SlideShare a Scribd company logo

vpn-radius-5.ppt

Download as PPT, PDF
S
ssuser472c4f

This document discusses VPN protocols and DNS configuration. It covers common VPN protocols like PPTP, L2TP, and IKEv2. It also discusses DNS components, how DNS queries work, configuring DNS zones, and delegating DNS authority. DNS is the foundation of internet naming and an organization's naming scheme. It allows accessing resources by alphanumeric names.

Education
1 of 34
VPN
GIAO THỨC THIẾT LẬP A/ PPTP ( Point To Point Tunnel Protocol ) B/ L2TP ( Layer two Tunnel Protocol ) C/ SSTP (Secure Socket Tunning Protocol ) D/ IKE V2 ( Internet Key Exchange )
Ý nghĩa VPN VPN Tunnel Tunneling Protocols Tunneled Data VPN Client VPN Server PPP Connection Transit Network
A/ PPTP Connection 1 : 2 máy liên kết với nhau thông qua internet User Connection thứ 2 : được thiết lập Mọi dữ Liệu được truyền theo connection thứ 2 và được mã hóa theo phương pháp MPPE 128 bit
B/ L2TP Connection 1 : 2 máy liên kết với nhau thông qua internet User Yêu cầu Thiết lập Ipsec Quá trình IKE – Trao đổi key 2 Máy bắt đầu mã hóa mọi gói tin theo IP sec Yêu cầu : User Connection thứ 2 được thiết lập Mọi dữ liệu được truyền trên connection thứ 2 và được mã hóa theo PP Ipsec
RADIUS Authentication Infrastructure Internet RADIUS Server (IAS) RADIUS Client (RRAS) Client Dials in to a local RADIUS client to gain network connectivity 1 Forwards requests to a RADIUS server 2 Authenticates requests and stores accounting information 3 Domain Controller Communicates to the RADIUS client to grant or deny access 4
Multimedia: The Role of DNS in the Network Infrastructure
Overview of Domain Name System Domain Name System (DNS) is a hierarchical, distributed database that contains mappings of DNS domain names to various types of data, such as IP addresses DNS is the foundation of the Internet naming scheme and the foundation of an organization’s naming scheme DNS supports accessing resources by using alphanumeric names InterNIC is responsible for delegating administrative responsibility for portions of the domain namespace and for registering domain names DNS was designed to solve issues that arose when there was an increase in the:  Number of hosts on the Internet  Traffic generated by the update process  Size of the Hosts file
What Are the Components of a DNS Solution? DNS Servers on the Internet DNS Servers DNS Clients Root “.” .com .edu Resource Record Resource Record
How Recursive Queries Work Computer1 Recursive query for mail1.nwtraders.com 172.16.64.11 A recursive query is a query made to a DNS server, in which the DNS client asks the DNS server to provide a complete answer to the query DNS server checks the forward lookup zone and cache for an answer to the query Database Local DNS Server
How Root Hint Works Root hints are DNS resource records stored on a DNS server that list the IP addresses for the DNS root servers microsoft Cluster of DNS Servers Root Hints DNS Server Cluster of Root (.) Servers com Computer1
How Iterative Queries Work An iterative query is a query made to a DNS server in which the DNS client requests the best answer that the DNS server can provide without seeking further help from other DNS servers. The result of an iterative query is often a referral to another DNS server lower in the DNS tree Computer1 Local DNS Server nwtraders.com Root Hint (.) .com Iterative Query Ask .com 3 2 1
How Forwarders Work A forwarder is a DNS server designated by other internal DNS servers to forward queries for resolving external or offsite DNS domain names Computer1 nwtraders.com Root Hint (.) .com Iterative Query Ask .com Local DNS Server Forwarder
How DNS Server Caching Works Caching is the process of temporarily storing recently accessed information in a special memory subsystem for quicker access Where’s Client A? Client1 Client2 ClientA ClientA is at 192.168.8.44 Where’s Client A? ClientA is at 192.168.8.44 Caching Table Host Name IP Address TTL clientA.contoso.msft. 192.168.8.44 28 seconds
How to Configure Properties for the DNS Server Service Your instructor will demonstrate how to: Update root hints on a DNS server Configure a DNS server to use a forwarder Clear the DNS server cache by using the DNS console Clear the DNS server cache by using the DNSCmd command
Practice: Configuring Properties for the DNS Server Service In this practice, you will configure the properties for the DNS Server service
Lesson: Configuring DNS Zones  How DNS Data Is Stored and Maintained  What Are Resource Records and Record Types?  What Is a DNS Zone?  What Are DNS Zone Types?  How to Change a DNS Zone Type  What Are Forward and Reverse Lookup Zones?  How to Configure Forward and Reverse Lookup Zones
How DNS Data Is Stored and Maintained DNS Server Zone File: Training.nwtraders.msft.dns DNS ClientA Resource records for the zone training.nwtraders.msft Host name IP address DNS ClientA 192.168.2.45 DNS ClientB 192.168.2.46 DNS ClientC 192.168.2.47 DNS ClientB DNS ClientC Namespace: training.nwtraders.msft A resource record (RR) is a standard DNS database structure containing information used to process DNS queries A zone is a portion of the DNS database that contains the resource records with the owner names that belong to the contiguous portion of the DNS namespace
What Are Resource Records and Record Types? Record type Description A Resolves a host name to an IP address PTR Resolves an IP address to a host name SOA The first record in any zone file SRV Resolves names of servers providing services NS Identifies the DNS server for each zone MX The mail server CNAME Resolves from a host name to a host name
What Are DNS Zone Types? Zones Description Primary Read/write copy of a DNS database Secondary Read-only copy of a DNS database Stub Copy of a zone containing limited records Read/Write Read-Only Copy of limited records
What Are Forward and Reverse Lookup Zones? Namespace: training.nwtraders.msft. DNS Client1 DNS Client2 DNS Client3 DNS Server Authorized for training Forward zone Training DNS Client1 192.168.2.45 DNS Client2 192.168.2.46 DNS Client3 192.168.2.47 Reverse zone 1.168.192.in- addr.arpa 192.168.2.45 DNS Client1 192.168.2.46 DNS Client2 192.168.2.47 DNS Client3 DNS Client2 = ? 192.168.2.46 = ?
How to Configure Forward and Reverse Lookup Zones Your instructor will demonstrate how to: Configure a forward lookup zone on a primary zone type Configure a forward lookup stub zone Configure a forward lookup zone on a secondary zone type Configure a reverse lookup zone on a primary zone type Configure a reverse lookup zone on a secondary zone type
How DNS Zone Transfers Work Secondary Server Primary and Master Server SOA query for a zone SOA query answered IXFR or AXFR query for a zone IXFR or AXFR query answered (zone transfer) A DNS zone transfer is the synchronization of authoritative DNS zone data between DNS servers 1 2 3 4
How DNS Notify Works Secondary Server Primary and Master Server DNS notify Zone transfer A DNS notify is an update to the original DNS protocol specification that permits notification to secondary servers when zone changes occur Source Server Destination Server 1 2 3 4 Resource record is updated SOA serial number is updated
What Are Dynamic Updates? Dynamic update enables DNS client computers to interact automatically with the DNS server to register and update their own resource records Organizations that have dynamic changes can benefit from the dynamic method of updating DNS resource records Organizations may benefit from manual update if they: Are in a smaller environment that has few changes to their resource records Have isolated instances, such as when a larger organization chooses to control every address on every host. A dynamic update is the process of a DNS client dynamically creating, registering, or updating its records in zones that are maintained by DNS servers that can accept and process messages for dynamic updates A manual update is the process of an administrator manually creating, registering, or updating the resource record
How DNS Clients Register and Update Their Own Resource Records by Using Dynamic Updates Client sends SOA query 1 DNS server sends zone name and server IP address 2 Client verifies existing registration 3 DNS server responds by stating that registration does not exist Client sends dynamic update to DNS server 5 Windows Server 2003 Windows XP Windows 2000 DNS Server Resource Records 1 2 3 4 5 4
How a DHCP Server Registers and Updates Resource Records by Using Dynamic Updates Window Server 2003 Running DHCP DHCP Down- level Client DNS Server Resource Records 3 4 DHCP client makes an IP lease request DHCP server grants IP lease DHCP server automatically generates client’s FQDN Using dynamic update, the DHCP server updates the DNS forward and reverse records for the client 1 2 3 4 IP Address Lease 1 2
How to Configure DNS Manual and Dynamic Updates Your instructor will demonstrate how to: Configure a DNS server running Windows Server 2003 to accept dynamic updates of DNS resource records Configure a Windows XP Professional client to dynamically update its DNS resource records in DNS Configure a DHCP server running Windows Server 2003 to dynamically update DNS resource records in DNS on behalf of DHCP clients Manually create a DNS resource record
What Is an Active Directory-Integrated DNS Zone? DNS zone type Benefit Non Active Directory- integrated zone Does not require Active Directory Active Directory- integrated zone Stores DNS zone data in Active Directory and is thus more secure Uses Active Directory replication instead of zone transfers Allows only secure dynamic updates Uses multi-master instead of single master structure An Active Directory-integrated DNS zone is a DNS zone stored in Active Directory
How Active Directory-Integrated DNS Zones Use Secure Dynamic Updates DNS Client running Windows XP Local DNS Server Domain Controller with Active Directory- Integrated DNS Zone Find authoritative server Result A secure dynamic update is a process in which a client submits a dynamic update request to a DNS server, and the server attempts the update only if the client can prove its identity and has the proper credentials to make the update
How to Configure Active Directory- Integrated DNS Zones to Allow Secure Dynamic Updates Only Your instructor will demonstrate how to: Configure Active Directory-integrated DNS zones to allow secure dynamic updates Configure security on an Active Directory-integrated DNS zone
How to Configure a DNS Client Your instructor will demonstrate how to: Manually configure a DNS client to use preferred and alternate DNS servers Configure the DNS server option and the DNS suffix option in DHCP
Lesson: Delegating Authority for Zones  What Is Delegation of a DNS Zone?  How to Delegate a Subdomain to a DNS Zone
What Is Delegation of a DNS Zone? The administrator, at the nwtraders.com lesvel of the namespace, delegates authority for training.nwtraders.com and offloads administration of DNS for that part of the namespace DNS server DNS server Namespace: training.nwtraders.msft training.nwtraders.msft Delegation is the process of assigning authority over child domains in your DNS namespace to another entity by adding records in the DNS database training.nwtraders.msft Training.nwtraders.com now has its own administrator and DNS server to resolve queries in that part of the namespace/organization

Recommended

6421 b Module-03
6421 b Module-036421 b Module-03
6421 b Module-03Bibekananada Jena
 
6425 b 10
6425 b 106425 b 10
6425 b 10FMAB2010
 
Microsoft Offical Course 20410C_07
Microsoft Offical Course 20410C_07Microsoft Offical Course 20410C_07
Microsoft Offical Course 20410C_07gameaxt
 
Dns interview
Dns interviewDns interview
Dns interviewsiddu balaganur
 
Configuring Dns
Configuring DnsConfiguring Dns
Configuring DnsLohit Ahuja
 
Dns Configuration
Dns ConfigurationDns Configuration
Dns ConfigurationLohit Ahuja
 
Session 4 Tp 4
Session 4 Tp 4Session 4 Tp 4
Session 4 Tp 4githe26200
 
06 coms 525 tcpip - dhcp and dns
06 coms 525 tcpip - dhcp and dns06 coms 525 tcpip - dhcp and dns
06 coms 525 tcpip - dhcp and dnsPalanivel Kuppusamy
 

Recommended

6421 b Module-03
6421 b Module-036421 b Module-03
6421 b Module-03Bibekananada Jena
 
6425 b 10
6425 b 106425 b 10
6425 b 10FMAB2010
 
Microsoft Offical Course 20410C_07
Microsoft Offical Course 20410C_07Microsoft Offical Course 20410C_07
Microsoft Offical Course 20410C_07gameaxt
 
Dns interview
Dns interviewDns interview
Dns interviewsiddu balaganur
 
Configuring Dns
Configuring DnsConfiguring Dns
Configuring DnsLohit Ahuja
 
Dns Configuration
Dns ConfigurationDns Configuration
Dns ConfigurationLohit Ahuja
 
Session 4 Tp 4
Session 4 Tp 4Session 4 Tp 4
Session 4 Tp 4githe26200
 
06 coms 525 tcpip - dhcp and dns
06 coms 525 tcpip - dhcp and dns06 coms 525 tcpip - dhcp and dns
06 coms 525 tcpip - dhcp and dnsPalanivel Kuppusamy
 
Introduction
IntroductionIntroduction
Introductionhajafaarukh
 
Deploying and configuring dns service
Deploying and configuring dns serviceDeploying and configuring dns service
Deploying and configuring dns servicelatoniasmith
 
DHCP
DHCPDHCP
DHCPviditsir
 
Domain Name System Explained
Domain Name System Explained Domain Name System Explained
Domain Name System Explained HTS Hosting
 
02 configuring and-troubleshooting-dns
02 configuring and-troubleshooting-dns02 configuring and-troubleshooting-dns
02 configuring and-troubleshooting-dnsapshirame
 
Pmw2 k3ni 1-3a
Pmw2 k3ni 1-3aPmw2 k3ni 1-3a
Pmw2 k3ni 1-3ahariclant1
 
Domain name system
Domain name systemDomain name system
Domain name systemmahakant sharma
 
Implementing Domain Name
Implementing Domain NameImplementing Domain Name
Implementing Domain NameNapoleon NV
 
Zone in windows server 2012
Zone in windows server 2012Zone in windows server 2012
Zone in windows server 2012devil00dante
 
Dns
DnsDns
Dnsleminhvuong
 
23rd PITA AGM and Conference: DNS Security - A holistic view
23rd PITA AGM and Conference: DNS Security - A holistic view 23rd PITA AGM and Conference: DNS Security - A holistic view
23rd PITA AGM and Conference: DNS Security - A holistic view APNIC
 
What is dns
What is dnsWhat is dns
What is dnsSwapna Kalangan
 
Domain Name Service
Domain Name ServiceDomain Name Service
Domain Name Servicewebhostingguy
 
Session_2.ppt
Session_2.pptSession_2.ppt
Session_2.pptSudharsananRadhakris
 
How DNS works and How to secure it: An Introduction
How DNS works and How to secure it: An IntroductionHow DNS works and How to secure it: An Introduction
How DNS works and How to secure it: An Introductionyasithbagya1
 
Content Navigation
Content NavigationContent Navigation
Content Navigationsanjoysanyal
 
Dns
DnsDns
Dnstmavroidis
 
Pmw2 k3ni 1-2b
Pmw2 k3ni 1-2bPmw2 k3ni 1-2b
Pmw2 k3ni 1-2bhariclant1
 
Domain Name Server
Domain Name ServerDomain Name Server
Domain Name Servervipulvaid
 
Dns server
Dns serverDns server
Dns serverMuuluu
 
Pharmacognosy Flower 3. Compositae 2023.pdf
Pharmacognosy Flower 3. Compositae 2023.pdfPharmacognosy Flower 3. Compositae 2023.pdf
Pharmacognosy Flower 3. Compositae 2023.pdfMahmoud M. Sallam
 
Final demo Grade 9 for demo Plan dessert.pptx
Final demo Grade 9 for demo Plan dessert.pptxFinal demo Grade 9 for demo Plan dessert.pptx
Final demo Grade 9 for demo Plan dessert.pptxAvyJaneVismanos
 

More Related Content

Similar to vpn-radius-5.ppt

Deploying and configuring dns service
Deploying and configuring dns serviceDeploying and configuring dns service
Deploying and configuring dns servicelatoniasmith
 
Domain Name System Explained
Domain Name System Explained Domain Name System Explained
Domain Name System Explained HTS Hosting
 
02 configuring and-troubleshooting-dns
02 configuring and-troubleshooting-dns02 configuring and-troubleshooting-dns
02 configuring and-troubleshooting-dnsapshirame
 
Pmw2 k3ni 1-3a
Pmw2 k3ni 1-3aPmw2 k3ni 1-3a
Pmw2 k3ni 1-3ahariclant1
 
Implementing Domain Name
Implementing Domain NameImplementing Domain Name
Implementing Domain NameNapoleon NV
 
Zone in windows server 2012
Zone in windows server 2012Zone in windows server 2012
Zone in windows server 2012devil00dante
 
23rd PITA AGM and Conference: DNS Security - A holistic view
23rd PITA AGM and Conference: DNS Security - A holistic view 23rd PITA AGM and Conference: DNS Security - A holistic view
23rd PITA AGM and Conference: DNS Security - A holistic view APNIC
 
How DNS works and How to secure it: An Introduction
How DNS works and How to secure it: An IntroductionHow DNS works and How to secure it: An Introduction
How DNS works and How to secure it: An Introductionyasithbagya1
 
Content Navigation
Content NavigationContent Navigation
Content Navigationsanjoysanyal
 
Pmw2 k3ni 1-2b
Pmw2 k3ni 1-2bPmw2 k3ni 1-2b
Pmw2 k3ni 1-2bhariclant1
 
Domain Name Server
Domain Name ServerDomain Name Server
Domain Name Servervipulvaid
 
Dns server
Dns serverDns server
Dns serverMuuluu
 

Similar to vpn-radius-5.ppt (20)

Introduction
IntroductionIntroduction
Introduction
 
Deploying and configuring dns service
Deploying and configuring dns serviceDeploying and configuring dns service
Deploying and configuring dns service
 
DHCP
DHCPDHCP
DHCP
 
Domain Name System Explained
Domain Name System Explained Domain Name System Explained
Domain Name System Explained
 
02 configuring and-troubleshooting-dns
02 configuring and-troubleshooting-dns02 configuring and-troubleshooting-dns
02 configuring and-troubleshooting-dns
 
Pmw2 k3ni 1-3a
Pmw2 k3ni 1-3aPmw2 k3ni 1-3a
Pmw2 k3ni 1-3a
 
Domain name system
Domain name systemDomain name system
Domain name system
 
Implementing Domain Name
Implementing Domain NameImplementing Domain Name
Implementing Domain Name
 
Zone in windows server 2012
Zone in windows server 2012Zone in windows server 2012
Zone in windows server 2012
 
Dns
DnsDns
Dns
 
23rd PITA AGM and Conference: DNS Security - A holistic view
23rd PITA AGM and Conference: DNS Security - A holistic view 23rd PITA AGM and Conference: DNS Security - A holistic view
23rd PITA AGM and Conference: DNS Security - A holistic view
 
What is dns
What is dnsWhat is dns
What is dns
 
Domain Name Service
Domain Name ServiceDomain Name Service
Domain Name Service
 
Session_2.ppt
Session_2.pptSession_2.ppt
Session_2.ppt
 
How DNS works and How to secure it: An Introduction
How DNS works and How to secure it: An IntroductionHow DNS works and How to secure it: An Introduction
How DNS works and How to secure it: An Introduction
 
Content Navigation
Content NavigationContent Navigation
Content Navigation
 
Dns
DnsDns
Dns
 
Pmw2 k3ni 1-2b
Pmw2 k3ni 1-2bPmw2 k3ni 1-2b
Pmw2 k3ni 1-2b
 
Domain Name Server
Domain Name ServerDomain Name Server
Domain Name Server
 
Dns server
Dns serverDns server
Dns server
 

Recently uploaded

Pharmacognosy Flower 3. Compositae 2023.pdf
Pharmacognosy Flower 3. Compositae 2023.pdfPharmacognosy Flower 3. Compositae 2023.pdf
Pharmacognosy Flower 3. Compositae 2023.pdfMahmoud M. Sallam
 
Final demo Grade 9 for demo Plan dessert.pptx
Final demo Grade 9 for demo Plan dessert.pptxFinal demo Grade 9 for demo Plan dessert.pptx
Final demo Grade 9 for demo Plan dessert.pptxAvyJaneVismanos
 
CARE OF CHILD IN INCUBATOR..........pptx
CARE OF CHILD IN INCUBATOR..........pptxCARE OF CHILD IN INCUBATOR..........pptx
CARE OF CHILD IN INCUBATOR..........pptxGaneshChakor2
 
Types of Journalistic Writing Grade 8.pptx
Types of Journalistic Writing Grade 8.pptxTypes of Journalistic Writing Grade 8.pptx
Types of Journalistic Writing Grade 8.pptxEyham Joco
 
Organic Name Reactions for the students and aspirants of Chemistry12th.pptx
Organic Name Reactions for the students and aspirants of Chemistry12th.pptxOrganic Name Reactions for the students and aspirants of Chemistry12th.pptx
Organic Name Reactions for the students and aspirants of Chemistry12th.pptxVS Mahajan Coaching Centre
 
ECONOMIC CONTEXT - PAPER 1 Q3: NEWSPAPERS.pptx
ECONOMIC CONTEXT - PAPER 1 Q3: NEWSPAPERS.pptxECONOMIC CONTEXT - PAPER 1 Q3: NEWSPAPERS.pptx
ECONOMIC CONTEXT - PAPER 1 Q3: NEWSPAPERS.pptxiammrhaywood
 
भारत-रोम व्यापार.pptx, Indo-Roman Trade,
भारत-रोम व्यापार.pptx, Indo-Roman Trade,भारत-रोम व्यापार.pptx, Indo-Roman Trade,
भारत-रोम व्यापार.pptx, Indo-Roman Trade,Virag Sontakke
 
ECONOMIC CONTEXT - LONG FORM TV DRAMA - PPT
ECONOMIC CONTEXT - LONG FORM TV DRAMA - PPTECONOMIC CONTEXT - LONG FORM TV DRAMA - PPT
ECONOMIC CONTEXT - LONG FORM TV DRAMA - PPTiammrhaywood
 
Capitol Tech U Doctoral Presentation - April 2024.pptx
Capitol Tech U Doctoral Presentation - April 2024.pptxCapitol Tech U Doctoral Presentation - April 2024.pptx
Capitol Tech U Doctoral Presentation - April 2024.pptxCapitolTechU
 
How to Configure Email Server in Odoo 17
How to Configure Email Server in Odoo 17How to Configure Email Server in Odoo 17
How to Configure Email Server in Odoo 17Celine George
 
History Class XII Ch. 3 Kinship, Caste and Class (1).pptx
History Class XII Ch. 3 Kinship, Caste and Class (1).pptxHistory Class XII Ch. 3 Kinship, Caste and Class (1).pptx
History Class XII Ch. 3 Kinship, Caste and Class (1).pptxsocialsciencegdgrohi
 
KSHARA STURA .pptx---KSHARA KARMA THERAPY (CAUSTIC THERAPY)————IMP.OF KSHARA ...
KSHARA STURA .pptx---KSHARA KARMA THERAPY (CAUSTIC THERAPY)————IMP.OF KSHARA ...KSHARA STURA .pptx---KSHARA KARMA THERAPY (CAUSTIC THERAPY)————IMP.OF KSHARA ...
KSHARA STURA .pptx---KSHARA KARMA THERAPY (CAUSTIC THERAPY)————IMP.OF KSHARA ...M56BOOKSTORE PRODUCT/SERVICE
 
Alper Gobel In Media Res Media Component
Alper Gobel In Media Res Media ComponentAlper Gobel In Media Res Media Component
Alper Gobel In Media Res Media ComponentInMediaRes1
 
Proudly South Africa powerpoint Thorisha.pptx
Proudly South Africa powerpoint Thorisha.pptxProudly South Africa powerpoint Thorisha.pptx
Proudly South Africa powerpoint Thorisha.pptxthorishapillay1
 
Solving Puzzles Benefits Everyone (English).pptx
Solving Puzzles Benefits Everyone (English).pptxSolving Puzzles Benefits Everyone (English).pptx
Solving Puzzles Benefits Everyone (English).pptxOH TEIK BIN
 
Hierarchy of management that covers different levels of management
Hierarchy of management that covers different levels of managementHierarchy of management that covers different levels of management
Hierarchy of management that covers different levels of managementmkooblal
 

Recently uploaded (20)

Pharmacognosy Flower 3. Compositae 2023.pdf
Pharmacognosy Flower 3. Compositae 2023.pdfPharmacognosy Flower 3. Compositae 2023.pdf
Pharmacognosy Flower 3. Compositae 2023.pdf
 
Final demo Grade 9 for demo Plan dessert.pptx
Final demo Grade 9 for demo Plan dessert.pptxFinal demo Grade 9 for demo Plan dessert.pptx
Final demo Grade 9 for demo Plan dessert.pptx
 
CARE OF CHILD IN INCUBATOR..........pptx
CARE OF CHILD IN INCUBATOR..........pptxCARE OF CHILD IN INCUBATOR..........pptx
CARE OF CHILD IN INCUBATOR..........pptx
 
Types of Journalistic Writing Grade 8.pptx
Types of Journalistic Writing Grade 8.pptxTypes of Journalistic Writing Grade 8.pptx
Types of Journalistic Writing Grade 8.pptx
 
Organic Name Reactions for the students and aspirants of Chemistry12th.pptx
Organic Name Reactions for the students and aspirants of Chemistry12th.pptxOrganic Name Reactions for the students and aspirants of Chemistry12th.pptx
Organic Name Reactions for the students and aspirants of Chemistry12th.pptx
 
ECONOMIC CONTEXT - PAPER 1 Q3: NEWSPAPERS.pptx
ECONOMIC CONTEXT - PAPER 1 Q3: NEWSPAPERS.pptxECONOMIC CONTEXT - PAPER 1 Q3: NEWSPAPERS.pptx
ECONOMIC CONTEXT - PAPER 1 Q3: NEWSPAPERS.pptx
 
Model Call Girl in Bikash Puri Delhi reach out to us at 🔝9953056974🔝
Model Call Girl in Bikash Puri Delhi reach out to us at 🔝9953056974🔝Model Call Girl in Bikash Puri Delhi reach out to us at 🔝9953056974🔝
Model Call Girl in Bikash Puri Delhi reach out to us at 🔝9953056974🔝
 
भारत-रोम व्यापार.pptx, Indo-Roman Trade,
भारत-रोम व्यापार.pptx, Indo-Roman Trade,भारत-रोम व्यापार.pptx, Indo-Roman Trade,
भारत-रोम व्यापार.pptx, Indo-Roman Trade,
 
ECONOMIC CONTEXT - LONG FORM TV DRAMA - PPT
ECONOMIC CONTEXT - LONG FORM TV DRAMA - PPTECONOMIC CONTEXT - LONG FORM TV DRAMA - PPT
ECONOMIC CONTEXT - LONG FORM TV DRAMA - PPT
 
ESSENTIAL of (CS/IT/IS) class 06 (database)
ESSENTIAL of (CS/IT/IS) class 06 (database)ESSENTIAL of (CS/IT/IS) class 06 (database)
ESSENTIAL of (CS/IT/IS) class 06 (database)
 
9953330565 Low Rate Call Girls In Rohini Delhi NCR
9953330565 Low Rate Call Girls In Rohini Delhi NCR9953330565 Low Rate Call Girls In Rohini Delhi NCR
9953330565 Low Rate Call Girls In Rohini Delhi NCR
 
Capitol Tech U Doctoral Presentation - April 2024.pptx
Capitol Tech U Doctoral Presentation - April 2024.pptxCapitol Tech U Doctoral Presentation - April 2024.pptx
Capitol Tech U Doctoral Presentation - April 2024.pptx
 
How to Configure Email Server in Odoo 17
How to Configure Email Server in Odoo 17How to Configure Email Server in Odoo 17
How to Configure Email Server in Odoo 17
 
History Class XII Ch. 3 Kinship, Caste and Class (1).pptx
History Class XII Ch. 3 Kinship, Caste and Class (1).pptxHistory Class XII Ch. 3 Kinship, Caste and Class (1).pptx
History Class XII Ch. 3 Kinship, Caste and Class (1).pptx
 
KSHARA STURA .pptx---KSHARA KARMA THERAPY (CAUSTIC THERAPY)————IMP.OF KSHARA ...
KSHARA STURA .pptx---KSHARA KARMA THERAPY (CAUSTIC THERAPY)————IMP.OF KSHARA ...KSHARA STURA .pptx---KSHARA KARMA THERAPY (CAUSTIC THERAPY)————IMP.OF KSHARA ...
KSHARA STURA .pptx---KSHARA KARMA THERAPY (CAUSTIC THERAPY)————IMP.OF KSHARA ...
 
Alper Gobel In Media Res Media Component
Alper Gobel In Media Res Media ComponentAlper Gobel In Media Res Media Component
Alper Gobel In Media Res Media Component
 
OS-operating systems- ch04 (Threads) ...
OS-operating systems- ch04 (Threads) ...OS-operating systems- ch04 (Threads) ...
OS-operating systems- ch04 (Threads) ...
 
Proudly South Africa powerpoint Thorisha.pptx
Proudly South Africa powerpoint Thorisha.pptxProudly South Africa powerpoint Thorisha.pptx
Proudly South Africa powerpoint Thorisha.pptx
 
Solving Puzzles Benefits Everyone (English).pptx
Solving Puzzles Benefits Everyone (English).pptxSolving Puzzles Benefits Everyone (English).pptx
Solving Puzzles Benefits Everyone (English).pptx
 
Hierarchy of management that covers different levels of management
Hierarchy of management that covers different levels of managementHierarchy of management that covers different levels of management
Hierarchy of management that covers different levels of management
 

vpn-radius-5.ppt

  • 1. VPN
  • 2. GIAO THỨC THIẾT LẬP A/ PPTP ( Point To Point Tunnel Protocol ) B/ L2TP ( Layer two Tunnel Protocol ) C/ SSTP (Secure Socket Tunning Protocol ) D/ IKE V2 ( Internet Key Exchange )
  • 3. Ý nghĩa VPN VPN Tunnel Tunneling Protocols Tunneled Data VPN Client VPN Server PPP Connection Transit Network
  • 4. A/ PPTP Connection 1 : 2 máy liên kết với nhau thông qua internet User Connection thứ 2 : được thiết lập Mọi dữ Liệu được truyền theo connection thứ 2 và được mã hóa theo phương pháp MPPE 128 bit
  • 5. B/ L2TP Connection 1 : 2 máy liên kết với nhau thông qua internet User Yêu cầu Thiết lập Ipsec Quá trình IKE – Trao đổi key 2 Máy bắt đầu mã hóa mọi gói tin theo IP sec Yêu cầu : User Connection thứ 2 được thiết lập Mọi dữ liệu được truyền trên connection thứ 2 và được mã hóa theo PP Ipsec
  • 6. RADIUS Authentication Infrastructure Internet RADIUS Server (IAS) RADIUS Client (RRAS) Client Dials in to a local RADIUS client to gain network connectivity 1 Forwards requests to a RADIUS server 2 Authenticates requests and stores accounting information 3 Domain Controller Communicates to the RADIUS client to grant or deny access 4
  • 7. Multimedia: The Role of DNS in the Network Infrastructure
  • 8. Overview of Domain Name System Domain Name System (DNS) is a hierarchical, distributed database that contains mappings of DNS domain names to various types of data, such as IP addresses DNS is the foundation of the Internet naming scheme and the foundation of an organization’s naming scheme DNS supports accessing resources by using alphanumeric names InterNIC is responsible for delegating administrative responsibility for portions of the domain namespace and for registering domain names DNS was designed to solve issues that arose when there was an increase in the:  Number of hosts on the Internet  Traffic generated by the update process  Size of the Hosts file
  • 9. What Are the Components of a DNS Solution? DNS Servers on the Internet DNS Servers DNS Clients Root “.” .com .edu Resource Record Resource Record
  • 10. How Recursive Queries Work Computer1 Recursive query for mail1.nwtraders.com 172.16.64.11 A recursive query is a query made to a DNS server, in which the DNS client asks the DNS server to provide a complete answer to the query DNS server checks the forward lookup zone and cache for an answer to the query Database Local DNS Server
  • 11. How Root Hint Works Root hints are DNS resource records stored on a DNS server that list the IP addresses for the DNS root servers microsoft Cluster of DNS Servers Root Hints DNS Server Cluster of Root (.) Servers com Computer1
  • 12. How Iterative Queries Work An iterative query is a query made to a DNS server in which the DNS client requests the best answer that the DNS server can provide without seeking further help from other DNS servers. The result of an iterative query is often a referral to another DNS server lower in the DNS tree Computer1 Local DNS Server nwtraders.com Root Hint (.) .com Iterative Query Ask .com 3 2 1
  • 13. How Forwarders Work A forwarder is a DNS server designated by other internal DNS servers to forward queries for resolving external or offsite DNS domain names Computer1 nwtraders.com Root Hint (.) .com Iterative Query Ask .com Local DNS Server Forwarder
  • 14. How DNS Server Caching Works Caching is the process of temporarily storing recently accessed information in a special memory subsystem for quicker access Where’s Client A? Client1 Client2 ClientA ClientA is at 192.168.8.44 Where’s Client A? ClientA is at 192.168.8.44 Caching Table Host Name IP Address TTL clientA.contoso.msft. 192.168.8.44 28 seconds
  • 15. How to Configure Properties for the DNS Server Service Your instructor will demonstrate how to: Update root hints on a DNS server Configure a DNS server to use a forwarder Clear the DNS server cache by using the DNS console Clear the DNS server cache by using the DNSCmd command
  • 16. Practice: Configuring Properties for the DNS Server Service In this practice, you will configure the properties for the DNS Server service
  • 17. Lesson: Configuring DNS Zones  How DNS Data Is Stored and Maintained  What Are Resource Records and Record Types?  What Is a DNS Zone?  What Are DNS Zone Types?  How to Change a DNS Zone Type  What Are Forward and Reverse Lookup Zones?  How to Configure Forward and Reverse Lookup Zones
  • 18. How DNS Data Is Stored and Maintained DNS Server Zone File: Training.nwtraders.msft.dns DNS ClientA Resource records for the zone training.nwtraders.msft Host name IP address DNS ClientA 192.168.2.45 DNS ClientB 192.168.2.46 DNS ClientC 192.168.2.47 DNS ClientB DNS ClientC Namespace: training.nwtraders.msft A resource record (RR) is a standard DNS database structure containing information used to process DNS queries A zone is a portion of the DNS database that contains the resource records with the owner names that belong to the contiguous portion of the DNS namespace
  • 19. What Are Resource Records and Record Types? Record type Description A Resolves a host name to an IP address PTR Resolves an IP address to a host name SOA The first record in any zone file SRV Resolves names of servers providing services NS Identifies the DNS server for each zone MX The mail server CNAME Resolves from a host name to a host name
  • 20. What Are DNS Zone Types? Zones Description Primary Read/write copy of a DNS database Secondary Read-only copy of a DNS database Stub Copy of a zone containing limited records Read/Write Read-Only Copy of limited records
  • 21. What Are Forward and Reverse Lookup Zones? Namespace: training.nwtraders.msft. DNS Client1 DNS Client2 DNS Client3 DNS Server Authorized for training Forward zone Training DNS Client1 192.168.2.45 DNS Client2 192.168.2.46 DNS Client3 192.168.2.47 Reverse zone 1.168.192.in- addr.arpa 192.168.2.45 DNS Client1 192.168.2.46 DNS Client2 192.168.2.47 DNS Client3 DNS Client2 = ? 192.168.2.46 = ?
  • 22. How to Configure Forward and Reverse Lookup Zones Your instructor will demonstrate how to: Configure a forward lookup zone on a primary zone type Configure a forward lookup stub zone Configure a forward lookup zone on a secondary zone type Configure a reverse lookup zone on a primary zone type Configure a reverse lookup zone on a secondary zone type
  • 23. How DNS Zone Transfers Work Secondary Server Primary and Master Server SOA query for a zone SOA query answered IXFR or AXFR query for a zone IXFR or AXFR query answered (zone transfer) A DNS zone transfer is the synchronization of authoritative DNS zone data between DNS servers 1 2 3 4
  • 24. How DNS Notify Works Secondary Server Primary and Master Server DNS notify Zone transfer A DNS notify is an update to the original DNS protocol specification that permits notification to secondary servers when zone changes occur Source Server Destination Server 1 2 3 4 Resource record is updated SOA serial number is updated
  • 25. What Are Dynamic Updates? Dynamic update enables DNS client computers to interact automatically with the DNS server to register and update their own resource records Organizations that have dynamic changes can benefit from the dynamic method of updating DNS resource records Organizations may benefit from manual update if they: Are in a smaller environment that has few changes to their resource records Have isolated instances, such as when a larger organization chooses to control every address on every host. A dynamic update is the process of a DNS client dynamically creating, registering, or updating its records in zones that are maintained by DNS servers that can accept and process messages for dynamic updates A manual update is the process of an administrator manually creating, registering, or updating the resource record
  • 26. How DNS Clients Register and Update Their Own Resource Records by Using Dynamic Updates Client sends SOA query 1 DNS server sends zone name and server IP address 2 Client verifies existing registration 3 DNS server responds by stating that registration does not exist Client sends dynamic update to DNS server 5 Windows Server 2003 Windows XP Windows 2000 DNS Server Resource Records 1 2 3 4 5 4
  • 27. How a DHCP Server Registers and Updates Resource Records by Using Dynamic Updates Window Server 2003 Running DHCP DHCP Down- level Client DNS Server Resource Records 3 4 DHCP client makes an IP lease request DHCP server grants IP lease DHCP server automatically generates client’s FQDN Using dynamic update, the DHCP server updates the DNS forward and reverse records for the client 1 2 3 4 IP Address Lease 1 2
  • 28. How to Configure DNS Manual and Dynamic Updates Your instructor will demonstrate how to: Configure a DNS server running Windows Server 2003 to accept dynamic updates of DNS resource records Configure a Windows XP Professional client to dynamically update its DNS resource records in DNS Configure a DHCP server running Windows Server 2003 to dynamically update DNS resource records in DNS on behalf of DHCP clients Manually create a DNS resource record
  • 29. What Is an Active Directory-Integrated DNS Zone? DNS zone type Benefit Non Active Directory- integrated zone Does not require Active Directory Active Directory- integrated zone Stores DNS zone data in Active Directory and is thus more secure Uses Active Directory replication instead of zone transfers Allows only secure dynamic updates Uses multi-master instead of single master structure An Active Directory-integrated DNS zone is a DNS zone stored in Active Directory
  • 30. How Active Directory-Integrated DNS Zones Use Secure Dynamic Updates DNS Client running Windows XP Local DNS Server Domain Controller with Active Directory- Integrated DNS Zone Find authoritative server Result A secure dynamic update is a process in which a client submits a dynamic update request to a DNS server, and the server attempts the update only if the client can prove its identity and has the proper credentials to make the update
  • 31. How to Configure Active Directory- Integrated DNS Zones to Allow Secure Dynamic Updates Only Your instructor will demonstrate how to: Configure Active Directory-integrated DNS zones to allow secure dynamic updates Configure security on an Active Directory-integrated DNS zone
  • 32. How to Configure a DNS Client Your instructor will demonstrate how to: Manually configure a DNS client to use preferred and alternate DNS servers Configure the DNS server option and the DNS suffix option in DHCP
  • 33. Lesson: Delegating Authority for Zones  What Is Delegation of a DNS Zone?  How to Delegate a Subdomain to a DNS Zone
  • 34. What Is Delegation of a DNS Zone? The administrator, at the nwtraders.com lesvel of the namespace, delegates authority for training.nwtraders.com and offloads administration of DNS for that part of the namespace DNS server DNS server Namespace: training.nwtraders.msft training.nwtraders.msft Delegation is the process of assigning authority over child domains in your DNS namespace to another entity by adding records in the DNS database training.nwtraders.msft Training.nwtraders.com now has its own administrator and DNS server to resolve queries in that part of the namespace/organization