Windows computers are rarely used without an active network connection, and they often play major roles in supporting the network by providing routing, firewall protection, name resolution, IP address allocation, and remote access. Given the ubiquity of networking, every system administrator must master network administration. This book will help you master networking on Windows Server 2003 systems.
Windows Server 2003 supports a rich networking environment. Windows servers provide implementations of a full array of TCP/IP network services. Well-known protocols and services such as DNS and DHCP are included, as well as less widely deployed protocols such as OSPF and IPSec. Additionally, Windows servers provide the best support for proprietary Microsoft networking services and protocols, such as CIFS. One of the advantages of using Windows servers is that they do an excellent job of integrating Microsoft network services into an Internet built on standard Internet protocols. This book covers the standard TCP/IP protocols, the Microsoft protocols, and the tools and techniques used to integrate them.
Windows Server 2003 Network Administration is the combined effort of Craig Hunt and Roberta Bragg. Craig is an expert on networking and is the author of nine books, including TCP/IP Network Administration. Roberta is a Microsoft Windows networking MVP and an expert on information security. She is also the author of all or part of 10 books, including Designing Security for Windows Server 2003 Network and Hardening Windows. The combination of Windows and networking expertise provides the perfect blend for a book about Windows network administration. This book covers the issues that are most important to the Windows system administrator who is building or managing a network.
Windows Server 2003 Network Administration provides practical, detailed network information for the Windows system administrator. It is a book about building and maintaining your own network based on Windows servers. It is a tutorial covering the why and how of networking, as well as a reference providing the details about specific network programs as they are implemented on Windows servers. This book strives to find the correct balance of theory and practice, so that you understand what needs to be done and why it is done.
Windows Server 2003 Network Administration is intended for everyone who has to configure a network service on a Windows server. This obviously includes the network managers and the system administrators who are responsible for setting up and running computers and networks, but the audience also includes anyone who needs to understand how a computer communicates with and provides services to other systems. Large and mid-size organizations have dedicated system administrators, but many small organizations depend on someone who is not really a full-time system administrator to install and configure their network services. You may not think of yourself as a system administrator, but if you have to configure network services, you’re involved in system administration tasks. Regardless of your job description, if you’re responsible for configuring or managing network services, this book is for you.
However, this is not a book for beginners. If you have been given system administration tasks, it is probably because you already have skill with computers. In this book, we assume that you have a good understanding of computers and their operation, and that you’re generally familiar with Windows system administration. Over the years, there has been a rash of books for “dummies” and “idiots.” If you really think of yourself as an “idiot” when it comes to Windows servers, this book is not for you. Likewise, if you are a network administration genius, this book is probably not suitable for your needs. However, if you fall anywhere in between the two extremes, this book has something to offer you.
Windows Server 2003 Network Administration has three distinct parts: fundamental concepts, tutorial, and reference. The first three chapters are a basic discussion of the network protocols and services. This discussion provides the fundamental concepts necessary to understand the rest of the book. The remaining chapters provide a how-to tutorial for planning, installing, and configuring various important network services. The book concludes with three appendixes that are technical references for various configuration options.
This book contains the following chapters:
Chapter 1, Overview of TCP/IP, describes TCP/IP, which is the protocol suite upon which modern networks are built. The chapter gives the history of TCP/IP, a description of the structure of the protocol architecture, and a basic explanation of how the protocols function.
Chapter 2, Delivering the Data, describes addressing and how data passes through a network to reach the proper destination.
Chapter 3, Network Services, discusses the relationship between clients and server systems, as well as the various services that are central to the function of a modern network.
Chapter 4, Basic TCP/IP Configuration, covers the basic “client” configuration required by all systems running TCP/IP. Planning for and choosing the necessary configuration values is also covered.
Chapter 5, Managing DHCP Services, describes how to install, configure, and maintain a Windows DHCP server.
Chapter 6, Creating a DNS Server, describes how to install, configure, and manage a Microsoft DNS server.
Chapter 7, Using AD to Support Network Administration, concentrates on the symbiotic relationship between TCP/IP and Active Directory. Active Directory-integrated DNS zones, integration with DHCP and AD, and integration with WINS and AD are covered.
Chapter 8, Controlling Remote Communications with Microsoft Routing and Remote Access Service, describes how to install and configure the RRAS software that permits a Windows server to run a variety of TCP/IP routing protocols and to provide the security protocols needed to create encrypted connections. In addition to providing routing and encryption support, RRAS is used to allow remote dial-up Internet access. RRAS also provides NAT services.
Chapter 9, Protecting Hosts with Windows Host Firewalls, discusses the different implementations of the native Windows firewall. Internet Connection Sharing, Internet Connection Firewall, Windows protocol filters, IPSec policies, and firewall management via Group Policy are all discussed.
Chapter 10, Centralizing Authentication and Authorization with Internet Authentication Server, describes the installation and configuration of an IAS to provide centralized authentication, audit, and authorization services for RADIUS clients. The RADIUS protocol, as well as wireless security, secure communications between IAS and RRAS, and Network Access Quarantine are discussed.
Chapter 11, Protecting Network Communications with Internet Protocol Security, provides the background necessary to understand, install, and configure IPSec. In addition to discussing IPSec protocol basics, this chapter covers the details of IPSec policies. Using NAT-T to allow an IPSec VPN to traverse NAT servers is also covered.
Chapter 12, Configuring Internet and Intranet Web Services with IIS, describes how to install, configure, and manage the Internet Information Server software. The IIS software provides web services, an FTP server, an SMTP email server, and more. SSL security is also covered.
Chapter 13, Network Security Administration, describes how to design proper security into your network and how to understand the overall security framework within which the network resides. Topics include Group Policy, Security Templates, and more.
Chapter 14, Troubleshooting TCP/IP, tells you what to do when something goes wrong. It describes the techniques and tools used to monitor the network and troubleshoot it when problems develop.
There are also three appendixes included with this book:
Appendix A, DHCP Options, describes all of the DHCP options configurable through the Windows DHCP management console. (DHCP options are the TCP/IP configuration values exchanged by a DHCP server and a client.)
Appendix B, DHCP Audit Log Identifiers, is a reference that lists all of the numeric identifiers used by the DHCP server to identify log entries.
Appendix C, DNS Resource Records, is a reference for the records used to build a DNS database. All of the resource records available through the Windows DNS management console are covered. Additionally, the syntax of the rarely used DNS boot file is covered.
The following typographical conventions are used in this book:
Constant widthIndicates commands, command-line elements, computer output, and code examples
Constant width italicIndicates placeholders (for which you substitute an actual name) in examples and in registry keys
Constant width boldIndicates user input
- Italic
Introduces new terms and URLs, file extensions, filenames, directory or folder names, and UNC pathnames
This book is here to help you get your job done. In general, you may use the code in this book in your programs and documentation. You do not need to contact us for permission unless you’re reproducing a significant portion of the code. For example, writing a program that uses several chunks of code from this book does not require permission. Selling or distributing a CD-ROM of examples from O’Reilly books does require permission. Answering a question by citing this book and quoting example code does not require permission. Incorporating a significant amount of example code from this book into your product’s documentation does require permission.
We appreciate, but do not require, attribution. An attribution usually includes the title, author, publisher, and ISBN. For example: "Windows Server 2003 Network Administration, by Craig Hunt and Roberta Bragg. Copyright 2005 O’Reilly Media, Inc., 0-596-00800-7.”
If you feel your use of code examples falls outside fair use or the permission given above, feel free to contact us at permissions@oreilly.com.
Please address comments and questions concerning this book to the publisher:
| O’Reilly Media, Inc. |
| 1005 Gravenstein Highway North |
| Sebastopol, CA 95472 |
| (800) 998-9938 (in the United States or Canada) |
| (707) 829-0515 (international or local) |
| (707) 829-0104 (fax) |
We have a web page for this book, where we list errata, examples, and any additional information. You can access this page at:
| http://www.oreilly.com/catalog/windowsvrnet |
To comment or ask technical questions about this book, send email to:
| bookquestions@oreilly.com |
For more information about our books, conferences, Resource Centers, and the O’Reilly Network, see our web site at:
| http://www.oreilly.com |
When you see a Safari® Enabled icon on the cover of your favorite technology book, that means the book is available online through the O’Reilly Network Safari Bookshelf.
Safari offers a solution that’s better than e-books. It’s a virtual library that lets you easily search thousands of top tech books, cut and paste code samples, download chapters, and find quick answers when you need the most accurate, current information. Try it for free at http://safari.oreilly.com.
Craig and Roberta would like to thank Mike Loukides for the spark that started this project, and Robbie Allen for his persistence and professionalism in keeping this book moving forward despite the inevitable setbacks.
Jeff Shawgo, Laura Hunter, and Paul Robichaux deserve special thanks. They provided a detailed technical review of all of the chapters. Their comments improved the technical accuracy and the readability of the text. Rodney Fournier and David Shaw also provided helpful feedback for parts of the book.
Kevin Shafer also deserves special thanks for jumping in to help us organize text in some of the most complex chapters. His organizational skills brought order and structure to some very challenging technical topics.
We would also like to thank the excellent production team at O’Reilly.
Last, but not least, Craig needs to thank Kathy, a loving spouse with the patience of Job.
Get Windows Server 2003 Network Administration now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
