Upload
others
View
1
Download
0
Embed Size (px)
Citation preview
Windows Server 2003
Network Infrastructure Part 1
Lab Manual
Presented by
© C o p y r i g h t 2 0 1 0 - I d e a D u d e s L L C
Page 2
Table of Contents
Working with the Network Monitor 3
Learning to Work with Address Blocks 5
Configuring TCP/IP Addresses 9
Exploring Automatic Name Resolution in Local Networks 10
Exploring DNS in Active Directory Environment 12
Managing the DNS 14
Deploying a DHCP Server 15
Creating an Exclusion Range 17
© C o p y r i g h t 2 0 1 0 - I d e a D u d e s L L C
Page 3
Module 2 – Working with Network Monitor
Requirements
A Computer installed with Windows Server 2003 in the finalvision.com domain named DC1. (10.10.0.10) A Computer installed with Windows Server 2003 in the finalvision.com domain named SRV1 A Computer installed with Windows XP, Windows Vista, Windows 7 in the finalvision.com domain named CL1 (10.10.0.20) User1 account in the domain
Exercise 1: Install the Network Monitor
1. On SRV1 logon to the FinalVision domain as Administrator 2. Click Start, point to Control Panel and the click Add or Remove Programs 3. Click Add/Remove Windows Components 4. In the Windows Component Wizard , Click Management and Monitoring Tools and Click Details 5. Select the check box next to Network Monitor Tools and click OK and then Click Next 6. Click Finish 7. Close Add or Remove Programs
Exercise 2: Capture IP Frames
1. On DC1 logon to the FinalVision domain as Administrator 2. Click Start, Administrative Tools and the click Network Monitor 3. Click OK to begin selecting the network on which you want to capture data 4. Expand the Local Computer, click Local Area Connection and then click OK. Maximize the Microsoft
Network Monitor window 5. On CL1 logon to Contoso Domain as User1 6. Click Start, Run type cmd and then click OK 7. Type arp-d * the press ENTER this will delete all entries in ARP cache 8. DC1, on the Capture menu click Start 9. CL1 type ping 10.10.0.2 and press Enter 10. Wait for the Ping command to complete on CL1 11. DC1, on the Capture menu click Stop 12. On the Capture menu, Click Display Captured Data
Exercise 3: Examine ARP Packets
1. On DC1 , on the Disaply menu , Click Filter 2. Double-Click Protocol==Any 3. Click Disable All 4. Under Disabled Protocols, double-click ARP_RARP and then click OK 5. Click OK (Only two frames should be visible – two ARP packets) 6. Review the traffic
First ARP Request for IP address 10.10.0.2
Second is ARP reply 7. Double-Click the first frame
Shows more detailed information
Middle pane shows the decoded information about the frame
© C o p y r i g h t 2 0 1 0 - I d e a D u d e s L L C
Page 4
The bottom pane shows the packet displayed as hex values in ASCII 8. In the middle pane expand ARP_RARP: ARP: Request, Target IP: 10.10.0.2
Displays detailed information about ARP request including MAC address and IP address of the sender
Exercise 3: Examine ICMP Packets
1. On the Display menu, click Disable Filter 2. On Display menu, click Colors 3. In Protocols Colors dialog box, click ICMP 4. Under Colors set the foreground to red and click OK 5. Click the first red frame to display details of the ICMP ECHO from 10.10.0.20 CL1 to 10.10.0.2 DC1 6. In the middle pane expand Frame: Base frame properties to display general information about the frame 7. Expand ETHERNET: EType=Internet IP (IPv4) to display the source and destination MAC addresses 8. Expand IP:Protocol=ICMP –Internet Control Message to display the source and destination IP addresses as
well as other IP information 9. Expand ICMP:Echo:From 10.10.0.20 to 10.10.0.2 to display detailed information about the ICMP protocol
(Packet type is ECHO) 10. Click ICMP:Packet Type=Echo
The hexadecimal value that corresponds to this information is selected in the bottom pane and its value is 08.
11. In the top pane, click the second red frame 12. If necessary, in the middle pane, expand ICMP:Echo Reply: to 10.10.0.20 From 10.10.0.2
This is an Echo Reply 13. Close all windows and do not save
© C o p y r i g h t 2 0 1 0 - I d e a D u d e s L L C
Page 5
Module 3– Learning to Work with Address Blocks
Requirements
A Computer installed with Windows Server 2003 in the finalvision.com domain named DC1. (10.10.0.10) A Computer installed with Windows Server 2003 in the finalvision.com domain named SRV1 A Computer installed with Windows XP, Windows Vista, Windows 7 in the finalvision.com domain named CL1 (10.10.0.20) User1 account in the domain
Exercise 1: Choosing an Appropriate Subnet Mask
1. Which subnet mask would you assign to the new server?
Subnet 1: Existing Computers
10.2.13.1
10.2.41.23
10.2.41.100
10.2.41.101
Answer Choices:
A. 255.0.0.0 (/8) B. 255.255.0.0 (/16) C. 255.255.255.0 (/24)
2. Which subnet mask would you assign to the new server?
Subnet 2: Existing Computers 192.168.34.1
192.168.34.55
192.168.34.223
192.168.34.5
Answer Choices:
D. 255.0.0.0 (/8) E. 255.255.0.0 (/16) F. 255.255.255.0 (/24)
Answers: 1 (B) , 2 (C)
© C o p y r i g h t 2 0 1 0 - I d e a D u d e s L L C
Page 6
Exercise 2: Converting Subnet Masks to Dotted Notation
Slash Notation Dotted-decimal
/18
/28
/21
/30
/19 /26
/22
/27
/17
/20
/29
/23
/25
Answer:
Slash Notation Dotted-decimal
/18 255.255.192.0
/28 255.255.255.240
/21 255.255.248.0
/30 255.255.255.252 /19 255.255.224.0
/26 255.255.255.192
/22 255.255.252.0
/27 255.255.255.224
/17 255.255.128.0
/20 255.255.240.0
/29 255.255.255.248
/23 255.255.254.0
/25 255.255.255.128
© C o p y r i g h t 2 0 1 0 - I d e a D u d e s L L C
Page 7
Exercise 3: Converting Subnet Masks to Slash Notation
Slash Notation Dotted-decimal
255.255.240.0
255.255.255.248
255.255.248.0
255.255.255.224
255.255.252.0
255.255.128.0
255.255.255.252
255.255.224.0
255.255.254.0
255.255.255.128
255.255.255.192 255.240.0.0
255.255.192.0
Answers:
Slash Notation Dotted-decimal
255.255.240.0 /20
255.255.255.248 /29
255.255.248.0 /18
255.255.255.224 /25
255.255.252.0 /21
255.255.128.0 /17
255.255.255.252 /30
255.255.224.0 /19
255.255.254.0 /23 255.255.255.128 /25
255.255.255.192 /26
255.240.0.0 /12
255.255.192.0 /14
© C o p y r i g h t 2 0 1 0 - I d e a D u d e s L L C
Page 8
Exercise 4: Determining the Host Capacity of Networks
Address Block Number of Supported Hosts
131.107.16.0 /20
10.10.128.0 255.255.254.0
206.73.118.0 /26
192.168.23.64 255.255.255.224
131.107.0.0 255.255.255.0
206.73.118.24 /29
10.4.32.0 /21
172.16.12.0 /22
192.168.1.32 255.255.255.128
131.107.100.48 /28
206.73.118.12 255.255.255.252 10.12.200.128 /25
192.168.0.0 255.255.248.0
Answers:
Address Block Number of Supported Hosts
131.107.16.0 /20 4094
10.10.128.0 255.255.254.0 510
206.73.118.0 /26 62
192.168.23.64 255.255.255.224 30
131.107.0.0 255.255.255.0 254
206.73.118.24 /29 6
10.4.32.0 /21 2046
172.16.12.0 /22 1022
192.168.1.32 255.255.255.128 126 131.107.100.48 /28 14
206.73.118.12 255.255.255.252 2
10.12.200.128 /25 126
192.168.0.0 255.255.248.0 2046
© C o p y r i g h t 2 0 1 0 - I d e a D u d e s L L C
Page 9
Module 5– Configuring TCP/IP Addresses
Requirements
A Computer installed with Windows Server 2003 in the finalvision.com domain named DC1. (10.10.0.10) A Computer installed with Windows Server 2003 in the finalvision.com domain named SRV1 A Computer installed with Windows XP, Windows Vista, Windows 7 in the finalvision.com domain named CL1 (10.10.0.20) User1 account in the domain
Exercise 1: Verifying Your Current IP Address
1. Logon DC1 as Administrator 2. Open a Command Prompt by typing cmd at the Run option on Start menu 3. Type ipconfig press Enter 4. Type ipconfig /all press Enter
Notice where the IP address is coming from
What is the Default Gateway
What is the subnet mask 5. Navigate to Control Panel and Right-Click Network Connections and Open 6. Right-Click the Local Area Connection and select Properties 7. Select TCP/IP and click Properties 8. How is your IP address assigned?
Exercise 2: Configure a Manual Address
1. Logon SRV1 as Administrator 2. Navigate to Control Panel and Right-Click Network Connections and Open 3. Right-Click the Local Area Connection and select Properties 4. Select TCP/IP and click Properties 5. Type in IP Address 10.10.0.30 6. Type in the Subnet Mask 255.255.0.0 7. Type in the Preferred DNS Server 10.10.0.10 8. Click OK
Exercise 3: Configure a Manual Address
1. Logon SRV1 as Administrator 2. Open a Command Prompt by typing cmd at the Run option on Start menu 3. Type: netsh interface ip set address name=”Local Area Connection” static 10.10.0.30 255.255.255.0
Sets the NIC to a static IP 10.10.0.30 and a subnet mask of 255.255.255.0 4. Press Enter 5. Type: netsh interface ip set dns “Local Area Connection” static 10.10.0.10
Set the DNS Server to IP 10.10.0.10 6. Type: Exit 7. Press Enter
© C o p y r i g h t 2 0 1 0 - I d e a D u d e s L L C
Page 10
Module 6– Exploring Automatic Name Resolution in Local Networks
Requirements
A Computer installed with Windows Server 2003 in the finalvision.com domain named DC1. (10.10.0.10) A Computer installed with Windows Server 2003 in the finalvision.com domain named SRV1 A Computer installed with Windows XP, Windows Vista, Windows 7 in the finalvision.com domain named CL1 (10.10.0.20) User1 account in the domain
Exercise 1: Display Connection Information by Using the Nbtstat.exe Tool
1. Logon SRV1 as Administrator 2. Click Start, Run 3. Type cmd and Press Enter 4. Type nbtstat / ?
This will display the information about the command 5. Type nbstat –n
This will list the NetBIOS table of the local computer 6. Type nbtstat –c
This command shows the NetBIOS name cache, which contains name-to-address mappings for the computer
7. Type nbtstat –a 10.10.0.10
This will display the NetBIOS table of the remote computer and also the MAC address of the network adapter
8. Type nbtstat –s
This command list the current NetBIOS sessions and their status, including statistics 9. Type nbtstat –r
Clears the contents of the name cache and reload it from the LMHOSTS file
Exercise 2: Test Connections by Using NET VIEW Command
1. Logon SRV1 as Administrator 2. Click Start, Run 3. Type cmd and Press Enter 4. Type net view /?
This will display the help about the Net View Command 5. Type net view
This will display a list file and print shares on that computer is generated by establishing a temporary NetBIOS connection
6. Type net view 10.10.0.10
This will return the shares available on the target machine
© C o p y r i g h t 2 0 1 0 - I d e a D u d e s L L C
Page 11
Exercise 3: Test Connections by Using NET VIEW Command
1. Logon SRV1 as Administrator 2. Click Start, Run 3. Type cmd and Press Enter 4. Type netstat /? 5. Type netstat 6. Type netstat –a
Displays all connections and listening ports 7. Type netstat –b
Displays the executable involved in creating each connection or listening port 8. Type netstat –e
Displays the Ethernet statistics 9. Type netstat –n
Displays addresses and port numbers in numerical form 10. Type netstat –o
Displays the owing Process ID for each connection 11. Type netstat –p TCP
Shows connections for protocol specified by proto:
TCP, UDP, TCPv6, UDPv6, IP, IPv6, ICMP, ICMPv6 12. Type nestat –r
Display the routing table 13. Type netstat –s
Display pre-protocol statistics 14. Type netstat –b –v
Will display sequence of components involved in creating the connection or listening port for all executables
15. Type netstat 30
Redisplays selected statistics, pausing interval seconds between each display
© C o p y r i g h t 2 0 1 0 - I d e a D u d e s L L C
Page 12
Module 7– Exploring DNS in Active Directory Environment
Requirements
A Computer installed with Windows Server 2003 named DC1 configured as IP Address: 10.10.0.10 Subnet: 255.255.0.0 Preferred DNS: 10.10.0.10 A Computer installed with Windows Server 2003 named Boston configured as IP Address: 10.10.0.20 Subnet: 255.255.0.0
Exercise 1: Creating a Domain Controller
1. Logon DC1 as Administrator 2. In the Run box type dcpromo 3. The Welcome page will display of the Active Directory Domain Services Wizard 4. Click Next 5. Select a Domain Controller in a new Domain and click Next 6. Select Domain in a New Forest 7. Full DNS name for new domain type finalvision.com and click Next 8. Domain NetBIOS name Click Next 9. Database and Log Folders Click Next 10. Shared System Volume Click Next 11. DNS Registration Diagnostics Click Next 12. Permissions Click Next 13. Directory Services Restore Mode Administrator Password type in a Password and Confirm the Password 14. Summary Page Click Next 15. Installation will start
Exercise 2: Creating a Domain Controller
1. Logon DC1 as Administrator 2. From the Administrative Tools menu select DNS 3. Navigate to DC1\Forward Lookup Zones\finalvision.com 4. Look at the contents of the different zones 5. Right-Click the DC1 node and choose Properties 6. Review the information in the Interfaces tab 7. Click the Forwarders tab 8. Look at the Forwarders tab information 9. Click the Root Hints tab 10. Click the Monitoring tab 11. Click Cancel to close the DC1 Properties box
Exercise 3: Creating a Personal Administrator Account
1. Open Active Directory Users and Computers 2. Create an account for yourself in the Users Container 3. Add your account to the Domain Admins group
© C o p y r i g h t 2 0 1 0 - I d e a D u d e s L L C
Page 13
Exercise 4: Adding Boston to the FinalVision Domain
1. Logon to Boston with Administrator 2. Open a command prompt 3. Type netsh interface ip set dnsserver “local area connection” static 10.10.0.10 and Press Enter 4. Bring up the Systems Properties 5. Click on Computer Name 6. Click Change 7. Type in Domain finalvision.com 8. Click OK 9. Fill in your account name and password in the credentials box (FinalVision\Username) 10. Wait for the Welcome Dialog box and Click OK 11. Restart the Server
Exercise 5: Verify New Zone Data
1. Logon to DC1 with Administrator after Boston finishes rebooting 2. Open DNS Manager 3. Click on FinalVision.com forward lookup zone 4. Right-Click the FinalVision.com Forward Lookup Zone and select Refresh 5. Notice the new A record for Boston 6. Log off of DC1
© C o p y r i g h t 2 0 1 0 - I d e a D u d e s L L C
Page 14
Module 8– Managing the DNS
Requirements
A Computer installed with Windows Server 2003 named DC1 configured as IP Address: 10.10.0.10 Subnet: 255.255.0.0 Preferred DNS: 10.10.0.10 A Computer installed with Windows Server 2003 named Boston configured as IP Address: 10.10.0.20 Subnet: 255.255.0.0 Preferred DNS: 10.10.0.10
Exercise 1: Creating a Domain Controller
1. Logon Boston as Administrator 2. Open a Command Prompt 3. Type ipconfig /flushdns and Press Enter
This flushes the DNS cache 4. Type ipconfig /displaydns and Press Enter
This will display the DNS cache 5. Type ping DC1 and Press Enter 6. Type ipconfig /displaydns and Press Enter
This will display the records from the previous ping 7. Type ipconfig /flushdns and Press Enter 8. Type ipconfig /displaydns and Press Enter
This will display the records which have been flushed 9. Close all open Windows
© C o p y r i g h t 2 0 1 0 - I d e a D u d e s L L C
Page 15
Module 9– Deploying a DHCP Server
Requirements
A Computer installed with Windows Server 2003 named DC1 configured as IP Address: 10.10.0.10 Subnet: 255.255.0.0 Preferred DNS: 10.10.0.10 A Computer installed with Windows Server 2003 named Boston
Exercise 1: Installing a DHCP Server
1. Logon DC1 as Administrator 2. Open Add Remove Programs 3. Open Add Remove Windows Components 4. Click on Network Services and Details 5. Click checkbox for DHCP Server 6. Click OK 7. Click Next 8. Wait for the Installation finishes 9. Open DHCP From Administrative Tools menu 10. Right-Click DC1.FinalVision.com and Select Authorize 11. Right-Click DC1.FinalVision.com and Select New Scope
New Scope Wizard will appear 12. Click Next 13. Name type Internal and click Next 14. IP Address Range Start IP Address type 10.10.0.100 Press the Tab Key 15. End IP address type 10.10.0.150 Press Tab 16. Length type 16 and Click Next
This creates a 16 bit 255.255.0.0 Subnet Mask 17. Add Exclusions Click Next 18. Lease Duration Click Next 19. Configure DHCP Options Select No, I will configure options later 20. Click Next 21. Click Finish 22. Click Scope Options 23. Right-Click Scope Options and select Configure Options 24. Select 006 DNS Servers 25. Click Server Name type DC1 and Click Resolve 26. Click Add 27. Select 015 DNS Domain Name 28. Data Entry type FinalVision.com 29. Click OK
Closes the Scope Options box 30. Right-Click Scope and Select Activate
© C o p y r i g h t 2 0 1 0 - I d e a D u d e s L L C
Page 16
Exercise 2: Enabling DHCP on the Client
1. Logon Boston as Administrator 2. Open a Command Prompt 3. Type netsh interface ip set address “local area connection” dhcp and Press Enter 4. After command replies successful type ipconfig /all and Press Enter
IP address is now provided by DHCP 5. Log Off each computer
© C o p y r i g h t 2 0 1 0 - I d e a D u d e s L L C
Page 17
Module 10– Creating an Exclusion Range
Requirements
A Computer installed with Windows Server 2003 named DC1 configured as IP Address: 10.10.0.10 Subnet: 255.255.0.0 Preferred DNS: 10.10.0.10 With DHCP Installed
Exercise 1: Creating an Exclusion Range
1. Logon DC1 as Administrator 2. Open DHCP Console from Administrative Tools 3. Navigate to DHCP\dc1.finalvision.com\Scope [10.10.0.100]\Address Pool 4. Right-Click the Address Pool folder and choose New Exclusion Range 5. In the Add Exclusion dialog box type 10.10.0.2 and 10.10.0.50 in the Start IP and End IP 6. Click Add and then Click Close
Creates an Exclusion range of 10.10.0.2 – 10.10.0.50 7. Log Off DC1