1 / 27

Module 7

Module 7. Implementing Domain Name System . Module Overview. Name Resolution for Windows Clients and Servers Installing and Managing a DNS Server Managing DNS Zones. Lesson 1: Name Resolution for Windows Clients and Servers.

essien
Télécharger la présentation

Module 7

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Module 7 Implementing Domain Name System

  2. Module Overview • Name Resolution for Windows Clients and Servers Installing and Managing a DNS Server Managing DNS Zones

  3. Lesson 1: Name Resolution for Windows Clients and Servers • What Are Computer Names? What Is DNS? DNS Zones and Records How Internet DNS Names Are Resolved What Is LinkLocal Multicast Name Resolution? How a Client Resolves a Name Troubleshooting Name Resolution

  4. What Are Computer Names?

  5. What Is DNS? DNS can be used to: • Resolve host names to IP addresses • Locate domain controllers and global catalog servers • Resolve IP addresses to host names • Locate mail servers during email delivery

  6. DNS Zones and Records A DNS zone is a specific portion of DNS namespace that contains DNS records • Zone types: • Forward lookup zone • Reverse lookup zone • Resource records in forward lookup zones include: • A,MX,SRV,NS,SOA, and CNAME • Resource records in reverse lookup zones include: • PTR

  7. How Internet DNS Names Are Resolved Microsoft.com DNS server .com DNS server What is the IP address of www.microsoft.com? Root DNS server Local DNS server 207.46.230.219 Workstation

  8. What Is LinkLocal Multicast Name Resolution? LLMNR is an additional method for name resolution that does not use DNS or WINS • LLMNR is designed for IPv6 • Works only on Windows Vista,Windows Server 2008, and all newer Windows operating systems • Network Discovery must be enabled • Can be controlled via Group Policy

  9. How a Client Resolves a Name 1. Local Host Name 8. Lmhosts File 2. DNS Resolver Cache / Hosts file content 7. Broadcast 6. WINS Server 3. DNS Server 5. NetBIOS Name Cache 4. LLMNR

  10. Troubleshooting Name Resolution Common tools for troubleshooting name resolution are: • Consider using the new cmdlets in Windows PowerShell to manage and troubleshoot DNS • Always clear DNS resolver cache before troubleshooting • Use the hosts file for troubleshooting • Isolate problem

  11. Lesson 2: Installing and Managing a DNS Server • What Are the Components of a DNS Solution? What Are Root Hints? What Are DNS Queries? What Is Forwarding? How DNS Server Caching Works How to Install the DNS Server Role Demonstration: Installing the DNS Server Role

  12. What Are the Components of a DNS Solution? DNS Resolvers DNS Servers DNS Servers on the Internet Resource Record Root “.” .com Resource Record .edu

  13. What Are Root Hints? Root hints contain the IP addresses for DNS root servers Root (.) Servers DNS Servers Root Hints com DNS Server Client microsoft

  14. What Are DNS Queries? 172.16.64.11 A recursive query is sent to a DNS server and requires a complete answer An iterative query directed to a DNS server may be answered with a referral to another DNS server • Queries are recursive or iterative mail1.contoso.com • DNS clients and DNS servers initiate queries Iterative query Root hint (.) Local DNS server • DNS servers are authoritative or nonauthoritative for a namespace Ask .com Iterative query • An authoritative DNS server for the namespace will either: • Return the requested IP address • Return an authoritative “No” Database .com Ask contoso.com Recursive query mail1.contoso.com Local DNS server DNS client Iterative query 172.16.64.11 Authoritative response • A nonauthoritative DNS server for the namespace will either: • Check its cache • Use forwarders • Use root hints contoso.com client

  15. What Is Forwarding? Conditional forwarding forwards requests using a domain name condition All other DNS domains A forwarder is a DNS server designated to resolve external or offsite DNS domain names ISP DNS Local DNS Iterative query Root hint (.) Forwarder Ask .com contoso.com Iterative query Query for www.contoso.com .com Ask contoso.com Recursive query 131.107.0.11 Iterative query Authoritative response 131.107.0.11 contoso.com DNS Client computer Recursive query for mail1.contoso.com contoso.com Local DNS server client

  16. How DNS Server Caching Works ServerA is at 131.107.0.44 Where’s ServerA? ServerA Client1 Where’s ServerA? ServerA is at 131.107.0.44 Client2

  17. How to Install the DNS Server Role DNS Server Installation Methods • Server Manager • Active Directory Domain Services Installation Wizard Tools available to manage DNS Server • DNS Manager Snap-In • Server Manager • DNS Manager console (dnsmgmt.msc) • DNSCmd command-line tool • Windows Powershell • Remote Server Administrative tools

  18. Demonstration: Installing the DNS Server Role In this demonstration, you will see how to: • Install a second DNS server • Configure forwarding

  19. Lesson 3: Managing DNS Zones • What Are DNS Zone Types? What Are Dynamic Updates? What Are Active Directory–Integrated Zones? Demonstration: Creating an Active Directory–Integrated Zone

  20. What Are DNS Zone Types?

  21. What Are Dynamic Updates? Client sends SOA query DNS server returns SOA resource record Client sends dynamic update request(s) to identify the primary DNS server DNS server responds that it can perform update Client sends unsecured update to DNS server If zone permits only secure updates, update is refused Client sends secured update to DNS server 1 2 3 4 5 6 7 Resource Records DNS Server

  22. What Are Active Directory–Integrated Zones? Benefits of an Active Directory–integrated zone include: • Allows multimaster writes to zone • Replicates DNS zone information by using AD DS replication • Leverages efficient replication topology • Uses efficient incremental updates for Active Directory replication processes • Enables secure dynamic updates • Security: Can delegate zones, domains, resource records

  23. Demonstration: Creating an Active Directory–Integrated Zone In this demonstration, you will see how to: • Promote a server as a domain controller • Create an Active Directory–integrated zone • Create a record • Verify replication to a second DNS server

  24. Lab: Implementing DNS • Exercise 1: Installing and Configuring DNS Exercise 2: Creating Host Records in DNS Exercise 3: Managing the DNS Server Cache Virtual machines 20410B‑LON‑DC1 20410B‑LON‑SVR1 20410B‑LON‑CL1 User name Adatum\Administrator Password Pa$$w0rd Logon Information Estimated Time: 40 minutes

  25. Lab Scenario A. Datum Corporation has an IT office and data center in London, which supports the London location and other locations. A. Datum has recently deployed a Windows 2012 Server infrastructure with Windows 8 clients. You need to configure the infrastructure service for a new branch office. Your manager has asked you to configure the domain controller in the branch office as a DNS server. You have also been asked to create some new host records to support a new application that is being installed. Finally, you need to configure forwarding on the DNS server in the branch office to support Internet name resolution.

  26. Lab Review • Can you install the DNS server role on a server that is not a domain controller? If yes, are there any limitations? What is the most common way to carry out Internet name resolution on a local DNS? How can you browse the content of the DNS resolver cache on a DNS server?

  27. Module Review and Takeaways • Review Questions Tools Best Practice Common Issues and Troubleshooting Tips

More Related