|
N-node failover pairs deployment option, 648–649
name checking, 396
name mappings, 444
name release update, 427
name resolution
with DNS server, 64–65
feature of NAT, 214, 294
overview of, 336
of server cluster, 643
with WINS server, 65
name resolution strategy, host name resolution, 337–417
DNS basics, 341, 344–353
DNS/DHCP interaction, 387–392
DNS namespace, designing, 357–369
DNS security issues, 404–412
DNS server deployment, planning, 369–377
forwarding, planning for, 383–387
host names, 338–339
hosts file, 339–341
installing DNS service/configuring reverse lookup zones, 353–357
monitoring DNS servers, 412–417
necessity of, 337
NetBIOS over TCP/IP, 338
resource records, 342–344
summary of, 461–464
Windows Server 2003 DNS interoperability, 392–404
zone replication, 377–383
name resolution strategy, NetBIOS name resolution, 417–452
LMHOSTS file, 420–421
multihomed WINS servers, 439–440
need for, 417–418
NetBIOS names, 418
process of, 418–420
split WINS registrations, preventing, 444
static WINS entries, 438–439
summary of, 464–468
WINS basics, 421–423
WINS client configuration, 440–444
WINS database backup/restoration, 451–452
WINS improvements, 424
WINS performance issues, 444–449
WINS replication, planning for, 427–437
WINS security issues, 449–451
WINS server deployment, planning, 424–426
name resolution, troubleshooting, 452–460
in general, 452–453
host name resolution, 453–457
key points about, 471
NetBIOS name resolution, 457–460
summary of, 468–469
Name Server (NS) records
delegating authority to child domain, 347
disjointed namespaces and, 365, 366
in DNS name resolution process, 350
internal DNS root zone deployment and, 367
of resource record, 342–343
in reverse lookup zone, 356
namespaces
internal domain namespace guidelines, 368–369
split DNS configuration, 398–399
supporting multiple, 363–369
See also Domain Name Service (DNS) namespace
NAQC. See Network Access Quarantine Control (NAQC)
NAS-Port-Type attribute, 521–522
NAT. See Network Address Translation (NAT)
NAT/Basic Firewall tab, 295
NAT traversal, 723
National Security Agency (NSA), 864
native mode, 32
natural disasters, 114
NBMA (non-broadcast multiple access), 231
nbstat command, 442–443, 457
nbstat -RR command, 426, 442
ND (Neighbor Discovery), 183–184
NDIS (Network Driver Interface Specification), 148–149, 163
NDS (Netware Services Directory), 153
negative answer, 351–352
Neighbor Discovery (ND), 183–184
nested contexts, 236
nesting
group nesting, 791
security/distribution groups, 86
net start command, 448
net stop command, 448
NetBEUI, 338
NetBIOS
described, 152
disabling, 198
name, defined, 418
names in Windows Server 2003, 139
node types, 419, 465
scopes, 402
security issues, 449–450
NetBIOS name resolution, 417–452
host name resolution and, 337
key points about, 470–471
LMHOSTS file, 420–421
multihomed WINS servers, 439–440
need for, 417–418
NetBIOS names, 418
process of, 418–420
split WINS registrations, preventing, 444
static WINS entries, 438–439
summary of, 461, 464–469
support with WINS, 399–400
troubleshooting, 453, 457–460
WINS basics, 421–423
WINS client configuration, 440–444
WINS database backup/restoration, 451–452
WINS improvements, 424
WINS performance issues, 444–449
WINS replication, 427–437
WINS security issues, 449–451
with WINS server, 65
WINS server deployment, 424–426
NetBIOS over TCP/IP (NetBT)
described, 338
troubleshooting name resolution and, 453
WINS client configuration and, 440–441
WINS server security and, 126
NetBT. See NetBIOS over TCP/IP (NetBT)
netdiag tool, 751
netdom trust command, 793, 794
netlogon service, 388
netlogon.dns file, 363
netmask, 217–218
netsh command-line utility
commands, using, 233–236
controlling with, 731–732
IPSec driver logging and, 756
IPSec monitoring with, 749–750
overview of, 189–190
for troubleshooting routing, 273
for WINS server configuration, 426
netsh dynamic mode policy, 749–750
netsh ipsec command, 750
Netware Services Directory (NDS), 153
network
cluster network configuration, 662–667
components, performance and, 568–570
destination in route entry, 217
fault tolerance solutions, 619
subnetting, 177–180
test, 30–33
types, 231–232
Network Access Quarantine Control (NAQC)
described, 514
to restrict client access, 329
restricting access by client configuration, 524
network adapters
multiple, 154
multiple, for NLB, 689, 690
for Windows Server 2003 as router, 245
Network Address Translation (NAT)
components, 214–215
configuring NAT connection, 295–296
on firewalls, 772
Internet Connection Sharing, 297–300
managing, 294
NAT server, installing, 291–293
NAT server tasks, 296–297
questions/answers about, 328, 329
Teredo and, 193
Network Driver Interface Specification (NDIS), 148–149, 163
network ID route, 217
network interface adapter, 701
network interface card (NIC)
duplex setting of, 570
fault tolerance of, 619
performance and, 568, 569, 570
network interface controllers, 658–659
Network Interface layer, TCP/IP, 162–163
network interfaces
minimizing number of, 260
on NAT server, 291, 292
Network Interfaces node, 304–306
network latency, 647
Network layer, OSI model
function of, 237–238
Layer 3 switches operate at, 244
network that requires, 239
Network Load Balancing (NLB), 678–698
best practices, 689–691
creating NLB cluster, 691–698
display command, 689
function of, 678
Internet and, 619
managing clusters, 682–687
monitoring, 687–689
overview of, 640
questions/answers about, 701–702
relationship to clustering, 681–682
summary of, 699, 700
terminology/concepts, 678–681
network mask, 217
Network Monitor
described, 195–196
for IPSec Protocol determination, 719
IPSec troubleshooting with, 759–760
for network planning, 4
System’s Management Server, 759
for troubleshooting routing, 271
Network Name resource, 642
Network News Transfer Protocol (NNTP), 66, 299–300
network priorities, 677
Network Priority property, 665
network services, 31
network testing. See test environment
network topology
DNS server deployment and, 369
replication models and, 434
simplifying for routing security, 259–262
WINS replication and, 427–428
New Delegation Wizard, 347, 357
New Server Cluster Wizard, 654, 663, 671–676
Next Header field, 720, 721
next-hop interface, 217
next-hop IP address
defined, 217
in route entry, 218
See also gateway
NIC. See network interface card (NIC)
NLB. See Network Load Balancing (NLB)
NLB Manager
accessing, 683
creating NLB cluster with, 691–698
drainstop option, 687
monitoring with, 687–688
NLB.exe utility and, 684
remote management with, 683–684
security with, 691
tasks with, 682–683
NLB query, 688–689
NLB.exe utility
for administrative tasks, 682
command-line parameters used with, 684–687
for status information, 688
NNTP (Network News Transfer Protocol), 66, 299–300
node-to-node communication, 664–665
nodes
cluster nodes, 436, 445, 657
server cluster, 641–642
non-broadcast multiple access (NBMA), 231
non-repudiation, 864
nonauthoritative response, 371, 473
nonclustered network (disabled), 663
nonrecursive servers, 375
nonroutable transport protocols, 150
normal backup, 596–597, 599
notation, CIDR, 180, 203
notify list, 378
NS records. See Name Server (NS) records
NSA (National Security Agency), 864
NSLookup
footprinting with, 405
for monitoring DNS servers, 417
reverse lookup zones used by, 352
troubleshooting host name resolution with, 454, 455
NTDS.dit file, 59
NTFS
for application server security, 130
partitions, 129
security with, 119–120
volumes, EFS encryption and, 123–124
volumes on file server, 122
NTFS permissions
described, 22
for server cluster security, 669
settings, 788–789
|