session 5 tp 5
Post on 21-Oct-2014
387 views
DESCRIPTION
TRANSCRIPT
Microsoft Windows Server 2003 Network Infrastructure – Planning and Maintenance/ Session 5 / Slide 1 of 19
Session 5
Network Design with Routing
Microsoft Windows Server 2003 Network Infrastructure – Planning and Maintenance/ Session 5 / Slide 2 of 19
DNS servers convert web addresses to IP addresses. This process is called Name resolution
Reverse name resolution is the process of conversion of IP addresses to IP addresses
DNS servers accept iterative and recursive queries A zone is a contiguous part of the DNS namespace Resource records are part of zonal databases that
contain web addresses and their equivalent IP address
Multiple DNS servers are useful for division of load amongst various DNS servers
Active directory integrated zones secure the dynamically updated DNS zones automatically
Review
Microsoft Windows Server 2003 Network Infrastructure – Planning and Maintenance/ Session 5 / Slide 3 of 19
Objectives Explain routing and its features Explain Static and Dynamic Routing Explain Routing Protocol
Communications Identify the requirements for a Routed
Network Design Identify methods to secure the Routed
Network Troubleshoot TCP/IP Routing
Microsoft Windows Server 2003 Network Infrastructure – Planning and Maintenance/ Session 5 / Slide 4 of 19
Designing a Routing Network
Consider the following while designed a routing network:
Determine the requirements of the network Identify the features of the Routing and Remote
Access (RRA) Integrate RRA with other networking services Locate the router Decide the number of hosts Identify the protocols supported Identify security needs
Microsoft Windows Server 2003 Network Infrastructure – Planning and Maintenance/ Session 5 / Slide 5 of 19
Routing and Remote Access Service (RRAS)
Features of RRAS: Provides an invisible internal network to
the Internet Provides support for IP and IPX/SPX routing
protocols Prevents traffic from the internal network
segments, the Internet, and other networks Routing and Remote Access provides
support for many protocols
Microsoft Windows Server 2003 Network Infrastructure – Planning and Maintenance/ Session 5 / Slide 6 of 19
Choosing WAN Topology The different types of topologies
are: Mesh Topology – Connects more than
two sites Ring Topology – Connects each site to
its adjacent site to form a closed loop Star Topology – Connects multiple
WAN connections to a single site that acts like a hub
Microsoft Windows Server 2003 Network Infrastructure – Planning and Maintenance/ Session 5 / Slide 7 of 19
Selecting WAN Technology The different types of technologies
that a WAN connection can use to connect the Internet are: Leased Telephone Lines Dial-on Demand Connections Frame Relay Virtual Private Network (VPN)
Microsoft Windows Server 2003 Network Infrastructure – Planning and Maintenance/ Session 5 / Slide 8 of 19
Static Routing Decreases dynamic protocol traffic Increases security by restricting the routing
table information Manual updates of routing tables becomes
less time consuming Information in the Routing table does not
change often Demand dial interface and a default route is
added.
Microsoft Windows Server 2003 Network Infrastructure – Planning and Maintenance/ Session 5 / Slide 9 of 19
Dynamic Routing Helps routers to communicate with each
other and share the information in their routing table
Helps routers to compensate if a router or WAN fails
Prevents the traffic from getting forwarded to the failed router instead it is passed from a different route
Microsoft Windows Server 2003 Network Infrastructure – Planning and Maintenance/ Session 5 / Slide 10 of 19
Routing Information Protocol (RIP)
Automatic updates the routing table Minimizes time spent on manual updating Changes Routing table information
continuously Used by the other routers in the network Creates auto static entries using Routing
and Remote Access and Demand Dial Used when the total number of routers is
less than 14
Microsoft Windows Server 2003 Network Infrastructure – Planning and Maintenance/ Session 5 / Slide 11 of 19
Securing the routed Network
Measures to prevent unauthorized access: Identify the users who require
remote access Identify the levels of remote access
for the users Identify the applications to be used
by the users
Microsoft Windows Server 2003 Network Infrastructure – Planning and Maintenance/ Session 5 / Slide 12 of 19
Methods to Secure Remote Access
Limiting Access Using Dial-in Properties - Sets the properties of individual accounts that users uses to connect to the network.
Authentication - Enables us to prevent unauthorized users from accessing the network.
Microsoft Windows Server 2003 Network Infrastructure – Planning and Maintenance/ Session 5 / Slide 13 of 19
Limiting Access Using Dial-in Properties
Remote Access Permission (Dial-in or VPN) Allow Access Deny Access Control access through Remote Access Policy
Verify Called ID Callback Options
No Callback Set by Caller Always Callback to
Assign Static IP Address Apply Static Routes
Microsoft Windows Server 2003 Network Infrastructure – Planning and Maintenance/ Session 5 / Slide 14 of 19
Authentication Authentication can be ensured using the following
options of the Authentication Methods dialog box: Extensible authentication protocol Microsoft encrypted authentication version 2
(MS-CHAP v2) Microsoft encrypted authentication (MS-CHAP) Encrypted authentication (CHAP) Shiva Password Authentication Protocol (SPAP) Unencrypted Password (PAP) Allow remote systems to connect without
authentication
Microsoft Windows Server 2003 Network Infrastructure – Planning and Maintenance/ Session 5 / Slide 15 of 19
Troubleshooting TCP/IP Routing
Windows operating system offers certain TCP/IP tools that enable to troubleshoot routing problems: Ping.exe - Checks the accessibility of an
IP address Tracert.exe - Enables us to trace the path
of a packet from one computer to another Pathping.exe - Locates router failure
which completely disrupts communication
Microsoft Windows Server 2003 Network Infrastructure – Planning and Maintenance/ Session 5 / Slide 16 of 19
Troubleshooting RRA Configuration
Check whether the Routing and Remote Access service is functioning
Check whether routing is enabled Check the TCP/IP configuration
settings Verify the IP addresses of the router
interfaces
Microsoft Windows Server 2003 Network Infrastructure – Planning and Maintenance/ Session 5 / Slide 17 of 19
Summary Features offered by routing are
Internal network invisibility Existing network integration Internet and internal network traffic restriction
The different types of topologies are: Mesh Topology Ring Topology Star Topology
The different types of WAN technologies are: Leased Telephone Lines Dial-on Demand Connections Frame Relay Virtual Private Network (VPN)
Microsoft Windows Server 2003 Network Infrastructure – Planning and Maintenance/ Session 5 / Slide 18 of 19
Summary Contd… Encryption and authentication add more security
through Routing and Remote Access Static and dynamic routing are the two types of
routing strategies Methods of authentication
Extensible Authentication Protocol (EAP) Microsoft Encrypted Authentication version 2
(Microsoft-CHAP v2) Microsoft Encrypted Authentication (MS-CHAP) Encrypted Authentication (CHAP) Shiva Password Authentication Protocol (SPAP) Unencrypted Password (PAP) Allow Remote Systems to Connect Without
Authentication
Microsoft Windows Server 2003 Network Infrastructure – Planning and Maintenance/ Session 5 / Slide 19 of 19
Summary Contd… Windows operating system offers
certain TCP/IP tools that enable to troubleshoot routing problems: Ping.exe Tracert.exe Pathping.exe