• Shuffle
    Toggle On
    Toggle Off
  • Alphabetize
    Toggle On
    Toggle Off
  • Front First
    Toggle On
    Toggle Off
  • Both Sides
    Toggle On
    Toggle Off
  • Read
    Toggle On
    Toggle Off
Reading...
Front

Card Range To Study

through

image

Play button

image

Play button

image

Progress

1/30

Click to flip

Use LEFT and RIGHT arrow keys to navigate between flashcards;

Use UP and DOWN arrow keys to flip the card;

H to show hint;

A reads text to speech;

30 Cards in this Set

  • Front
  • Back
Name 2 ways to Install a DNS Server Role
-Sever -> Manager -> Add Role

- Active Directory Domain Services Installation wizard

(Microsoft, 2011 p. 11-4)
dnsmgmt.msc
DNS Manager Console

(Microsoft, 2011 p. 11-4)
When you install the DNS Server role: What command-line administrative tool is added?
DNSCmd.exe

(Microsoft, 2011 p. 11-4)
What is DNScmd.exe used for?
To script and automate DNS configuration

(Microsoft, 2011 p. 11-4)
When can you begin adding zones to a DNS server?
After you install it.

(Microsoft, 2011 p. 11-4)
How do you create a zone in AD?
right-click the Forward Lookup Zones node in the console tree and click New Zone. The New Zone Wizard tajes you through the process of creating a zone (Microsoft, 2011 p. 11-5)
right-click the Forward Lookup Zones node in the console tree and click New Zone. The New Zone Wizard tajes you through the process of creating a zone

(Microsoft, 2011 p. 11-5)
What are the 3 DNS zones?
1. Primary Zone

2. Secondary Zone

3. Stub Zone

(Microsoft, 2011 p. 11-5)
What is the primary zone?
The DNS Server will be bale to write in this zone.

(Microsoft, 2011 p. 11-5)
What is the secondary zone?
The DNS server will maintain a copy of a zone hosted on another DNS server. The secondary zone is read-only.

(Microsoft, 2011 p. 11-5)
What is the stub zone?
The DNS server will maintain a list of name servers for another domain.

(Microsoft, 2011 p. 11-5)
Other than the 3 primary zone types where can you store data in AD?
You can select to store the zone data in Active Directory if the DNS server is a domain controller. This creates an Active Directory integrated zone, which will be discussed later in this module. If you clear this option, the zone data is stored in file rather than Active Directory.

(Microsoft, 2011 p. 11-5)
After you choose a zone type what are you prompted for?
zone name

(Microsoft, 2011 p. 11-5)
What is the benefit of dynamic updates?
Dynamic updates reduce the management overhead of a zone, because clients can add, delete and update their own resources.

(Microsoft, 2011 p. 11-5)
What is a downside to dynamic updates?
Dynamic updates leave open the possibility that a resource record could be spoofed. For example, a computer could register a record named www. effectively redirecting traffic from you web server to the incorrect address.

(Microsoft, 2011 p. 11-)
How does windows 2008 DNS Server eliminate the possibility of DNS spoofing?
Windows Server 2008 DNS Server service supports secure dynamic updates. A client must authenticate prior to updating its resource records, so the DNS server knows whether the client is the same computer that has the permission to modify the resource record.

(Microsoft, 2011 p. 11-6)
How do you create Resource Records?
To create a resource record, right-click the zone and choose the type of record you wish to create. A dialog box appears with input controls that are appropriate for the type of record you are adding. Besides entering a resource record name and an IP ad
To create a resource record, right-click the zone and choose the type of record you wish to create. A dialog box appears with input controls that are appropriate for the type of record you are adding. Besides entering a resource record name and an IP address, you can manually set the TTL period, and you can configure options for updating records and pointer records.

(Microsoft, 2011 p. 11-7)
An enterprise should strive to ensure that a zone can be resolved authoritatively by at least ___________ DNS Servers
2

(Microsoft, 2011 p. 11-8)
If the zone is Active Directory-Integrated, you can simply add the DNS server role in another domain controller in ____________________________________
in the same domain as the first DNS server. Active Directory-Integrated zones and the replication of the DNS zones by AD DS are described in the next session.


(Microsoft, 2011 p. 11-8)
If the zone is not Active Directory-Integrated, you must do what to configure redundant DNS Servers
You must add another DNS server role to another domain controller in the same domain as the first DNS server. Active Directory-Integrated zones and the replication of the DNS zone by AD DS are described in the next lesson. (Microsoft, 2011 p. 11-8)
You must add another DNS server role to another domain controller in the same domain as the first DNS server. Active Directory-Integrated zones and the replication of the DNS zone by AD DS are described in the next lesson.

(Microsoft, 2011 p. 11-8)
What is the first step in configuring a zone?
is to configure the zone itself to refer to the secondary servers a name servers for the zone. Then, add naming service records for the secondary servers to the parent zone.

(Microsoft, 2011 p. 11-8)
When using a second server, what is the relationship between primary and master servers?
A secondary server copies the zone from another DNS server called the master server. The master server need to be the primary server, but there are obvious advantages to using the primary zones as the master to reduce the latency with which record updates are replicated to secondary servers.


(Microsoft, 2011 p. 11-8)
The master server must allow the secondary server to _______ and initiate a zone transfer.
connect and initiate. This is configured on the Zone Transfers tab of the zone properties on the master server, shown on the side:


(Microsoft, 2011 p. 11-8)
What is the secondary zone configured for and where can you add it>
You can add the secondary zone to the forward lookup zones of the secondary server. The secondary server is configures to replicate the zone from the master server.


(Microsoft, 2011 p. 11-8)
How do you configure a DNS server to effectively perform a recursive query,
The first method is to add forwarders to the DNS server. Forwarders are pointers to other DNS servers. Typically, these servers are hosted by your Internet Service Provider (ISP), or are they configured as updtream DNS server in your enterprise DNS infrastructure. For example, your active directory domain may use Windows DNS server service to resolve names withing the domain, and then forward queries to your corporate DNS servers, which host zones for other enterprise domains.

(Microsoft, 2011 p. 11-9)
What are DNS Forwarders?
Forwarders are similar to the DNS servers that you configure in the IP properties of a network connection. That list of DNS servers is used by the DNS client service. The list is not shared with the DNS server service. Forwarders serve the same purpose
Forwarders are similar to the DNS servers that you configure in the IP properties of a network connection. That list of DNS servers is used by the DNS client service. The list is not shared with the DNS server service. Forwarders serve the same purpose for the DNS server service.

(Microsoft, 2011 p. 11-9)
What happens if forwarders are not configured?
the server will attempt to query a name server for the root of the DNS namespace ("."). These root servers are maintained as root hints. Although root DNS name servers do not change delinquently, they can change occasionally. Windows Update will includ
the server will attempt to query a name server for the root of the DNS namespace ("."). These root servers are maintained as root hints. Although root DNS name servers do not change delinquently, they can change occasionally. Windows Update will include updates to the root hints.


(Microsoft, 2011 p. 11-9)
A couple methods in which a recursive query can be made more efficient are
- conditional forwarders

-stub zones


(Microsoft, 2011 p. 11-9)
What is the IP configuration of a client?
- netsh interface ipv4 set dns "Local Area Connection" static 10.0.0.11 primary

- netsh interface ipv4 add dns "Local Area Connection" 10.0.0.12

(Microsoft, 2011 p. 11-10)
What is an alternate client configuration?
Dynamic host configuration protocol scope option 6 (Microsoft, 2011 p. 11-10)
Dynamic host configuration protocol scope option 6

(Microsoft, 2011 p. 11-10)
An active directory domain must have
a DNS name

(Microsoft, 2011 p. 11-15)