This chapter discusses network infrastructure with Domain Name System (DNS), one of the earliest of the many name resolution services available today. Whenever you surf the Web, you take advantage of DNS. This chapter covers the "Installing, Configuring, Managing, Monitoring, and Troubleshooting DNS in a Windows Server 2003 Network Infrastructure" objectives for Exam 70-291, "Implementing, Managing, and Maintaining a Microsoft Windows Server 2003 Network Infrastructure." One of the most important services in a Transmission Control Protocol/Internet Protocol (TCP/IP) infrastructureparticularly one running Active Directoryis DNS. This chapter examines all the facets of running the DNS server service in a Windows Server 2003 network. Microsoft lists the following objectives for the "Installing, Configuring, Managing, Monitoring, and Troubleshooting DNS in a Windows Server 2003 Network Infrastructure" section of Exam 70-291: Objectives Install and configure the DNS server service. Configure DNS server options. Configure DNS zone options. Configure DNS forwarding. One of your first tasks when getting ready to deploy a production Windows Server 2003 network environment is to ensure that DNS is installed and configured correctly. DNS is the foundation on which Active Directory relies, and you need to have a thorough understanding not only of the Windows Server 2003 DNS server service, but also of how DNS itself functions. This objective expects you to be able to install DNS, configure it for use in an Active Directory network, and test it to make sure it is functioning. Manage DNS. Manage DNS zone settings. Manage DNS record settings. Manage DNS server options. This objective requires you to be able to maintain a DNS server after it is installed and configured. Your DNS server will be of little use if you cannot properly administer it, and with Active Directory's reliance on DNS, a poorly administered DNS server can lead to a host of other problems. Monitor DNS. Tools might include System Monitor, Event Viewer, Replication Monitor, and DNS debug logs. This objective requires you to be able to monitor a DNS server after it is installed and configured. The ability to monitor the DNS server's activities and ensure that the server is functioning properly is critical to the ongoing administration of a Windows Server 2003 network, particularly a network that relies on Active Directory. Outline Introduction | 142 | Introducing DNS | 142 | The History of DNS
| 143 | The DNS Database
| 144 | DNS Domains Defined
| 145 | DNS Zones
| 148 | Forward Lookup Zones
| 150 | Reverse Lookup Zones
| 150 | Stub Zones
| 150 | Zone Delegation
| 151 | Zone Transfers
| 151 | DNS Server Roles
| 152 | The Name Resolution Process
| 153 | Reverse Lookups
| 155 | DNS Record Types
| 156 | DNS Naming Conventions
| 158 | What's New with Windows Server 2003 DNS | 158 | Installing and Configuring the DNS Server Service | 160 | Installing the DNS Server Service
| 160 | Examining DNS Server Options
| 162 | The Interfaces Tab
| 163 | The Forwarders Tab
| 164 | The Advanced Tab
| 167 | The Root Hints Tab
| 168 | The Debug Logging Tab
| 169 | The Event Logging Tab
| 169 | The Monitoring Tab
| 170 | The Security Tab
| 171 | Configuring Caching-Only Servers
| 172 | Configuring Zones
| 175 | Examining Zone Options
| 182 | The General Tab
| 183 | The Start of Authority (SOA) Tab
| 186 | The Name Servers Tab
| 187 | The WINS Tab
| 188 | The Zone Transfers Tab
| 189 | The Security Tab
| 190 | Configuring DNS Client Computers
| 190 | Testing the DNS Service
| 196 | Using ping to Test the DNS Service
| 196 | Using nslookup to Test the DNS Service
| 197 | Using a Web Browser to Test the DNS Service
| 199 | Integrating Active Directory and DNS | 201 | Configuring Existing Zones for Active Directory Integration
| 201 | Creating New Active Directory-integrated Zones
| 205 | The DNS and Active Directory Relationship
| 207 | Managing and Monitoring DNS | 207 | Capabilities of the DNS Console
| 208 | Configuring Aging/Scavenging
| 208 | Scavenging Stale Resource Records Manually
| 211 | Implementing Delegated Zones for DNS
| 211 | Manually Creating DNS Resource Records
| 215 | Monitoring the DNS Service
| 216 | The Server Properties Monitoring Tab
| 216 | System Monitor
| 217 | Event Viewer
| 220 | The DNS Debug Log
| 222 | Replication Monitor
| 222 | Securing DNS
| 222 | Chapter Summary | 224 | Key Terms | 224 | Apply Your Knowledge | 225 | Exercises
| 225 | Exam Questions
| 227 | Answers to Exam Questions
| 231 | Suggested Reading and Resources | 233 |
Study Strategies Understand what DNS is, how it works, why it was created, and what enhancements Microsoft made to DNS for Active Directory. DNS provides the name resolution backbone for the Internet today. With the introduction of Active Directory, it is now also the backbone of Microsoft's name resolution solution. Understand the relationship between DNS and Dynamic Host Configuration Protocol (DHCP) and how dynamic DNS (DDNS) works. Understand the variety of zone types and DNS server types that Microsoft Windows Server 2003 DNS server service supports. You need to know how the zone and DNS server types work and when you might use them in a production environment. Closely review the Step by Steps and the exercises at the end of this chapter so that you can completely prepare for the questions on Exam 70-291. Take the next step, and experiment with the system. The Step by Steps in this chapter provide good guidelines, but you should see what happens when you select other settings, delete entries or entire servers, and do anything else you can think of. It is best to make mistakes in a lab environment; these mistakes will help you prepare for the exam. |