Sie sind auf Seite 1von 218

NETWORK ADMINISTRATION

LAB MANUAL

Zoom Technologies (India) Pvt. Ltd.


Zoom House, Next to SBIICM,
Road No. 12, Banjara Hills,
Hyderabad – 500034. A.P. India.
Tel.: 23394150; Fax: 23308802
www.zoomgroup.com
Windows Server 2003 - Network Administration

INDEX

Sr. No. Topic Page No.

1 Installation and Configuration of DHCP Server 3

2 Installation and Configuration of DNS Server 23

3 Installation and Configuration of IIS Server - Web Server 47

4 Installation and Configuration of IIS Server – Ftp Server 66

5 Installing and Configuring Terminal Server 84

6 Configuring & Enabling Routing 99

7 Installation and Configuration of ISA Server 2004 118

8 Installation and Configuration of Remote Access Server 155

9 Installation and Configuration of RIS Server 171

10 Disk Management 182

11 Live Setup 215

www.zoomgroup.com -2-
Windows Server 2003 - Network Administration

INSTALLATION AND CONFIGURATION OF DHCP

Prerequisites:

Before working on this lab, you must have

1. A computer running windows 2003 server or Domain Controller.

2. A computer running windows 2003 server or windows XP.

SYS1 SYS2

ZOOM.COM

SYS1 SYS2

Domain Controller / DHCP Server Member Server / Client

IP Address 10.0.0.1 IP Address 10.0.0.2

Subnet Mask 255.0.0.0 Subnet Mask 255.0.0.0

Preferred DNS 10.0.0.1 Preferred DNS 10.0.0.1

www.zoomgroup.com -3-
Windows Server 2003 - Network Administration

SYS1 - CONFIGURATION
How to Install DHCP Service
1. Select Start  Settings  Control Panel.

2. In the Control Panel dialog box, double-click Add/Remove Programs.

www.zoomgroup.com -4-
Windows Server 2003 - Network Administration

3. In the Add/Remove Programs dialog box click Add/Remove Windows


Components.

4. In the Windows Components Wizard dialog box, highlight Networking Services,


and click Details.

5. In the Networking Services dialog box, select the check box next to Dynamic Host
Configuration Protocol (DHCP), and click OK.

www.zoomgroup.com -5-
Windows Server 2003 - Network Administration

6. In the Windows Components Wizard dialog box, click Next.

7. Windows 2003 configures components and installs DHCP. In the Completing the
Windows Components Wizard screen, click Finish.

www.zoomgroup.com -6-
Windows Server 2003 - Network Administration

Authorizing DHCP server


1. StartProgramsAdministrative toolsDHCP

2. Right click the system nameSelect Authorize and Refresh.

www.zoomgroup.com -7-
Windows Server 2003 - Network Administration

Creating a scope
1. Select Start  Programs  Administrative Tools  DHCP.

2. Right click the system name select New Scope

3. The New Scope wizard starts. Click Next.

www.zoomgroup.com -8-
Windows Server 2003 - Network Administration

4. In the Scope Name screen, type in a name and a description for the scope in the
text boxes provided. Click Next.

5. The IP Address Range screen appears. In the “Start IP address” and “End IP
address” text boxes, enter the IP addresses that will define the range of the
scope and the subnet mask. Click Next.

www.zoomgroup.com -9-
Windows Server 2003 - Network Administration

6. Note: give the scope in the same network of DHCP server.

7. To exclude IP addresses, enter the start and end IP address of the range you
want to exclude and click Add. Click Next.

8. In the Lease Duration screen, either accept the default DHCP lease duration of
eight days, or configure custom lease duration. Click Next.

www.zoomgroup.com - 10 -
Windows Server 2003 - Network Administration

9. In the Configure DHCP Options screen, choose Yes, I want to configure these
options now to configure DHCP options for this scope (such as routers, DNS, and
WINS settings) now. Click Next.

10. In the Router (Default Gateway) screen, enter the IP address of the router that
will function as the default gateway for this scope and click Add. Click Next.

www.zoomgroup.com - 11 -
Windows Server 2003 - Network Administration

11. In the Domain Name and DNS Servers screen enter the IP address of the DNS
server. Click Add click next.

12. In the WINS Servers screen enter the IP address of the WINS server. Click Add.
Click Next. Or, if you don’t have a WINS server on your network, just click Next .

www.zoomgroup.com - 12 -
Windows Server 2003 - Network Administration

13. In the Activate Scope screen, select whether to activate this scope now. Your
options are Yes ……………….or No. A DHCP server can’t assign addresses from a
scope until the scope is activated. Make your selection and click Next. Click
Finish

14. Windows 2003 creates the scope. It is displayed in the right pane of the DHCP
dialog box. Close DHCP.

www.zoomgroup.com - 13 -
Windows Server 2003 - Network Administration

SYS2 - CONFIGURATION
Verification: In DHCP Client
1. Right click my network placesSelect properties Right click the Lan card and
select propertiesSelect TCP/IP Properties and select Obtain IPADDRESS
automaticallyok

2. Open the command Prompt Type the three commands one by one to check
the IP assigned by DHCP server

3. ipconfig /release

4. ipconfig /renew

www.zoomgroup.com - 14 -
Windows Server 2003 - Network Administration

5. ipconfig /all

www.zoomgroup.com - 15 -
Windows Server 2003 - Network Administration

SYS1 - Configuration
Configuring a DHCP Address Reservation in DHCP server
1. Select Start  Programs  Administrative Tools  DHCP.

2. In the left pane of the DHCP dialog box, expand the scope Right Click
ReservationSelect New Reservation

3. Type in a name for the reservation in the “Reservation name” text box. Then, in
the “IP address” text box, configure the IP address that you want to be reserved.
Next, enter the MAC address of the network adapter card in the computer for
which the reservation is being made in the text box provided. Enter a description
for the reservation if you want to.

www.zoomgroup.com - 16 -
Windows Server 2003 - Network Administration

4. Click addclick close.

5. (To Know the MAC or Physical address of the client type ipconfig /all or getmac
in command prompt of client computer )

6. CHECK THE OUTPUT IN THE CLIENT SIDE IN THE COMMAND PROMPT USING THE
THREE COMMANDS.

Creating Super Scopes in DHCP server


Note: Create at least two different scopes before creating a Super Scope.

1. Select Start Programs Administrative Tools  DHCP.

2. In the left pane of the DHCP dialog box, highlight the DHCP server on which you
want to create a scope. Right click the system nameselect New super scope

www.zoomgroup.com - 17 -
Windows Server 2003 - Network Administration

3. The New Super Scope wizard starts. Click Next.

4. Give the name for the Super Scope Click Next.

www.zoomgroup.com - 18 -
Windows Server 2003 - Network Administration

5. Select the required number of scope Click Next Finish.

Configuring Server Options in DHCP server


1. Select Start  Programs  Administrative Tools  DHCP.

2. In the left pane of the DHCP dialog box, right-click the Server Options folder, and
select Configure Options from the menu that appears.

3. The Server Options dialog box appears. In the Available Options list, select the
check box next to the option you want to configure. Once you select the check
box, the configurable options for this item are displayed in the bottom portion of
the dialog box. Enter the server name or IP address for the option you selected.
Click Ok.

www.zoomgroup.com - 19 -
Windows Server 2003 - Network Administration

How to take the backup of DHCP server and How to restore


1. Select Start  Programs  Administrative Tools  DHCP.

2. Open DHCP serverRight click the system nameselect Backup

www.zoomgroup.com - 20 -
Windows Server 2003 - Network Administration

3. Select the Location to save the backup file ok

4. Delete the scope

5. Open DHCP serverRight click the system nameselect Restore.

www.zoomgroup.com - 21 -
Windows Server 2003 - Network Administration

6. Select the location of file for restoring.

7. Click yes in the message and refresh.

www.zoomgroup.com - 22 -
Windows Server 2003 - Network Administration

INSTALLATION AND CONFIGURATION OF DNS

Prerequisites:

Before working on this lab, you must have

1. A computer running windows 2003 server or Domain Controller.

2. A computer running windows 2003 server.

SYS1 SYS2

ZOOM.COM

SYS1 SYS2

Domain Controller / Dns Server Member Server / Dns Server

IP Address 10.0.0.1 IP Address 10.0.0.2

Subnet Mask 255.0.0.0 Subnet Mask 255.0.0.0

Preferred DNS 10.0.0.1 Preferred DNS 10.0.0.2

www.zoomgroup.com - 23 -
Windows Server 2003 - Network Administration

SYS1 -CONFIGURATION
Installing the DNS Server Service
1. Select Start  Settings  Control Panel.

2. In the Control Panel dialog box, double-click Add/Remove Programs.

3. In the Add/Remove Programs dialog box, click Add/Remove Windows


Components.

www.zoomgroup.com - 24 -
Windows Server 2003 - Network Administration

4. In the Windows Components Wizard dialog box, highlight Networking Services,


and click Details.

5. In the Networking Services dialog box, select the check box next to Domain
Naming System protocol (DNS), and click OK.

www.zoomgroup.com - 25 -
Windows Server 2003 - Network Administration

6. In the Windows Components Wizard dialog box, click Next.

7. Completing the Windows Components Wizard screen, click Finish.

www.zoomgroup.com - 26 -
Windows Server 2003 - Network Administration

Forward Lookup Zone: Standard Primary zone


1. Select Start  Programs  Administrative Tools  DNS.

2. In the DNS dialog box, click the + next to the DNS server’s name in the left pane.

3. In the left pane Right click the Forward Lookup Zones select New Zone.

4. In the welcome to new zone wizard click Next

www.zoomgroup.com - 27 -
Windows Server 2003 - Network Administration

5. Select “Primary Zone” and Remove the check mark form "Store the zone in
Active Directory", click Next.

6. In the Zone Name screen, type in the name of the zone you are creating. This
name is usually the FQDN of the DNS domain that the zone will contain, such as
ZOOM.COM Click Next.

www.zoomgroup.com - 28 -
Windows Server 2003 - Network Administration

7. The Zone File screen appears. In this screen, you can either create a new zone file
for the new zone, or configure the new zone to use an existing file. Click Next.

8. Click Next.

9. In dynamic Update Select "Allow both secure and non secure dynamic
update"Click Next.

www.zoomgroup.com - 29 -
Windows Server 2003 - Network Administration

10. The Completing the New Zone Wizard screen appears. Click Finish.

11. The DNS dialog box reappears the new zone you created appears in the right
pane.

Creating Host Records for the standard primary zone


1. Select Start  Programs  Administrative Tools  DNS.

2. Right Click the zone and select New Host.

www.zoomgroup.com - 30 -
Windows Server 2003 - Network Administration

3. In the host name dialog box enter the Host name for which you are configuring
the record eg: sys1

4. In the IP address dialog box enter the corresponding IP address of the host .

5. Click ‘Add Host’ okDone.

Creating an Alias record for the host record


1. Select Start  Programs  Administrative Tools  DNS.
2. Right Click the zone and select New Alias.

3. Enter the name in the ‘Alias Name’ dialog box eg: www

4. Click Browsedouble click system namedouble click FLZdouble click the


zone name select the host nameclick ok ok

www.zoomgroup.com - 31 -
Windows Server 2003 - Network Administration

VERIFICATION:
1. Open command prompttype ping FQDN (fully qualified domain name)

Eg: Ping sys1.zoom.com

2. Ping www.zoom.com

REVERSE LOOKUP ZONE: Creating standard primary zone


1. Select Start  Programs  Administrative Tools  DNS.

2. In the DNS dialog box, click the + next to the DNS server’s name in the left pane.

3. In the left pane Right click the Reverse Lookup Zones select New Zone.

www.zoomgroup.com - 32 -
Windows Server 2003 - Network Administration

1. Click Next

2. Select “Primary Zone” and Remove the check mark form "Store the zone in
Active Directory", click Next.

www.zoomgroup.com - 33 -
Windows Server 2003 - Network Administration

3. In the network ID give the first three octets eg: 10.0.0NextNext

4. In dynamic Update Select "allow both secure and non secure dynamic
update"Click NextFinish

www.zoomgroup.com - 34 -
Windows Server 2003 - Network Administration

Creating pointer record


1. StartProgramsadministrative toolsDNS

2. Expand Reverse lookup zone and right click the zoneselect New Pointer

www.zoomgroup.com - 35 -
Windows Server 2003 - Network Administration

3. In the pointer record give the fourth octetclick browsedouble click system
namedouble click FLZdouble click the domain namedouble click the host
nameok

Verification: TO CHECK THE OUTPUT


1. Open the command prompt and type nslookup 10.0.0.1

www.zoomgroup.com - 36 -
Windows Server 2003 - Network Administration

SYS2 - CONFIGURATION
Creating secondary zone
1. Select Start  Programs  Administrative Tools  DNS.

2. In the DNS dialog box, click the + next to the DNS server’s name in the left pane.

3. Right click Forward Lookup Zones select new zoneNext

4. Select Secondary zone NextGive the name of primary zone.

www.zoomgroup.com - 37 -
Windows Server 2003 - Network Administration

5. Give the IP address of primary zone eg:10.0.0.1

6. Click Next Finish.

www.zoomgroup.com - 38 -
Windows Server 2003 - Network Administration

SYS1-CONFIGURATION
Giving zone transfers to secondary zone
1. Select Start  Programs  Administrative Tools  DNS.

2. In the DNS dialog box, click the + next to the DNS server’s name in the left pane.

3. Right click primary zone select properties.

3. Select zone transferscheck the box for zone transfersselect to the following
servers and the ipaddress of secondary zone.
4. Click on apply ok.

www.zoomgroup.com - 39 -
Windows Server 2003 - Network Administration

SYS2 –CONFIGURATION
1. Open DNS Select the secondary zone and select refresh.

Creating Stub zone


Requirements:
1. Log on to SYS1 and create a primary zone Msn.com along with host and alias
records.

www.zoomgroup.com - 40 -
Windows Server 2003 - Network Administration

Steps:
2. Log on to SYS2 and Select Start  Programs  Administrative Tools  DNS.

3. In the DNS dialog box, click the + next to the DNS server’s name in the left pane.

4. Right click Forward Lookup Zones select new zoneNext

4. Select Stub zoneNext

5. Give the name of primary zone.(Msn.com)

6. Give the Ipaddress of primary zone eg:10.0.0.1

www.zoomgroup.com - 41 -
Windows Server 2003 - Network Administration

7. Click Next Finish.

8. Refresh the stub zone and verify for records.

Creating Active Directory Integrated Primary zone


1. Select Start  Programs  Administrative Tools  DNS.

2. In the DNS dialog box, click the + next to the DNS server’s name in the left pane.

3. Right click Forward Lookup Zones select new zone

4. Click Next Accept the default option of “Primary Zone” and Select the check
mark form "Store the zone in Active Directory" click Next.

5. In AD Zone Replication Scope, Select the “To all dns servers in active directory
domain”, Click Next.

www.zoomgroup.com - 42 -
Windows Server 2003 - Network Administration

6. Give the Zone Name as same as the domain name Eg: zoom.com Click Next.

7. Select “Allow only secure and dynamic update”Click Next.

8. Click Finish.

9. Verify for the Service records in Zoom.com zone.

www.zoomgroup.com - 43 -
Windows Server 2003 - Network Administration

NOTE: Service records are available only for the zone with the domain name

1. In DC by default the service records are created in the Dns server in the zone with
domain name.

Note: To get the missing records restart a service net logon

2. Startprogramsadministrative toolsservices

www.zoomgroup.com - 44 -
Windows Server 2003 - Network Administration

Forwarders
1. In sys1 create a zone with the domain name eg: zoom.com with host and alias
records.

2. In sys1 open the command prompt and type ping www.zoom.com


3. There will be a reply from 10.0.0.1

4. In sys2 give the ip address and preferred dns as 10.0.0.2

5. In sys2 open the command prompt and type ping www.zoom.com

6. There will not be any reply bcoz the information is in 10.0.0.1

7. If sys2 has to resolve the query then configure forwarders in sys2 properties.

8. Open DNS in sys2right click sys2select propertiesselect forwarders and


add the ip address of primary zone.

9. In sys2 open the command prompt and type ping www.zoom.com

10. There will be a reply from 10.0.0.1

Root Hints
1. Root hints contain the information of 13 root servers

2. Open DNSright click the system name select propertiesselect

3. root hints

www.zoomgroup.com - 45 -
Windows Server 2003 - Network Administration

Cache server
1. To see the information present in the cache type the command

2. “ipconfig /displaydns”

3. To clear the cache information type the command

4. “ipconfig /flushdns”

www.zoomgroup.com - 46 -
Windows Server 2003 - Network Administration

INSTALLATION AND CONFIGURATION OF IIS (WEB SERVER)

Prerequisites:

Before working on this lab, you must have

1. A computer running windows 2003 server or Domain Controller.

2. A computer running windows 2003 server or windows XP.

SYS1 SYS2

ZOOM.COM

SYS1 SYS2

Domain Controller/DNS/Web Server Member Server / Client

IP Address 10.0.0.1 IP Address 10.0.0.2

Subnet Mask 255.0.0.0 Subnet Mask 255.0.0.0

Preferred DNS 10.0.0.1 Preferred DNS 10.0.0.1

www.zoomgroup.com - 47 -
Windows Server 2003 - Network Administration

SYS1- CONFIGURATION
Installing Internet Information Services(Web Server)
1. StartSettings  Control Panel.

2. In the Control Panel dialog boxdouble-click Add/Remove Programs.

3. In the Add/Remove Programs dialog box click Add/Remove Windows


Components.

www.zoomgroup.com - 48 -
Windows Server 2003 - Network Administration

4. Select Application Server Click Details.

5. Select Internet Information Services (iis) and put a Check Mark on IISClick
Details.

www.zoomgroup.com - 49 -
Windows Server 2003 - Network Administration

7. Click Ok Click Ok Click Next to install IISClick Finish.

DNS configuration for the web site


1. Select Start  Programs  Administrative Tools  DNS

2. Select forward lookup zone  Right Click select new zone

www.zoomgroup.com - 50 -
Windows Server 2003 - Network Administration

3. Create a new primary zone in forward lookup zone with your domain name (eg:
Zoom.com)

4. Select the zone  right click select New Host

www.zoomgroup.com - 51 -
Windows Server 2003 - Network Administration

5. Create the host with your Web Server name and IP (specify Where the Web Site
is Present)

6. Select the zone  right click select New Alias

www.zoomgroup.com - 52 -
Windows Server 2003 - Network Administration

7. Create an Alias (say ‘www’) for the host, which you specified in the host header
for the site

Creating a Web Site


1. Build your web pages and place them in a folder (or Copy all HTML files in a new
Folder).

www.zoomgroup.com - 53 -
Windows Server 2003 - Network Administration

2. Select StartProgramsAdministrative ToolsInternet Information Services


Manager.

3. In the left pane of the Internet Information Services dialog box, click + on the
server Right Click on Web site and select New Web Site.

www.zoomgroup.com - 54 -
Windows Server 2003 - Network Administration

4. The Web Site Creation wizard starts. Click Next.

5. In the Web Site Description screen, type in a description for the Web site Eg:
Zoom Web Site. Click Next.

www.zoomgroup.com - 55 -
Windows Server 2003 - Network Administration

6. In The IP Address and Port Settings dialog box select one IP address from the
“Enter the IP address to use for this Web site” drop-down list box.
7. If you need to change the TCP port number this server will use, specify this
number in the “TCP port this web site should use” text box, specify the FQDN
that Web clients will use to access this server (such as www.zoom.com ), enter it
in the “Host Header for this site” text box. Click Next.

8. In the Web Site Home Directory screen, enter the path to the home folder you
want to assign to the server. This can be either a local path to the home folder for
this server, or a UNC path to the shared folder on another server that will
function as the home folder for this server. You can browse for this folder if you
need to. Click Next. (select the Path where the Web Pages are)

www.zoomgroup.com - 56 -
Windows Server 2003 - Network Administration

9. In the Web Site Access Permissions screen, select the appropriate access
permissions for the virtual server’s home folder. The selected permissions are
granted to all users who access this home folder. The “Read” and “Run scripts”
check boxes are selected by default. Select the browse option to allow users to
browse Click Next.

5. Click finish.

www.zoomgroup.com - 57 -
Windows Server 2003 - Network Administration

Adding the html file in website properties


1. Open IIS expand websites and select the website

2. Right click the html fileselect rename

3. Right click the html fileselect copy

www.zoomgroup.com - 58 -
Windows Server 2003 - Network Administration

4. Right click the website select properties

5. Select documentsclick addpaste the html file

6. Select move upok

www.zoomgroup.com - 59 -
Windows Server 2003 - Network Administration

VERIFICATION:
1. Open internet explorer or any browser and access the website

www.zoomgroup.com - 60 -
Windows Server 2003 - Network Administration

Taking backup of websites:


1. StartProgramsadministrative toolsIIS

2. Expand websitesRight click website (zoom.com)select all tasks Select save


configuration to a file

3. Give any name for the backup fileclick browse and select the location to save

the backup filegive any password for the backupok

4. Delete the website.

Restoring the deleted website


1. StartProgramsadministrative toolsIIS

2. Right click the websites select new website from file.

3. Click browse select the backup fileselect read file select the namegive the
password ok

www.zoomgroup.com - 61 -
Windows Server 2003 - Network Administration

Creating virtual directory


1. Select StartProgramsAdministrative ToolsInternet Information Services
Manager.

2. Expand the Web Server, Select the Web Site on which you want to create Virtual
Directory Right Click and select new virtual directory.

www.zoomgroup.com - 62 -
Windows Server 2003 - Network Administration

4. Specify the alias name to the virtual directory (eg: mail), and click next.

5. In the Next screen, Specify the location of the folder by clicking the browse
button.

6. In the Next Screen, Specify the permissions the level of access you want to give
on virtual directory.

www.zoomgroup.com - 63 -
Windows Server 2003 - Network Administration

7. Click Finish in next screen to complete the creation of virtual directory.

8. Add the html content file in the virtual directory properties by selecting
documentsclick addpaste the html filemove upok

www.zoomgroup.com - 64 -
Windows Server 2003 - Network Administration

9. To access the virtual directory specify the syntax in Internet Explorer


http://websitename/virtualdirectoryname
Ex: http://www.zoom.com/mail

Changing the Web Site IP address or Port no or the Header name


1. Select StartProgramsAdministrative ToolsInternet Services Manager.

2. Select the Web site  Right Click and select Properties

3. In properties Select ‘Web site’ Tab and then Click Advanced.

4. A Dialog box appears showing your present web site information.

5. Highlight the site, click edit and from there you can change the IP address or
port no or header name.
6. If the port number is changed then the website can be accessed only by
specifying the port number http://www.zoom.com:port number

Configuring redirection for one site to another site


1. Select StartProgramsAdministrative ToolsInternet Services Manager,
Create two websites Website1 and website2
2. If website1 has to be redirected to website2 then right click website1select
propertiesselect home directoryselect a redirection to the URL and give the
path as http://website2
3. Open internet explorer or any browser and access website1 and it will be
automatically redirected to website2.

www.zoomgroup.com - 65 -
Windows Server 2003 - Network Administration

INSTALLATION AND CONFIGURATION OF IIS (FTP SERVER)

Prerequisites:

Before working on this lab, you must have

1. A computer running windows 2003 server or Domain Controller.

2. A computer running windows 2003 server or windows XP.

SYS1 SYS2

ZOOM.COM

SYS1 SYS2

Domain Controller/FTP Server Member Server / Client

IP Address 10.0.0.1 IP Address 10.0.0.2

Subnet Mask 255.0.0.0 Subnet Mask 255.0.0.0

Preferred DNS 10.0.0.1 Preferred DNS 10.0.0.1

www.zoomgroup.com - 66 -
Windows Server 2003 - Network Administration

SYS1- CONFIGURATION
Installing Internet Information Services(FTP Server)
1. StartSettings  Control Panel.

3. In the Control Panel dialog boxdouble-click Add/Remove Programs.

6. In the Add/Remove Programs dialog box click Add/Remove Windows


Components.

www.zoomgroup.com - 67 -
Windows Server 2003 - Network Administration

7. Select Application Server Click Details.

8. Select Internet Information Services (IIS) and put a Check Mark on IISClick
Details.

www.zoomgroup.com - 68 -
Windows Server 2003 - Network Administration

9. Select file transfer protocol (FTP) Click Ok.

Creating a Do not isolate user FTP Site


1. Open any drive and create a folder and create some files in the folder (data).

2. Open the folder and create some files eg: 1.txt, 2.txt, 3.txt.

3. Select StartProgramsAdministrative ToolsInternet Services Manager.

www.zoomgroup.com - 69 -
Windows Server 2003 - Network Administration

4. In the left pane of the Internet Information Services dialog box Click on server
on which you want to create a Ftp server Right Click FTP Site and select New
FTP Site

5. The FTP Site Creation wizard starts. Click Next.

www.zoomgroup.com - 70 -
Windows Server 2003 - Network Administration

6. In the FTP Site Description screen, type in the FTP site name. Click Next

7. In the IP Address and Port Settings dialog box select one IP address from the
“Enter the IP address to use for this FTP site” drop-down list box.

8. If you need to change the TCP port number this server will use, specify this
number in the “TCP port this FTP site should use” text box.

www.zoomgroup.com - 71 -
Windows Server 2003 - Network Administration

9. In FTP User Isolation Select the default i.e. Do not Isolate User Click Next

10. FTP Site Home Directory screen, enter the path to the home folder you want to
assign to the server. This can be either a local path to the home folder for this
server, or a UNC path to the shared folder on another server that will function as
the home folder for this serverYou can browse for this folder if you need to
Click Next.

11. In the FTP Site Access Permissions screen, select the appropriate access
permissions for the server’s home folder.

www.zoomgroup.com - 72 -
Windows Server 2003 - Network Administration

12. Click Finish

SYS 2- CONFIGURATION
Accessing the FTP site from the Client systems
1. Logon to client system as an administrator.

2. Check whether the DNS IP Address has been assigned correctly or not.

3. Open Internet Explorer and type ftp://ftp_ip_address and Press Enter.

www.zoomgroup.com - 73 -
Windows Server 2003 - Network Administration

Accessing the FTP Site Using Command Prompt


1. Open the Command prompt and type “FTP 10.0.0.1”

2. Give the user name as administrator

3. Give the password blank (press enter)

www.zoomgroup.com - 74 -
Windows Server 2003 - Network Administration

4. Type ls or dir to view the files present in the ftp site

5. To download the file to local system, type “get”

6. In remote file give the file name that has to be downloaded


7. In local file give the path where the file have to be downloaded.

8. To upload the file to ftp site type put

9. In local file give the path of the file that has to be uploaded

10. In remote file give the file name

www.zoomgroup.com - 75 -
Windows Server 2003 - Network Administration

11. Open the browser to check whether the file has been uploaded.

SYS1 –CONFIGURATION
Creating Isolate user FTP site
1. Open active directory users and computers and create users.
2. Create a folder named root.

3. Open root and create a folder with the domain’s NetBIOS name ZOOM.

4. Open the folder zoom and create folders with user names a, b

5. Open folders with user names and create some files.

6. Select StartProgramsAdministrative ToolsInternet Services Manager.

www.zoomgroup.com - 76 -
Windows Server 2003 - Network Administration

7. In the left pane of the Internet Information Services dialog box Click on server
on which you want to create a Ftp server Right Click FTP Site and select New
FTP Site

8. The FTP Site Creation wizard starts. Click Next.

9. In the FTP Site Description screen, type in the FTP site name. Click Next

10. In the IP Address and Port Settings dialog box select one IP address from the
“Enter the IP address to use for this FTP site” drop-down list box.

11. If you need to change the TCP port number this server will use, specify this
number in the “TCP port this FTP site should use” text box.

12. In FTP User Isolation Select Isolate Users Click Next

www.zoomgroup.com - 77 -
Windows Server 2003 - Network Administration

13. FTP Site Home Directory screen, enter the path to the home folder you want to
assign to the server

14. Click browse and select the root folder Click Next.

15. In the FTP Site Access Permissions screen, select the appropriate access
permissions for the server’s home folder.

www.zoomgroup.com - 78 -
Windows Server 2003 - Network Administration

16. Click Finish.

SYS2 – CONFIGURATION
1. Open the browser and type ftp://10.0.0.1

2. Give the username and the password.

www.zoomgroup.com - 79 -
Windows Server 2003 - Network Administration

SYS1 –CONFIGURATION
Creating Isolate users using Active Directory FTP site
1. Select StartProgramsAdministrative ToolsInternet Services Manager.

2. In the left pane of the Internet Information Services dialog box Click on server
on which you want to create a Ftp server Right Click FTP Site and select New
FTP Site

3. The FTP Site Creation wizard starts. Click Next.

4. In the FTP Site Description screen, type in the FTP site name. Click Next

5. In the IP Address and Port Settings dialog box select one IP address from the
“Enter the IP address to use for this FTP site” drop-down list box.

www.zoomgroup.com - 80 -
Windows Server 2003 - Network Administration

6. In FTP User Isolation Select “Isolate Users using active directory” Click Next

7. In ftp user isolation click browse select the administrator name give the
passwordclick browse and select the domain name. Click Nextre-enter the
passwordok.

www.zoomgroup.com - 81 -
Windows Server 2003 - Network Administration

8. Select writeNextFinish.

www.zoomgroup.com - 82 -
Windows Server 2003 - Network Administration

SYS 2 –CONFIGURATION
To set Active Directory properties type the following Commands:

1. Syntax: IISFTP /setadprop User Ftpdir Home Directory name

IISFTP /setadprop User Ftproot Home Directory location

Example: Create a folder named zoomdir in any drive (F) and Go to command Prompt
and type the following commands.
IISFTP /setadprop a Ftpdir ZoomDir

IISFTP /setadprop a Ftproot F:\

2. Open the browser and give the syntax ftp://10.0.0.1

3. Give the username and password and access the data.

www.zoomgroup.com - 83 -
Windows Server 2003 - Network Administration

INSTALLING AND CONFIGURING TERMINAL SERVER

Prerequisites:

Before working on this lab, you must have

1. A computer running windows 2003 server or Domain Controller.

2. A computer running windows 2003 server or windows XP.

SYS1 SYS2

ZOOM.COM

SYS1 SYS2

Domain Controller / Terminal Server Member Server / Client

IP Address 10.0.0.1 IP Address 10.0.0.2

Subnet Mask 255.0.0.0 Subnet Mask 255.0.0.0

Preferred DNS 10.0.0.1 Preferred DNS 10.0.0.1

www.zoomgroup.com - 84 -
Windows Server 2003 - Network Administration

How to configure terminal server in Remote Administration mode


1. To enable Remote Administration Mode Go to SYS1.

2. Right Click on My Computer  Properties

3. Select Remote tab.

4. Check the box Allow users to connect remotely to this computer.

www.zoomgroup.com - 85 -
Windows Server 2003 - Network Administration

5. Click OK  Apply  OK.

Go to Terminal Client
1. Start  Program  Accessories  Communication  Remote Desktop
Connection (OR) Start Run  type MSTSC

www.zoomgroup.com - 86 -
Windows Server 2003 - Network Administration

2. Specify the IP Address 10.0.0.1 or computer name of terminal server  Click


Connect.

3. Specify username as Administrator and type the password.  Click OK

4. The Administrator will connect to the Terminal Server Remotely.

www.zoomgroup.com - 87 -
Windows Server 2003 - Network Administration

How to Configure Terminal Server in Application Server Mode


1. Go to Sys1  Select Start  Settings  Control Panel.

2. In the Control Panel dialog box, double-click Add/Remove Programs.

3. In the Add/Remove Programs dialog box, click Add/Remove Windows


Components.

www.zoomgroup.com - 88 -
Windows Server 2003 - Network Administration

5. In the Windows Components Wizard dialog box, scroll down until Terminal
Services is displayed

6. Select the check box next to Terminal Services, an configuration warning will
appear Click YES

7. Terminal Setup Page appearsClick Next

www.zoomgroup.com - 89 -
Windows Server 2003 - Network Administration

8. On the next Terminal Services Setup screen select the appropriate permissions.
Permissions compatible with Windows 2003 Users click Next
9. Select Relaxed Security

10. Click NextFinish

www.zoomgroup.com - 90 -
Windows Server 2003 - Network Administration

10. In the System Settings Change dialog box, click YES to restart your computer and
complete the installation of Terminal Services.

www.zoomgroup.com - 91 -
Windows Server 2003 - Network Administration

Steps:

1. Logon as administrator go to Active Directory User and Computer.

2. Create Some User Accounts.

3. Go to Terminal Client in Run Type MSTSC  Click OK.

4. Specify the IP Address or computer name of terminal server  Click Connect.

5. Specify username and type the password.  Click OK

6. Message: The Local Policy of the System Does not Permit you to Logon
Interactively.

www.zoomgroup.com - 92 -
Windows Server 2003 - Network Administration

7. To Allow the User to Logon Locally  Go to Terminal Server (Sys1)

8. Go to Domain Controller Security Policy, Select Local policy user right


assignment  allow logon through terminal Services and add the appropriate
user.

9. Click Start Run type GPUPDATE

10. On Terminal Client Logon as a User Remotely

11. Message: You do not have permission to logon to this Session.

12. On Terminal Server Start  Program  Administrative Tools Terminal


Services configuration

www.zoomgroup.com - 93 -
Windows Server 2003 - Network Administration

13. Select Rdp-Tcp  Properties

14. Select Permission tab  Add the User.

www.zoomgroup.com - 94 -
Windows Server 2003 - Network Administration

15. Click Apply OK.

16. On Terminal Client again logon as a user remotely.

www.zoomgroup.com - 95 -
Windows Server 2003 - Network Administration

HOW TO MONITOR THE USER SESSIONS


Level of Controls: View the Session and Interact with the Session.

1. On Terminal Server Start  Program  Administrative tools  Terminal


Services Configuration.

2. Right Click on Rdp - Tcp  Properties  Remote Control Tab  Select Use
remote control with the following settings.

3. Check the box Requires Users Permission  In level of Control Select View the
sessions  Apply  ok

www.zoomgroup.com - 96 -
Windows Server 2003 - Network Administration

4. To monitor user Session Logon as an Administrator Remotely on Terminal Server.

5. Start  Program  Administrative Tools  Terminal Service Manager.

6. Right Click on the User System name

www.zoomgroup.com - 97 -
Windows Server 2003 - Network Administration

7. Select Remote Control  Select the hot keys OK

8. Now administrator is connected to user’s session.

www.zoomgroup.com - 98 -
Windows Server 2003 - Network Administration

CONFIGURING AND ENABLING ROUTING

Prerequisites:

Before working on this lab, you must have

1. A computer running windows 2003 server Domain Controller.

2. 2 computer running windows 2003 server with minimum 2 NIC cards.

3. A computer running windows 2003 server web server.

SYS4

SYS1 SYS2 SYS3

ZOOM.COM

SYS1 SYS2

Domain Controller / DNS Server Router - I

IP Address 10.0.0.2 IP Address 10.0.0.1

Subnet Mask 255.0.0.0 Subnet Mask 255.0.0.0

Preferred DNS 10.0.0.2 Preferred DNS 10.0.0.2

SYS3 SYS4

Router – II Web server / DNS Server

IP Address 12.0.0.1 IP Address 12.0.0.2

Subnet Mask 255.0.0.0 Subnet Mask 255.0.0.0

Preferred DNS 12.0.0.2 Preferred DNS 12.0.0.2

www.zoomgroup.com - 99 -
Windows Server 2003 - Network Administration

ON PRIVATE:

1. Logon to Private.

2. Check the IP settings: Right click on My network places  Properties  NIC card
properties

3. Go to TCP/IP properties  Define the IP address as mentioned below.

www.zoomgroup.com - 100 -
Windows Server 2003 - Network Administration

ON ROUTER 1:

1. Logon to Router1

2. Check the IP settings: Right click on My network places  Properties  NIC card
properties  TCP/IP properties  Define the IP address as mentioned below.

www.zoomgroup.com - 101 -
Windows Server 2003 - Network Administration

On ROUTER 2:
1. Log on to Router2

2. Check the IP settings: Right click on My network places  Properties  NIC card
properties  TCP/IP properties  & define the IP address as mentioned below.

www.zoomgroup.com - 102 -
Windows Server 2003 - Network Administration

On PUBLIC:
1. Logon to Public

2. Check the IP settings: Right click on My network places  Properties  NIC card
Properties  TCP/IP properties  & define the IP address as mentioned below.

www.zoomgroup.com - 103 -
Windows Server 2003 - Network Administration

HOW TO CONFIGURE ROUTING ON ROUTER1


1. Click Start  Programs  Administrative tools  Routing and remote access

2. Right click on system name  Configure & Enable Routing and Remote Access

www.zoomgroup.com - 104 -
Windows Server 2003 - Network Administration

3. Click Next

4. Select Custom configuration

www.zoomgroup.com - 105 -
Windows Server 2003 - Network Administration

5. Select LAN routing  Next

6. Click Finish

7. Click Yes

www.zoomgroup.com - 106 -
Windows Server 2003 - Network Administration

HOW TO CONFIGURE STATIC ROUTES ON ROUTER 1:

1. Go to Routing and Remote access  System name  IP Routing  Static Routes


 Right click  New Static route

2. Define the static route as mentioned below.

Interface 11.0.0.1

Destination 12.0.0.0

Network Mask 255.0.0.0

Gateway 11.0.0.2
Metric 1

3. Click OK.

www.zoomgroup.com - 107 -
Windows Server 2003 - Network Administration

HOW TO CONFIGURE ROUTING & STATIC ROUTES IN ROUTER 2

1. Click Start  Programs  Administrative tools  Routing and remote access

2. Right click on system name  Configure & Enable Routing and Remote Access.

3. Click Next

www.zoomgroup.com - 108 -
Windows Server 2003 - Network Administration

4. Select Custom configuration.

5. Click Next.

www.zoomgroup.com - 109 -
Windows Server 2003 - Network Administration

6. Select LAN Routing and click Next.

7. Click Finish.

8. Click Yes.

9. Right click System name  IP Routing  Static Routes  Right click  New
Static route

www.zoomgroup.com - 110 -
Windows Server 2003 - Network Administration

10. Define the static route as mentioned below.

Interface 11.0.0.2

Destination 10.0.0.0

Network Mask 255.0.0.0

Gateway 11.0.0.1
Metric 1

11. Click OK.

Verification:

1. Check the connectivity between private and public.

2. Logon to Private go to Start RunCMDPing 12.0.0.2 –t and verify for reply.

www.zoomgroup.com - 111 -
Windows Server 2003 - Network Administration

HOW TO CONFIGURE NATTING ON ROUTER 1:

1. Go to Routing and Remote access  System name  IP Routing  NAT  Right


click  New interface

2. Select LAN interface  OK

3. Select Private interface  OK.

www.zoomgroup.com - 112 -
Windows Server 2003 - Network Administration

4. Again Right click  New interface  Select WAN interface  OK

5. Select Public interface, Enable NAT.

www.zoomgroup.com - 113 -
Windows Server 2003 - Network Administration

6. Click OK.

www.zoomgroup.com - 114 -
Windows Server 2003 - Network Administration

Verification:
Before Nating: On the Private the IP address is shown as 10.0.0.2 Private IP.

After Nating: On the Private the IP address is shown as 11.0.0.1 Public IP.

www.zoomgroup.com - 115 -
Windows Server 2003 - Network Administration

DHCP RELAY AGENT

SYS3-CONFIGURATION

On SYS1 Install DHCP service and create a scope with 12.0.0.10 to 12.0.0.100 with
the router IP as 12.0.0.1.

How to Configure DHCP Relay Agent on Router2

1. Start  Programs  Administrative Tools  Routing and Remote Access

2. Expand System nameIP RoutingRight Click General  New Routing Protocol

3. Select DHCP Relay agent  OK.

4. Right Click on DHCP Relay Agent Properties; Enter the IP Address of DHCP
Server (10.0.0.2).

5. Click Add Apply and OK.

www.zoomgroup.com - 116 -
Windows Server 2003 - Network Administration

6. Again Right Click on DHCP Relay Agent, Select New Interface.

7. Select 12.0.0.1 Interface and Click OK.

Verification: Logon as Administrator on SYS4

1. Logon to DHCP Client and Obtain the IP address automatically.

2. Start  Run Cmd ipconfig /release.

3. Type ipconfig /renew.

4. An IP address will be assigned by DHCP server.

www.zoomgroup.com - 117 -
Windows Server 2003 - Network Administration

INSTALLING AND CONFIGURING ISA SERVER

Prerequisites:

Before working on this lab, you must have

1. A computer running windows 2003 server Domain Controller.

2. A computer running windows 2003 server with minimum 2 NIC cards.

3. A computer running windows 2003 server or windows XP.

SYS1 SYS2 SYS3

ZOOM.COM

SYS1 SYS2

Domain Controller/DNS/Web Server ISA Server

IP Address 10.0.0.2 IP Address 10.0.0.1

Subnet Mask 255.0.0.0 Subnet Mask 255.0.0.0

Preferred DNS 10.0.0.2 Preferred DNS 10.0.0.2

SYS3

Public Client / Web Server

IP Address 11.0.0.2

Subnet Mask 255.0.0.0

Preferred DNS 11.0.0.2

www.zoomgroup.com - 118 -
Windows Server 2003 - Network Administration

Installation of ISA Server


1. Install SMTP,NNTP services from IIS

2. Insert Microsoft ISA Server CD

3. In ISA Server Installation Wizard, select Install ISA Server 2004.

4. Microsoft Internet Security and acceleration Server 2004 setup wizard appears.

5. A Welcome to the Installation Screen appears.

www.zoomgroup.com - 119 -
Windows Server 2003 - Network Administration

6. Click Next.

7. License agreement Wizard appears.

8. Select the option I Accept and Click Next.

www.zoomgroup.com - 120 -
Windows Server 2003 - Network Administration

9. Enter User name, Organization name, and Product Key.

9. Click Next.

10. Select Setup type Typical.

11. Click Next.

www.zoomgroup.com - 121 -
Windows Server 2003 - Network Administration

12. Click on ADD.

13. Enter the ranges of Private IP addresses used in the Internal Network.
From: 10.0.0.0 to 10.255.255.255.

14. Click AddOK.

www.zoomgroup.com - 122 -
Windows Server 2003 - Network Administration

15. Click Next

16. A firewall Configuration Wizard appears.

17. Click Next.

18. A Services Wizard appears.

www.zoomgroup.com - 123 -
Windows Server 2003 - Network Administration

19. Click Next

20. Installation begin wizard appears.

21. Click Install

22. Microsoft ISA Server Installation starts.


23. Click Finish.

www.zoomgroup.com - 124 -
Windows Server 2003 - Network Administration

How to Create an Access Rule to allow internet to LAN


1. Start  Programs  Microsoft ISA Server  ISA Server Management.

2. Default every traffic is denied.

3. Right click on Firewall Policy  Select NEW Access rule.

www.zoomgroup.com - 125 -
Windows Server 2003 - Network Administration

4. Enter the name of access rule (allow).

5. Select Allow.

www.zoomgroup.com - 126 -
Windows Server 2003 - Network Administration

6. Click Next

7. Select the protocol according to requirement.

8. Click Next
9. A Traffic Source wizard appears.

10. Click Add


11. A Network entity wizard appears, Expand Networks.

www.zoomgroup.com - 127 -
Windows Server 2003 - Network Administration

12. Select Internal.

13. Click ADD and then Close.

14. Click Next

15. A network traffic destination wizard appears.


16. Click ADD

17. A network entity wizard appears.

www.zoomgroup.com - 128 -
Windows Server 2003 - Network Administration

18. Select External.

19. Click Add and then Close.

20. Click Next

21. A User Sets Wizard Appears.

www.zoomgroup.com - 129 -
Windows Server 2003 - Network Administration

22. Click Next

23. A Completion Wizard appears.

24. Click Finish.

25. Now on the Microsoft ISA Server 2004 screen u will find the rule.

www.zoomgroup.com - 130 -
Windows Server 2003 - Network Administration

26. To apply that rule, Click Apply

27. Click OK.

Verification:
1. On SYS1 mention the Default Gateway as 10.0.0.1
2. Now try to access the public websites from internet explorer.

www.zoomgroup.com - 131 -
Windows Server 2003 - Network Administration

HOW TO DENY A PARTICULAR WEBSITE :


1. Start Programs Microsoft ISA Server ISA Server Management.
2. Right Click on Firewall  New Access Rule.

3. Enter the access rule name.

4. Click Next.

www.zoomgroup.com - 132 -
Windows Server 2003 - Network Administration

5. Select Deny and Click Next.

6. Select the Protocol by Clicking ADD

7. Select HTTP, Click Add and Close.

www.zoomgroup.com - 133 -
Windows Server 2003 - Network Administration

8. Click Next.
9. Click Add.

10. Expand Networks, Select Internal.

www.zoomgroup.com - 134 -
Windows Server 2003 - Network Administration

11. Click Add and Close.

12. Click Next.

28. Click Add, Select New URL Set

www.zoomgroup.com - 135 -
Windows Server 2003 - Network Administration

29. Enter the Name (Deny yahoo), Click New and Enter the full URL address of the
site. (Eg: http://www.yahoo.com)

30. Click OK.

31. Expand URL Sets and Select the Deny yahoo and Click Add.

32. Click Close.

www.zoomgroup.com - 136 -
Windows Server 2003 - Network Administration

33. Click Next.

34. Click Next.

35. Click Finish.

36. Click on Apply.

www.zoomgroup.com - 137 -
Windows Server 2003 - Network Administration

37. Click OK.

Verification:
1. GO to private network.

2. Open IE and type http://www.yahoo.com

www.zoomgroup.com - 138 -
Windows Server 2003 - Network Administration

How to deny Images on a website


1. Start  Programs  Microsoft ISA Server  ISA Server Management.

2. Right Click on DENY particular site Properties.

3. Click on Content Types Tab and Select Selected Content Types.

4. Select Images

5. Click Apply and OK and again Apply and OK

Verification;
6. Go to Private System, Open Internet Explorer.

7. Type http://www.yahoo.com

www.zoomgroup.com - 139 -
Windows Server 2003 - Network Administration

How to redirect a particular website to other website.


1. Start  programs  Microsoft ISA Server

2. Right Click on DENY particular site  Properties.

3. A deny Properties window appears, Go to Action Tab.

www.zoomgroup.com - 140 -
Windows Server 2003 - Network Administration

4. Check the box of Redirect HTTP requests to this web page.

5. Give the URL of the site where u want to redirect http://www.Kaspersky.com

6. Click OK.

www.zoomgroup.com - 141 -
Windows Server 2003 - Network Administration

7. Click Apply.

8. GO TO Private System and Type http://www.yahoo.com

9. That will be redirect to http://www.Kaspersky.com

www.zoomgroup.com - 142 -
Windows Server 2003 - Network Administration

How to Create Web Server Publishing Rule


1. Start  Program  Microsoft ISA Server
2. Right Click On Firewall  New  Web Sever Publishing Rule.

3. A New web Server Publish Wizard Appears.

www.zoomgroup.com - 143 -
Windows Server 2003 - Network Administration

4. Enter the Name.

5. Click Next.

6. Select Allow and Click Next

7. A web Server Publish Web wizard appears.

www.zoomgroup.com - 144 -
Windows Server 2003 - Network Administration

8. Enter the IP address of Web Server 10.0.0.2.

9. Click Next

www.zoomgroup.com - 145 -
Windows Server 2003 - Network Administration

10. Select Any Domain name.

11. Click Next.

12. A web Listener wizard appears.

13. Click NEW

14. Enter Name

15. Click Next.

16. Select EXTERNAL

www.zoomgroup.com - 146 -
Windows Server 2003 - Network Administration

17. Click Next

18. A Port Specification Wizard Appears.

19. Click Next.

www.zoomgroup.com - 147 -
Windows Server 2003 - Network Administration

20. Click Finish.

21. A WEB Listener Details Page appears again with details.

22. Click Next

23. A User Set wizard appears.

24. Click Next

25. A Completion wizard appears.

www.zoomgroup.com - 148 -
Windows Server 2003 - Network Administration

26. Click Finish

27. A apply wizard appears. Click Apply and OK

www.zoomgroup.com - 149 -
Windows Server 2003 - Network Administration

Verification:
10. Go to Public system Open IE and type http://11.0.0.1

How to Create Server Publishing Rule


1. Start  Programs  Microsoft ISA Server

2. Right Click Firewall Policy  New  Server Publishing Rule.

3. Enter the server publishing rule name.

www.zoomgroup.com - 150 -
Windows Server 2003 - Network Administration

4. Click Next

5. A Network IP Address of the server wizard appears

6. Enter the IP Address of Terminal Server 10.0.0.2 and Click Next.

www.zoomgroup.com - 151 -
Windows Server 2003 - Network Administration

7. Select RDP (Terminal Services) Server and Click Next.

8. Select External and Click Next.

9. A Finish Wizard appears.

10. Click Finish and Click Apply

www.zoomgroup.com - 152 -
Windows Server 2003 - Network Administration

11. Click OK

Verification:
1. Go to the PUBLIC NETWORK

2. Start  Run MSTSC Enter the IP Address 11.0.0.1 and click Connect.

3. Enter Administrator and Password.

4. It will connect to Private system.

www.zoomgroup.com - 153 -
Windows Server 2003 - Network Administration

www.zoomgroup.com - 154 -
Windows Server 2003 - Network Administration

CONFIGURING AND ENABLING REMOTE ACCESS SERVICES

Prerequisites:

Before working on this lab, you must have

1. A computer running windows 2003 server Domain Controller.

2. A computer running windows 2003 server with minimum 2 NIC cards.

3. A computer running windows 2003 server or windows XP.

SYS1 SYS2
SYS3

ZOOM.COM

SYS1 SYS2

Domain Controller / DNS Server RAS Server / VPN Server

IP Address 10.0.0.2 IP Address 10.0.0.1

Subnet Mask 255.0.0.0 Subnet Mask 255.0.0.0

Preferred DNS 10.0.0.2 Preferred DNS 10.0.0.2

SYS3

RAS Client

IP Address 11.0.0.2

Subnet Mask 255.0.0.0

Preferred DNS 11.0.0.2

www.zoomgroup.com - 155 -
Windows Server 2003 - Network Administration

Configuration of RAS SERVER


Note: First we have to configure the modem on RAS Server.

How to Configure MODEM on RAS Server and RAS Client


1. Start Settings Control Panel

2. A Control Panel wizard will appear.

3. Double Click on Phone And Modem.

www.zoomgroup.com - 156 -
Windows Server 2003 - Network Administration

4. A Phone and Modem option wizard appears.

5. Click on ADD.

6. A add hardware wizard appears.

7. Click Next.

www.zoomgroup.com - 157 -
Windows Server 2003 - Network Administration

8. For Lab  Select Communication cable between two computers.

9. Click Next, a port selection wizard appears.

10. Select the COM1 port (Default) and Click Next.

11. A modem installation complete wizard appears.

www.zoomgroup.com - 158 -
Windows Server 2003 - Network Administration

12. Click Finish.

How to Configure RAS Server:


1. Start  Programs  Administrative Tools  Routing & Remote Access.

2. Select Configure and Enable Routing and Remote Access.

www.zoomgroup.com - 159 -
Windows Server 2003 - Network Administration

3. Click Next.

4. Select Dial-up and Click Next.

www.zoomgroup.com - 160 -
Windows Server 2003 - Network Administration

5. Select the From a Specified range and Click Next.

6. Click on New to specify the address range that this it will assign to the Remote
Clients.

7. Specify the Address, From: 192.168.1.1 to 192.168.1.20.

8. Click OK.

9. Select and click Next.

www.zoomgroup.com - 161 -
Windows Server 2003 - Network Administration

10. Select No, use Routing and Remote Access to authenticate connection requests.

11. Click Next.

12. Click Finish.

Giving the permission to user:


1. On Domain controller login as Administrator
2. Go to Active Directory Users and computers Select the user U1 or
Administrator Right click Properties  Select Dial-in tab Select Allow access
Apply OK.

www.zoomgroup.com - 162 -
Windows Server 2003 - Network Administration

Configuration on RAS Client:


Note: Configure the Modem in RAS Client also as in RAS Server

How to Establish Dial-up connection to RAS Server


1. Log on to RAS Client, Right click on My Network Places  Properties.

www.zoomgroup.com - 163 -
Windows Server 2003 - Network Administration

2. Double click on New Connection Wizard and Click Next.

www.zoomgroup.com - 164 -
Windows Server 2003 - Network Administration

3. Select Set up an advance connection and Click Next.

4. Select the Guest role and Click Next.

5. Enter the RAS Server Computer Name, Click Next

6. Select Communications Cable between two computers, Click Next.

www.zoomgroup.com - 165 -
Windows Server 2003 - Network Administration

7. Click Next.

8. Click Finish.
9. Type the Username and Password, Click on Connect.

1.
2.

www.zoomgroup.com - 166 -
Windows Server 2003 - Network Administration

How to configure VPN Connections

1. Log on to RAS or VPN Client, Go to My Network Places  Properties.

2. New Connection Wizard  Right Click New Connection.

3. Click Next.

4. Select Connect to the Network at my workplace Click Next

www.zoomgroup.com - 167 -
Windows Server 2003 - Network Administration

5. Select Virtual Private Network Connection Click Next

6. Type the name VPN Click Next

7. Select Automatically Dial this initial connection  Click Next

www.zoomgroup.com - 168 -
Windows Server 2003 - Network Administration

8. Mention the IP Address of RAS Server(192.168.1.1) Click Next

9. Select my use only Click Next

10. Click Finish.

www.zoomgroup.com - 169 -
Windows Server 2003 - Network Administration

11. Type User Name and PasswordClick Connect.

www.zoomgroup.com - 170 -
Windows Server 2003 - Network Administration

INSTALLATION AND CONFIGURATION OF RIS

Prerequisites:

Before working on this lab, you must have

1. A computer running windows 2003 server Domain Controller, DHCP with Scope,
DNS with Services records.

2. A computer with or without any Operating system.

SYS1 SYS2

ZOOM.COM

SYS1 SYS2

Domain Controller / RIS Server RIS Client

IP Address 10.0.0.1 IP Address 10.0.0.2

Subnet Mask 255.0.0.0 Subnet Mask 255.0.0.0

Preferred DNS 10.0.0.1 Preferred DNS 10.0.0.1

www.zoomgroup.com - 171 -
Windows Server 2003 - Network Administration

How to Install Remote Installation Services

1. Select Start  Settings  Control Panel.

2. In the Control Panel dialog box, double-click Add/Remove Programs.

www.zoomgroup.com - 172 -
Windows Server 2003 - Network Administration

3. In the Add/Remove Programs dialog box, click Add/Remove Windows


Components.

4. In the Windows Components Wizard dialog box, scroll down until Remote
Installation Services is displayed. Then check the box Remote installation
Services and Click Next.

How to take RIS Image of Windows Server 2003 operating system


1. Select Start  Administrative Tool  Remote Installation Service Setup.

2. Remote Installation Service Setup Wizard Will Start, Click Next.

www.zoomgroup.com - 173 -
Windows Server 2003 - Network Administration

3. In Remote Installation Folder location, Select the Path For New Share Folder,
Click Next.

4. Initial Setting Page, Check for Respond to the Client Computers Requesting for
services, Click Next.

www.zoomgroup.com - 174 -
Windows Server 2003 - Network Administration

5. Enter the Path of the C.D Rom Of the 2003 Operating System. Click Next And
Finish.

6. Name of your folder

7. Friendly Description

www.zoomgroup.com - 175 -
Windows Server 2003 - Network Administration

8. Verify your settings

9. Click Finish

10. Click done

www.zoomgroup.com - 176 -
Windows Server 2003 - Network Administration

Verification
1. Boot the Client system With Bootable Floppy or Bootable C.D If it is not PXE NIC

2. Press F12 key when prompted to start the Installation from RIS server.

3. Then mention the Administrator Credentials & follow the instructions.

How to Create Answer file for RIS Client


1. Insert The CD of Windows 2003 Server.

2. Open the CD follow the path \SUPPORT\TOOLS\DEPLOY.CAB and Extract the


SETUPMGR.EXE file to Desktop.
3. Then Open the file SETUPMGR.EXE and follow the wizard.

4. Select create a new file Click Next.

www.zoomgroup.com - 177 -
Windows Server 2003 - Network Administration

5. Select Remote Installation Service Click Next.

6. Select the operating System you want to install.

www.zoomgroup.com - 178 -
Windows Server 2003 - Network Administration

7. Select Fully Automated, Click Next.

8. Accept the License Agreement, Click Next.

9. Answer the rest of the Wizard.

www.zoomgroup.com - 179 -
Windows Server 2003 - Network Administration

10. In Setup Information File Text Give the Name of the Image Click Finish.
11. Then Save the file as remboot.sif in the RIS share folder

www.zoomgroup.com - 180 -
Windows Server 2003 - Network Administration

(Remote Install\Setup\English\Images\windows\i386\templates).

Verification
1.Boot the Client system With Bootable Floppy or Bootable C.D If it is not PXE NIC

2.Press F12 key when prompted to start the Installation from RIS server.

3.Then mention the Administrator Credentials & follow the instructions to select
the proper answer file (Friendly name) from the list of installations.

www.zoomgroup.com - 181 -
Windows Server 2003 - Network Administration

DISK MANAGEMENT

Prerequisites:

Before working on this lab, you must have

1. A computer running windows 2003 server with atleast 3 Hard disks.

SYS1

www.zoomgroup.com - 182 -
Windows Server 2003 - Network Administration

HOW TO CREATE PRIMARY PARTITIONS

1. Right Click on My Computer Manage

2. Expand Storage, Select Disk Management.

3. Right Click On Unallocated Space.


4. Select New Partition.

www.zoomgroup.com - 183 -
Windows Server 2003 - Network Administration

5. Click Next.

6. Select Primary Partition and Click Next.

7. Enter Partition Size in between maximum and minimum.

8. Click Next.

www.zoomgroup.com - 184 -
Windows Server 2003 - Network Administration

9. Assign Drive Letter.

10. Click Next

11. Select the Format file system as NTFS.

12. Select Perform a Quick Format.

13. Click Next

www.zoomgroup.com - 185 -
Windows Server 2003 - Network Administration

14. Click Finish.

How to Create Extended Partition


1. Go to Computer Management WizardDisk Management

www.zoomgroup.com - 186 -
Windows Server 2003 - Network Administration

2. Right ClickUnallocated New Partition

3. Click Next

4. Select Extended partition and Click Next

5. Specify partition size and Click Next

www.zoomgroup.com - 187 -
Windows Server 2003 - Network Administration

6. Click Finish

www.zoomgroup.com - 188 -
Windows Server 2003 - Network Administration

How to Create Logical Drives in Extented Partitions

7. Select on Extended partition Right Click New Logical Drives

8. Click Next

www.zoomgroup.com - 189 -
Windows Server 2003 - Network Administration

9. Select Logical Drive Click Next

10. Specify partition size Click Next

11. Give any Letter Click Next

12. Select the Format file system as NTFS.

www.zoomgroup.com - 190 -
Windows Server 2003 - Network Administration

13. Select Perform a Quick Format.

14. Click Next

15. Click Finish.

www.zoomgroup.com - 191 -
Windows Server 2003 - Network Administration

How to convert Basic Disk to Dynamic


1. Go to Computer Management  Right Click on Basic Disk

2. Select Convert to Dynamic Disk

3. Select the Disks  Click OK.

www.zoomgroup.com - 192 -
Windows Server 2003 - Network Administration

4. Click Convert.

5. Click Yes.

6. Click Yes

7. Click OK.

www.zoomgroup.com - 193 -
Windows Server 2003 - Network Administration

How to create a simple volume


1. Click on Start  Programs  Computer Management.

2. In the console tree, click Disk Management.

3. Right-click the unallocated space on the dynamic disk on which you want to
create Simple volume and then click New Volume.

www.zoomgroup.com - 194 -
Windows Server 2003 - Network Administration

4. Click Next

5. Select Simple

6. Click Next

7. Assign the Disk Space for the simple Volume (eg: 2000)

www.zoomgroup.com - 195 -
Windows Server 2003 - Network Administration

8. Click Next

9. Assign Drive Letter

10. Click Next

11. Format the Volume using any File system, Select Quick Format.

12. Click Next & Finish.

www.zoomgroup.com - 196 -
Windows Server 2003 - Network Administration

13. A Simple Volume is created

www.zoomgroup.com - 197 -
Windows Server 2003 - Network Administration

How to create a Spanned volume


1. Click on Start  Programs  Computer Management.

2. In the console tree, click Disk Management.

3. Right-click the unallocated space on the dynamic disk on which you want to
create Spanned volume and then click New Volume.

www.zoomgroup.com - 198 -
Windows Server 2003 - Network Administration

4. Click Next

5. Select Spanned (You need at least two dynamic disks to create a spanned
volume.)

6. Click Next

7. Select the dynamic Disk you want to use, and then click add

8. Assign the Disk Space for the Spanned Volume for both disks

www.zoomgroup.com - 199 -
Windows Server 2003 - Network Administration

9. Click Next

10. Assign Drive Letter

11. Click Next

12. Format the Volume using any File system, Select Quick Format.

www.zoomgroup.com - 200 -
Windows Server 2003 - Network Administration

13. Click Next & Finish.

14. Spanned Volume is created

www.zoomgroup.com - 201 -
Windows Server 2003 - Network Administration

How to create a Striped volume


1. Click on Start  Programs  Computer Management.

2. In the console tree, click Disk Management.

3. Right-click the unallocated space on the dynamic disk on which you want to
create. Striped volume and then click New Volume.

www.zoomgroup.com - 202 -
Windows Server 2003 - Network Administration

4. Click Next

5. Select Striped (You need at least two dynamic disks to create a striped volume.)

6. Click Next

7. Select the dynamic Disk you want to use, and then click add.

8. Assign the Disk Space for the Striped Volume for both disks

www.zoomgroup.com - 203 -
Windows Server 2003 - Network Administration

9. Click Next

10. Assign Drive Letter

11. Click Next

12. Format the Volume using any File system, Select Quick Format.

www.zoomgroup.com - 204 -
Windows Server 2003 - Network Administration

13. Click Next and Finish.

14. A Stripped Volume is created.

www.zoomgroup.com - 205 -
Windows Server 2003 - Network Administration

How to create a Mirrored volume


1. Click on Start  Programs  Computer Management.

2. In the console tree, click Disk Management.

3. Right-click the unallocated space on the dynamic disk on which you want to
create Mirrored Volume and then clicks New Volume.

www.zoomgroup.com - 206 -
Windows Server 2003 - Network Administration

4. Click Next

5. Select Mirrored (You need at least two dynamic disks to create a mirrored
volume.)

6. Click Next

7. Select the dynamic Disk You want to use, and then click add

www.zoomgroup.com - 207 -
Windows Server 2003 - Network Administration

8. Assign the Disk Space for the Mirrored Volume for both disks (eg: 500)

9. Click Next
10. Assign Drive Letter

11. Click Next

www.zoomgroup.com - 208 -
Windows Server 2003 - Network Administration

12. Format the Volume using any File system, Select Quick Format.

13. Click Next & Finish.

14. The mirrored Volume is created.

www.zoomgroup.com - 209 -
Windows Server 2003 - Network Administration

How to create a RAID 5 volume


1. Click on Start  Programs  Computer Management.

2. In the console tree, click Disk Management.

www.zoomgroup.com - 210 -
Windows Server 2003 - Network Administration

3. Right-click the unallocated space on the dynamic disk on which you want to
create RAID 5 volume and then clicks New Volume.

4. Click Next

5. Select RAID 5 (You need at least three dynamic disks to create a RAID 5 volume.)

www.zoomgroup.com - 211 -
Windows Server 2003 - Network Administration

6. Click Next

7. Select the dynamic Disks you want to use, and then click Add.

8. Assign the Disk Space for the RAID 5 Volume for All disks (eg: 500)

9. Click Next

www.zoomgroup.com - 212 -
Windows Server 2003 - Network Administration

10. Assign Drive Letter

11. Click Next

12. Format the Volume using any File system, Select Quick Format.

13. Click Next.

www.zoomgroup.com - 213 -
Windows Server 2003 - Network Administration

14. A RAID Volume is created.

www.zoomgroup.com - 214 -
Windows Server 2003 - Network Administration

LIVE SETUP

www.zoomgroup.com - 215 -
Windows Server 2003 - Network Administration

DOCUMENTATION OF LIVE SETUP

Prerequisite:

Internal Network

Servers:

Domain Controller – 192.168.1.101

File server – 192.168.1.104

DNS server – 192.168.1.105

DHCP server – 192.168.1.106

Local Web server – 192.168.1.107

FTP server – 192.168.1.104

Terminal {RDP} server – 192.168.1.108

Additional Domain controller – 192.168.1.109

VPN server – 192.168.1.254

Router I

LAN Interface – 192.168.1.254

WAN Interface – 202.153.32.120

Clients:

Member Server – 192.168.1.102

XP Client – 192.168.1.103

External Network:

Router II

WAN Interface – 202.153.32.150

WAN2 Interface – 61.0.0.5

www.zoomgroup.com - 216 -
Windows Server 2003 - Network Administration

Clients:

Client – 61.0.0.6

Web server – 61.0.0.7

Configure 61.0.0.7 as Internet Web Server and DNS Server for

www.Whatismyip.com

CONFIGURATION STEPS

 Configure 192.168.1.101 as Domain Controller along with DNS with the name

Zoom.com

 Joining all the systems to the domain (Windows 2003 / Win XP)
 Create Users on DC & login using the same user from Client (Windows 2003 /

Win XP)

 Configure 192.168.1.104 as File Server

o User profiles - Roaming

o Home directory

 Configure the Separate the DNS server for Domain {SRV Records} on

192.168.1.105

 Configure 192.168.1.106 as DHCP Server

o Scope

o Reservation for File server etc,

o Assign Dynamic IP’s to all systems

 Configure 192.168.1.107 as Local Web Server for www.Zoomgroup.com

o Create DNS zone for this site on DNS server only.

o Access this web site from Internal network

 Configure 192.168.1.104 as FTP Server

o Access this FTP site from Internal network

 Configure 192.168.1.108 as Terminal {RDP} Server

o Access this Terminal server from Internal network

www.zoomgroup.com - 217 -
Windows Server 2003 - Network Administration

 Configure 192.168.1.254 as the Private Router I and WAN IP is 202.153.32.120

o Add Static Route for 61.0.0.0 network

 Configure 202.153.32.150 as the Public Router II and WAN IP is 61.0.0.5

o Add Static Route for 192.168.1.0 network

o Access www.Zoomgroup.com from External network

o Access the Local FTP site from External network

o Access the Terminal server from External network

 Configure VPN Server on 192.168.1.254

o Access the VPN server from External network

 Maintain one client on 61.0.0.6 to access Terminal Server, VPN Server & Web

sites.

 Configure Router I as NAT server

o Configure Local DNS Server to forward the request to ISP DNS

server{61.0.0.7}

o Access www.whatismyip.com from Internal network

 Configure Additional Domain Controller for Zoom.com on 192.168.1.109

o Turn off the DC & login as user from Client or Member server.

www.zoomgroup.com - 218 -