11.1 © 2004 Pearson Education, Inc. Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 11: Introducing WINS, DNS,

11.1 © 2004 Pearson Education, Inc.

Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment

Lesson 11: Introducing WINS, DNS, and RRAS

Goals Understand Windows Internet Naming Service (WINS)

Understand the Domain Name System (DNS)

Understand DNS name resolution

Install and configure the DNS service

Understand Routing and Remote Access Service (RRAS)

Understand types of remote access connections




Goals (2) Configure remote access services

Create a remote access policy

Create a VPN server

Examine Internet Connection Sharing (ICS)

Examine Network Address Translation (NAT)




A NetBIOS Name Server (NBNS) is an application responsible for mapping NetBIOS names to IP addresses

Microsoft’s implementation of an NBNS is Windows Internet Naming Service (WINS) The computer running WINS is referred to as the WINS server WINS allows clients on a network configured to use WINS

(called WINS clients) to dynamically register their NetBIOS name-to-IP address mappings in a database called the WINS database

(Skill 1)

Understanding Windows Internet Naming Service (WINS)




Microsoft WINS clients use four methods in the following order to resolve NetBIOS names NetBIOS name cache: Stores information about the most

recently resolved NetBIOS names in client memory Windows Internet Naming Service (WINS): This method is the

most likely to be used on a network and the most likely to succeed

Broadcast: The basic method of NetBIOS name resolution, which sends requests simultaneously to all network hosts on the attached subnet

LMHOSTS file: A text file, stored on the local computer, which contains the static mappings of NetBIOS names to IP addresses for computers on remote networks only

Understanding Windows Internet Naming Service (WINS) (2)

(Skill 1)




Figure 11-1 NetBIOS name resolution process using WINS

(Skill 1)




Figure 11-2 Resolving a NetBIOS name using a NetBIOS broadcast

(Skill 1)




Figure 11-3 Resolving a NetBIOS name using the LMHOSTS file

(Skill 1)




The resolution method and the order in which the methods will be used depend on the NetBIOS node type B-node (Broadcast): Uses broadcasts to resolve names P-node (Peer-to-Peer or Point-to Point): The client queries a

WINS server in order to resolve names M-node (Mixed): Broadcasts are used first to attempt to resolve

names; this node type is usually used when the WINS server is located across a WAN link

H-node (Hybrid): The client attempts to query a WINS server first in order to resolve names; this is the default node type if using WINS


(Skill 1)




Figure 11-4 The Node Type key

H-node (Hybrid) is the default node type for Windows 2000, Windows XP Professional, and Windows Server 2003 if WINS is enabled. The Node Type hexadecimal value is 8.

(Skill 1)




Figure 11-5 The NetBIOS name registration process

(Skill 1)




Requirements on a TCP/IP networkWINS can only be installed on a Windows NT Server,

Windows 2000 Server, or Windows Server 2003 computerThe server must be configured with a static IP address, a

subnet mask, a default gateway, and other TCP/IP parameters

After a WINS server has been configured, you must make sure that the clients on the network are configured


(Skill 1)




Figure 11-6 The WINS tab in the Advanced TCP/IP Settings dialog box

(Skill 1)

Click to open the TCP/IP WINS Server dialog box where you will enter the static IP address for a WINS server




Figure 11-7 The Networking Services dialog box

(Skill 1)




Figure 11-8 The WINS console

(Skill 1)

To view the content of the WINS database, right-click Active Registrations and select Display Records. Then, click the Find Now button to view all active registrations in the details pane. You can also create filters to search for records based on a name pattern, IP address, record owner, or record type.




It is a recommended practice to back up the WINS database every time the server shuts down (by selecting Backup database during server shutdown on the General tab)

Burst handling is a method for handling a high or burst period of WINS registration and renewal traffic


(Skill 1)




Figure 11-9 The General tab in the Properties dialog box for the WINS server

(Skill 1)




Figure 11-10 The Intervals tab

(Skill 1)




Figure 11-11 The Database Verification tab

(Skill 1)




Figure 11-12 The Advanced tab

(Skill 1)

Used to force WINS replication when a new version of the WINS database has been created




WINS replication process Process by which WINS servers on a network swap

information with one another It is done through “partnering” with other WINS servers so

that all WINS servers are interconnected and replication occurs between them


(Skill 1)




Figure 11-13 The Advanced tab in the Replication Partners Properties dialog box

(Skill 1)

Select to use IP multicasts to identify the other WINS servers on the network and automatically configure them as Push/Pull replication partners




Figure 11-14 The New Replication Partner dialog box

(Skill 1)




Figure 11-15 The Replication Partners Properties dialog box

(Skill 1)




WINS Push Replication Occurs when the service starts or when an address in the

database changesThe server pushes replication by notifying its partners that

changes have occurredWhen the partners receive the notification, they can pull

the replication data from the WINS server WINS Pull Replication

Is controlled by setting a schedule for the partnersBy default, this is set to occur every 30 minutes


(Skill 1)




Figure 11-16 WINS replication

(Skill 1)




Figure 11-17 The Push Replication tab

(Skill 1)

Figure 11-18 The Pull Replication tab




Figure 11-19 The Intervals tab on the Properties dialog box for a WINS server

(Skill 1)




Domain Name System (DNS) is the main name resolution service for Windows Server 2003

DNS servers, also referred to as DNS name servers, perform the task of name resolution to convert host names to IP addresses

The DNS namespace Has a hierarchical structureThe nodes in this hierarchical structure are called domainsAs you add more domains to the DNS hierarchy, the name

of the parent domain is added to the child domain or sub-domain

Understanding the Domain Name System (DNS)

(Skill 2)




Understanding the Domain Name System (DNS) (2)

DNS hierarchyThe domain at the top is called a root domain and is

represented by a trailing periodThe child domain of the root domain is called a top-level

domainThe child domain of a top-level domain is called a second-

level domainA host name is at the bottom of the DNS hierarchy and

designates a particular computer A fully qualified domain name (FQDN) includes a domain

name in addition to a host name

(Skill 2)




Figure 11-20 The DNS hierarchy

(Skill 2)




Figure 11-21 A FQDN

(Skill 2)




On a small network, a DNS server may contain just one database file that stores all of the name-to-IP-address resolution data

In larger networks, it may be necessary to create zonesZone are distinct, contiguous segments of the DNS

namespaceServers in each zone store records about the resources in

that zone in a file called a zone database fileA zone database file contains various types of resource

records


(Skill 2)




When multiple DNS servers are created in a standard DNS zone, there are two kinds of DNS database files: primary and secondary

Primary database file Modifications can be made only to the primary database file Zone transfers occur to replicate any changes to the primary zone

database file to the secondary zone database file Secondary database file servers

Reduce the traffic and query load on the primary database zone server

Provide redundancy so that if the authoritative server is down, the secondary database file servers can service requests


(Skill 2)




Caching-only name serversUse caching to store information collected during name

resolutionThey are not authoritative for any zoneCache query results to reduce network trafficA query result can be cached for a specific amount of time

called the Time to Live (TTL), after which it is deleted


(Skill 2)




Figure 11-22 The DNS namespace subdivided into zones

(Skill 2)




Client computers can make two standard types of queries to a DNS server: a forward lookup query and a reverse lookup queryA forward lookup query occurs when a client asks the DNS

server to resolve a host name to an IP addressA reverse lookup query

Involves resolving a known IP address to a host nameUses the in-addr.arpa domain, a special second-level domain

created expressly for this task

Understanding DNS Name Resolution

(Skill 3)




Recursive query A type of forward lookup query used to request that a DNS name

server provides the full and complete answer to the query It is a request for the answer, not for a referral to another DNS

server that may be able to answer the query Iterative query

If the designated DNS name server is unable to resolve the destination host name on its own, it sends an iterative query on behalf of the client to assist in answering the recursive query

Iterative queries allow DNS servers to send back pointer or referrals Resolver

A host that performs a recursive search and issues iterative queries Queries other DNS name servers, including root servers, to look up

DNS records on behalf of the client

Understanding DNS Name Resolution (2)

(Skill 3)




Figure 11-23 Forward lookup queries

(Skill 3)




Figure 11-24 in-addr.arpa

(Skill 3)




Figure 11-25 Resolving a host name to an IP address

(Skill 3)




Considerations The size of your network is important because key

implementation issues will vary for small, mid-sized, and large networks

DNS resilience Refers to the hardiness of the DNS infrastructure,

specifically its ability to continue operating when individual components have been damaged

To ensure DNS resiliency, you should have at least one primary and one secondary DNS server for a domain

Installing and Configuring the DNS Service

(Skill 4)




Using DNS on an intranet, the Internet, or both If you plan to use DNS on both, you must decide whether you

want to use a single domain name for both, or different domain names for internal and external resources

If you plan to have an Internet presence, you must register your domain name with an Internet naming authority such as Network Solutions

Registering your domain name is not required if you plan to implement DNS only on an intranet, but it is recommended

Types of DNS zones Root zone is a zone authoritative for the root domain Forward lookup zones are used to resolve host names to IP

addresses Reverse lookup zones are used to resolve IP addresses to host

names

Installing and Configuring the DNS Service (2)

(Skill 4)




Figure 11-26 Same internal and external DNS namespace

(Skill 4)




Figure 11-27 The DNS Cache file opened in Microsoft Word

(Skill 4)




Main types of zones The standard primary zone is the first zone to be created and

it is authoritative for one or more domains Secondary zones

Read-only copies of another zone on the networkCreated after the primary zone to provide redundancy for

the primary name server Stub zones are an enhancement to delegated sub-domains

that were added as a new feature in Windows Server 2003’s DNS Server service

Active Directory-integrated zone uses Active Directory to store and replicate zone database files


(Skill 4)




Locations where DNS zones can be stored in Active DirectoryDomain directory partition

Where data pertaining to a particular Active Directory domain is stored

This includes data about objects such as users and computers

Application directory partitions Implemented to improve replication efficiency in situations

where only a subset of the domain controllers needs a copy of the application data

Use them to store data that will only be replicated to a specific group of domain controllers


(Skill 4)




Figure 11-28 Creating an application directory partition for a forest

(Skill 4)

DNS zone data will be replicated to all domain controller/DNS servers in the Active Directory forest




Figure 11-29 Creating an application directory partition for a domain

(Skill 4)

DNS zone data will be replicated to all domain controller/DNS servers in the Active Directory domain




Figure 11-30 Installing the DNS service

(Skill 4)




Figure 11-31 The dnsmgmt console

(Skill 4)




Figure 11-32 The Select Configuration Action screen

(Skill 4)




Figure 11-33 The Forward Lookup Zone screen

(Skill 4)




Figure 11-34 The Zone Type screen

(Skill 4)




Figure 11-35 The Dynamic Update screen

(Skill 4)




Figure 11-36 The Reverse Lookup Zone screen

(Skill 4)




Reverse lookup zone Can be created in the console tree The first reverse lookup zone is a primary zone If your DNS server is a domain controller and you are creating an

Active Directory-integrated zone, you must configure how you want zone data to be replicated

The default configuration is for zone data to be replicated to all domain controllers in the Active Directory domain (domain directory partition)


(Skill 4)




Resource recordsA zone must contain the resource records for all

resources in the domain for which it is responsibleWhen a zone is created, DNS automatically adds an

SOA (Start of Authority) resource record and a NS (Name Server) resource record


(Skill 4)




Figure 11-37 Adding a resource record

(Skill 4)

11.1 © 2004 Pearson Education, Inc. Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 11: Introducing WINS, DNS,

Documents

wins server wins

wins skill

microsoft windows server

rras microsoft wins

netbios names netbios

wins database skill

dns service

environment lesson