Chapter 1, Introduction to Networking Services Design

|1| 1. Welcome to Designing a Microsoft Windows 2000 Network Infrastructure

A. This course will help to prepare you to take MCSE Exam 70-221: Designing a Microsoft Windows 2000 Network Infrastructure.

Note The following prerequisites for this course are as follows:

1. To succeed in the course, you should already have the skills to pass MCSE Exam 70-216: Implementing and Administering a Microsoft Windows 2000 Network Infrastructure.

2. You must be able to use the following Windows 2000 technologies:

a. Domain Name System (DNS): install the DNS Server service, configure DNS clients, implement a delegated zone for DNS, and create DNS resource records

b. Dynamic Host Configuration Protocol (DHCP): install the DHCP Server service, manage DHCP scopes, integrate DNS, and authorize a DHCP server in the Active Directory directory service

c. Remote access: create policies and configure a virtual private network (VPN), security, and profiles

d. Network protocols: configure TCP/IP and packet filters, install NWLink, configure network bindings and network protocol security, manage and monitor traffic, and configure Internet Protocol Security (IPSec)

e. Windows Internet Name Service (WINS): configure WINS replication and NetBIOS name resolution

f. IP routing: manage IP routing protocols, update routing tables, and implement demand-dial routing

g. Network Address Translation (NAT): install Internet Connection Sharing and configure NAT properties and interfaces

h. Certificate Services: configure Certification Authorities (CAs), and issue and revoke certificates

|2| 2. Course Materials

A. Student textbook

1. Presents the primary course content

2. Is formatted to follow the MCSE exam objectives

3. Includes practice exercises and review questions

B. Project Manual

1. Corresponds to the textbook chapters

2. Includes projects for classroom use

C. Supplemental course materials (on the Student CD)

1. Contains Microsoft PowerPoint slides based on the chapters

2. Includes an electronic version of the textbook (eBook)

3. Presents information about preparing for an IT career

|3| 3. Course Overview

A. Chapter 1: Introduction to Networking Services Design

1. Explain what constitutes a successful network services design.

2. Describe the possible components of a Windows 2000 network.

3. Explain how a networking services design fits into the network deployment cycle.

B. Chapter 2: Networking Protocol Design

1. Use TCP/IP as the foundation of your network infrastructure.

2. Evaluate and optimize TCP/IP designs.

C. Chapter 3: Multiprotocol Network Design

1. Include networking protocols appropriately in network designs.

2. Optimize network access and secure data over the network.

3. Optimize network protocols for better performance.

D. Chapter 4: IP Routing Designs

1. Use IP routing services appropriately.

2. Identify the routing protocols that are best for a given situation.

3. Secure and optimize data transfer between network segments and locations.

E. Chapter 5: Multiprotocol Routing Designs

1. Implement Internetwork Packet Exchange (IPX) and AppleTalk routing services appropriately.

2. Explain which routing protocols can reduce network traffic when using IPX or AppleTalk routing tables.

3. Secure confidential data between network segments and locations and optimize the data reliability.

4. Optimize the aggregate data transfer rate.

|4| F. Chapter 6: Proxy Server in Internet and Intranet Designs

1. Use Proxy Server appropriately in a network design.

2. Connect the appropriate software to the Internet using Proxy Server.

3. Restrict access to Internet or intranet sites using Proxy Server.

4. Secure and optimize Proxy Server.

G. Chapter 7: NAT in Internet and Intranet Designs

1. Use the NAT protocol appropriately in network designs.

2. Connect client computer operating systems and software to the Internet through NAT.

3. Identify the APIs and protocols that can use NAT.

4. Improve Internet performance and connectivity.

H. Chapter 8: DHCP in IP Configuration Designs

1. Use DHCP services to provide automatic IP configuration for client computers.

2. Use DHCP to properly configure client computers for reliability and performance.

I. Chapter 9: DNS in Name Resolution Designs

1. Use DNS services appropriately to resolve resource names to IP addresses.

2. Include the proper elements in your DNS design to support Active Directory directory service, WINS, and other DNS servers.

3. Ensure DNS database integrity.

J. Chapter 10: WINS in Name Resolution Designs

1. Use WINS services appropriately to resolve resource names to IP addresses.

2. Integrate WINS with DNS and other WINS servers.

3. Ensure WINS database integrity.

4. Ensure that NetBIOS name resolution is always available to users.

|5| K. Chapter 11: Dial-Up Connectivity in Remote Access Designs

1. Incorporate dial-up remote access into your network design using the Routing and Remote Access feature.

2. Integrate remote access with other Windows 2000 networking services.

3. Improve the security, performance, and availability of your remote access design.

L. Chapter 12: VPN in Remote Access Designs

1. Provide VPN remote access using the Routing and Remote Access feature.

2. Improve VPN security, performance, and availability.

M. Chapter 13: RADIUS in Remote Access Designs

1. Incorporate Remote Authentication Dial-In User Service (RADIUS) into your network design.

2. Securely and effectively use RADIUS for remote access, user authentication, auditing, and accounting.

N. Chapter 14: Monitoring and Managing a Microsoft Windows 2000 Network

1. Incorporate management features into your design to monitor networking services.

2. Customize your management design to respond to changes in networking services.

O. Chapter 15: Networking Services Design Optimization

1. Evaluate and recognize network designs that require optimization.

2. Optimize a design to protect network data.

|6| 4. Chapter 1 Overview

A. Networking services included in Windows 2000

1. Define a networking services design and explain how to create a successful design.

2. Describe how networking services design fits into overall network deployment.

B. The network deployment process

1. Explain the three phases of the network deployment process.

a. Design

b. Implementation

c. Management

2. Describe the different types of job functions for each phase of network deployment (who is involved in design, implementation, and management)

C. Components of a networking services design

1. Turn business goals into design requirements.

2. Create and refine your design.

3. Evaluate existing designs.

4. Design the network from the aspects of security, availability, performance, and cost.

Chapter 1, Lesson 1

Windows 2000 Networking Services Overview

|7| 1. Networking Services Within a Network

A. A network includes all the hardware and software components you need for connecting devices within your organization and with other organizations.

B. The networking services run on the communications protocols and physical networking hardware within the network.

|8| C. In this class you learn to evaluate and create a design for networking services.

1. Many network designs use multiple protocols such as TCP/IP, IPX/SPX, AppleTalk, and Systems Network Architecture (SNA).

2. Your design will probably need to include multiprotocol routing between different network segments.

3. Security is an important component of any network services design.

4. You must provide connectivity to Web-based applications inside the organization and over the Internet.

5. Automatic IP configuration is often used in the design.

6. You must consider providing name resolution on the network.

7. Remote access is becoming a frequent consideration in network services design.

8. You must provide a cost-effective way to manage the network services in your design.

|9| 2. Networking Services in Windows 2000

A. Routing and Remote Access routing

1. Provides IP routing in Windows 2000

2. Is a multiprotocol router supporting IP, IPX, and AppleTalk

3. Supports static and dynamic routing

4. Provides IP unicast and multicast routing

5. Can include demand-dial routing over dial-up WAN links

6. Provides VPN support for PPTP and L2TP, IP and IPX packet filtering, and DHCP relay agent for IP

7. Provides media support

B. NAT

1. Is the protocol used by Routing and Remote Access

2. Hides the internal network structure and private network IP addresses from the public Internet, thereby reducing the risk of attack

3. Can reduce IP registration costs by supporting private IP addressing schemes

C. Microsoft Proxy Server 2.0

1. Works like a firewall to protect a private network

2. Controls the exchange of information between a private network and the Internet

3. Improves the performance of Internet access

D. DHCP

1. Requires every computer in a network design to have a unique computer name and IP address

2. Allows DHCP servers to dynamically manage the IP addresses and other configuration information

3. Makes it easier to configure TCP/IP

4. Allows you to dynamically reconfigure clients when moving from subnet to subnet

|10| E. DNS

1. Registers and resolves domain names within the network

2. Resolves fully qualified domain names to an IP address

3. Uses a DNS database to match names to IP addresses

F. WINS

1. Resolves the IP address associated with a network computer

2. Uses a distributed database to automatically register and query NetBIOS names

3. Should be included in designs that require NetBIOS name resolution in an IP routed environment

G. Routing and Remote Access

1. The Routing and Remote Access service provides remote user access.

2. Use Routing and Remote Access in designs whenever you provide dial-up or VPN remote access.

H. RADIUS

1. Remote Authentication Dial-In User Service (RADIUS) allows you to authenticate remote users by using network access servers (NASs) outside the private network.

2. RADIUS protocol is often used by ISPs for authentication and accounting.

3. The Internet Authentication Service (IAS) in Routing and Remote Access provides RADIUS client functionality.

|11| I. Placement of networking services in Windows 2000

1. You can combine multiple services on one computer to use hardware resources more efficiently.

2. Additional computers increase administration and support costs.

Chapter 1, Lesson 2

Network Deployment Process

|12| 1. Phases in the Network Deployment Process

A. Overview

1. The three network deployment phases are design, implementation, and management.

2. This course focuses on the design phase.

|13| B. Design phase

1. Collect all essential information about the network through methods such as interviews.

2. Evaluate network requirements by determining organizational goals, expectations, and priorities. Determine how to combine the appropriate services and resolve conflicting goals.

3. Document design specifications in a formal design that includes a management strategy.

|14| C. Implementation phase

1. Perform pilot testing.

2. Determine the deployment schedule and resource allocation.

3. Develop contingency plans.

4. Implement changes in small increments.

|15| D. Management phase

1. Monitor and collect network status information specified in the management plan.

2. Utilize the management plan to take action based on the collected network status.

3. Periodically test and audit the network.

|16| 2. People Involved in the Process

A. A variety of people are involved in each phase.

B. Network services designer

1. Is the main person involved in the design phase

2. Analyzes business goals and the existing network

3. Interviews people in the organization responsible for setting business priorities (management, for example)

4. Designs a pilot program, implementation plan, and management plan

C. Implementation team

1. Works closely with the networking services designer on the implementation schedule

2. Creates a network deployment timetable

3. Conducts the pilot test, implements new servers or upgrades existing servers, and trains users

D. Network administration and operations staff

1. Develops monitoring and management tools

2. Monitors network status and responds to changes

Chapter 1, Lesson 3

Aspects of Networking Services Design

|17| 1. Networking Services Design Aspects

A. Business goals must define your requirements.

1. Designers must acquire the critical ability to translate an organization’s business goals into design requirements.

2. Determine the essential design aspects that your organization must have, and then provide network services to fulfill them.

3. Use the essential design aspects to confirm that you’re meeting organizational goals by using the appropriate network services.

4. After you meet the essential design aspects, optimize the security, availability, performance, and cost of your design.

|18| B. Security

1. Ensures confidentiality of network data by allowing only authorized users to access the data

2. The whole design can fail if it doesn’t meet the security aspect.

3. Is independent of availability and performance (you can have a fast, highly available network that is not secure)

|19| C. Availability

1. Ensures that users can access the data on your network

2. Is determined by reviewing the percentage of time that users can access the data on the network. A service is highly available when there is a high ratio between uptime and downtime.

3. Is independent of security and performance (you can have a highly available network that lacks security and is slow)

|20| D. Performance

1. Measures data transmission rates or response times

2. Is difficult to quantify because performance depends on a user’s perception

3. Your design must include specific performance measurements.

4. As you increase performance, you generally increase cost.

5. Is independent of security and availability

|21| E. Cost

1. All designs are constrained by cost and must conform to the budget.

2. A design is cost-effective when it provides essential networking services that are secure and available and perform within specifications, while remaining below budgeted cost.

3. You can reduce overall cost by making small cost reductions in many places in your design. For example, reducing the cost of memory across several thousand workstations will have a significant impact on the overall cost of your design.

4. To effectively evaluate cost, you must prioritize the organization’s goals.

5. Cost affects all other design aspects (security, availability, and performance).

|22| Chapter Summary

A. Networking services defined

1. Run on the protocols and physical network

2. Can provide multiprotocol support, routing between network segments, security, Web-based applications, IP configuration, name resolution, remote access, and network management.