01-Fundamentals of Network Infrastructure

8/12/2019 01-Fundamentals of Network Infrastructure

1/51

01-Fundamentals of NetworkInfrastructure


2/51

What Is a LAN?

A LAN:

Is a single physical location

Has fast network connectivity

Server

Switch

Printer

Workstations


3/51

What Is a WAN?

A WAN:

Is used between physical locations

Has slower connection speed than a LAN

Is more expensive than LAN connectivity

Uses connectivity typically provided by anothercompany

Branch Office

Head Office

Server

LAN

LAN

Server

Router

Router


4/51

What Is a Branch Office?

A branch office is remote location that is

connected by WAN links to the head office with:

A generally small number of users

Limited local support resources

Limited local computing resources

Branch Office

Head Office

Server

LANLAN

ServerBranch Office

LAN


5/51


6/51

DHCP

DHCP Client DHCP Client

DHCP ServerDHCP Database

IP Address1

IP Address2

IP Address3

.

.

.

IP AddressN

IP Address2

IP Address1

DHCP Client


7/51

DHCP Scope

Ascopeis a range of IP addresses that are availableto be leased

Scope Properties

Scope name

Exclusion range

Lease duration

Network IPaddress range

Network ID

Subnet mask

LAN A

DHCP Server

Scope A


8/51

WINS Servers

Common scope options are:

DHCP Options

DHCP optionsare values for common configuration datathat applies to the scope

Default Gateway

DNS Servers


9/51

Verifying DHCP client IP address

C:\>ipconfigTo display only the IP address, subnetmask and default gateway for eachadapter bound to TCP/IP

Ethernet adapter Local Area Connection:

IPv4 Address. . . . . . . . . . . : 192.168.1.198

Subnet Mask . . . . . . . . . . : 255.255.255.0Default Gateway . . . . . . . .: 192.168.1.1


10/51


C:\>ipconfig /allTo display detailed information.Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . :Description . . . . . . . . . . . : Realtek PCIe FE Family Controller

Physical Address. . . . . . . . . : 00-26-2D-B8-7C-28

DHCP Enabled. . . . . . . . . . . : Yes

Autoconfiguration Enabled . . . . : Yes

IPv4 Address. . . . . . . . . . . : 192.168.1.198(Preferred)

Subnet Mask . . . . . . . . . . . : 255.255.255.0Lease Obtained. . . . . . . . . . : Monday, February 20, 2012 4:39:48 AM

Lease Expires . . . . . . . . . . : Tuesday, February 21, 2012 7:18:13 AM

Default Gateway . . . . . . . . . : 192.168.1.1

DHCP Server . . . . . . . . . . . : 192.168.1.10

DNS Servers . . . . . . . . . . . : 192.168.1.15

NetBIOS over Tcpip. . . . . . . . : Enabled


11/51


C:\>ipconfig /release

To release the IP address

C:\>ipconfig /renew

To renew the IP address


12/51

DNS

The Domain Name System (DNS) is a service

designed to resolve IP addresses to host names and

host names to IP addresses

The forward lookup zone resolves

host names to IP addresses

The reverse lookup zone resolves

IP addresses to host names


13/51

DNS Client2

DNS Client3

Forward and Reverse Lookup Zones

DNS Client1

Forwardlookupzone

DNS Client1 192.168.2.45

DNS Client2 192.168.2.46

DNS Client3 192.168.2.47

Reverselookupzone

192.168.2.45 DNS Client1

192.168.2.46 DNS Client2

192.168.2.47 DNS Client3

DNS Client2 = ?

192.168.2.46 = ?

DNS Server

d


14/51

DNS Resource Records

In a DNS server, all information is stored in basic

data elements called resource records (RR), which

hold information associated with the domain name.

DNS resource records include:

SOA: Start of Authority

NS: Name Server

A: Host Record

CNAME: Alias Record

MX: Mail Exchange Record


15/51

Adding a New Reverse Lookup Zone


16/51

Adding a New Host (A) Record


17/51



18/51



19/51



20/51

Associated Pointer (PTR) Record


21/51

Adding a New Alias (CNAME) Record


22/51



23/51


Configuring Preferred DNS server on hosts using


24/51

Configuring Preferred DNS server on hosts usingstatic IP address


25/51

Adding DNS option on DHCP server


26/51


ddi i


27/51



28/51

Testing the DNS Server

Verify the DNS using the nslookup tool

Fil S


29/51

File Server

Fil S


30/51

File Server

A file server provides a central location on

your network where you can store files andshare them with users across your network

When NTFSfile system permissions andsharedfolder permissions are combined,the resulting permission is the mostrestrictivepermission

Sh i F ld


31/51

Sharing Folders

Sh i F ld


32/51

Sharing Folders

Sh i F ld


33/51

Sharing Folders

Sharing Folders


34/51

Sharing Folders


35/51

Print Permissions


36/51

Print Permissions

Windows Network Models


37/51

Windows Network Models

On a Microsoft network, computers are

grouped logically into either:

Workgroup (Windows Peer-to-Peer Network)or

Domain(Active Directory Network)

Workgroup


38/51

Workgroup

Workgroups are designed to support

small groups of users.

There is no centralized management ofuser accounts or of resources, and eachmachine requires a separateadministrator.

Windows server 2008/2012 in aworkgroup is referred to as standalone

server

Workgroup


39/51

Workgroup

Workgroup


40/51

WorkgroupThe identity store is the security accounts manager (SAM) database on

each Windows system

No shared identity storeMultiple user accounts

Management of passwords is challenging

Domain


41/51

Domain

Once there are a certain number of machines

on the network, the workgroup model nolonger suits, and the domain model should beutilized to manage the resources.

The key benefits of a domain are:

Centralized logon control

Centralized user and group management

Better control of resources

Single group policy for whole domain

Domain


42/51

Domain

Windows server 2008 /2012 in a domain can be a Domain

controller or a Member server.Domain controller: The server keeps and maintains a copyof the Active Directory database and provides secure accountmanagement for domain member users and computers.

Member server: The server is not operating as a domaincontroller but has joined a domain in which it has amembership account in the Active Directory database.

Domain


43/51

Domain

Domain


44/51

Domain

Centralized identity

store trusted by alldomain members

Centralizedauthentication service

Hosted by a serverperforming the role ofan Active Directory

Domain Services (ADDS)


45/51

Active Directory and DNS High Availability


46/51


Because Active Directory depends on DNS, eachdomain controller must be a DNS server (Microsoft

recommends that you use Active Directory-integratedzones).

It is recommended to have a domain controller in

remote sites to protect against an unavailable WANconnection.

All domain controllers in a domain essentially areequal. Each domain controller holds a copy of the

directory store, and updates can be made to the AD DSdata on all domain controllers.



47/51




48/51


To add an additional server running AD DS and DNS,you need to:

1. Join the new server to the domain

2. Add the role AD DS

3. Select :Add a domain controller to an existing

domainin the Choose a DeploymentConfiguration Windows

4. In the windows of Additional Domain ControllerOptions , check the two boxes : DNS server andGlobal catalog.



49/51




50/51




51/51


01-Fundamentals of Network Infrastructure

Documents

Transcript of 01-Fundamentals of Network Infrastructure