70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 7: Planning a DNS Strategy.

Slides:



Advertisements
Similar presentations
Chapter 8 Managing Windows Server 2008 Network Services
Advertisements

1 Dynamic DNS. 2 Module - Dynamic DNS ♦ Overview The domain names and IP addresses of hosts and the devices may change for many reasons. This module focuses.
MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration Chapter 6 Managing and Administering DNS in Windows Server 2008.
Windows Server 2003 AD 安裝設定與管理維護 林寶森
Web Server Administration
2.1 Installing the DNS Server Role Overview of the Domain Name System Role Overview of the DNS Namespace DNS Improvements for Windows Server 2008 Considerations.
Implementing Domain Name System
Web Server Administration Chapter 4 Name Resolution.
Domain Name System. DNS is a client/server protocol which provides Name to IP Address Resolution.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 9: Implementing and Using Group Policy.
70-294: MCSE Guide to Microsoft Windows Server 2003 Active Directory, Enhanced Chapter 2: Name Resolution and DNS.
Chapter 9: Configuring DNS for Active Directory
Hands-On Microsoft Windows Server 2003 Networking Chapter 6 Domain Name System.
70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 8: Managing and Troubleshooting DNS.
11.1 © 2004 Pearson Education, Inc. Exam Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 11: Introducing WINS, DNS,
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 9: Implementing and Using Group Policy.
Hands-On Microsoft Windows Server 2003 Networking Chapter 7 Windows Internet Naming Service.
Hands-On Microsoft Windows Server 2003 Administration Chapter 9 Administering DNS.
MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration Chapter 5 Introduction to DNS in Windows Server 2008.
Domain Name Server © N. Ganesan, Ph.D.. Reference.
Chapter 10 Configuring DNS
Domain Name Services Oakton Community College CIS 238.
1 Chapter Overview Understanding Windows Name Resolution Using WINS.
Windows Server 2008 Chapter 8 Last Update
Copyright line. Configuring DNS EXAM OBJECTIVES  An Introduction to Domain Name System (DNS)  Configuring a DNS Server  Creating DNS Zones  Configuring.
Hands-On Microsoft Windows Server 2008 Chapter 8 Managing Windows Server 2008 Network Services.
Configuring and Managing the DNS Server Role Lesson 4.
11.1 © 2004 Pearson Education, Inc. Exam Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 11: Introducing WINS, DNS,
Ch 8-3 Working with domains and Active Directory.
DNS and Active Directory Integration
Chapter Overview Understanding DNS Creating Zones
11 REVIEWING MICROSOFT ACTIVE DIRECTORY CONCEPTS Chapter 1.
© Wiley Inc All Rights Reserved. MCSE: Windows Server 2003 Active Directory Planning, Implementation, and Maintenance Study Guide, Second Edition.
Microsoft Windows 2003 Server. Client/Server Environment Many client computers connect to a server.
Name Resolution Domain Name System.
Chapter 16 – DNS. DNS Domain Name Service This service allows client machines to resolve computer names (domain names) to IP addresses DNS works at the.
Implementing DNS Module D 7: Implementing DNS
1 Objectives Discuss the basics of the Domain Name System (DNS) and its terminology Configure DNS clients Install a standard DNS server on Server 2008.
CN2140 Server II Kemtis Kunanuraksapong MSIS with Distinction MCT, MCITP, MCTS, MCDST, MCP, A+
Windows Server 2008 R2 Domain Name System Chapter 5.
Module 2: Implementing DNS to Support Active Directory
70-291: MCSE Guide to Managing a Microsoft Windows Server 2003 Network Chapter 7: Domain Name System.
Module 5: Planning a DNS Strategy. Overview Planning DNS Servers Planning a Namespace Planning Zones Planning Zone Replication and Delegation Integrating.
Chapter 13 Microsoft DNS Server n DNS server: A Microsoft service that resolves computer names to IP addresses, such as resolving the computer name Brown.
70-291: MCSE Guide to Managing a Microsoft Windows Server 2003 Network Chapter 6: Name Resolution.
70-291: MCSE Guide to Managing a Microsoft Windows Server 2003 Network, Enhanced Chapter 6: Name Resolution.
70-294: MCSE Guide to Microsoft Windows Server 2003 Active Directory, Enhanced Chapter 5: Active Directory Logical Design.
October 8, 2015 University of Tulsa - Center for Information Security Microsoft Windows 2000 DNS October 8, 2015.
DNS Zones. DNS records kept in zones DNS server is authoritative for a domain if it hosts the zone for that domain Sub-domains can be kept in same zone.
Objectives Discuss the basics of the Domain Name System (DNS) and its terminology Configure DNS clients Install a standard DNS server on Server 2008 Create.
Configuring Name Resolution and Additional Services Lesson 12.
Windows Server 2003 DNS 安裝設定與管理維護 林寶森
Module 6: Designing Name Resolution. Module Overview Collecting Information for a Name Resolution Design Designing a DNS Server Strategy Designing a DNS.
Windows Server 2003 La migrazione da Windows NT 4.0 a Windows Server 2003 Relatore: MCSE - MCT.
2.1 © 2004 Pearson Education, Inc. Exam Designing a Microsoft ® Windows ® Server 2003 Active Directory and Network Infrastructure Lesson 2: Examining.
DNS DNS overview DNS operation DNS zones. DNS Overview Name to IP address lookup service based on Domain Names Some DNS servers hold name and address.
Linux Operations and Administration
11.1 © 2004 Pearson Education, Inc. Exam Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 11: Introducing WINS, DNS,
Web Server Administration Chapter 4 Name Resolution.
70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 6: Planning, Configuring, And Troubleshooting WINS.
DNS, DHCP and VPN Borislav Varadinov Telerik Software Academy academy.telerik.com System Administrator
System Administration(SAD622S) Name of Presenter: Shadreck Chitauro Lecturer 18 July 2016 Faculty of Computing and Informatics.
11 IMPLEMENTING ACTIVE DIRECTORY Chapter 2. Chapter 2: IMPLEMENTING ACTIVE DIRECTORY2 REQUIREMENTS FOR ACTIVE DIRECTORY  Microsoft Windows Server 2003.
Chapter Overview Understanding Windows Name Resolution Using WINS.
Understand Names Resolution
Module 5: Resolving Host Names by Using Domain Name System (DNS)
70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 6: Planning, Configuring, And Troubleshooting WINS.
IMPLEMENTING NAME RESOLUTION USING DNS
Configuring and Managing the DNS Server Role
Windows Name Resolution
Presentation transcript:

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 7: Planning a DNS Strategy

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network2 Objectives Describe the functions of the Domain Name System Choose a DNS namespace strategy Install DNS Explain the function of DNS zones Integrate Active Directory and DNS, including Dynamic DNS Integrate DNS with WINS

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network3 Functions of the Domain Name System DNS is used to resolve host names to IP addresses and find services DNS is an essential service for a network that uses Active Directory DNS is also required if you want resources such as Web servers available on the Internet The most common operating system DNS is implemented on is UNIX/Linux, and this can be integrated with the Windows version of DNS

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network4 Host Name Resolution Host names are used because they are easier to remember than IP addresses When a program uses a host name, the host name must be converted to an IP address before the resource can be contacted

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network5 Host Name Resolution (continued) The contents of a hosts file are a list of IP addresses and host names The steps followed by Windows Server 2003 to resolve host names are: Host name is checked Hosts file is loaded into cache DNS cache is searched DNS server is queried

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network6 Host Name Resolution (continued)

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network7 Activity 7-1: Configuring a Hosts File The purpose of this activity is to configure and test a hosts file

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network8 Forward Lookup When a DNS server resolves a host name to an IP address it is known as forward lookup Resolving host names within an organization is a two-packet process In recursive lookup a DNS query that is resolved through other DNS servers until the requested information is located

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network9 Forward Lookup (continued)

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network10 Registering a Domain Name To participate in the worldwide DNS lookup system, you must register your domain name with a registrar A top-level domain (TLD) name is the highest level of domain in the DNS system A registrar is an organization that puts domain information into the top-level domain DNS servers so that your domain will be integrated with the worldwide DNS system

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network11 Registering a Domain Name (continued)

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network12 Reverse Lookup When DNS is used to resolve IP addresses to host names, the process is known as reverse lookup A reverse lookup allows you to specify an IP address and the DNS server returns the host name that is defined for it

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network13 DNS Record Types DNS records are created on a DNS server to resolve queries Each type of record holds different information about a service, host name, IP address, or domain Different queries request information contained in specific DNS record types

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network14 DNS and BIND Berkeley Internet Name Domain (BIND) is a version of DNS that runs on UNIX/Linux It is the de facto standard for DNS implementation and many other implementations of DNS reference BIND version numbers for feature compatibility

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network15 DNS Namespace Strategies DNS namespace can be broken into external and internal DNS External DNS is used to hold records for Internet resources, such as company Web servers and servers Internal DNS is used to hold records for internal resources, such as Active Directory and internal Web applications

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network16 DNS Namespace Strategies (continued) To maintain security, the servers holding internal and external DNS records must remain separate The three options for utilizing DNS namespaces in Windows Server 2003 are as follows: Use the existing external namespace Use a delegated subdomain of the external namespace Use a separate unique namespace

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network17 Using the Existing External Namespace Using the existing external namespace has some disadvantages: It is awkward to synchronize DNS records between the internal and external DNS servers because no automated mechanism can be used (not recommended) The automated synchronization mechanisms synchronize all DNS records between two DNS servers, not just the appropriate records; this results in internal DNS records being available on the external DNS servers (security risk)

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network18 Using the Existing External Namespace (continued) The records for external resources must be manually added to the internal DNS servers If not, users cannot resolve the names of external resources properly

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network19 Using a Delegated Subdomain of the External Namespace A delegated subdomain: Has been configured as its own zone so that it can be placed on DNS servers independently of the parent domain Allows you to keep separate DNS servers for internal and external resources with no need to synchronize records

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network20 Using a Separate Unique Namespace Do not use a domain name for your internal namespace if it has already been registered for use on the Internet You should register the internal namespace you choose, if possible You can also choose a domain name that is not even possible to use on the Internet

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network21 Installing DNS Windows Server 2003 can act as a DNS server Can install DNS on multiple servers and you must add DNS individually to each of these servers To reduce WAN traffic in large organizations, DNS servers can be placed in each physical location To decide the best placement of DNS servers during the planning process, estimate the amount of traffic that will be generated by DNS

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network22 Activity 7-2: Installing DNS The purpose of this activity is to install DNS on your server and confirm it is running

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network23 DNS Zones A DNS zone is the part of the DNS namespace for which a DNS server is responsible Once inside the zone, you can create DNS records and subdomains When a zone is created, you designate whether it will hold records for forward lookups or reverse lookups Forward lookup zone: holds records for forward lookups Reverse lookup zone: holds records for reverse lookups

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network24 Primary and Secondary Zones Primary and secondary zones are used to synchronize DNS information automatically between DNS servers A primary zone is the first to be created, and all of the DNS records are created in the primary zone A secondary zone takes copies of primary zone information You cannot directly edit the records in a secondary zone because they are copied from the primary zone The process of moving information from the primary zone to the secondary zone is called a zone transfer

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network25 Activity 7-3: Creating a Primary Zone The purpose of this activity is to create a primary zone to hold resource records

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network26 Activity 7-4: Creating a Secondary Zone The purpose of this activity is to create a local copy of DNS information using a secondary zone

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network27 Active Directory Integrated Zones An Active Directory integrated zone stores information in Active Directory rather than in a file on the local hard drive To store DNS information in an Active Directory integrated zone, the DNS server must also be a domain controller

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network28 Active Directory Integrated Zones (continued) Storing DNS information in Active Directory offers the following advantages over traditional primary and secondary zones: Automatic backup of zone information Multimaster replication Increased security

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network29 DNS Zone Storage in Active Directory Two areas in Active Directory can be used to store DNS zones: Domain directory partition Application directory partition The domain directory partition of Active Directory holds information specific to a particular Active Directory domain This partition is replicated to all domain controllers in an Active Directory domain The information in this partition cannot be replicated to domain controllers in other Active Directory domains

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network30 DNS Zone Storage in Active Directory (continued) Application directory partitions allow information to be stored in Active Directory but be replicated only among a defined set of domain controllers

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network31 Activity 7-5: Promoting a Member Server to a Domain Controller The purpose of this activity is to promote a member server to a domain controller

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network32 Activity 7-6: Creating an Active Directory Integrated Zone The purpose of this activity is to create an Active Directory integrated zone

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network33 Integrating Active Directory Integrated Zones with Traditional DNS Active Directory integrated zones interact with traditional zones by acting as a primary zone to traditional secondary zones

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network34 Stub Zones A stub zone is a DNS zone that holds only NS records for a domain NS records define the name servers that are responsible for a domain

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network35 Stub Zones (continued)

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network36 Activity 7-7: Removing Active Directory Integrated Zones The purpose of this activity is to remove an Active Directory integrated zone

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network37 Activity 7-8: Creating a Stub Zone The purpose of this activity is to create a stub zone to direct recursive queries

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network38 Active Directory and DNS Active Directory requires DNS to function properly The most important function that DNS performs for Active Directory is locating services, such as domain controllers

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network39 Dynamic DNS Dynamic DNS is a system in which records can be updated on a DNS server automatically rather than forcing an administrator to create records manually

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network40 Activity 7-9: Testing Dynamic DNS The purpose of this activity is to verify that a computer is registering a host name using Dynamic DNS

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network41 Dynamic DNS and DHCP The Dynamic DNS information updated by Windows 2000/XP is negotiated with the DHCP server during the lease process By default, a DHCP server running on Windows Server 2003 updates DNS records only for Windows 2000/XP clients and only if requested to do so

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network42 WINS Integration To integrate with WINS, a DNS zone can be configured with a WINS server to help resolve names If a DNS zone receives a query for a host name for which it has no A record, it forwards the request to a WINS server This results in slower response times and increased processor utilization

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network43 WINS Integration (continued) If DNS and WINS are running on separate servers, it also results in increased network traffic and even slower response times Integrating a WINS server with a DNS forward lookup zone creates a WINS record in the zone You can specify that records resolved via WINS are not replicated to other DNS servers by selecting the Do not replicate this record check box

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network44 WINS Integration (continued) Can configure timeout intervals with the Advanced button on the WINS tab in the properties of a zone The Cache time-out controls how long DNS servers and DNS clients cache this record after it is resolved The Lookup time-out controls how long the DNS server waits for a response from WINS before sending an error to the requesting client

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network45 Summary DNS is used to resolve host names to IP addresses and find services Host name resolution is performed in four steps Forward lookup resolves host names to IP addresses Reverse lookup resolves an IP address to a host name Recursive lookup is performed when a local DNS server queries the root servers on the Internet on behalf of a DNS client

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network46 Summary (continued) DNS records are created on a DNS server to resolve queries Each type of DNS record holds different information about a service, host name, IP address, or domain A DNS zone holds records for a portion of the DNS namespace Active Directory integrated zones are stored in Active Directory Active Directory integrated zones can act as primary zones to secondary zones

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network47 Summary (continued) A stub zone contains name server records that are used for recursive lookups Dynamic DNS allows records to be automatically updated on a DNS server A WINS server can be used to help resolve host names if a DNS server does not have a record that matches a query

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com. Inc. All rights reserved.