Windows Server 2003 Network Infrastructure Part 1 Lab ... · A Computer installed with Windows Server 2003 in the finalvision.com domain named SRV1 A Computer installed with Windows

Windows Server 2003

Network Infrastructure Part 1

Lab Manual

Presented by

© C o p y r i g h t 2 0 1 0 - I d e a D u d e s L L C

Page 2

Table of Contents

Working with the Network Monitor 3

Learning to Work with Address Blocks 5

Configuring TCP/IP Addresses 9

Exploring Automatic Name Resolution in Local Networks 10

Exploring DNS in Active Directory Environment 12

Managing the DNS 14

Deploying a DHCP Server 15

Creating an Exclusion Range 17


Page 3

Module 2 – Working with Network Monitor

Requirements

A Computer installed with Windows Server 2003 in the finalvision.com domain named DC1. (10.10.0.10) A Computer installed with Windows Server 2003 in the finalvision.com domain named SRV1 A Computer installed with Windows XP, Windows Vista, Windows 7 in the finalvision.com domain named CL1 (10.10.0.20) User1 account in the domain

Exercise 1: Install the Network Monitor

1. On SRV1 logon to the FinalVision domain as Administrator 2. Click Start, point to Control Panel and the click Add or Remove Programs 3. Click Add/Remove Windows Components 4. In the Windows Component Wizard , Click Management and Monitoring Tools and Click Details 5. Select the check box next to Network Monitor Tools and click OK and then Click Next 6. Click Finish 7. Close Add or Remove Programs

Exercise 2: Capture IP Frames

1. On DC1 logon to the FinalVision domain as Administrator 2. Click Start, Administrative Tools and the click Network Monitor 3. Click OK to begin selecting the network on which you want to capture data 4. Expand the Local Computer, click Local Area Connection and then click OK. Maximize the Microsoft

Network Monitor window 5. On CL1 logon to Contoso Domain as User1 6. Click Start, Run type cmd and then click OK 7. Type arp-d * the press ENTER this will delete all entries in ARP cache 8. DC1, on the Capture menu click Start 9. CL1 type ping 10.10.0.2 and press Enter 10. Wait for the Ping command to complete on CL1 11. DC1, on the Capture menu click Stop 12. On the Capture menu, Click Display Captured Data

Exercise 3: Examine ARP Packets

1. On DC1 , on the Disaply menu , Click Filter 2. Double-Click Protocol==Any 3. Click Disable All 4. Under Disabled Protocols, double-click ARP_RARP and then click OK 5. Click OK (Only two frames should be visible – two ARP packets) 6. Review the traffic

First ARP Request for IP address 10.10.0.2

Second is ARP reply 7. Double-Click the first frame

Shows more detailed information

Middle pane shows the decoded information about the frame


Page 4

The bottom pane shows the packet displayed as hex values in ASCII 8. In the middle pane expand ARP_RARP: ARP: Request, Target IP: 10.10.0.2

Displays detailed information about ARP request including MAC address and IP address of the sender

Exercise 3: Examine ICMP Packets

1. On the Display menu, click Disable Filter 2. On Display menu, click Colors 3. In Protocols Colors dialog box, click ICMP 4. Under Colors set the foreground to red and click OK 5. Click the first red frame to display details of the ICMP ECHO from 10.10.0.20 CL1 to 10.10.0.2 DC1 6. In the middle pane expand Frame: Base frame properties to display general information about the frame 7. Expand ETHERNET: EType=Internet IP (IPv4) to display the source and destination MAC addresses 8. Expand IP:Protocol=ICMP –Internet Control Message to display the source and destination IP addresses as

well as other IP information 9. Expand ICMP:Echo:From 10.10.0.20 to 10.10.0.2 to display detailed information about the ICMP protocol

(Packet type is ECHO) 10. Click ICMP:Packet Type=Echo

The hexadecimal value that corresponds to this information is selected in the bottom pane and its value is 08.

11. In the top pane, click the second red frame 12. If necessary, in the middle pane, expand ICMP:Echo Reply: to 10.10.0.20 From 10.10.0.2

This is an Echo Reply 13. Close all windows and do not save


Page 5

Module 3– Learning to Work with Address Blocks

Requirements


Exercise 1: Choosing an Appropriate Subnet Mask

1. Which subnet mask would you assign to the new server?

Subnet 1: Existing Computers

10.2.13.1

10.2.41.23

10.2.41.100

10.2.41.101

Answer Choices:

A. 255.0.0.0 (/8) B. 255.255.0.0 (/16) C. 255.255.255.0 (/24)

2. Which subnet mask would you assign to the new server?

Subnet 2: Existing Computers 192.168.34.1

192.168.34.55

192.168.34.223

192.168.34.5

Answer Choices:

D. 255.0.0.0 (/8) E. 255.255.0.0 (/16) F. 255.255.255.0 (/24)

Answers: 1 (B) , 2 (C)


Page 6

Exercise 2: Converting Subnet Masks to Dotted Notation

Slash Notation Dotted-decimal

/18

/28

/21

/30

/19 /26

/22

/27

/17

/20

/29

/23

/25

Answer:


/18 255.255.192.0

/28 255.255.255.240

/21 255.255.248.0

/30 255.255.255.252 /19 255.255.224.0

/26 255.255.255.192

/22 255.255.252.0

/27 255.255.255.224

/17 255.255.128.0

/20 255.255.240.0

/29 255.255.255.248

/23 255.255.254.0

/25 255.255.255.128


Page 7

Exercise 3: Converting Subnet Masks to Slash Notation


255.255.240.0

255.255.255.248

255.255.248.0

255.255.255.224

255.255.252.0

255.255.128.0

255.255.255.252

255.255.224.0

255.255.254.0

255.255.255.128

255.255.255.192 255.240.0.0

255.255.192.0

Answers:


255.255.240.0 /20

255.255.255.248 /29

255.255.248.0 /18

255.255.255.224 /25

255.255.252.0 /21

255.255.128.0 /17

255.255.255.252 /30

255.255.224.0 /19

255.255.254.0 /23 255.255.255.128 /25

255.255.255.192 /26

255.240.0.0 /12

255.255.192.0 /14


Page 8

Exercise 4: Determining the Host Capacity of Networks

Address Block Number of Supported Hosts

131.107.16.0 /20

10.10.128.0 255.255.254.0

206.73.118.0 /26

192.168.23.64 255.255.255.224

131.107.0.0 255.255.255.0

206.73.118.24 /29

10.4.32.0 /21

172.16.12.0 /22

192.168.1.32 255.255.255.128

131.107.100.48 /28

206.73.118.12 255.255.255.252 10.12.200.128 /25

192.168.0.0 255.255.248.0

Answers:

Address Block Number of Supported Hosts

131.107.16.0 /20 4094

10.10.128.0 255.255.254.0 510

206.73.118.0 /26 62

192.168.23.64 255.255.255.224 30

131.107.0.0 255.255.255.0 254

206.73.118.24 /29 6

10.4.32.0 /21 2046

172.16.12.0 /22 1022

192.168.1.32 255.255.255.128 126 131.107.100.48 /28 14

206.73.118.12 255.255.255.252 2

10.12.200.128 /25 126

192.168.0.0 255.255.248.0 2046


Page 9

Module 5– Configuring TCP/IP Addresses

Requirements


Exercise 1: Verifying Your Current IP Address

1. Logon DC1 as Administrator 2. Open a Command Prompt by typing cmd at the Run option on Start menu 3. Type ipconfig press Enter 4. Type ipconfig /all press Enter

Notice where the IP address is coming from

What is the Default Gateway

What is the subnet mask 5. Navigate to Control Panel and Right-Click Network Connections and Open 6. Right-Click the Local Area Connection and select Properties 7. Select TCP/IP and click Properties 8. How is your IP address assigned?

Exercise 2: Configure a Manual Address

1. Logon SRV1 as Administrator 2. Navigate to Control Panel and Right-Click Network Connections and Open 3. Right-Click the Local Area Connection and select Properties 4. Select TCP/IP and click Properties 5. Type in IP Address 10.10.0.30 6. Type in the Subnet Mask 255.255.0.0 7. Type in the Preferred DNS Server 10.10.0.10 8. Click OK

Exercise 3: Configure a Manual Address

1. Logon SRV1 as Administrator 2. Open a Command Prompt by typing cmd at the Run option on Start menu 3. Type: netsh interface ip set address name=”Local Area Connection” static 10.10.0.30 255.255.255.0

Sets the NIC to a static IP 10.10.0.30 and a subnet mask of 255.255.255.0 4. Press Enter 5. Type: netsh interface ip set dns “Local Area Connection” static 10.10.0.10

Set the DNS Server to IP 10.10.0.10 6. Type: Exit 7. Press Enter


Page 10

Module 6– Exploring Automatic Name Resolution in Local Networks

Requirements


Exercise 1: Display Connection Information by Using the Nbtstat.exe Tool

1. Logon SRV1 as Administrator 2. Click Start, Run 3. Type cmd and Press Enter 4. Type nbtstat / ?

This will display the information about the command 5. Type nbstat –n

This will list the NetBIOS table of the local computer 6. Type nbtstat –c

This command shows the NetBIOS name cache, which contains name-to-address mappings for the computer

7. Type nbtstat –a 10.10.0.10

This will display the NetBIOS table of the remote computer and also the MAC address of the network adapter

8. Type nbtstat –s

This command list the current NetBIOS sessions and their status, including statistics 9. Type nbtstat –r

Clears the contents of the name cache and reload it from the LMHOSTS file

Exercise 2: Test Connections by Using NET VIEW Command

1. Logon SRV1 as Administrator 2. Click Start, Run 3. Type cmd and Press Enter 4. Type net view /?

This will display the help about the Net View Command 5. Type net view

This will display a list file and print shares on that computer is generated by establishing a temporary NetBIOS connection

6. Type net view 10.10.0.10

This will return the shares available on the target machine


Page 11

Exercise 3: Test Connections by Using NET VIEW Command

1. Logon SRV1 as Administrator 2. Click Start, Run 3. Type cmd and Press Enter 4. Type netstat /? 5. Type netstat 6. Type netstat –a

Displays all connections and listening ports 7. Type netstat –b

Displays the executable involved in creating each connection or listening port 8. Type netstat –e

Displays the Ethernet statistics 9. Type netstat –n

Displays addresses and port numbers in numerical form 10. Type netstat –o

Displays the owing Process ID for each connection 11. Type netstat –p TCP

Shows connections for protocol specified by proto:

TCP, UDP, TCPv6, UDPv6, IP, IPv6, ICMP, ICMPv6 12. Type nestat –r

Display the routing table 13. Type netstat –s

Display pre-protocol statistics 14. Type netstat –b –v

Will display sequence of components involved in creating the connection or listening port for all executables

15. Type netstat 30

Redisplays selected statistics, pausing interval seconds between each display


Page 12

Module 7– Exploring DNS in Active Directory Environment

Requirements

A Computer installed with Windows Server 2003 named DC1 configured as IP Address: 10.10.0.10 Subnet: 255.255.0.0 Preferred DNS: 10.10.0.10 A Computer installed with Windows Server 2003 named Boston configured as IP Address: 10.10.0.20 Subnet: 255.255.0.0

Exercise 1: Creating a Domain Controller

1. Logon DC1 as Administrator 2. In the Run box type dcpromo 3. The Welcome page will display of the Active Directory Domain Services Wizard 4. Click Next 5. Select a Domain Controller in a new Domain and click Next 6. Select Domain in a New Forest 7. Full DNS name for new domain type finalvision.com and click Next 8. Domain NetBIOS name Click Next 9. Database and Log Folders Click Next 10. Shared System Volume Click Next 11. DNS Registration Diagnostics Click Next 12. Permissions Click Next 13. Directory Services Restore Mode Administrator Password type in a Password and Confirm the Password 14. Summary Page Click Next 15. Installation will start


1. Logon DC1 as Administrator 2. From the Administrative Tools menu select DNS 3. Navigate to DC1\Forward Lookup Zones\finalvision.com 4. Look at the contents of the different zones 5. Right-Click the DC1 node and choose Properties 6. Review the information in the Interfaces tab 7. Click the Forwarders tab 8. Look at the Forwarders tab information 9. Click the Root Hints tab 10. Click the Monitoring tab 11. Click Cancel to close the DC1 Properties box

Exercise 3: Creating a Personal Administrator Account

1. Open Active Directory Users and Computers 2. Create an account for yourself in the Users Container 3. Add your account to the Domain Admins group


Page 13

Exercise 4: Adding Boston to the FinalVision Domain

1. Logon to Boston with Administrator 2. Open a command prompt 3. Type netsh interface ip set dnsserver “local area connection” static 10.10.0.10 and Press Enter 4. Bring up the Systems Properties 5. Click on Computer Name 6. Click Change 7. Type in Domain finalvision.com 8. Click OK 9. Fill in your account name and password in the credentials box (FinalVision\Username) 10. Wait for the Welcome Dialog box and Click OK 11. Restart the Server

Exercise 5: Verify New Zone Data

1. Logon to DC1 with Administrator after Boston finishes rebooting 2. Open DNS Manager 3. Click on FinalVision.com forward lookup zone 4. Right-Click the FinalVision.com Forward Lookup Zone and select Refresh 5. Notice the new A record for Boston 6. Log off of DC1


Page 14

Module 8– Managing the DNS

Requirements

A Computer installed with Windows Server 2003 named DC1 configured as IP Address: 10.10.0.10 Subnet: 255.255.0.0 Preferred DNS: 10.10.0.10 A Computer installed with Windows Server 2003 named Boston configured as IP Address: 10.10.0.20 Subnet: 255.255.0.0 Preferred DNS: 10.10.0.10


1. Logon Boston as Administrator 2. Open a Command Prompt 3. Type ipconfig /flushdns and Press Enter

This flushes the DNS cache 4. Type ipconfig /displaydns and Press Enter

This will display the DNS cache 5. Type ping DC1 and Press Enter 6. Type ipconfig /displaydns and Press Enter

This will display the records from the previous ping 7. Type ipconfig /flushdns and Press Enter 8. Type ipconfig /displaydns and Press Enter

This will display the records which have been flushed 9. Close all open Windows


Page 15

Module 9– Deploying a DHCP Server

Requirements

A Computer installed with Windows Server 2003 named DC1 configured as IP Address: 10.10.0.10 Subnet: 255.255.0.0 Preferred DNS: 10.10.0.10 A Computer installed with Windows Server 2003 named Boston

Exercise 1: Installing a DHCP Server

1. Logon DC1 as Administrator 2. Open Add Remove Programs 3. Open Add Remove Windows Components 4. Click on Network Services and Details 5. Click checkbox for DHCP Server 6. Click OK 7. Click Next 8. Wait for the Installation finishes 9. Open DHCP From Administrative Tools menu 10. Right-Click DC1.FinalVision.com and Select Authorize 11. Right-Click DC1.FinalVision.com and Select New Scope

New Scope Wizard will appear 12. Click Next 13. Name type Internal and click Next 14. IP Address Range Start IP Address type 10.10.0.100 Press the Tab Key 15. End IP address type 10.10.0.150 Press Tab 16. Length type 16 and Click Next

This creates a 16 bit 255.255.0.0 Subnet Mask 17. Add Exclusions Click Next 18. Lease Duration Click Next 19. Configure DHCP Options Select No, I will configure options later 20. Click Next 21. Click Finish 22. Click Scope Options 23. Right-Click Scope Options and select Configure Options 24. Select 006 DNS Servers 25. Click Server Name type DC1 and Click Resolve 26. Click Add 27. Select 015 DNS Domain Name 28. Data Entry type FinalVision.com 29. Click OK

Closes the Scope Options box 30. Right-Click Scope and Select Activate


Page 16

Exercise 2: Enabling DHCP on the Client

1. Logon Boston as Administrator 2. Open a Command Prompt 3. Type netsh interface ip set address “local area connection” dhcp and Press Enter 4. After command replies successful type ipconfig /all and Press Enter

IP address is now provided by DHCP 5. Log Off each computer


Page 17

Module 10– Creating an Exclusion Range

Requirements

A Computer installed with Windows Server 2003 named DC1 configured as IP Address: 10.10.0.10 Subnet: 255.255.0.0 Preferred DNS: 10.10.0.10 With DHCP Installed

Exercise 1: Creating an Exclusion Range

1. Logon DC1 as Administrator 2. Open DHCP Console from Administrative Tools 3. Navigate to DHCP\dc1.finalvision.com\Scope [10.10.0.100]\Address Pool 4. Right-Click the Address Pool folder and choose New Exclusion Range 5. In the Add Exclusion dialog box type 10.10.0.2 and 10.10.0.50 in the Start IP and End IP 6. Click Add and then Click Close

Creates an Exclusion range of 10.10.0.2 – 10.10.0.50 7. Log Off DC1

Documents

Windows Server 2003 Network Infrastructure Part 1 Lab ... · A Computer installed with Windows Server 2003 in the finalvision.com domain named SRV1 A Computer installed with Windows