Table Of Content00W2000 NITG-FM 7/11/00 10:51 AM Page i
Exam 70-216
MCSE
Windows 2000
®
Network Infrastructure
T R A I N I N G G U I D E
Dave Bixler, MCSE
Larry Chambers, MCSE, MCSD
Joseph Phillips, MCSE, MCT
00W2000 NITG-FM 7/11/00 10:51 AM Page ii
ii MCSE TRAINING GUIDE: WINDOWS 2000 NETWORK INFRASTRUCTURE
MCSE TRAINING GUIDE (70-216): INSTALLING PUBLISHER
David Dwyer
A M W ®
AND DMINISTERING A ICROSOFT INDOWS
EXECUTIVE EDITOR
2000 N I
ETWORK NFRASTRUCTURE
Al Valvano
ACQUISITIONS EDITOR
Copyright © 2000 by New Riders Publishing
Stacey Beheler
All rights reserved. No part of this book shall be reproduced, stored in a
retrieval system, or transmitted by any means, electronic, mechanical, photo- MANAGING EDITORS
copying, recording, or otherwise, without written permission from the pub- Gina Brown
lisher. No patent liability is assumed with respect to the use of the informa- Sarah Kearns
tion contained herein. Although every precaution has been taken in the DEVELOPMENT EDITOR
preparation of this book, the publisher and author(s) assume no responsibility
Barb Terry
for errors or omissions. Neither is any liability assumed for damages resulting
PROJECT EDITOR
from the use of the information contained herein.
Caroline Wise
International Standard Book Number: 0-7357-0966-1
Library of Congress Catalog Card Number: 00-100503 PRODUCT MARKETING MANAGER
Stephanie Layton
Printed in the United States of America
First Printing: August, 2000 MANAGER OF PUBLICITY
Susan Petro
04 03 02 01 00 7 6 5 4 3 2 1
Interpretation of the printing code: The rightmost double-digit number is COPY EDITOR
the year of the book’s printing; the rightmost single-digit number is the Barbara Hacha
number of the book’s printing. For example, the printing code 00-1 shows
TECHNICAL REVIEWERS
that the first printing of the book occurred in 2000.
Marc Savage
Trademarks Walter Glenn
All terms mentioned in this book that are known to be trademarks or service SOFTWARE DEVELOPMENT
marks have been appropriately capitalized. New Riders Publishing cannot SPECIALIST
attest to the accuracy of this information. Use of a term in this book should Michael Hunter
not be regarded as affecting the validity of any trademark or service mark.
INDEXER
Warning and Disclaimer Tim Wright
Every effort has been made to make this book as complete and as accu-
PROOFREADER/COMPOSITOR
rate as possible, but no warranty or fitness is implied. The information
SCAN Communications Group,Inc.
provided is on an “as is” basis. The authors and the publisher shall
MANUFACTURING COORDINATOR
have neither liability nor responsibility to any person or entity with
Chris Moos
respect to any loss or damages arising from the information contained
in this book or from the use of the CD. COVER DESIGNER
Use of the Microsoft Approved Study Guide Logo on this product Aren Howell
signifies that it has been independently reviewed and approved in
complying with the following standards:
• Acceptable coverage of all content related to Microsoft exam
number 70-216, entitled Installing and Administering a Windows
2000 Network Infrastructure.
• Sufficient performance-based exercises that relate closely to
all required content.
• Technically accurate content, based on sampling of text.
00W2000 NITG-FM 7/11/00 10:51 AM Page iii
SECTION HERE iii
Contents at a Glance
Introduction ..............................................................................................................................................1
Part I Exam Preparation
1 Installing, Configuring, Managing, Monitoring, and Troubleshooting
DNS in a Windows 2000 Network Infrastructure................................................................13
2 Installing, Configuring, Managing, Monitoring, and Troubleshooting
DHCP in a Windows 2000 Network Infrastructure............................................................77
3 Configuring, Managing, Monitoring, and Troubleshooting Remote Access
in a Windows 2000 Network Infrastructure..........................................................................129
4 Installing, Configuring, Managing, Monitoring, and Troubleshooting
Network Protocols in a Windows 2000 Network Infrastructure..................................175
5 Installing, Configuring, Managing, Monitoring, and Troubleshooting
WINS in a Windows 2000 Network Infrastructure..........................................................241
6 Installing, Configuring, Managing, Monitoring, and Troubleshooting
IP Routing in a Windows 2000 Network Infrastructure..................................................283
7 Installing, Configuring, and Troubleshooting Network
Address Translation (NAT)............................................................................................................353
8 Installing, Configuring, Managing, Monitoring, and
Troubleshooting Certificate Services ........................................................................................379
Part II Final Review
Fast Facts ..............................................................................................................................................429
Study and Exam Prep Tips............................................................................................................451
Practice Exam......................................................................................................................................465
Part III Appendixes
A Glossary............................................................................................................................................487
B Overview of Certification..........................................................................................................503
C What’s on the CD-ROM..........................................................................................................515
D Using the ExamGear, Training Guide EditionSoftware................................................517
00W2000 NITG-FM 7/11/00 10:51 AM Page iv
iv MCSE TRAINING GUIDE: WINDOWS 2000 NETWORK INFRASTRUCTURE
00W2000 NITG-FM 7/11/00 10:51 AM Page v
SECTION HERE v
Table of Contents
PART I: Exam Preparation
1 Installing, Configuring, Managing, Monitoring, and
Troubleshooting DNS in a Windows 2000
Network Infrastructure 13
Introducing the Domain Name Service (DNS) ..................................................................16
History of DNS ..........................................................................................................................16
Installing, Configuring, and Troubleshooting DNS ....................................................28
Installing the DNS Server Service ........................................................................................29
Configuring a Root Name Server ........................................................................................33
Configuring Zones ......................................................................................................................34
Configuring a Caching-Only Server ..................................................................................42
Configuring a DNS Client Computer ..............................................................................44
Configuring Zones for Dynamic Updates ........................................................................47
Testing the DNS Server Service ............................................................................................49
Implementing a Delegated Zone for DNS ......................................................................54
Manually Creating DNS Resource Records ....................................................................55
Managing and Monitoring DNS ................................................................................................56
Setting Aging/Scavenging for All Zones ............................................................................57
Scavenging Stale Resource Records Manually ................................................................58
Setting Properties ........................................................................................................................58
Exercises ..........................................................................................................................................67
Review Questions ........................................................................................................................68
Exam Questions ..........................................................................................................................68
Answers to Review Questions ................................................................................................74
Answers to Exam Questions ..................................................................................................75
2 Installing, Configuring, Managing, Monitoring, and
Troubleshooting DHCP in a Windows 2000
Network Infrastructure 77
Understanding Dynamic Host Configuration Protocol ....................................................79
The DHCP Protocol ................................................................................................................80
The BOOTP Protocol ..............................................................................................................82
00W2000 NITG-FM 7/11/00 10:51 AM Page vi
vi MCSE TRAINING GUIDE: WINDOWS 2000 NETWORK INFRASTRUCTURE
Installing, Configuring, and Troubleshooting DHCP ......................................................82
Installing the DHCP Server Service ....................................................................................83
Understanding DHCP Scopes ..............................................................................................88
Understanding DHCP Superscopes ....................................................................................88
Understanding Multicasting and Multicast Scopes ......................................................89
Creating a Scope on Your DHCP Server ..........................................................................91
Authorizing a DHCP Server in Active Directory ..........................................................97
Creating a Superscope ..............................................................................................................99
Creating a Multicast Superscope ........................................................................................100
Configuring DHCP for DNS Integration ....................................................................102
Managing and Monitoring DHCP ........................................................................................104
Exercises ........................................................................................................................................117
Review Questions ....................................................................................................................118
Exam Questions ........................................................................................................................119
Answers to Review Questions ..............................................................................................124
Answers to Exam Questions ................................................................................................125
3 Configuring, Managing, Monitoring, and Troubleshooting
Remote Access in a Windows 2000 Network Infrastructure 129
Configuring and Troubleshooting Remote Access ............................................................132
Understanding Remote Access Protocols ........................................................................134
Configuring Inbound Connections ..................................................................................135
Creating a Remote Access Policy ........................................................................................139
Configuring a Remote Access Profile ..............................................................................143
Configuring a Virtual Private Network (VPN) ............................................................147
Configuring Multilink Connections ................................................................................151
Configuring Routing and Remote Access for DHCP Integration ......................151
Managing and Monitoring Remote Access ..........................................................................152
Configuring Remote Access Security ......................................................................................156
Configuring Authentication Protocols ............................................................................158
Configuring Encryption Protocols ....................................................................................159
Exercises ........................................................................................................................................164
Review Questions ....................................................................................................................164
Exam Questions ........................................................................................................................165
Answers to Review Questions ..............................................................................................170
Answers to Exam Questions ................................................................................................172
00W2000 NITG-FM 7/11/00 10:51 AM Page vii
CONTENTS vii
4 Installing, Configuring, Managing, Monitoring, and
Troubleshooting Network Protocols in a Windows 2000
Network Infrastructure 175
Introduction ......................................................................................................................................178
Installing, Configuring, and Troubleshooting Network Protocols ............................178
Understanding TCP/IP ..........................................................................................................178
Installing TCP/IP ......................................................................................................................187
Configuring TCP/IP ..............................................................................................................189
Installing the NWLink Protocol ........................................................................................192
Configuring NWLink ............................................................................................................193
Configuring Network Bindings ..........................................................................................194
Working with TCP/IP Packet Filters ......................................................................................196
Configuring and Troubleshooting Network Protocol Security ....................................199
Network Data Security ..........................................................................................................199
Security Hosts ............................................................................................................................200
Kerberos V5 Authentication ................................................................................................201
VPNs ..............................................................................................................................................202
Managing and Monitoring Traffic ..........................................................................................203
Understanding Network Traffic and the Network Monitor ..................................203
Installing Network Monitor ................................................................................................204
Installing the Network Monitor Driver ..........................................................................206
Using Network Monitor to Capture Data ....................................................................206
Interpreting Captured Data ..................................................................................................209
Configuring and Troubleshooting IPSec ..............................................................................210
Understanding the Architecture and Components of IPSec ..................................212
Enabling IPSec Through a Policy ......................................................................................216
Customizing IPSec ........................................................................................................................220
Managing and Monitoring IPSec ............................................................................................226
Exercises ........................................................................................................................................231
Review Questions ....................................................................................................................232
Answers to Review Questions ..............................................................................................233
Exam Questions ........................................................................................................................234
Answers to Exam Questions ................................................................................................239
00W2000 NITG-FM 7/11/00 10:51 AM Page viii
viii MCSE TRAINING GUIDE: WINDOWS 2000 NETWORK INFRASTRUCTURE
5 Installing, Configuring, Managing, Monitoring, and
Troubleshooting WINS in a Windows 2000
Network Infrastructure 241
Installing, Configuring, and Troubleshooting WINS ......................................................244
Introduction to WINS ..........................................................................................................244
Installing WINS ........................................................................................................................247
Configuring WINS ..................................................................................................................250
Configuring WINS Replication ........................................................................................254
Troubleshooting WINS Issues ..................................................................................................259
Configuring NetBIOS Name Resolution ............................................................................261
Managing and Monitoring WINS ..........................................................................................265
Exercises ........................................................................................................................................273
Review Questions ....................................................................................................................274
Exam Questions ........................................................................................................................274
Answers to Review Questions ..............................................................................................278
Answers to Exam Questions ................................................................................................279
6 Installing, Configuring, Managing, Monitoring, and
Troubleshooting IP Routing in a Windows 2000
Network Infrastructure 283
Installing, Configuring, and Troubleshooting IP Routing Protocols ........................286
Introduction to IP Routing ..................................................................................................286
Host Routing ..............................................................................................................................287
Router Routing ..........................................................................................................................289
The Routing Process ................................................................................................................292
Routing Technology ................................................................................................................295
Routing Networks ....................................................................................................................300
Setting Up Actual Routing Protocols ....................................................................................302
Working with RIP ....................................................................................................................303
RIP Routing Metric ................................................................................................................308
OSPF ..............................................................................................................................................309
Demand-Dial Routing ............................................................................................................321
Types of Demand-Dial Connections ................................................................................325
Demand-Dial Security ............................................................................................................328
Managing and Monitoring IP Routing ..................................................................................331
Using the ROUTE Command to Configure Static Routes ....................................331
Using Network Monitor ........................................................................................................333
Managing and Monitoring IP Routing Protocols ......................................................335
Exercises ........................................................................................................................................342
00W2000 NITG-FM 7/11/00 10:51 AM Page ix
CONTENTS ix
Review Questions ....................................................................................................................344
Exam Questions ........................................................................................................................344
Answers to Review Questions ..............................................................................................348
Answers to Exam Questions ................................................................................................349
7 Installing, Configuring, and Troubleshooting Network
Address Translation (NAT) 353
Installing Internet Connection Sharing ................................................................................356
Installing NAT ................................................................................................................................361
Configuring NAT Properties ......................................................................................................363
Configuring NAT Interfaces ......................................................................................................366
Exercises ........................................................................................................................................372
Review Questions ....................................................................................................................372
Exam Questions ........................................................................................................................373
Answers to Review Questions ..............................................................................................376
Answers to Exam Questions ................................................................................................377
8 Installing, Configuring, Managing, Monitoring,
and Troubleshooting Certificate Services 379
Introduction ......................................................................................................................................382
Looking at Public Key Infrastructure (PKI) ..................................................................382
Planning to Install a CA ........................................................................................................386
Renewing CAs ............................................................................................................................388
Installing the CA ............................................................................................................................389
Installing and Configuring an Enterprise Subordinate CA ....................................391
Installing and Configuring a Standalone Root CA ....................................................394
Upgrading Certificate Server 1.0 ........................................................................................394
Renewing Certificates for CAs ............................................................................................397
Issuing and Revoking Certificates ............................................................................................399
Using the Certificates Snap-In ............................................................................................399
Using the Windows 2000 Certificate Services Web Page ........................................400
Processing Requests ..................................................................................................................401
Checking on Pending Requests ..........................................................................................401
Mapping Certificates to User Accounts ..........................................................................403
Viewing an Issued Certificate ..............................................................................................405
Revoking Issued Certificates ................................................................................................406
Using the EFS Recovery Keys ....................................................................................................408
Exporting EFS Keys ................................................................................................................409
Restoring EFS Keys ..................................................................................................................411
00W2000 NITG-FM 7/12/00 8:35 AM Page x
x MCSE TRAINING GUIDE: WINDOWS 2000 NETWORK INFRASTRUCTURE
Exercises ........................................................................................................................................415
Review Questions ....................................................................................................................416
Exam Questions ........................................................................................................................416
Answers to Review Questions ..............................................................................................423
Answers to Exam Questions ................................................................................................424
PART II: Final Review
Fast Facts 429
Installing, Configuring, Managing, Monitoring, and Troubleshooting
DNS in a Windows 2000 Network Infrastructure ........................................................429
Installing, Configuring, Managing, Monitoring, and Troubleshooting
DHCP in a Windows 2000 Network Infrastructure ....................................................433
Configuring, Managing, Monitoring, and Troubleshooting Remote Access
in a Windows 2000 Network Infrastructure ....................................................................436
Installing, Configuring, Managing, Monitoring, and Troubleshooting
Network Protocols in a Windows 2000 Network Infrastructure ............................438
Installing, Configuring, Managing, Monitoring, and Troubleshooting
WINS in a Windows 2000 Network Infrastructure ......................................................440
Installing, Configuring, Managing, Monitoring, and Troubleshooting
IP Routing in a Windows 2000 Network Infrastructure ............................................442
Installing, Configuring, and Troubleshooting Network Address
Translation (NAT) ......................................................................................................................445
Installing, Configuring, Managing, Monitoring, and Troubleshooting
Certificate Services ......................................................................................................................446
Study and Exam Prep Tips 451
Learning Styles ................................................................................................................................451
Study Tips ..........................................................................................................................................452
Study Strategies ..........................................................................................................................452
Pre-Testing Yourself ..................................................................................................................453
Exam Prep Tips ................................................................................................................................453
The MCP Exam ........................................................................................................................453
Exam Format ..............................................................................................................................454
Question Types ..........................................................................................................................456
Putting It All Together ............................................................................................................461
Final Considerations ......................................................................................................................464
Description:Textbooks with proven classroom usage, books in the Training Guide series provide students with a complete package for their MCSE study. Not only is the content approved by Microsoft as Official Study Material, but the books are double tech-edited to insure accuracy, and every book in the series is
