CONFIGURE NETWORK SERVICES

MBSRA, Inc. INTRODUCTION

Bagong Silang I, Labo, Camarines Norte
In this module you will explore on the Domain Name System ( DNS), a method of creating
hierarchical names that can be resolved to IP addresses. This will explain how the DNS namespace is
created and resolved to an IP address throughout the Internet or within a single organization. This will
also discuss two additional services: Windows Internet Naming Service (WINS) and Dynamic Host
Configuration Protocol (DHCP), two common services used on Transmission Control Protocol/Internet
COMPUTER SYSTEMS SERVICING NC II Protocol (TCP/IP) networks. Each of these services plays an important role in your environment,
ultimately assisting IT professionals in their quest to automate much of the mundane tasks that would

CSS 10 otherwise need to be managed manually.

Q4: MODULE 4 At the end of this module, you should be able to:
* Check normal server function in accordance with manufacturer’s instructions
- Install and update required modules/add-ons on NOS installation procedures
- Confirm network services based on user/system requirements
LEARNING COMPERTENCIES: - Check operation of network services based on user/system requirements
- Respond to unplanned events or conditions in accordance with established procedures
LO 2: Configure network services
(TLE_IACSS9-12SUCS-IIIf-j-IVa-j-38) LESSON PROPER

Confi guring Domain Name System (DNS)

DNS enables finding the locations of computers and services through user-friendly names and
also enables the discovery of other types of records used for additional resources (which we will discuss
later) in the DNS database.
The record type will determine what information is provided to a DNS client requesting data.
For instance, if the DNS server is configured to use an “A” record (a naming resource record), it
GENERAL INSTRUCTIONS converts an IP address to a hostname. As an example, consider using 192.168.1.2 as the IP address,
and www.microsoft.comas the hostname. This would be a good example of how DNS resolution works.
1. Strictly follow your schedule to avoid lags in your activities. Thus far, we’ve been focusing on how an individual DNS server is configured. As large as it is,
2. Read carefully the instructions and guidelines. the general structure behind it is relatively simple. DNS is based on a “tree” format—and an upside-
3. Study in a room where you can concentrate. down tree, at that. At the top of the tree is the root— the root is the beginning of all DNS naming
conventions and has total authority over all naming conventions beneath it. DNS Root is essentially a
4. Writeimportant lesson/s in your notebook. period—yes, a period. Technically speaking, if you decide to shop online at Elsevier’s Web site, you are
5. Read intently and answer legibly. shopping at “ www.elsevier.com .” If that doesn’t make sense, let’s break it down. Basically, domains
6. If you have question/s, you may ask your teacher but only during the (and domain server names) are really read from right-to-left in the computer world. The “.” is assumed in
scheduled time for this subject. any DNS resolution, but is still the highest level.
7. ENJOY STUDYING.
Configuring Network Services
Com would be the second-highest level, followed by another period for separation, and then
ALEX C. VELACRUZ Elsevier. So, in regards to DNS hierarchy, the top level domain would be “.”, followed by the second-
TEACHER highest level domain, which would be com, followed by the third-highest level domain, Elsevier. WWW
has become commonplace for World Wide Web services, but it could just as easily be
supercalafragalisticexpialidotious.elsevier.com—though I doubt it would get as many hits. If you are still
09974638923 confused by how DNS naming structures work, take a look at figure below, which shows a sample of
zir Zir Alex Velacruz how a DNS tree looks.
1
Sample DNS Tree Installing and Configuring DNS
DNS can be installed and configured on any version of Windows Server 2008—Web Edition,
Standard Edition, Enterprise Edition, or Datacenter Edition. It is a network service that can be integrated
with Active Directory (for security and replication purposes), or as a stand-alone service. A Windows
Server 2008 DNS can manage not only internal namespaces, but external (Internet-facing) namespaces
as well.
In the following examples, we will be installing DNS on a Windows Server 2008 Standard
Server.
1 . Choose Start | Administrative Tools | Server Manager.
2 . Scroll down to Role Summary and click Add Roles.
3 . When the Before You Begin page opens, click Next.
4 . On the Select Server Roles page, select DNS Server (see Figure below ), and then click
Next.
The summit of the DNS namespace hierarchy is the root, which has several servers managed
by the Internet Name Registration Authority (INRA). Immediately below the root are the COM, NET,
Selecting the DNS Server Role
EDU, and other top-level domains listed in the next Table . Each of these domains is further divided into
namespaces that are managed by the organizations that register them. For example, syngress.com is
managed by a different organization than umich.edu. F

Domain Suffixes Used in the Internet

Active Directory DNS design and implementation does differ somewhat from the standard DNS
design and implementation, you can often find the two types of tasks split between two different groups
in the same organization. Those are the basics on how Domain Name Services function on a much
grander scale. In the coming sections of this chapter, we will discuss how to use DNS within a Windows
Server 2008 environment. First, though, let’s discuss how to install and perform the initial confi guration 5 . At the DNS Server window, read the overview, and then click Next.
of a DNS on Windows Server 2008. 6 . Confirm your selections, and then click Install.
7 . When installation is complete, click Close.
Identifying DNS Record Requirements
Next, we will configure some basic server settings:
A Resource Record (RR) is to DNS what a table is to a database. A Resource Record is part 1 . Choose Start | Administrative Tools | DNS.
of DNS’s database structure that contains the name information for a particular host or zone.
2
 2 . Find your server name in the left pane and double-click it. This will open the DNS confi  Primary Zone With a primary zone, the server hosting this zone is authoritative for the
guration for this server 3 domain name. It stores the master copy of the domain information locally. When the zone
is created, a fi le with the suffi x 4 .dns is created in the %windir%\System32\dns
The Opening DNS Configuration Data subdirectory of the DNS server.
 Secondary Zone This is a secondary source—essentially a copy—of the primary DNS
zone, with read-only capabilities.
 Stub Zone Only stores information about the authoritative name servers for a particular
zone.

Primary and secondary zones are standard (that is, non-Active Directory– integrated) forward
lookup zones. The principal difference between the two is the ability to add records. A standard primary
zone is hosted on the master servers in a zone replication scheme. Primary zones are the only zones
that can be edited, whereas secondary zones are read-only and are updated only through zone
transfer. DNS master servers replicate a copy of their zones to one or more servers that host secondary
zones, thereby providing fault tolerance for your DNS servers. DNS standard zones are the types of
zones you should use if you do not plan on integrating Active Directory with your DNS servers.
An Active Directory–integrated zone is basically an enhanced primary DNS zone stored in
3 . Look at the DNS properties of this server. Right-click the server name and select Properties Active Directory and thus can, unlike all other zone types, use multimaster replication and Active
from the drop-down menu. Directory security features. It is an authoritative primary zone in which all of the zone data is stored in
4 . The first tab that opens is the Interfaces tab. This tab can be adjusted if you have additional Active Directory. As mentioned previously, zone files are not used nor necessary. Integrating DNS with
NICs in your server. This is particularly useful if you only want DNS queries to be answered by Active Directory produces the following additional benefi ts:
systems on a particular subnet. In general, you will likely leave it at the default of All IP  Speed Directory replication is much faster when DNS and Active Directory are integrated.
Addresses. This is because Active Directory replication is performed on a per-property basis, meaning
5 . Click the Root Hints tab. Notice there are multiple name servers with different IP addresses that only changes that apply to particular zones are replicated. Because only the relevant
( Figure 1.5 ). With root hints, any queries that cannot be answered locally are forwarded to information is to be replicated, the time required to transfer data between zones is greatly
one of these root servers. Optionally, we can clear our root hints by selecting them and clicking reduced. On top of this, a separate DNS replication topology is eliminated because Active
Remove. Remove all of the servers, and click Forwarders. Directory replication topology is used for both ADI zones and AD itself.
 Reduced Administrative Overhead Any time you can reduce the number of management
If you are planning to run DNS within a Server Core install, several steps must be consoles you have to work with, you can reduce the amount of time needed to manage
performed prior to installation. The first step is to set the IP information of the server. To information. Without the advantage of consolidating the management of DNS and Active
configure the IP addressing information of the server, do the following: Directory in the same console, you would have to manage your Active Directory domains
and
1 . Identify the network adapter. To do this, in the console window, type netsh interface ipv4 DNS namespaces separately. Moreover, your DNS domain structure mirrors your Active
show interfaces and record the number shown under the Idx column. Directory domains. Any deviation between Active Directory and DNS makes management
more time-consuming and creates more opportunity for mistakes. As your network
2 . Set the IP address, Subnet Mask, and Default Gateway for the server. To do so, type netsh continues to grow and become more complex, managing two separate entities becomes
interface ipv4 set address name=”” source=static address= mask= gateway=. ID represents more involved. Integrating Active Directory and DNS provides you with the ability to view
the interface number from step 1, represents the IP address we will assign, represents the and manage them as a single entity.
subnet mask, and represents the IP address of the server’s default gateway. See Figure 1.7for  Automatic Synchronization When a new domain controller is brought online, networks that
our sample confi guration. have integrated DNS and Active Directory have the advantage of automatic
synchronization. Even if a domain controller will not be used to host the DNS service, the
ADI zones will still be replicated, synchronized, and stored on the new domain controllers.
Configuring Zones
 Secure Dynamic DNS Additional features have been added that enhance the security of
secure dynamic updates. These features will be discussed in the “DNS Security
We’ve mentioned “zones” several times already in this chapter. Simply put, a zone is the
Guidelines” section later in this chapter.
namespace allocated for a particular server. Each “level” of the DNS hierarchy represents a particular
A reverse lookup zone is an authoritative DNS zone that is used primarily to resolve IP
zone within DNS. For the actual DNS database, a zone is a contiguous portion of the domain tree that is
addresses to network resource names. This zone type can be primary, secondary or Active
administered as a single separate entity by a DNS server. The zone contains resource records for all of
Directory–integrated. Reverse lookups traverse the DNS hierarchy in exactly the same way as
the names within the zone. If Active Directory–integrated zones are not being used, some zone fi les will
the more common forward lookups.
contain the DNS database resource records required to defi ne the zone. If DNS data is Active
Stub zones are a new feature introduced in Windows Server 2008. They contain a partial
Directory–integrated, the data is stored in Active Directory, not in zone fi les.
copy of a zone that can be hosted by a DNS server and used to resolve recursive or iterative

5
 queries. A recursive query is a request from a host to a resolver to fi nd data on other name 6 . Click Next again to skip the WINS settings. If WINS was running (we will discuss WINS
servers. An s query is a request, usually made by a resolver, for any information a server
already has in memory for a certain domain name. Stub zones contain the Start of Authority
later), we could select the WINS server here.
(SOA) resource records of the zone, the DNS resource records that list the zone’s authoritative
servers, and the glue address (A) resource records that are required for contacting the zone’s Next, we need to configure a DHCP scope. A DHCP scope is a range of IP addresses (as well
authoritative servers. Stub zones are useful for reducing the number of DNS queries on a as additional IP options, such as gateway, DNS servers, and WINS servers) that can be
network, and consequently the resource consumption on the primary DNS servers for that
particular namespace. Basically, stub zones are used to fi nd other zones and can be created handed out by a DHCP server. In the fi rst example, we are going to confi gure both an IPv4
in the middle of a large DNS hierarchy to prevent a query for a distant zone within the same and IPv6 scope.
namespace from having to ascend, traverse, and return over a multitude of zones. Now, let’s confi gure our scope:
Windows Server 2008 also allows for a special type of Primary Zone—known as an AD-
integrated zone—which basically means that the data is stored within Active Directory Domain 1 . Click Add… to add a new DHCP Scope.
Services, and is replicated to other DNS servers during normal AD replication periods. AD- 2 . In the Scope Name fi eld, type Internal Scope.
integrated zones offer a number of benefi ts, including: 3 . In the Starting IP Address fi eld, type 192.168.1.200, or any IP range you have available on
 Secure Dynamic Updates Systems that are authenticated by Active Directory can update
your network.
their DNS records. This allows name resolution for clients and servers while eliminating
DNS poisoning by rogue systems that create DNS records. 4 . In the Ending IP Address field, type the end of your scope. We will use ex. 192.168.1.220.
 Automatic Synchronization Zones are created and synchronized to new domain 5 . In the Subnet Mask fi eld, enter the subnet mask of your network. Our subnet mask is
controllers (with DNS installed) automatically. 255.255.255.0.
 Efficient Replication Less data is replicated since only relevant changes are propagated.
6 . Skip the default gateway for now, we will add this later.
7 . Choose Wired as the Subnet type, but click the down arrow to see the Wireless option.
DHCP Design Principles
8 . Verify that Activate This Scope is checked, and then click OK.
DHCP is heavily reliant on network topology, and is heavily relied upon by the hosts within a
network. For DHCP to function at an optimal level, client computers must be able to access
Scope Settings for DHCP
at least one DHCP server at all times.

When developing a DHCP approach for your network, you must consider several things fi rst:
 How many clients will be using DHCP for IP addresses?
 Where are these clients located and what roles do they have?
 What does the network topology look like?

Installing and Configuring DHCP

Installing DHCP in Windows Server 2008 is as simple as adding another role to a
server. Some additional steps must be taken, however, to authorize the DHCP server. Back
in Windows 2000 Server,

During the installation process, we will walk through installing the DHCP role, configuring
DHCP settings, and authorizing the DHCP server. Let’s begin.
1 . Choose Start | Administrative Tools | Server Manager.
2 . Scroll down to Role Summary and click Add Roles.
3 . When the Before You Begin page opens, click Next.
4 . On the Select Server Roles page, select DHCP Server, and then click Next.
5 . Click Next to get through the DNS Server settings. This screen is verifying the IP address 9 . Click Next once your scope is added.
of our DNS server, which will be passed to clients.
6
9
10 . Determine what to do with IPv6 clients. We want to manage IPv6 clients through DHCP
when necessary. To do this, select Disable DHCPv6 Stateless Mode For This Server and click
Next.
11 . Specify the IP address of an IPv6-enabled DNS server. To do this, enter the IP address of
this server. If you recall, we set IPv6 options in the DNS section. Verify that our server’s IPv6
settings appear in the Preferred DNS Server IPv6 Address, validate it, and then click Next.
12 . On the Authorize DHCP Server, you can specify the credentials of an authorized user, or
just click Next.
13 . Click Install to begin the installation.
14 . When installation is complete, click Close. True or False.

Note: Since this topic needs desktop computers but we have no actual hands-on 1. True
inside laboratory room, all you have to do now is to answer the questions below based on 2. True
what you read in this module.
3. True
True or False. Write in a sheet of paper, the word true if the statement is correct and false if 4. True
it is wrong. 5. True
1. A Resource Record (RR) is to DNS what a table is to a database. A Resource Record is part 6. False - authorizing the DHCP server
of DNS’s database structure that contains the name information for a particular host or zone
7. False – Windows Server 2008
2. The record type will determine what information is provided to a DNS client requesting data.
8. False – scope not spoon
3. DNS is based on a “tree” format—and an upside-down tree,
9. False – It stores
4. The summit of the DNS namespace hierarchy is the root, which has several servers managed
10. True
by the Internet Name Registration Authority (INRA).
5. DNS can be installed and configured on any version of Windows Server 2008.
6. During the installation process, we will walk through installing the DHCP role,
configuring DHCP settings, and blocking the DHCP server.
7. Installing DHCP in Windows 7 is as simple as adding another role to a server.
8. A DHCP spoon is a range of IP addresses (as well as additional IP options, such as
gateway, DNS servers, and WINS servers) that can be handed out by a DHCP server.
9. With a primary zone, the server hosting this zone is authoritative for the domain name. It does
not stores the master copy of the domain information locally.
10. When a new domain controller is brought online, networks that have integrated DNS and
Active Directory have the advantage of automatic synchronization.

8
 9. The record type will determine what information is provided to a DNS client requesting data.
10. DNS is based on a “tree” format—and an upside-down tree,
Next is in page 40 and forward of: 11. The summit of the DNS namespace hierarchy is the root, which has several servers managed
Ref. by the Internet Name Registration Authority (INRA).
https://booksite.elsevier.com/samplechapters/9781597492737/Sample_Chapters/02~Chapter_1.pdf
12. DNS can be installed and configured on any version of Windows Server 2008.
13. Secure Dynamic Updates Systems that are authenticated by Active Directory can update their
DNS records.
14. During intalation, select Disable DHCPv6 Stateless Mode for the Server and click
Ref.: Next.
Page 170 of:a copy from my files, entitled: 15. If you are planning to run DNS within a Server Core install, several steps must be performed
CSS - G10 module3 - ok -SET NETWORKS CONFIGURATION prior to installation

Ref.: PDF file and not word file of: True or False
CSS - G10 module3 - ok -SET NETWORKS CONFIGURATION
1. True
And 2. True
Page 62 of:a copy from my files, entitled: 3. True
CSS - G10 module 1 -4 - TG -w Answer Key
4. True
5. True
Internet source:
6. True
Ref. https://www.scribd.com/document/442090603/Inspect-And-Test-The-Configured-Computer- 7. True
Networks
8. True
Summative Test. On the other sheet. 9. True
1. Installing DHCP in Windows Server 2008 is as simple as adding another role to a 10. True
server.
11. True
2. During the installation process, we will walk through installing the DHCP role,
configuring DHCP settings, and authorizing the DHCP server. 12. True
3. A DHCP scope is a range of IP addresses (as well as additional IP options, such as 13. True
gateway, DNS servers, and WINS servers) that can be handed out by a DHCP server. 14. True
4. With a primary zone, the server hosting this zone is authoritative for the domain name. It stores 15. True
the master copy of the domain information locally.
5. When a new domain controller is brought online, networks that have integrated DNS and
Active Directory have the advantage of automatic synchronization.
6. Any time you can reduce the number of management consoles you have to work with, you can
reduce the amount of time needed to manage information.
7. Specify the IP address of an IPv6-enabled DNS server. To do this, enter the IP
address of the server.
8. A Resource Record (RR) is to DNS what a table is to a database. A Resource Record is part
of DNS’s database structure that contains the name information for a particular host or zone