Index_F

F

failback, 643

failover

defined, 436, 641

described, 643

multiple interconnections and, 664

ring, 651–652

server cluster deployment and, 647–653

Failure Audit event type, 585

fast zone transfers

with BIND, 395–396

support for, 377–378

fault tolerance

of DNS infrastructure, 462

of dynamic routing, 221, 222

of e-mail services, 17

forwarders and, 386

with hot spare drives, 624

in hub-and-spoke replication model, 436

Internet solutions, 619–620

of NetBIOS names, 417–418

network planning and, 15

network solutions, 619

number of DNS servers for, 369, 371

overview of, 627

planning for, 618–619, 629

RAID disk solutions, 620–624

in ring replication model, 435

in RIP networks, 229

of server cluster nodes, 642

server solutions, 624–625

with Windows Server 2003, 45

feature test description, 34

Federal Information Processing (FIPS) compliant encryption level, 131

Feistel, Horst, 864

Fibre Channel

Fibre Channel-based controller, 659

interface, 565

for server clustering, 643–644

file encryption keys, 122

File Replication Service log, 585

file servers

defined, 57

function of, 62–63

securing, 121–124

File Share resource, 642

File System, 94

File Transfer Protocol (FTP), 66

files, auditing, 822

filtering

filter lists/actions, 744–746

firewall packet, 762

modes for port rules, 679–680

packet filtering, 268–269, 279

records with WINS, 424

FIPS (Federal Information Processing) compliant encryption level, 131

firewall filters, 499–500

firewalls

for DoS attack protection, 407

IPSec/IKE traffic and, 723

NAT/IPSec traffic on, 711, 772

packet filtering with, 268–269, 762

for server cluster, 667

for Web server security, 127

See also Internet Connection Firewall (ICF)

five nines, 618–619

flat namespace, 418

Flexible Single Master of Operations (FSMO) roles

described, 59–60

importance of, 62

infrastructure master, 61

PDC emulator, 61

relative ID master, 60

floppy disk drive, 616

folders, auditing, 820–821, 822, 852

footprinting, 405

/force parameter, 136

foreign security principal, 793

forest

cross-domain relationships, 791–792

cross-forest relationships, 793–795

described, 361

functional level, upgrading, 32

functional levels, 87–90

operations master roles and, 59–62

root domain, 86, 361

smart card certificates and, 898

trust relationships between domains, 851

forest trusts

in AD security scenarios/solutions, 785

creating, 794–795

cross-forest relationships, 793

forest functional level and, 89

forest-wide operations master roles, 60

forward lookup record, 400–401

forward lookup zones

configuring, 353–354, 355–356

defined, 352

update with DNS/DHCP interaction, 387–389

forward-only server, 374, 384

forwarding. See conditional forwarding

forwarding address, 218

forwarding servers

described, 374–375

planning for, 383–387

FQDN. See fully qualified domain name (FQDN)

fragmentation, 566–568

freeloading, 813

front-end/back-end architecture, 681–682

FSMO roles. See Flexible Single Master of Operations (FSMO) roles

FTP (File Transfer Protocol), 66

full backup, 596–597, 599

Full Control permissions, 786

fully qualified domain name (FQDN)

changing, 353–354

period in, 345

troubleshooting host name resolution and, 454

functional levels

domain functional levels, 83–87, 792

forest functional levels, 87–90

remote access security and, 505–508