Beruflich Dokumente
Kultur Dokumente
DHCP |DNS | IPAM
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
Slide 2
address allocation
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
Slide 3
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
Slide 4
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
Slide 5
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
Slide 6
Super Scopes
Multicast Scopes
DHCP v6
DHCP High Availability
o Failover
o Split Scopes
o DHCP Name Protection
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
Slide 7
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
Slide 8
Super Scopes:
o Collection of scopes
• Grouped together for administrative reason
• Subnets must be able to be combined into one logical subnet
• Need two or more scopes already created
• Super scope wizard allows you to create
• Good when moving clients to new subnet transparently
Benefits
o Allows you to “expand” scope if it runs out of addresses
Multinetting
o Adding a second scope
o Clients on a different subnet
o Routers would need to be configured
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
Slide 9
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
Slide 10
Configurations supported
o Stateless
• Router assigns IPv6 automatically
• DHCP only applies configurations
o Stateful
• DHCP server assigns IP address and other configuration data
Scope properties
o Name/Description
o Preference
• Informs DHCPv6 clients which server to use (DHCPv6)
o Valid/Preferred Lifetimes
• Length of lease address
o Prefix
• Analogous to IPv4 address range
• Defines Network ID
o DHCP Options
• Gateway, etc.
o Exclusions
• Single or blocks of addresses that will not be offered
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
Slide 11
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
Slide 12
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
Slide 13
Delegating administration
DNS logging
DNS security
o DNSSEC
o DNS socket pool
o Cache locking
Recursion
Netmask ordering
Global names zone
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
Slide 14
Delegation
o Domain Admins: Full permissions on all DNS servers home domain
o Enterprise Admins: Full permissions on all DNS servers any domain
o Global DNS Admins – Group in each domain
• All permissions
• Domain local group
• No members by default
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
Slide 15
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
Slide 16
DNSSEC
DNS DNS
Cache Socket
Locking Pool
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
Slide 17
Digitally sign all DNS records in a zone, so client computers can validate responses.
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
Slide 18
Trust anchors
o Zones that store public keys associated with Digital Signatures
o Must be configured on all DNS servers participating in DNSSEC
o Authoritative entry represented by public key
o Represented by DNSKEY or DS resource record
Resolvers
o Use trust anchors to retrieve public keys and build trust chains
NRTP
o Contains rules that control the requesting client behavior for queries and
responses
o Prompts client computer to check for validation of the response for
particular DNS domain suffix
o Typically deployed by Group Policy
o If no NRPT client computer accepts responses without validating
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
Slide 19
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
Slide 20
Configurable settings
o KSK options (Key Signing Keys)
• Default value 2048 bits
• Maximum value 4096 bits
• Default algorithm RSAHA256
• Signatures valid for 7 days
• DNS Server 2012 creates an extra emergency rollover key automatically
o ZSK options (Zone Signing key)
• Default value 90 days
• Key strength 1024
o Trust anchor distribution points
o Signing and polling parameters
Everyone zone has multiple DNS keys that are broken down to ZSK and KSK.
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
Slide 21
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
Slide 22
DNSKEY
o Publishes public key for the zone
o Checks authority from responses
o Needs key replacements from key rollovers
DS Delegation Signer
o Delegation record that contains has of public key of child zone
o Signed by parents private key
o If child zone is signed by parent is signed, DS records from the child must be added to the parent so a
chain of trust can be created
RRSIG
o Resource record signature for set of DNS records
o Checks for authority of response
NSEC (Next Secure)
o When DNS response has no data to provide to the client
o This record authenticates that the host does not exist
NSEC3
o This record is a hashed version of NSEC record
o Prevents alphabet attacks by the enumerating the zone
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
Slide 23
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
Slide 24
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
Slide 25
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
Slide 26
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
Slide 27
Primary Zones
o Located in %SystemRoot%\System32\DNS
o zonename.dns file Mayfieldcorner.dns
o Backup manually
AD Integrated
o Command prompt Run as administrator
• RUN: dnscmd /ZoneExport <zone name> <zone file name>
• Zone name: DNS zone name: mayfieldcornerllc.com
• File Name: Backup file name
• Zone data exported to %SystemRoot%\System32\DNS
o PowerShell:
• Export-DNSServerZone -Name mayfieldcornerllc.com -Filename
MayfieldCornerBackup
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
Slide 28
Forwarding
Stub Zones
Netmask Ordering
Conditional Forwarders
Forward DNS Queries Replicated copy Provides host
requests that forwarded for of resource addresses in
cant be specific DNS records that close proximity
resolved locally suffixes to identity based on IP
to other DNS specific DNS authoritative address (site) in
servers servers DNS servers for DNS queries
DNS domains
• SOA record
• IP of master server
Recursion: When a local DNS server needs to make a query to another DNS server to
find an authoritative answer. The answer is then returned to the original client that
requests it.
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
Slide 29
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
Slide 30
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
Slide 31
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
Slide 32
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
Slide 33
Role:
o Collection of IPAM operations
o Can be associated with user or groups in Windows (assign policy)
o Eight (8) built in roles provided for convieniance
o Can create custom roles
Access Scopes:
o Determines what objects user has access to.
o Use to define administrative domains in IPAM
o Default access scope: Global (for access to all objects)
Access Policies
o Combines Role and Access scope for permissions
Role Based Access Control allows roles, access scopes and access policies to be
customized
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
Slide 34
Name Description
DNS record administrator Manages DNS resource records
IP address record Manages IP addresses but not IP address spaces, ranges,
administrator blocks, or subnets.
IPAM administrator Manages all settings and objects in IPAM
IPAM ASM administrator Completely manages IP addresses
IPAM DHCP administrator Completely manages DHCP servers
IPAM DHCP reservations
Manages DHCP reservations
administrator
IPAM DHCP scope
Manages DHCP scopes
administrator
IPAM MSM administrator Completely manages DHCP and DNS servers
By default, all objects in IPAM are included in the global access scope. All additional
scopes that are configured are subsets of the global access scope
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
Slide 35
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
Slide 36
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
Slide 37
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
Slide 38
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
Slide 39
4 GB + RAM
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
Slide 40
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
Slide 41
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
Slide 42
Group Description
IPAM Users View all information:
• IPAM server inventory
• IP address space
• IPAM server management
• IPAM | DHCP operational events
• CANNOT view IP address tracking information
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
Slide 43
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
Slide 44
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
Slide 45
IPAM server
o Data collection from servers
o Manages Windows internal database
IPAM client
o Client computer interface
o Uses PowerShell
• DHCP configuration tasks
• DNS monitoring
• Remote management
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
Slide 46
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
Slide 47
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
Slide 48
• Modify the
Event Log Monitoring
HKLM\SYSTEM\CurrentControlSet\Services\EventLog\DNS
on DNS Servers
Server registry key
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
Slide 49
Powershell: Invoke-IpamGpoProvisioning
Running command will create 3 GPO’s to configure settings:
o IPAM_DC_NPS.
• GPO applied to all managed AD DS servers and NPS servers
o IPAM_DHCP
• GPO applied to all managed DHCP servers
• GPO includes scripts that configure the network share for DHCP
monitoring
o IPAM_DNS
• GPO applied to all managed DNS servers
• GPO includes scripts to:
• Configure the event log for DNS monitoring
• Configure the IPAMUG group as a DNS administrator.
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
Slide 50
IP Address Blocks
• Subnets IP Address Ranges IP Addresses
• Ranges
• Addresses
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
Slide 51
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
Slide 52
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
Slide 53
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
Slide 54
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
Slide 55
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
Slide 56
Required:
o Friendly Name
o Network ID
o Prefix Length
Optional Settings
o One or more Vlans
o Subnet Virtualized?
o Custom Fields:
• AD Site
• VMM IP Pool Name
o Description and Owner Name
PowerShell Method:
o Add-IpamSubnet –NetworkID <network prefix, in CIDR notation> -Rir
<string>
• RIR Values must be one of the following: AFRNIC, APNIC, ARIN, LACNIC, RIPE
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
Slide 57
Required:
o Network ID
o Prefix Length
o Will use default values if not supplied:
• Managed by Service
• Service Instance
• Assignment Type
If IP address does not already exisit – allow it to automatically create
o One or more Vlans
o Subnet Virtualized?
o Custom Fields:
• AD Site
• VMM IP Pool Name
o Description and Owner Name
PowerShell Method:
o Add-IpamRange –NetworkID <network prefix, in CIDR notation> -
CreateSubnetIfNotFound
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
Slide 58
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
Slide 59
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
Slide 60
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
_____________________________________________________________________________________
Review Questions:
1. Which of the following allows you to access the settings jewel to shut down
Windows Server 2012?
A. Navigating mouse to the lower right corner
B. Navigating the mouse to the lower left corner
C. Pressing Ctrl+Esc
D. Pressing Ctrl+I
E. All of the above
F. Both A and D
6. Who must authorize the DHCP server before it can be active on the network?
A. Enterprise administrator
B. Domain administrator
C. Local DHCP server administrator
D. All of the above
7. Which of the following are option levels for DHCP options?
A. Reservation
B. Personal
C. Global
D. Class ID
E. All of the above
F. A, C, and D
8. True or False: You can only configure one scope per DHCP server.
A. True
B. False
11. True or False: Key Master Role is only available in DNS for DNSSEC for AD
integrated zones.
A. True
B. False
Answer Key:
1. F
You can use the keyboard shortcut of Ctrl+I, or you can navigate the mouse to
the lower right corner.
2. D
DHCP server provides IP address allocation to clients.
3. D
A DHCP client can be a PC, laptop, printer, mobile device, switch, or network
boot client.
4. D
You can manage DNS servers, gateways, and a number of other configurable
properties for TCP/IP.
5. A
The DHCP database is located at %SystemRoot%\System32\DHCP.
6. A
The Enterprise administrator is the only account that can authorize a DHCP
server.
7. F
Option levels are Global, Scope, Class ID, and Reservation.
8. B
False. You can configure multiple scopes, but the server must be connected
directly to a subnet or DHCP Relay Agent.
9. B
False. You can configure a client to request DNS server updates for both host
and PTR records.
10. A
True. Multinetting is adding a second scope for clients on a different subnet.
Routers need to be configured for this to work.
11. B
False. Windows Server 2012 R2 has many improvements with DNSSEC. One of
them is to make the Key Master Role available for file-backed multi-master
zones. Prior support was only for AD integrated zones.