Index_I

I

I/O ports, 259

IAB (Internet Architecture Board), 160

IAS. See Internet Access Server (IAS); Internet Authentication Service (IAS)

IAS management console, 312–313

IAS software development kit (SDK), 313

ICANN (Internet Corporation for Assigned Names and Numbers), 357, 358

ICF (Internet Connection Firewall), 162

ICMP (Internet Control Message Protocol), 162, 215

ICMP (Internet Control Message Protocol) Router Discovery, 159

ICMP tab, 295

ICS. See Internet Connection Sharing (ICS)

ICV (integrity check value), 720

idle timeout, 525, 526–527

IE (Internet Explorer), 96

iesacls template, 96

IETF (Internet Engineering Task Force), 710, 770

IGMP (Internet Group Messaging Protocol), 429, 430

IGMPv3, 165

IGPs (interior gateway protocols), 225

IIS. See Internet Information Services (IIS) 6.0

IKE. See Internet Key Exchange (IKE)

in-addr.arpa, 352

in-band DoS attack, 406

in-house applications, 130

#INCLUDE tag, 420

Incoming Forest Trust Builders group, 795

incoming ports, 491–492

incremental backup, 597–598, 599

incremental zone transfer (IXFR), 347–348, 363

indexing service, 22–23

InetOrgPerson object class, 86, 87

Information event type, 585

information flow factors, 11–12

Information Technology (IT) management structure, 14

Infrared Data Association (IrDA), 806

infrastructure. See Public Key Infrastructure (PKI)

infrastructure master, 61

infrastructure mode, 801

infrastructure planning

group policy modeling report, 4–9

network design, 9–11

overview of, 2–3, 40, 43–45

strategies, 3

tools for, 3–4

initialization vector (IV), 815

input filters, 268–269

installation, network, 10

integrity check value (ICV), 720

integrity, data, 864

intelligent hub, 240

interconnect

adapter settings, 666

configuring interconnect networks, 663

interface, configuring, 664–665

multiple interconnections, 664

server cluster security, 668

TCP/IP settings, 666–667

interface

for default route, choosing, 250–251

demand-dial interface, 261–262, 293, 304–306

field in route entry, 218

network, 260, 291, 292

interface metric. See metric

interior gateway protocols (IGPs), 225

internal cluster communications only (private network), 662–663, 668

internal DNS infrastructure, 411–412

internal DNS root zone, 367–368

internal domain name, 363–365

internal domain namespaces, 368–369

internal network, 358–359

internal router, 232

International Organization for Standardization (ISO), 160

Internet

access, DNS security and, 404

connecting LAN to, 289–300

fault tolerance solutions, 619–620

TCP/IP and, 152–153

Internet Access Server (IAS)

for authentication, 532

for wireless connections, 501, 503–504

Internet Architecture Board (IAB), 160

Internet Authentication Service (IAS), 308–318

access server support, 318

advantages of, 308–309

authentication methods, 314–317

authorization methods, 317

configuring with wireless networking, 811–812

management of, 309–313

outsourced dialing, 318

questions about, 328, 329

summary of, 327

for wireless authentication, 802

Internet-based VPNs

communications in, 301–302

configuring, 302–303

reason to use, 301

Internet Connection Firewall (ICF), 162

Internet Connection Sharing (ICS)

activating, 297–298

adding custom service, 299–300

configuring, 298–299

limitations of, 297

Internet connectivity strategy, 288–325

connecting LAN to the Internet, 289–300

overview of, 288

using Connection Manager, 318–325

using Internet Authentication Service, 308–318

virtual private networks, implementing, 300–308

Internet Control Message Protocol (ICMP), 162, 215

Internet Control Message Protocol (ICMP) Router Discovery, 159

Internet Corporation for Assigned Names and Numbers (ICANN), 357, 358

Internet Engineering Task Force (IETF), 710, 770

Internet Explorer (IE), 96

Internet Group Messaging Protocol (IGMP), 429, 430

Internet Information Services (IIS) 6.0

on application server, 130

application server and, 75

installing, 67–68

setting up, 139

Web server protocols, 66

Web server security, 126–127

Internet Key Exchange (IKE)

audit disabling, 755

defined, 713

detailed tracing, 757–758

dynamic mode commands and, 749

IPSec and, 721–722

Internet layer, TCP/IP, 162

Internet name resolution, 367

Internet Protocol Next Generation (IPng), 215

Internet Protocol Security (IPSec)

components, 724–725

for data integrity/sender authentication, 496–497

deployment, 726–728, 770

diagnostics with netsh, 750

driver, 725–726

for encryption during transmission, 124

filtering, 710–711, 728

IP Security Policy Management MMC Snap-in, 728–731

IPv6 and, 726

with L2TP, 532

managing, 728, 771

modes, 717–718

monitoring, 749–751

netsh command-line utility, 731–732

overview of, 710–712

performance and, 569

policies, AD based, 747–749

policies, assigning/applying in Group Policy, 746–747

policies, custom, 734–746

policies, default, 732–734

policy precedence, 752

policy security levels, 727–728

process, 713–717

protocols, 718–724

RSoP for planning, 765–768, 771

securing IP packets with, 257–258

security considerations, 761–764, 771

service, 739

summary of, 769–770

terminology/concepts, 712–713

test lab, 746

troubleshooting, 751–761

for VPN security, 307–308

when not to use, 712

for wireless security, 816

for zone replication security, 382

internet research, 23

Internet Security Association and Key Management Protocol (ISAKMP)

defined, 713

IPSec and, 258, 721–722

Internet Service Provider (ISP), 290

Internet Software Consortium (ISC), 393

Internetwork Packet Exchange/Sequenced Packet Exchange (IPX/SPX), 152

InterNic.net Web site, 359

interrupts, 563–564

Intervals tab, 447

intranet

domain namespace choices for, 363–365

Web server for, 65–66

IP address

allocating for remote access, 490–491

configuring for NLB Manager, 689–690

DNS installation and, 354

DNS servers and, 64–65

formats/types of, 213

host names and, 339

issued by DHCP server, 63–64

multihomed WINS server and, 439–440

multiple gateways for, 223

name resolution with hosts file, 339–340

NAT and, 214–215

NetBIOS over TCP/IP and, 338

for new server cluster, 673–674

NLB traffic distribution and, 679–680

for PPP connections, 528

routed connections and, 289–290

routing tables and, 217–218

settings for interconnects, 666–667

as software address, 277

troubleshooting NetBIOS name resolution and, 459

for Windows Server 2003 as router, 245

WINS name registration, 422

WINS server and, 65

See also Transmission Control Protocol/Internet Protocol (TCP/IP) infrastructure

IP Address Assignment window, 265

IP Address resource, 642

IP addressing

public class, 203

requirements, analyzing, 171–172

for routed connections, 290

strategy, 201

troubleshooting, 181–183

IP packet filters, 528

IP properties, 294

IP routing, 270–276

See also routing strategy

IP Security Monitor MMC snap-in, 750, 753–754

IP Security Policy Management MMC Snap-in

described, 711

IPSec, viewing with, 752

overview of, 714

using, 728–731

IP Security Policy Wizard, 735–744

IP version 4 (IPv4), 215–216

IP version 6 (IPv6)

6bone, 193

6to4 tunneling, 192

described, 215–216

Helper service, 192

installation of, 184–189

IPsec6.exe, 190–191

Netsh commands with, 189–190

overview of, 165–166

PING/Tracert parameters, 191–192

Teredo, 193

transitioning to, 183–184

utilities, 184

ipconfig, 160

ipconfig /all, 454, 457

ipconfig /registerdns, 454, 455

IPng (Internet Protocol Next Generation), 215

IPSec. See Internet Protocol Security (IPSec)

IPSec Policy Agent, 724–725

IPsec6.exe, 190–191

ipseccmd.exe, 760

ipsecmon command, 750, 753–754

ipsecpol.exe, 731

IPv4 (IP version 4), 215–216

IPv6. See IP version 6 (IPv6)

IPX/SPX (Internetwork Packet Exchange/Sequenced Packet Exchange), 152

IrDA (Infrared Data Association), 806

ISAKMP. See Internet Security Association and Key Management Protocol (ISAKMP)

ISC (Internet Software Consortium), 393

ISO (International Organization for Standardization), 160

ISP (Internet Service Provider), 290

IT (Information Technology) management structure, 14

iterative query, 348–349, 473

IV (initialization vector), 815

IXFR (incremental zone transfer), 347–348, 363