account or a
different account can be specified)– Basic Authentication - username & password (sent in clear)– Digest Authentication - Hashed username & password using
MD5. Must run HTTP 1.1 & WebDAV– Integrated Windows Authentication - Anonymous access is
disabled. Current username and password is sent for the client automatically
– .NET Passport Authentication - Must register with Microsoft– Order of processing: Anonymous, Integrated, Digest, Basic– FTP cannot use Digest, Integrated, or .NET
Eric Vanderburg © 2006
FTP Site Properties
• FTP Site - Description, Port, IP, Timeout, Logging
• Security Accounts - Use either anonymous access or username and password
• Messages - welcome & exit messages
• Home directory - where the files are stored
• Directory security - IP or computername ACLs.
Eric Vanderburg © 2006
SSL
• Encrypts web content while in transit
• https://, Port 443
• Need a certificate from a trusted source
Eric Vanderburg © 2006
Command Line
• Iisweb.vbs - Create, delete, list web sites and start, stop or pause them.
• Iisweb.vbs /create /start /stop /pause /query /delete• Iisback.vbs - backup, restore• Iisvdir.vbs - create, delete, or query virtual directories• Iisftpdr.vbs - create, delete, or query ftp directories• Iisext.vbs - configures & manages web services
extensions• Iisext.vbs /enapp /listapp /addapp /remapp /enext
/disext /listext• Iiscnfg.vbs - import or export parts of the metabase
Eric Vanderburg © 2006
Permissions
• IIS and NTFS permissions
• Most restrictive apply
• Read, Write, Execute
Eric Vanderburg © 2006
Acronyms
• ISAPI, Internet Server Application Programming Interface
• SSL, Secure Sockets Layer• IPP, Internet Printing Protocol• FTP, File Transfer Protocol• IIS, Internet Information Services• NNTP, Network News Transfer Protocol• BITS, Background Intelligent Transfer Service• ASP, Active Server Pages