|
I/O ports, 259
IAB (Internet Architecture Board), 160
IAS. See Internet Access Server (IAS); Internet Authentication Service (IAS)
IAS management console, 312–313
IAS software development kit (SDK), 313
ICANN (Internet Corporation for Assigned Names and Numbers), 357, 358
ICF (Internet Connection Firewall), 162
ICMP (Internet Control Message Protocol), 162, 215
ICMP (Internet Control Message Protocol) Router Discovery, 159
ICMP tab, 295
ICS. See Internet Connection Sharing (ICS)
ICV (integrity check value), 720
idle timeout, 525, 526–527
IE (Internet Explorer), 96
iesacls template, 96
IETF (Internet Engineering Task Force), 710, 770
IGMP (Internet Group Messaging Protocol), 429, 430
IGMPv3, 165
IGPs (interior gateway protocols), 225
IIS. See Internet Information Services (IIS) 6.0
IKE. See Internet Key Exchange (IKE)
in-addr.arpa, 352
in-band DoS attack, 406
in-house applications, 130
#INCLUDE tag, 420
Incoming Forest Trust Builders group, 795
incoming ports, 491–492
incremental backup, 597–598, 599
incremental zone transfer (IXFR), 347–348, 363
indexing service, 22–23
InetOrgPerson object class, 86, 87
Information event type, 585
information flow factors, 11–12
Information Technology (IT) management structure, 14
Infrared Data Association (IrDA), 806
infrastructure. See Public Key Infrastructure (PKI)
infrastructure master, 61
infrastructure mode, 801
infrastructure planning
group policy modeling report, 4–9
network design, 9–11
overview of, 2–3, 40, 43–45
strategies, 3
tools for, 3–4
initialization vector (IV), 815
input filters, 268–269
installation, network, 10
integrity check value (ICV), 720
integrity, data, 864
intelligent hub, 240
interconnect
adapter settings, 666
configuring interconnect networks, 663
interface, configuring, 664–665
multiple interconnections, 664
server cluster security, 668
TCP/IP settings, 666–667
interface
for default route, choosing, 250–251
demand-dial interface, 261–262, 293, 304–306
field in route entry, 218
network, 260, 291, 292
interface metric. See metric
interior gateway protocols (IGPs), 225
internal cluster communications only (private network), 662–663, 668
internal DNS infrastructure, 411–412
internal DNS root zone, 367–368
internal domain name, 363–365
internal domain namespaces, 368–369
internal network, 358–359
internal router, 232
International Organization for Standardization (ISO), 160
Internet
access, DNS security and, 404
connecting LAN to, 289–300
fault tolerance solutions, 619–620
TCP/IP and, 152–153
Internet Access Server (IAS)
for authentication, 532
for wireless connections, 501, 503–504
Internet Architecture Board (IAB), 160
Internet Authentication Service (IAS), 308–318
access server support, 318
advantages of, 308–309
authentication methods, 314–317
authorization methods, 317
configuring with wireless networking, 811–812
management of, 309–313
outsourced dialing, 318
questions about, 328, 329
summary of, 327
for wireless authentication, 802
Internet-based VPNs
communications in, 301–302
configuring, 302–303
reason to use, 301
Internet Connection Firewall (ICF), 162
Internet Connection Sharing (ICS)
activating, 297–298
adding custom service, 299–300
configuring, 298–299
limitations of, 297
Internet connectivity strategy, 288–325
connecting LAN to the Internet, 289–300
overview of, 288
using Connection Manager, 318–325
using Internet Authentication Service, 308–318
virtual private networks, implementing, 300–308
Internet Control Message Protocol (ICMP), 162, 215
Internet Control Message Protocol (ICMP) Router Discovery, 159
Internet Corporation for Assigned Names and Numbers (ICANN), 357, 358
Internet Engineering Task Force (IETF), 710, 770
Internet Explorer (IE), 96
Internet Group Messaging Protocol (IGMP), 429, 430
Internet Information Services (IIS) 6.0
on application server, 130
application server and, 75
installing, 67–68
setting up, 139
Web server protocols, 66
Web server security, 126–127
Internet Key Exchange (IKE)
audit disabling, 755
defined, 713
detailed tracing, 757–758
dynamic mode commands and, 749
IPSec and, 721–722
Internet layer, TCP/IP, 162
Internet name resolution, 367
Internet Protocol Next Generation (IPng), 215
Internet Protocol Security (IPSec)
components, 724–725
for data integrity/sender authentication, 496–497
deployment, 726–728, 770
diagnostics with netsh, 750
driver, 725–726
for encryption during transmission, 124
filtering, 710–711, 728
IP Security Policy Management MMC Snap-in, 728–731
IPv6 and, 726
with L2TP, 532
managing, 728, 771
modes, 717–718
monitoring, 749–751
netsh command-line utility, 731–732
overview of, 710–712
performance and, 569
policies, AD based, 747–749
policies, assigning/applying in Group Policy, 746–747
policies, custom, 734–746
policies, default, 732–734
policy precedence, 752
policy security levels, 727–728
process, 713–717
protocols, 718–724
RSoP for planning, 765–768, 771
securing IP packets with, 257–258
security considerations, 761–764, 771
service, 739
summary of, 769–770
terminology/concepts, 712–713
test lab, 746
troubleshooting, 751–761
for VPN security, 307–308
when not to use, 712
for wireless security, 816
for zone replication security, 382
internet research, 23
Internet Security Association and Key Management Protocol (ISAKMP)
defined, 713
IPSec and, 258, 721–722
Internet Service Provider (ISP), 290
Internet Software Consortium (ISC), 393
Internetwork Packet Exchange/Sequenced Packet Exchange (IPX/SPX), 152
InterNic.net Web site, 359
interrupts, 563–564
Intervals tab, 447
intranet
domain namespace choices for, 363–365
Web server for, 65–66
IP address
allocating for remote access, 490–491
configuring for NLB Manager, 689–690
DNS installation and, 354
DNS servers and, 64–65
formats/types of, 213
host names and, 339
issued by DHCP server, 63–64
multihomed WINS server and, 439–440
multiple gateways for, 223
name resolution with hosts file, 339–340
NAT and, 214–215
NetBIOS over TCP/IP and, 338
for new server cluster, 673–674
NLB traffic distribution and, 679–680
for PPP connections, 528
routed connections and, 289–290
routing tables and, 217–218
settings for interconnects, 666–667
as software address, 277
troubleshooting NetBIOS name resolution and, 459
for Windows Server 2003 as router, 245
WINS name registration, 422
WINS server and, 65
See also Transmission Control Protocol/Internet Protocol (TCP/IP) infrastructure
IP Address Assignment window, 265
IP Address resource, 642
IP addressing
public class, 203
requirements, analyzing, 171–172
for routed connections, 290
strategy, 201
troubleshooting, 181–183
IP packet filters, 528
IP properties, 294
IP routing, 270–276
See also routing strategy
IP Security Monitor MMC snap-in, 750, 753–754
IP Security Policy Management MMC Snap-in
described, 711
IPSec, viewing with, 752
overview of, 714
using, 728–731
IP Security Policy Wizard, 735–744
IP version 4 (IPv4), 215–216
IP version 6 (IPv6)
6bone, 193
6to4 tunneling, 192
described, 215–216
Helper service, 192
installation of, 184–189
IPsec6.exe, 190–191
Netsh commands with, 189–190
overview of, 165–166
PING/Tracert parameters, 191–192
Teredo, 193
transitioning to, 183–184
utilities, 184
ipconfig, 160
ipconfig /all, 454, 457
ipconfig /registerdns, 454, 455
IPng (Internet Protocol Next Generation), 215
IPSec. See Internet Protocol Security (IPSec)
IPSec Policy Agent, 724–725
IPsec6.exe, 190–191
ipseccmd.exe, 760
ipsecmon command, 750, 753–754
ipsecpol.exe, 731
IPv4 (IP version 4), 215–216
IPv6. See IP version 6 (IPv6)
IPX/SPX (Internetwork Packet Exchange/Sequenced Packet Exchange), 152
IrDA (Infrared Data Association), 806
ISAKMP. See Internet Security Association and Key Management Protocol (ISAKMP)
ISC (Internet Software Consortium), 393
ISO (International Organization for Standardization), 160
ISP (Internet Service Provider), 290
IT (Information Technology) management structure, 14
iterative query, 348–349, 473
IV (initialization vector), 815
IXFR (incremental zone transfer), 347–348, 363
|