Windows 2008 Server. Domain Name System Administración SSII

Similar documents
Module 2. Configuring and Troubleshooting DNS. Contents:

Module 11. Configuring Domain Name System. Contents: Lesson 1: Install and Configure DNS in an AD DS Domain Lab A: Install the DNS Service 11-11

Course 2277: Implementing, Managing, and Maintaining a Microsoft Windows Server 2003 Network Infrastructure: Network Services

How to Configure the Windows DNS Server

Module 6: Managing and Monitoring Domain Name System

DNS: How it works. DNS: How it works (more or less ) DNS: How it Works. Technical Seminars Spring Paul Semple psemple@rm.

5 Configuring a DNS Infrastructure

6421B: How to Install and Configure DirectAccess

Copyright

Copyright International Business Machines Corporation All rights reserved. US Government Users Restricted Rights Use, duplication or disclosure

Installing and Setting up Microsoft DNS Server

DNS. The Root Name Servers. DNS Hierarchy. Computer System Security and Management SMD139. Root name server. .se name server. .

Understand Names Resolution

Module 4: Resolving Host Names by Using Domain Name System

CHAPTER ANSWERS IMPLEMENTING, MANAGING, AND MAINTAINING A MICROSOFT WINDOWS SERVER 2003 NETWORK INFRASTRUCTURE

Lesson Plans Managing a Windows 2003 Network Infrastructure

How to Add Domains and DNS Records

DNS. Computer networks - Administration 1DV202. fredag 30 mars 12

Domain Name System. Heng Sovannarith

Managing Name Resolution

Domain Name Service (DNS) Training Division, NIC New Delhi

How To Guide Edge Network Appliance How To Guide:

Chapter 7 Implementing Domain Name System (DNS)

Domain Name Server. Training Division National Informatics Centre New Delhi

Networking Domain Name System

Networking Domain Name System

HTG XROADS NETWORKS. Network Appliance How To Guide: DNS Delegation. How To Guide

- Domain Name System -

ECE 4321 Computer Networks. Network Programming

HTG XROADS NETWORKS. Network Appliance How To Guide: EdgeDNS. How To Guide

Customizing Remote Desktop Web Access by Using Windows SharePoint Services Stepby-Step

Lesson 13: DNS Security. Javier Osuna GMV Head of Security and Process Consulting Division

Domain Name System :49:44 UTC Citrix Systems, Inc. All rights reserved. Terms of Use Trademarks Privacy Statement

Networking Domain Name System

what s in a name? taking a deeper look at the domain name system mike boylan penn state mac admins conference

Copyright

How to Install the Active Directory Domain Services (AD DS) Role in Windows Server 2008 R2 and Promote a Server to a Domain Controller

Understanding DNS (the Domain Name System)

Implementing, Managing, and Maintaining a Microsoft Windows Server 2003 Network Infrastructure: Network Services (5 days)

Introduction to DNS CHAPTER 5. In This Chapter

Domain Name System (DNS)

Part 5 DNS Security. SAST01 An Introduction to Information Security Martin Hell Department of Electrical and Information Technology

DNS. Computer Networks. Seminar 12

Implementing, Managing, and Maintaining a Microsoft Windows Server 2003 Network Infrastructure

Appendix D: Configuring Firewalls and Network Address Translation

Motivation. Domain Name System (DNS) Flat Namespace. Hierarchical Namespace

How To Complete A Lab On Windows 7 From A Dvd

In the Active Directory Domain Services Window, click Active Directory Domain Services.

DNS and Interface User Guide

Presto User s Manual. Collobos Software Version Collobos Software, Inc

Lecture 2 CS An example of a middleware service: DNS Domain Name System

Applies To: Windows Server 2003, Windows Server 2003 R2, Windows Server 2003 with SP1, Windows Server 2003 with SP2

Migrating Active Directory to Windows Server 2012 R2

Implementing Domain Name Service (DNS)

How do I install Active Directory on my Windows Server 2003 server?

Deploying Remote Desktop IP Virtualization Step-by-Step Guide

How to. Install Active Directory. Server 2003

NetIQ Advanced Authentication Framework - MacOS Client

Talk-101 User Guide. DNSGate

TIGERPAW EXCHANGE INTEGRATOR SETUP GUIDE V3.6.0 August 26, 2015

Using Webmin and Bind9 to Setup DNS Sever on Linux

Introduction to Network Operating Systems

Installing Active Directory

Deploying Personal Virtual Desktops by Using RemoteApp and Desktop Connection Step-by-Step Guide

Presented by Greg Lindsay Technical Writer Windows Server Information Experience. Presented at: Seattle Windows Networking User Group April 7, 2010

User Manual. Onsight Management Suite Version 5.1. Another Innovation by Librestream

Active Directory integration with CloudByte ElastiStor

Configuring DNS. Finding Feature Information

LAB 1: Installing Active Directory Federation Services

Using LifeSize systems with Microsoft Office Communications Server Server Setup

How to Configure DNS Zones

LogLogic Microsoft Domain Name System (DNS) Log Configuration Guide

KB Windows 2000 DNS Event Messages 1 Through 1614

Section 1 Overview Section 2 Home... 5

Other documents in this series are available at: servernotes.wazmac.com

Step-by-Step Guide for Setting Up IPv6 in a Test Lab

Wireshark DNS. Introduction. nslookup

1. Set Daylight Savings Time Create Migrator Account Assign Migrator Account to Administrator group... 4

Dell Compellent Storage Center

Installing and Configuring vcloud Connector

CNW Re-Tooling Exercises

Introduction to DirectAccess in Windows Server 2012

Application Note 116: Gauntlet System High Availability Using Replication

Using Microsoft Active Directory (AD) with HA3969U in Windows Server

Lab Answer Key for Module 9: Active Directory Domain Services. Table of Contents Lab 1: Exploring Active Directory Domain Services 1

Releasing blocked in Data Security

Step By Step Guide: Demonstrate DirectAccess in a Test Lab

EXAM TS: Windows Server 2008 Network Infrastructure, Configuring. Buy Full Product.

Computer Networks: Domain Name System

Application Protocols in the TCP/IP Reference Model

How to set up the Integrated DNS Server for Inbound Load Balancing

Internet-Praktikum I Lab 3: DNS

How to install Small Business Server 2003 in an existing Active

Application Protocols in the TCP/IP Reference Model. Application Protocols in the TCP/IP Reference Model. DNS - Concept. DNS - Domain Name System

Presto User s Manual. Collobos Software Version Collobos Software, Inc!

The Domain Name System

Deploying Remote Desktop Web Access with Remote Desktop Connection Broker Step-by- Step Guide

Transcription:

Windows 2008 Server Domain Name System Administración SSII

Contenidos Introducción Configuración DNS Transferencia de zona Herramientas DNS

Introducción Domain Name System is a hierarchical distributed database DNS is the foundation of the Internet naming scheme DNS supports accessing resources by using alphanumeric names DNS was created to support the Internet s growing number of hosts

Introducción Root Domain Top-Level Domain net com org Second-Level Domain contoso Subdomain west south east FQDN: SERVER1.sales.south.contoso.com sales Host: SERVER1

Introducción Internet. DNS root domain microsoft.com domain.com microsoft.com zone microsoft.com www.microsoft.com ftp.microsoft.com example.microsoft.com Zone database example.microsoft.com zone Zone database example.microsoft.com www.example.microsoft.com ftp.example.microsoft.com

Introducción Zones Primary Secondary Stub Active Directory integrated Description Read/write copy of a DNS database Read-only copy of a DNS database Copy of a zone that contains only records used to locate name servers Zone data is stored in Active Directory rather than in zone files

Configuración DNS You require the 6421B-NYC-DC1, 6421B-NYC-SVR1, and 6421B-NYC-CL1 virtual machines to complete this demonstration. Log on to the virtual machines as Contoso\Administrator with the password of Pa$$w0rd. 1. Switch to NYC-SVR1, and on the Taskbar, click Server Manager. 2. In Server Manager, in the navigation pane, click Roles, and in the right pane, click Add Roles. 3. In the Add Roles Wizard, on the Before You Begin page, click Next. 4. On the Select Server Roles page, in the Roles list, select the DNS Server check box and then click Next. 5. On the DNS Server page, click Next. 6. On the Confirm Installation Selections page, click Install. 7. Once the role is installed, click Close.

Configuración DNS DNS Server Subnet 2 DNS Zone DNS Client Subnet 1 DNS Client DNS Server Subnet 3 DNS Client DNS Zone

Configuración DNS Componentes Almacenamiento Dominio raiz (Root Hints) Consulta DNS (DNS Query) Forwarder Caché Forward and Reverse Lookup Zones

Configuración DNS: Componentes Resource Record Root..com.edu Resource Record DNS Resolvers DNS Servers DNS Servers on the Internet

Configuración DNS: Almacenamiento DNS resource records include: SOA: Start of Authority A: Host Record CNAME: Alias Record MX: Mail Exchange Record SRV: Service Resources NS: Name Servers AAAA: IPv6 DNS Record PTR: Pointer Record

Configuración DNS: Almacenamiento Example SOA: admon.com A: pc0101.valencia.admon.com CNAME: pc0101.valencia.admon.com MX: admon.com. IN MX 0 pc0100.admon.com SRV: http.tcp.admon.com. IN SRV 0 0 80 www1.admon.com NS: admon.com, valencia.admon.com AAAA: - PTR: 1.178.42.158.in-addr.arpa

Configuración DNS: Root Hints Root hints contain the IP addresses for DNS root servers DNS Servers Root Hints Root (.) Servers DNS Server com Client microsoft

Configuración DNS: DNS Queries An iterative query directed to a DNS server may be A query answered is a request with for a name referral resolution to another and DNS is directed server to a DNS server Iterative Query Local DNS Server Root Hint (.) Queries are recursive or iterative Ask.com A recursive query is sent to a DNS server and requires a complete DNS clients answer and DNS servers initiate queries.com DNS servers are authoritative or nonauthoritative for a namespace mail1.contoso.com An authoritative DNS server for the namespace will either: Return the requested IP address Contoso.com Return an authoritative No Database A nonauthoritative DNS server for the namespace will either: 172.16.64.11 Check its cache Client DNS Use Client forwarders Local DNS Server Use root hints

Configuración DNS: Forwarder A Conditional forwarder forwarding is a DNS forwards server designated requests using to resolve a domain external name condition or offsite DNS domain names Forwarder Local DNS All other Iterative DNS Query domains Ask.com Root Hint (.) ISP DNS.com Local DNS Server Client Computer Client Contoso.com DNS contoso.com

Configuración DNS: Caché DNS server cache Host name IP address TTL ServerA.contoso.com 131.107.0.44 28 seconds ServerA Where s is at 131.107.0.44 ServerA? ServerA Client1 Client2 ServerA Where s is at 131.107.0.44 ServerA?

Configuración DNS: Forward and Reverse Lookup Zones Namespace: training.contoso.com DNS Server Authorized for training Forward zone Training DNS Client1 192.168.2.45 DNS Client2 192.168.2.46 DNS Client3 192.168.2.47 Reverse zone 2.168.192.inaddr.arpa 192.168.2.45 DNS Client1 192.168.2.46 DNS Client2 192.168.2.47 DNS Client3 DNS Client2 =? 192.168.2.46 =? DNS Client3 DNS Client1 DNS Client2

Configuración DNS Configure DNS server properties 1. Switch to NYC-DC1. 2. Click Start, point to Administrative Tools, and then click DNS. 3. In DNS Manager, expand NYC-DC1, select and then right-click NYC-DC1, and then click Properties. 4. In the NYC-DC1 Properties dialog box, click the Forwarders tab. 5. On the Forwarders tab, click Edit. You can configure forwarding here. Click Cancel. 6. Click the Advanced tab. You can configure options including securing the cache against pollution. 7. Click the Root Hints tab. You can see the configuration for the root hints servers here. 8. Click the Debug Logging tab and select the Log packets for debugging check box. You can configure debug logging options here. 9. Clear the Log packets for debugging check box and then click the Event Logging tab. 10.Click Errors and Warnings and then click the Trust Anchors tab. You can configure DNSSEC here. 11.Click the Monitoring tab. You can perform simple and recursive tests against the server using the Monitoring tab. Select the A simple query against this DNS server check box and then click Test Now. 12.Click the Security tab. You can define permissions on the DNS infrastructure here. Click OK.

Configuración DNS Configure conditional forwarding 1. In the navigation pane, expand Conditional Forwarders. 2. Right-click Conditional Forwarders and then click New Conditional Forwarder. 3. In the New Conditional Forwarder dialog box, in the DNS Domain box, type nwtraders.msft. 4. Click in the <Click here to add an IP Address or DNS Name> box. Type 131.107.1.2 and press ENTER. Validation will fail. 5. Click OK. Clear the DNS cache In the navigation pane, right-click NYC-DC1 and the click Clear Cache.

Configuración DNS Create a reverse lookup zone 1. On NYC-DC1, in DNS Manager, in the navigation pane, click Reverse Lookup Zones. 2. Right-click Reverse Lookup Zones and click New Zone. 3. In the New Zone Wizard, click Next. 4. On the Zone Type page, click Primary zone and then click Next. 5. On the Active Directory Zone Replication Scope page, click Next. 6. On the Reverse Lookup Zone Name page, click IPv4 Reverse Lookup Zone and click Next. 7. On the second Reverse Lookup Zone Name page, in the Network ID: box, type 10.10.0 and click Next. 8. On the Dynamic Update page, click Next. 9. On the Completing the New Zone Wizard page, click Finish.

Configuración DNS Create a forward lookup zone 1. Switch to NYC-SVR1. 2. Click Start, point to Administrative Tools, and then click DNS. 3. In DNS Manager, in the navigation pane, expand NYC-SVR1, and then click Forward Lookup Zones. 4. Right-click Forward Lookup Zones and click New Zone. 5. In the New Zone Wizard, click Next. 6. On the Zone Type page, click Secondary zone and then click Next. 7. On the Zone Name page, in the Zone name: box, type Contoso.com and then click Next. 8. On the Master DNS Servers page, in the Master Servers list, type 10.10.0.10 and press ENTER. 9. Click Next, and on the Completing the New Zone Wizard page, click Finish.

Transferencia de zona A DNS zone transfer is the synchronization of authoritative DNS zone data between DNS servers Secondary server 1 2 3 4 SOA query for a zone SOA query answered IXFR or AXFR query for a zone IXFR or AXFR query answered (zone transferred) Primary and Master server

Transferencia de zona Restrict zone transfer to specified servers Encrypt zone transfer traffic Consider using Active Directory-integrated zones Primary Zone Secondary Zone

Transferencia de zona Enable DNS zone transfers 1. Switch to NYC-DC1. 2. In DNS Manager, in the navigation pane, expand Forward Lookup Zones. 3. Right-click Contoso.com and then click Properties. 4. In the Contoso.com Properties dialog box, click the Zone Transfers tab. 5. Select the Allow zone transfers check box and then click Only to servers listed on the Name Servers tab. 6. Click Notify, and in the Notify dialog box, click Servers listed on the Name Servers tab. Click OK. 7. Click the Name Servers tab and click Add. 8. In the New Name Server Record dialog box, in the Server fully qualified domain name (FQDN) box, type NYC-SVR1.Contoso.com and click Resolve. Click OK. 9. In the Contoso.com Properties dialog box, click OK.

Transferencia de zona Update the secondary zone from the master server 1. Switch to NYC-SVR1. 2. In DNS Manager, in the navigation pane, expand Forward Lookup Zones. 3. Press F5 to refresh the display, right-click Contoso.com and then click Transfer from Master. Note: You might need to repeat step 3 a number of times before the zone transfers. Also note that the transfer might occur automatically before you manually perform these steps.

Transferencia de zona Update the primary zone and verify the change on the secondary zone 1. Switch to NYC-DC1. 2. In DNS Manager, in right-click Contoso.com and then click New Alias (CNAME). 3. In the New Resource Record dialog box, in the Alias name (uses parent domain if left blank) box, type intranet. 4. In the Fully qualified domain name (FQDN) for target host box, type nyc-dc1.contoso.com and click OK. 5. Switch to NYC-SVR1. 6. In DNS Manager, right-click Contoso.com and then click Transfer from Master. Note: the record may take some time to appear. You might need to press F5 to refresh the display.

Herramientas DNS Tool Nslookup Dnscmd Dnslint Ipconfig Used to: Troubleshoot DNS problems Edit the DNS configuration Diagnose common DNS issues Display and clear DNS resolver cache Monitoring tab Perform queries against server

Herramientas DNS Capture DNS network traffic 1. Switch to NYC-CL1. 2. From the Desktop, double-click Microsoft Network Monitor 3.4. 3. In the Microsoft Update Opt-In dialog box, click No. 4. In Microsoft Network Monitor 3.4, in the Recent Captures pane, click the New capture tab. 5. On the Capture 1 tab, on the menu bar, click Start. 6. Click Start, and in the Search box, type cmd.exe and then press ENTER. 7. At the command prompt, type ipconfig /flushdns and then press ENTER. 8. At the command prompt, type ping intranet and then press ENTER. 9. At the command prompt, type ipconfig /displaydns and then press ENTER. 10.In Microsoft Network Monitor 3.4, on the menu, click Stop. Filter and analyze captured traffic 1. In the Frame Summary window, examine the captured frames that relate to DNS. 2. Click Load Filter, point to Standard Filters, point to DNS, and then click DnsAllNameQuery. 3. Click Apply. 4. Now examine the captured frames. 5. Double-click each frame and expand and discuss the contents.

Herramientas DNS Use Nslookup to test DNS At the command prompt, type: nslookup d2 nyc-svr1.contoso.com. > file.txt. At the command prompt, type notepad file.txt and press ENTER.

Windows 2008 Server Domain Name System Administración SSII

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information