You are on page 1of 189

IT IT

Internet

IT
IT IT


LAN

LAN
Internet ISP

DNS WINS DHCP IP
IP Active Directory?

Internet
LAN Internet
VPN Web
Internet Internet
IT
DFS
Windows? Storage Server 2003

IT

Lucerne Publishing

IT Microsoft
(OEM) (ISV)
IT

IT IT
IT
IT

IT
IT Microsoft
IT IT IT
IT
IT

IT

Internet

IT

IT
IT
IT

IT
IT

IT
IT IT

IT IT
(LOB)
IT IT
IT
IT IT IT
IT IT IT

IT Microsoft

IT Microsoft

IT
IT IT

Microsoft Windows Server System

IT

IT

Microsoft

IT
IT
IT Microsoft

IT


IT

(LAN)

LAN Internet
Internet
Internet

DNS WINS

LAN

DHCP

IP IP
Active Directory IT

Internet

Internet
ISA Server

Internet Web
Web

Internet

Internet

1.

IT

IT

Active

Directory

Exchange

Extranet Web

Intranet

Web

Intranet Web
Web

IT

VPN
LAN
HTTPS
Web

Web

Web

LOB

LOB

Web VPN
(CA)

Internet

HTTPS Web
SUS

Web

Windows

LOB

2.

IT

Windows Server 2003 Standard Edition


IT

Active Directory (DNS)


(DHCP) Windows Internet (WINS)

Active
DirectoryDNSDHCP WINS

Active Directory

DNS

DNS

WINS

DNS

DHCP

DHCP

3.
Internet

IT

CPU
Windows Server 2003
Standard Edition
Internet
Microsoft ISA server 2004 Standard Edition
CPU SSL

ISA Server 2004


Internet IT

Exchange Server 2003 Standard Edition


CPU

Internet Information Services Windows SharePoint Server


Internet Information Services Windows SharePoint Services
CPU

Windows Server 2003 Windows Storage Server 2003

CAD/CAM
JPEG MPEG

RAID 5

Windows Storage Server 2003

Windows Server 2003 Windows Server Storage 2003

CAD/CAM

CPU

ISA Server 2004 VPN

VPN VPN

VPN


LOB

RADIUS
Microsoft Internet Authentication Service (IAS)
IAS RADIUS


IAS RADIUS

Windows Server 2003

CA
16 KB
4 KB

IT CA CA

Microsoft Software Update Services (SUS)


SUS Web

MB GB


Microsoft

Windows Storage Server 2003

Microsoft

IT

IT

IT

1.

DNSDHCP

3-GHz CPU2-GB 2*18-

WINS
GB RAID 1
(Active Directory)
3*146GB RAID

(Windows
10/100/1000-Mbps

SharePoint Service)
RADIUS (IAS)

(SUS)

DNSDHCPWINS Active

Directory

Microsoft Exchange

Server 2003

3-GHz CPU2-GB 2*18GB RAID 1


3*72-GB RAID
5
10/100/1000-Mbps

VPN

Web

3-GHz CPU1-GB 2*72GB RAID 1


Web
10/100/1000-Mbps

4.

TCO

Windows Storage Server 2003

2.

DNSDHCP
WINS

(Active

Directory)

(Windows

SharePoint Service)
RADIUS (IAS)

(SUS)

DNSDHCPWINS
Active Directory

Microsoft
Exchange Server 2003

3-GHz CPU2-GB 2*18GB RAID 1


3*146-GB RAID 5
10/100/1000Mbps

3-GHz CPU2-GB 2*18GB RAID 1


3*72-GB RAID 5
10/100/1000Mbps

VPN

VPN

Web

3-GHz CPU1-GB 2*72GB RAID 1


Web
10/100/1000-Mbps

Windows
Storage Server

3-GHz CPU1-GB 2*72GB RAID 1

2003

Web

10/100/1000-Mbps

5.
Windows Storage Server
2003

3.

DNSDHCP

3-GHz

CPU2-GB
WINS

(Active Directory)
RAID 1 18-GB

RADIUS (IAS)
10/100/1000-Mbps

DNSDHCPWINS Active
Directory

3-GHz
CPU1-GB
RAID 1 18-GB
10/100/1000-Mbps

VPN

VPN

Web

Web 3-GHz
CPU1-GB
RAID 1 72-GB
10/100/1000-Mbps

Windows
Storage Server

Web 3-GHz

2003

CPU1-GB

RAID 1 72-GB
10/100/1000-Mbps

3-GHz CPU1-GB

RAID
1 18-GB
RAID 5

10/100/1000-Mbps

LOB

3-GHz CPU2-GB
RAID 1
36-GB
10/100/1000-Mbps

6.

IT

Extranet Intranet

4.

Web Web

DNSDHCP

3-GHz

CPU2-GB
WINS

(Active Directory)
RAID 1 18-GB

RADIUS (IAS)
10/100/1000-Mbps

(SUS)

DNSDHCPWINS Active
Directory

3-GHz
CPU1-GB
RAID 1 18-GB
10/100/1000-Mbps

VPN

VPN

Web

3-GHz CPU2-GB
3*36-GB RAID 1

3*72-GB RAID
5 Web

10/100/1000-Mbps

Windows
Storage Server

Web 3-GHz

2003

CPU1-GB

RAID 1 72-GB
10/100/1000-Mbps

3-GHz CPU2-GB
2*18-GB RAID 1

3*144-GB RAID 5
-
10/100/1000-Mbps

3-GHz CPU1-GB
RAID
1 18-GB RAID 5
144 GB

10/100/1000-Mbps

LOB

Intel Xeon 3-GHz


CPU2-GB

RAID 1 36-GB
10/100/1000-Mbps

7.

IT

IT

Extranet Intranet

Internet
IT Internet

Web
Web
Outlook Web Access Microsoft Windows SharePoint Services

Internet

LAN LAN

Internet

LAN

8. Internet

Internet (ISP)
Internet
ISA Server 2004 Internet
ISA Server

(SMTP)

Web

Web Web
Outlook Web Access (OWA) Microsoft Windows
SharePoint Services Web
HTTP (HTTPS)

ISA Server Internet


Internet Internet
ISA Server Internet

Internet

Outlook Web Access Internet


SharePoint
Internet

Lucerne Publishing
Lucerne Publishing Lucerne
Publishing

9.

HR

IT

QC

?
10.

3
6
3
23
12
6
5
2
1
28
10
4
30
2
8
5
36
1
185

3
6
3 IT5
23
12
12
5 PC 1 MAC
1
1
28
11
2
3
2
1
8
3
2
132


Lucerne Publishing
4
36 6 10

400,000

12,000 900

IT
IT IT IT Tim Cooke Tim
Chris Green George Jiang Tim
IT 7

7
IT
Lucerne Publishing IT

(WAN)

Lucerne Publishing 9 Windows 5


Microsoft Windows NT 4.0 4 Microsoft Windows 2000 Server
Windows NT 4.0 Windows 2000

131 96 35
Windows 2000 Professional 35
Microsoft Windows XP Professional.35

Tablet PCIT 3 Tablet PC

Windows NT 4.0 SP6a (PDC) PDC


WINSDHCP DFS

Lucerne Publishing

1.
2.
3.
9

Exchange 5.5
WaveMaster LOB

Saddle Brook

Windows NT 4.0 PDC


Windows NT 4.0 BDC
Exchange 5.5 Windows NT 4.0
Windows 2000
Windows 2000
Windows 2000 Intranet
Proxy 2.0 Windows NT 4.0
Windows NT 4.0
Windows 2000

PDCDHCPWINSDFS
BDCDHCPWINS
BDCEXCHANGE
Veritas
DFS
Intranet Web

WaveMaster
SQLPeachtree accounting
ACT

11. Lucerne Publishing


LOB
LOB ISV

Lucerne Publishing
/

3
3
2

1
2
1
3

4 10 Mbps
DSL
4 10 Mbps

24
24 10/100 Mbps
48 10 Mbps 1 10/100

48 10/100 Mbps
T1 CSU/DSU
IP

12.

Lucerne Publishing WAN

1
1
1
1
2
1
1
1
1
1
1

DSL WAN WAN VPN

Internet Internet T1 Internet


VPN Internet
Lucerne Publishing Web ISP OHI.net
Internet Microsoft Proxy 2.0

IP

Veritas Backup Exec 8.0


IT

6 RAS

Lucerne Publishing ACT


(CRM)
Microsoft Outlook Outlook

Exchange/

LOB WaveMaster

Lucerne Publishing

SQL

PhotoShopPageMaker Adobe Illustrator

AutoCAD

FTP
Lucerne Publishing
Lucerne Publishing

Exchange

Exchange 2000

Intranet

IP

WaveMaster

IT

Web

IT

IT Exchange
IT

IT

FTP IT /
FTP

IT

IT

IT T1
Internet T1
Internet
Lucerne Publishing
IT Lucerne Publishing
Lucerne Publishing IT

5. Lucerne

Lucerne Publishing IT
Interent

IT Lucerne Publishing

IT

DC

<><>
<><>

13.

<> DC Exchange EX
<>


PRI SEC<>

<>

ACT HR

Lucerne Publishing

VPN
Windows Storage Server 2003

MOCOR1
MOCOR2
MOISA
MONAS
MOXRNT
MOTS

14. Lucerne

IT

IT

1.
IT
2.

3.

4.

5.
IT IT

1
2

IT
IT
IT

15.
IT

323166

3 Internet

Microsoft

http://windowsupdate.microsoft.com

Service Pack 1 Software Update Services 1.0


http://www.microsoft.com/downloads/

CD

details.aspx?FamilyId=A7AA96E4-6E41-4F54-972C-AE66A4E4BF6C&disp

SP2 Windows 2000 SP1 Windows XP


Automatic Updates

USB

http://www.microsoft.com/windows2000/

Windows

downloads/recommended/susclient/default.asp

Server

2003
Windows
2000
Windows
XP

4 Microsoft.com

Exchange Server 2003 SP1 http://support.microsoft

ExchangeWin
dows

Server

kbid=831464
Exchange Server 2003 SP1
http://www.microsoft.com/downloads/

SharePoint
Services ISA

Internet Information Services 6.0

details.aspx?FamilyID=42656083-784d-4e7e-b032-2cb6433bec00&disp

URL
http://www.microsoft.com/Exchange

Windows Share Point Services SP1

http://www.microsoft.com/downloads/

CD USB

details.aspx?FamilyId=875DA47E-89D5-4621-A319-A1F5BFEDF497&dis

http://www.microsoft.com/windowsserver2003/

technologies/sharepoint/default.mspx

ISA Server 2004


http://www.microsoft.com/ISAServer

16.

LAN

LAN
6

4 CD USB
Windows Server 2003

Active Directory DNS

Active Directory DNS

DHCP

WINS

CA

IAS
7
8

Active Directory

ISA Server

4 CD USB
Windows Server 2003

ISA Server 2004

CoreGPO.zip
Internet
I

Edge ISA

Server

Web

ISA

17.

10

11

Exchange

4 CD USB
Windows Server 2003

Intranet Extranet

Windows SharePoint
Services

12

ISA Server

VPN

4 CD USB
Windows Server 2003

Web

13

18.

14

ISA Server

Internet

Internet
15
16 SUS
17 PEAP 802.1X

18 (GPO)

Active Directory

19
20

MBSA

21

22
23

19.

1 5

VPN

IT IT

Lucerne Publishing IT

IT
2

(IT)

(LAN) LAN
LAN
LAN

LAN

LAN

Internet Internet
Internet (ISP)
LAN Internet
LAN Internet IT

Internet

LAN

Internet ISP
(VPN)

IT

(UPS)

IT

LAN

Internet
ISP
Internet
Internet LAN

IT

LAN

LAN

LAN
LAN

Internet
(RAS)

Windows

Interent
Internet Internet

LAN LAN

Internet

LAN

(PDA) Tablet PC

Internet Internet

Internet

IT
IT

LAN

Interent

Internet
IT LAN

1. IT

LAN
Internet

LAN

Internet Internet

Internet

(WAN) Internet

(LAN)
LAN

LAN

LAN
LAN LAN LAN
LAN LAN

IT LAN

LAN 4 Mbps 16 Mbps

FDDI (FDDI) LAN 100 Mbps

LAN

LAN (CSMA/CD)
LAN LAN 10 Mbps100 Mbps 1 Gbps

LAN 90%

(100 Mbps) (1 Gbps)


LAN

Lucerne Publishing LAN

LAN

IP (DHCP)

ASIC


IT

GB

8
GB

8
GB

1.

8 48 10/100

Mbps

GB

8 48

10/100 Mbps

GB

8 48

10/100 Mbps

GB

2.

IT

OSI LAN
(VLAN) OSI
VLAN

VLAN
(ACL) VLAN
VLAN VLAN IP

telnet VLAN
ACL (RMON)

DHCP

IP

Web
Web

LAN
LAN

10 100 Mbps

IP IT
SNMP
ACL

4
50

8 48

12

4 7
100
10

12

48 24

16

5 8
150

48 24

15

16

5 8
250

48

25

3.

Lucerne Publishing
24

24 10/100 Mbps 12 10/100 Mbps


Lucerne Publishing

Lucerne Publishing

Interent

IP

VPNI

(MTBF)

6 4 4
(SLA)

30

LAN

(UTP) (STP)UTP

LAN

LAN

(UTP
STP)

UTP

UTP
200

500

4.

LAN

100 UTP

UTP (EMI)

Lucerne Publishing
EMI

LAN
1 Gbps
1 Gbps

MT-RJ LC

ANSI

TIA EIA

CAT 6 UTP CAT5e

UTP

UTP

100

UTP

UTP CAT 6
CAT5e
CAT5e

LAN

Lucerne Publishing 145 Lucerne Publishing

Lucerne Publishing
Lucerne Publishing

25
10
21

5
30
50

5.
(HR)
30 Lucerne
Publishing

2. Lucerne Publishing

40

3. Lucerne Publishing

4. Lucerne Publishing

Lucerne Publishing

Tablet PC
//

IP

9
96
12
23
4
1

6. LAN
Lucerne Publishing

24 10/100 Mbps
48 10/100 Mbps
24
T1 CSU/DSU
7.

2
1
2
1

WAN (Internet) T1 /

(CSU/DSU)

ISP WAN (Internet)

UPS
Lucerne Publishing
Lucerne Publishing
10/100
24

Lucerne Publishing 5 Lucerne Publishing


24 10/100 Mbps

12 10/100 Mbps

24 10/100 Mbps 2

24
24 48 48

24 10/100 Mbps 2

5. Lucerne Publishing

Lucerne Publishing

Lucerne Publishing IT

LAN Lucerne

Publishing

Lucerne Publishing CAT 6


CAT 6 CAT5e
CAT5e CAT 6

Lucerne Publishing
CAT5e CAT 6 Lucerne
Publishing
CAT5e

UPS

Lucerne Publishing Lucerne Publishing IT

LAN

801.11a802.11b 802.11g

802.11a

802.11b

802.11g

54 Mbps
5 GHz

11 Mbps
2.4 GHz

54 Mbps
2.4 GHz

8.

54 Mbps

802.11a

802.11b

802.11g

(54 Mbps)

802.11b
802.11g

ab g

9.

(SPOF)

802.11a 802.11g
802.11b

802.11g

802.11a 802.11g

802.11b 802.11g

802.11b 802.11g 802.11a

DHCP
DHCP Microsoft Windows
Server??2003 DHCP

Lucerne Publishing 802.11g

(WEP)

Wi-Fi

WPA

(WPA)

WEP

WEP
802.1x
WPA

WPA
Microsoft Windows XP

Microsoft Active Directory

RADIUS

(CA)

10.

802.1x (EAP) LAN


-TLS
802.1x

(PEAP) PEAP 802.1x

Lucerne Publishing LAN

Windows
XP Pocket PC

80 120 b g

(RF)
EMI
Lucerne Publishing

10 15
Lucerne Publishing

UTP CAT 5e
I.

Internet
Internet WAN

Internet

Internet

ISP

ISP

ISP
Internet

Internet

Internet

Internet

Internet
Internet

IT (SFA)

Internet
Internet
(ISDN)
Internet

1.5

128

Mbps Kbps

1.5

384

Mbps

(ADSL)

Kbps

(SDSL)
DS

192 Kbps

1.5 Mbps

/
64 Kbps
T1 45 Mbps

(T3)

VoIP IP

ISDN

128
Mbps

56 Kbps
45 Mbps

56 Kbps

VoIP
/

11. Internet
Internet
T1
T1
Internet
Internet

Lucerne Publishing Internet


Internet VPN

ISP
ISP Internet

ISP ISP
ISP
DNS Web
SLA (QoS)
ISP
ISP

ISP
ISP

ISP
ISP Internet
ISP ISP
ISP T1 T1 ISP

ISP Interent

ISP

ISP ISP

ISP 99%
(SMTP)IP Protocol 47

ISP DNS Web

ISP

ISP

ISP
ISP

ISP
ISP

Internet

DNS Web
DNS Web
Internet
Web
ISP DNS Web

ISP

ISP DNS
DNS DNS

ISP DNS (DoS)

ISP
ISP Web ISP

ISP Web

ISP Web Internet

ISP

ISP Web

Web

ISP SLA SLA Internet


ISP SLA

ISP

24 5
(99.9%)

24


ISP Internet
ISP DNS Web

Internet
ISP ISP
ISP Internet
DNS Web SLA
Lucerne Publishing OSI.net
Lucerne Publishing OSI.net

ISP
ISP

Internet ISP
Internet

(DSL)
T1/T3 DS CSU/DSU

CSU/DSU
ISP
ISP
ISP

ISP ISP
ISP IT
ISP
ISP IP
ID IP ID
ISP IP
Internet ISP
IP ACL

ISP DNS IP
Internet

Internet ISP
ISP SMTP
25 My Doom ISP

Web
Web

VPN (PPTP)
VPN L2TP

TCP 80
TCP -443
TCP -25
TCP 1723Protocol 47
UDP

1701
VPN Internet (IPsec)
500 50 51
(NTP)
UDP -123
(DNS)
UDP -53
(FTP)
TCP 2021


(RDP)

TCP -3389

12. ISP

Internet
Internet
Internet
Internet ISP

ISP
Internet

IT
Internet Internet LAN
IT
VPN VPN
VPN VPN
Web

ISP ISP

Microsoft Internet Security and Acceleration (ISA)


Server 2004 VPN
ISA Server 2004
Internet
VPN ISA Server
2004 VPN
OSI.net Internet Lucerne
Publishing Lucerne Publishing
ISA Server 2004

LAN

Internet

VPN

Microsoft Active Directory (LOB)

LAN
Lucerne Publishing

4
0

0
3

13.
Tablet PC

Tablet PC

DSL
4

0
4
0
1
1
1

3
0
1
0
1
1

14.

LAN

Internet

LAN


LAN
10/100 Mbps
(10/100 Mbps)
25
UTP CAT 6
UTP CAT5e CAT6

LAN UPS
DSL

Lucerne Publishing 4 10/100 Mbps


VPN LAN
4 10-Mbps
Lucerne Publishing 8 10/100 Mbps
CAT5e
Internet
DSL Internet

Internet (SDSL)

SLA SLA

LAN
EMI
LAN
LAN
LAN I

DSL
Internet DSL ISP
ISP ISP

Lucerne Publishing
ISP DSL
Lucerne Publishing
VPN
DSL DSU/CSUISP
VPN
VPN ISP
ISP VPN

(NAT)

PPTP L2TP/IPsec

VPN IPsecVPN

DHCP

Web

SNMP
VPN

VPN
VPN
VPN

/
/

/
/

15.
URL

www.nwfusion.com/net.worker/reviews/2002/0603sohorouters.html

common.ziffdavisinternet.com/download/0/1327/BroadbandRouters.pdf
Lucerne Publishing VPN
VPN
IPsec VPN
VPN

DSL 768 kbps 128 kbps

Active Directory
ping

URL 227260

http://support.microsoft.com/?id=227260

IT

VPN

300 3500
$150

Internet

750

Internet ISP

150
750

T1

40 100

16.

1.

ISP ISP ISP

Internet DNS DNS

2.

CAT5e CAT6

3.

UPS
ping LAN
4.

5.

ping
T1 Internet CSU/DSUISP
6.

Internet
CSU/DSU ACL
ISP Internet Web
Internet UPS
VPN
7.

Internet
Internet
8.

LAN

(LED)

ISP Internet ISP


ISP DNS
ISP Internet Web

Microsoft SNMP

Internet
LAN

Internet

Internet
ISP IT

IT IP

(DNS) DNS IP
(DHCP) IP

Windows Internet (WINS) NetBIOS IP

Active Directory


PKI (CA)
CA

(RADIUS) RADIUS Internet (IETF)


Windows Server 2003 Internet
(IAS) RADIUS (VPN)

IT

Active Directory

(GPO)

IT

LAN
(UPS)

ISP DNS

IT

IP
IP

IT

Microsoft Windows NT 4.0 Window 2000

Linux Novell

Microsoft Windows Server 2003


Active Directory


Active Directory

IT

Active Directory

Active Directory

IT
GPO IT

IT

IT

DNS NetBIOS IP
LAN

PKI

RADIUS

IT

1. IT

DNS
IP

IT
IT


Windows
Server 2003 Enterprise

Edition

1.

IT
IT

Windows Server 2003 Enterprise Edition Windows Server 2003


Standard Edition

Windows
Active Directory

Active


Directory

FSMO

DNS

DNS

DHCP

250

DNS

DNS

DHCP

WINS

WINS

WINS
NetBIOS IP

WINS

(CA)

(IAS)
Internet
(SUS)

2.
swing Lucerne Publishing
swing
Lucerne Publishing

DNS
DNS

DNS
DNS


URL

http://www.networksolutions.com

http://www.register.com
DNS
DNS Lucerne Publishing
lucernepublishing.com
DNS
DNS

DNS ISP DNS BusinessName.com


Internet

DNS DNS BusinessName.com

DNS DNS
corp.BusinessName.com DNS
DNS
IT DNS
DNS
DNS IT DNS

Lucerne Publishing DNS


lucernepublishing.com DNS
DNS
DNS DNS DNS
ISP DNS DNS DNS
ISP DNS
DNS DNS ISP DNS ISP
DNS DNS ISP DNS
Internet DNS ISP

BusinessName.com DNS
DNS DNS
DNS www.BusinessName.com
remote.BusinessName.com DNS DNS
IT DNS ISP ISP IT

DNS ISP Web

Internet ISP DNS DNS


DNS
IP
IP
IP Internet (ISP) Internet
IP IP

10.x.x.x
169.254.x.x
172.16.x.x
192.168.x.x

IP

Internet

Internet

Internet

ISP

(NAT)

IP

VPN
VPN

IP

3.
IP DHCP IP

IP

LAN IP 10. x. x. x

10.0.0.0/16
10.1.0.0/24

10.n.0.0/24 n 2

IP

IP
10.0.0.1
10.0.0.20
10.0.0.21

255.255.0.0

255.255.0.0

10.0.0.40
10.0.0.41

20 IP
255.255.0.0

10.0.0.255
10.0.1.x
10.0.2.x
10.1.0.1
10.1.0.2
10.1.0.10
10.1.0.11

8
IP
IP

255.255.0.0
255.255.0.0
255.255.255.0
255.255.255.0
255.255.255.0

DHCP

DHCP

IP

DHCP

10.1.0.254
4. IP
ISP IP

IT DHCP IP

DNS

IP

Internet Security and Acceleration (ISA) Server


Internet IT
DHCP

DHCP
DHCP

DNS DNS

WINS WINS

Web (WPAD)
ISP IP
DHCP IP

DHCP

DNS DHCP DNS

WINS
DHCP DNS
DNS
DNS DNS
DNS DNS
DNS
DNS
DNS IP

DNS DNS IP
DNS DNS IP
DNS ISP DNS IP
Internet

WINS WINS WINS IP


IP
Lucerne Publishing

Lucerne Publishing IP

MOISA

IP
ISP

MOISA

10.0.0.1

MOCOR1
MOCOR2

10.0.0.2
10.0.0.3

IP

MOXRNT
LJ4KACCTSCANRSLS

10.0.0.4
10.0.0.41 10.0.0.255

FIN302SAL201

10.0.0.20 + IP
10.0.1.0 10.0.2.254

5. Lucerne Publishing IP
IP IP
DHCP DHCP
IP DNS WINS
IP DNS WINS 10.0.0.1
IP DNS WINS
IP DNS WINS
IP

DNSDHCP WINS Active Directory Windows Server 2003


IT
Windows Server 2003 Standard Edition Windows Server 2003
Enterprise Edition
Windows Server 2003 Standard Edition Windows Server 2003
Enterprise Edition

Windows Server 2003 Standard Edition


Windows Server 2003 (SMP)
(CPU) SMP

Intel Itanium 64

64 32

Windows Server 2003


Standard Edition Windows Server 2003 Enterprise Edition
IT Windows Server 2003 Standard Edition
Windows Server 2003 Enterprise Edition
Lucerne Publishing Windows Server 2003 Standard Edition
Lucerne Publishing Windows Server
2003 Enterprise Edition

Active
Directory

Active Directory DNS

DHCP

WINS

IP DNS IP
IP
IP

IP

DNS
DNS
WINS
WINS

IP (10.0.0.2)

IP (10.0.0.3)

10.0.0.1
10.0.0.2
10.0.0.3
10.0.0.2
10.0.0.3

10.0.0.1
10.0.0.2
10.0.0.3
10.0.0.2

6. IP

IT

NetBIOS


Lucerne Publishing
MOCOR1 MOCOR2
Active Directory DNS
Active Directory Windows Server 2003 Standard Edition
Active Directory

IT DNS
DNS

DNS DNS Active


Directory Active Directory DNS
Active Directory
DNS Active Directory DNS
Active Directory DNS DNS Active
Directory

DHCP IP DHCP IP
DHCP IP DHCP
DNSDHCPActive Directory
IP IP
DHCP

IT DHCP
DHCP
IT DHCP

DHCP
DHCP
DHCP IP
DHCP IP DHCP

DHCP

DHCP DHCP

DHCP


DHCP
IP
IP

DHCP

DHCP


DHCP

7. DHCP

IP
IT 250
250 IP
DHCP Lucerne Publishing
DHCP PDC
Lucerne Publishing
IP
IP

IP
DHCP DHCP IP IP

(MAC) DHCP IP


MAC

IP

IP

IP

DHCP



DHCP

WINS

DHCP IP
DNS

IP

MAC

DHCP

MAC

MAC

8. IP
DHCP IP
IP
DHCP IP

DHCP DHCP
IP
Lucerne Publishing DHCP
DHCP

IT MAC DHCP
Lucerne Publishing IT

IP
IP DHCP

DNS

IP


Windows Internet (WINS)
WINS NetBIOS Microsoft WINS NetBIOS
IP NetBIOS
IP WINS
IT WINS WINS
WINS
WINS

WINS
Lucerne Publishing WINS
WINS WINS

GPO

GPO GPO
GPO

Lucerne Publishing
GPO IT

Active Directory IT GPO


Active Directory

(RAM)

(RAM)

IT

RAM
RAM
RAM

(DAS)
I DAS
RAID

RAID 5

RAID 5

RAID 1 RAID 5
RAID 5

Windows

RAID 5

RAID 1 RAID 5
RAID 1

RAID 5

RAID 1

IT

Intel Xeon 2.4 GHz


1 GB RAM
SCSI RAID
SCSI

10,000 RPM 15,000 RPM

18 GB

10/100/1000-Mbps


RAID 5

-
-
-

-
Lucerne Publishing (PDC) (BDC)
Windows Server 2003
Lucerne Publishing Lucerne Publishing

2-GB RAM 15,000 RPM SCSI


RAID 1 18-GB RAID 5
18-GB 36 GB Exchange

IT

Windows Server 2003,

Standard Edition

2004 12 )
$10-$35
$999 5

$3,000 $5,000
5 $199

9.

1.
2.
3.
4.
5.
6.
7.
8.
9.
10.
11.
12.
13.

DNS

Active Directory
DNS
Windows
DHCP
WINS
GPO
CA
IAS

DNS
ISP Web DNS

DNS IP ISP DNS


DNS DNS
BusinessName.com

URL:
http://www.bcentral.com/products/wh/dnr.asp
Lucerne Publishing lucernepublishing.com

MAC MAC

MAC
DHCP IP
DHCP
IP

Internet URL
USB
http://www.microsoft.com/windowsserver2003/
gpmc/default.mspx

DNS
Internet DNS
ISP DNS DNS
DNS

IP

remote.BusinessName.com

mail.BusinessName.com

CNAME

IP
Outlook remote.BusinessName.com

extranet.BusinessName.com
vpn.BusinessName.com
BusinessName.com

CNAME
CNAME
MX

(FQDN)

Web Access
Extranet

remote.BusinessName.com
remote.BusinessName.com
remote.BusinessName.com

10. ISP DNS


ISP DNS
DNS ISP
DNS 24 48
ISP DNS

1.

IP
IP 10.0.0.2
255.255.0.0
10.0.0.1
SMBDC
DNS 10.0.0.2
DNS 10.0.0.3
WINS 10.0.0.2
WINS 10.0.0.3

IP
IP 10.0.0.3
255.255.0.0
10.0.0.1
SMBEX
DNS 10.0.0.2
WINS 10.0.0.3
WINS 10.0.0.2

2.

Windows
Windows \support\tools
suptools.msi
Service Pack Service
Pack
Windows Server 2003

1.
2.

Microsoft
(MBSA)
MBSA I

Active Directory
SMBDC SMBEX Active Directory
Active Directory
SMBDC
1.
Windows Server 2003
2.
SMBEX
3.
SMBEX
4.

5.
SMBDC
1.
2.

SMBDC dcpromo Active Directory

1.
2.
3.

DNS

DNS lucernepublishing.com
DNS Domain NetBIOS name
4.
DNS 15
15
Lucerne Publishing
NetBIOS Lucerne

lucernepublishing 15

5.

SYSVOL
6.

DNS DNS
7.
DNS
Windows 2000 Windows Server 2003
8.

9.

10.
Windows Server 2003
1.
2.
3.

Active Directory Microsoft (MMC)

Windows Server 2003

4.
SMBEX
1.
2.

SMBEX dcpromo Active Directory

1.
2.
3.
4.
5.

BusinessName.com
SMBDC

SMBEX
Active Directory MMC
1.
SMBEX
2.
NTDS
3.

4.
MMC
5.

1.
2.
3.

Active Directory MMC

4.
5.


15

DNS
DNS SMBDC DNS SMBEX

SMBEX DNS
1.
Active Directory DNS

2.
SMBEX
DNS
3.
DNS
4.
DNS
5.
SMBEX DNS
1.
2.

/ Windows
Windows


DNS
3.

4.
Windows Server 2003
5.
Active Directory
1.
2.

SMBDC Active Directory MMC


SMBDC

NTDS

3.
DNS SMBDC SMBEX
4.
DNS SMBEX IP DNS
5.
10.0.0.3 IP DNS 10.0.0.2
DNS
1.
2.
3.

DNS DNS

ISP

DNS IP
DNS
1.

DNS <>

2.

Active Directory

Active Directory

Active Directory <BusinessName.com> DNS


ID

10.0

Active Directory

DNS

1.
2.
3.
4.

DNS

(SOA)
.@
administrator.BusinessName.com

Windows
SMBDC Windows
1.
2.

w32tm /config /manualpeerlist:time.windows.com


tock.usno.navy.mil /syncfromflags:manual Enter

w32tm /config /update Enter


3.
DHCP
DHCP
1.
2.
3.
4.
5.
6.

DHCP
DHCP
SMBDC
SMBEX
IP


7.
DHCP
1.
2.

/ Windows
Windows


DHCP
3.


4.

DHCP
1.
DHCP
2.

3.
SMBDC
1.
2.

1.

SMBDC
IP
2.

3.

4.
5.
6.

IP 10.0.0.1
IP 10.0.2.254
16

10.0.0.1 10.0.0.255
10.0.2.0 10.0.2.254
8

DHCP
(10.0.0.1)
DNS
BusinessName.com SMBDC (10.0.0.2) DNS SMBEX

DNS
(10.0.0.3)

SMBDC (10.0.0.2) WINS


7.
WINS
WINS
SMBEX (10.0.0.3)

8.
SMBEX

SMBEX

10.0.0.1 10.0.0.255

10.0.1.0 10.0.1.255

1.
2.

IP MAC HPLJ1500NP
HP LaserJet 1500

MAC

3.

1.
2.
3.

DNS
DNS

DNS
A PTR
DHCP Windows NT 4.0 DNS A
PTR

1.
2.
3.

WINS
WINS
WINS
1.
WINS
2.
WINS
3.
SMBDC SMBEX WINS
1.
2.

/ Windows
Windows


Windows Internet (WINS)
3.


4.
Windows Server 2003
5.
WINS
1.
2.
3.
4.

WINS

IP

WINS
1.
2.
3.
4.
5.
6.
7.
8.
9.
10.

SMBDC DNS

BusinessName.com

WINS
WINS

WINS 10.0.0.2 10.0.0.3


SMBDC DNS

10.0. x. x

WINS-R
11.
WINS-R

12.
BusinessName.com
13.

SMBDC CA
1.
2.

/ Windows
Windows

3.
4.
5.
6.
7.

Internet

(IIS)

CA CA
CA

CA CA

MyBusinessName CA

10 CA

8.
9.
10.
11.

Active Server Pages (ASP)

Internet Explorer http://localhost/certsrv

Web

certsrv CA

1.
2.
3.
4.

Internet
<servername>

IIS
5.
iisreset IIS
6.
Internet
SMBDC IAS
1.
2.

/ Windows
Windows


Internet


3.

Windows Server 2003


4.
IAS
5.
netsh ras add registeredserver
6.
IAS Active Directory RAS and IAS Servers
IAS

GPO GPO
GPO

1.

GPO
2.
GPO
3.
GPO
4.
SMBDC
1.

USB

coreGPO.zip
2.
IT
coreGPO.zip v1.0

1.
2.
3.
4.

GPMC
BusinessName.com

BusinessName.com


5.

6.
GPO
1.
2.
3.
4.
5.

GPMCBusinessName.com

GPO GPO

1.
2.
3.

GPMC BusinessName.com
BusinessName.com GPO

(SMBDC) MBSA

1.
2.

ipconfig
ping ping

DNS
nslookup Internet DNS
3.
Active Directory
Active Directory

Active Directory
1.

2.
DHCP
DHCP
1.

IP IP DHCP

DHCP IP
2.
DNS
DNS
1.
2.

ping IP
DNS A

1.

2.

3.

(OOB)

IT

(OOB)
IT (OOB)

Service Pack 1 (SUS)


1.0 SUS Microsoft

SUS IT
SUS URL
http://www.microsoft.com/windowsserversystem/sus/default.mspx

IT

Windows Server 2003 Active Directory URL


http://www.microsoft.com/windowsserver2003/technologies/

directory/activedirectory/default.mspx

TechNet Active Directory URL


http://www.microsoft.com/WindowsServer2003/techinfo/
overview/adsmallbiz.mspx

Windows Server 2003 DHCP URL

http://www.microsoft.com/windowsserver2003/technologies/
dhcp/default.mspx

Windows Server 2003 Internet URL


http://www.microsoft.com/windowsserver2003/technologies/
ias/default.mspx

Windows Server 2003 URL


http://www.microsoft.com/windowsserver2003/community/
default.mspx
4 Internet

Internet
Internet

Web
Internet

Web (LOB)

(VPN)

Internet
Internet
IT Internet

(DoS) (man-in-the-middle)

(defacing)

Root kit

Internet Web
Internet

IT Internet

Internet
Internet
Web Web
Internet

Internet

Internet

IT Internet

Internet
Internet Internet (ISP) IP

IP

Active Directory
(DNS)
LAN (CA) Internet
Web SSL

IT Internet


Internet IT

Internet

Intranet Internet
Web Web
Web Code Red (Nimda)

IT
SMTPHTTP
RPC

Internet Internet
Internet

Internet IT

Internet

Internet

Internet Internet

SSL

Internet

Web

Internet

Microsoft Windows Server 2003


Internet Microsoft Internet Security and Acceleration Server

2004

Internet

Internet
ISA Server 2004

<HTTP> <FTP> Web

Web HTTP FTP


ISA Server VPN

DoS

DNS IP

Web ISA Server Web

(SMTP) Microsoft Outlook Web Access (OWA)

ISA Server

ISA Server Internet

Internet IT
Internet
Internet

Internet
Internet
(NAT)NAT

IP

SMTPHTTPFTP

Web HTTP FTP

Internet

Internet

Internet Web

Internet

IT Internet

1. Internet

Internet

Internet
NAT

VPN 2

Internet

Internet
Internet


VPN VPN Web

Internet

Web Web

ASIC


VPN

IT

Microsoft

IT

VPN VPN

1. Internet

Lucerne
Publishing TCO
Web
Lucerne Publishing

Internet

Lucerne Publishing

Internet
Web Web

Web

Web

Windows Server
2003
Windows Server 2003, Standard Edition
Windows Server 2003, Enterprise Edition
Windows Server 2003, Standard Edition

Windows Server 2003, Standard Edition Windows Server

2003, Enterprise Edition Windows Server 2003, Enterprise Edition

Lucerne Publishing Windows


Server 2003, Standard Edition

ISA Server 2004

Microsoft

ISA Server
2004

ISA Server 2004

Internet

Web

Active Directory


SSL SSL
Web

Microsoft

Microsoft

Web

2.
ISA Server 2004
Lucerne Publishing ISA
Server 2004 Lucerne Publishing
ISA Server 2004
ISA Server 2004
Web Internet Web
Lucerne Publishing VPN
ISA Server VPN
ISA Server 2004 URL
http://www.microsoft.com/isaserver/evaluation/features/

IT (Internet)
WinNukeDoS
Pingping of death

ISA Server 2004


Internet Security Systems (ISS)

Lucerne Publishing ISA Server 2004

SMTPHTTPDNSRPCPPTP
FTP

Internet

IT

SMTP SMTP

HTTP HTTP (HTTPS) HTTP FTP

Internet (Code

Red) (Nimda)

HTTP Web
Web

SSL Web

ISA Server

Microsoft

ISA

ISA Server

Microsoft

Server

ISA Server

SMTPHTTPFTPDNSRPCH.
323MMS PPTP

SSL ISA Server SSL Microsoft


SSL
SSL
SSL
Microsoft

Microsoft

IT

3.

ISA Server 2004 Lucerne


Publishing
Web
Web Web
Internet Web
Web
IT
Web
Web

Web Web

Web Internet

Internet
Web

Web IP
URL Internet
Web
4. Web

Web Lucerne Publishing


ISA Server Web

Web
Web HTTP FTP
Internet Web Web Internet
Internet Web

Web
Web

Internet Web
Internet Internet
Internet Web

Web Web

Web Web
Web

Web

ISA Server Web

Microsoft Web

ISA Server
Web

Web

Microsoft Web

ISA Server Web


Internet

Web

Microsoft
Web

ISA Server


MIME

Web

5. Web

ISA Server 2004 Web Lucerne


Publishing
ISA Server 2004 Web

Internet
Microsoft ISA Server ISA Server
2004 IT Microsoft

ISA Server 2004

IT

DoS

Internet
Internet Internet
Internet

IT

Web LOB

IT

ISA Server IT
CPU

Internet

Internet

Web
DoS

Lucerne Publishing
ISA Server 2004
Microsoft

ISA Server IT
Internet Internet

LAN Internet

ISA Server

ISA Server
Internet
IT

ISA

2.

Web

Web
Web

TCP 80
TCP -443
TCP -25
TCP 1723 47
UDP 1701
500 50 & 51
UDP -123
UDP -53
TCP 2021
TCP -3389

VPN PPTP
VPN L2TP
VPN IPSec
NTP
DNS
FTP
RDP

6.
ISA Server

ISA Server

ISA Server LAN


Internet
ISA Server IT

Lucerne Publishing
ISA Server 2004 Lucerne Publishing
TCOLucerne Publishing
IT
Lucerne Publishing IT
Lucerne Publishing
Internet

Web

ISA Server

ISA Server LAN

Internet ISA
Server
IT
Internet

IT
/
DNS

(UDP, 53)

Internet
DNS

DNS

Internet SMTP

VPN

HTTP

Internet

Internet

(TCP, 80)
HTTPS
(TCP, 443)

Microsoft

Windows
SharePoint
Services
TSWeb

HTTPS

Internet

(TCP, 443)
FTP

Internet

(TCP, 21)
SMTP
(TCP, 25)

SMTP Internet
SMTP

SMTP

Internet

(TCP, 25) SMTP


OWA Internet

SMTP Internet SMTP

HTTPS

(TCP, 445)
PPTP

Internet

VPN

(TCP,
1723) IP
47
PPTP

Internet

VPN

VPN

(TCP,
1723) IP
47
IPSec VPN

(TCP, 500)
IP 50
51
NTP
(UDP,

Internet

123)
RDP

Internet

(TCP,
3389)

7.

Lucerne Publishing

ISA Server

Edge ISA Server


DNS Web
HTTP HTTPS Internet FTP
Internet VPN IT

Edge
IT ISA Server

(NTP)
time.windows.com NTP

IT
Internet VPN
VPN

VPN

Internet

ISA Server 2004 ping (ping of death)IP (IP half scan)


Windows OOBDoS
DNS ISA Server
Lucerne Publishing

ISA Server 2004 SMTP HTTP


RPC ISA Server SMTP SMTP

SMTP ISA
Server Web HTTP Web
Lucerne Publishing
SMTP SMTP
Web
IT ISA Server 2004 Web

ISA Server

Web

Web

HTTP FTP Web


Internet
ISA Server Internet ISA Server
Web
Internet

Exchange (SMTP)
Web

Exchange OWA Web


Windows SharePoint Services Extranet Web
TSWeb Web
OWA Web Extranet Web TSWeb Web
Internet

Server
Exchange ISA Server Internet ISA
Server Exchange
Web
ISP Web
ISP Web

Lucerne Publishing ISP (OHI.net) Web

Internet Web Exchange OWA Web


Extranet Web TSWeb Web Web ISA
Server ISA Server 2004 Internet Web
SSL
HTTPS Web ISA Server 2004
SSL
Web HTTPS
LAN
Web
SSL
Web Internet
Web SSL SSL

SSL

Web SSL
SSL Web SSL
Internet SSL CA
SSL CA CA IT
CA

CA VeriSign SSL
Web SSL CA
SSL
CA
CA SSL CA

Web CA SSL
Web SSL CA
Web
SSL Web
SharePoint OWA TSWeb Web Internet
HTTPS
Internet HTTPS
Web

IP Web
Web IP Web
SSL Windows SharePoint

extranet.BusinessName.com SSL
OWA

mail.BusinessName.com SSL
IP ISA Server
Web Web HTTPS Web
Web SSL

SSL

Web Web SSL


Web
(*) *.BusinessName.com Web

HTTPS
Web Web extranet.BusinesName.com
mail.BusinessName.com URL extranetmail
BusinessName.comISA Server

Web
IT IP HTTPS Web
ISA Server Web Lucerne Publishing
Web IP

OWA TSWeb URL


Web Exchange OWA Internet Internet
Web https://mail.BusinessName.com/exchange URL

URL https://http://
https://mail.BusinessName.com/exchange

http://mail.BusinessName.com/exchange

URL /exchange
OWA ISA Server

http://mail.BusinessName.com mail.BusinessName.com URL


https://mail.BusinessName.com/exchange
TSWeb Web URL

http://remote.BusinessName.com and remote.BusinessName.com

https://remote.BusinessName.com/TSWeb TSWeb
Web

ISA Server

Web
ISA Server

ISA Server

(ODBC)
MSDEMicrosoft SQL Server

SQL MSDE
2 GB MSDE
ISA Server 2004 ISA Logs

MSDE
Web MSDE ISA Server
MSDE
SQL Server SQL
ISA Server

IT
Web
IP
Web Web

ISA Server

RAID

ISA Server ISA Server 10

MSDE

SQL

SMTP Message Screener

ISA Server DoS


SMTP Windows
IT
ISA Server IT
(LAN) IT

ISA Server ISA


Server Web
IT Intranet Web
1:00

IT ISA Server Intranet Lucerne


Publishing Internet

ISA Server 2004 Firewall Client


Web SecureNAT

Internet Internet
Internet

ISA Server

ISA Server
ISA Server Firewall Client

ISA Server Firewall Client


ISA ServerISA Server Internet

Web Web Internet Explorer


Web ISA Server Web

Web
(SecureNAT) IP
SecureNAT
ISA Server IP SecureNAT
DHCP

ISA Server ISA Server

ISA Server

ISA Server

Winsock

Web

Windows
Windows
16- 16 Windows 9x

Winsock

TCP UDP

Telnet FTP

Web

HTTPHTTPS

Web Web HTTP FTP

SecureNAT

Internet

8.

Internet
Firewall Client Web
Firewall Client Winsock
Firewall Client Winsock

SecureNAT
IP
DHCP DHCP IP

Lucerne Publishing
Firewall Client Lucerne Publishing
SecureNAT DHCP
LAN IP

Firewall Client
Internet Firewall Client

Firewall Client
(GPO)
ISA Server ISA Server
mspclnt
mspclnt (DFS) DFS
DFS
5

Lucerne Publishing mspclnt


DFS Firewall Client

Firewall Client

DFS ISA Server

Internet
Winsock Firewall

Client Winsock

IT

Firewall Client
Lucerne Publishing Firewall Client
Firewall Client
Winsock

IT Firewall Client
ISA Server
DHCP ISA Server
DHCP ISA Server

DHCP
DHCP Web (WPAD) DHCP WPAD ISA
Server WPAD DHCP
ISA Server WPAD

ISA Server DHCP


WPAD

NAT
VPN 2

IT
RAID

SSL

(RAM)

(RAM)

SSL
CPU
CPU
IT
CPU
SSL HTTPS Web
SSL ISA Server SSL

ISA Server

ISA Server

Web
SCSI RAID

Web
NTFS RAID 1

ISA Server

RAID 1 NTFS

ISA Server ISA Server

RAID 5 NTFS

ISA Server
Web

DAS IDAS

IT
Intel Xeon 2.4 GHz

1 GB RAM

SCSI RAID

RAID 1 SCSI 18 GB
18 GB SCSI RAID 1
RAID 5

10/100/1000-Mbps

VPN VPN

2004 5 )

$3000 - $5000


Windows Server

2003, Standard
Edition
Windows Server

2004 5 )
$999 5

5 CAL $199

$1499

$300 - $500

2003, Standard
Edition

ISA Server 2004,


Standard Edition

SSL
9. Internet
2

Internet

ISA Server 2004 Web

Internet

IT Internet
1.
2.
3.
4.
5.
6.
7.
8.
9.

ISA Server 2004


ISA Server
Web Internet

VPN

IP
IP
DNS IP

LAN DNS
DNS

DNS BusinessName.com
Active Directory
IP
SMTP IP
DNS

Internet

CA

1.

LAN

Internet

Internet

Windows Server 2003 ISA Server 2004


Windows Server 2003
2.
I
Active Directory

SMBISA
IP

IP
IP 10.0.0.1
255.255.0.0

DNS IP 10.0.0.2 10.0.0.3


WINS IP 10.0.0.2 10.0.0.3

IP

IP
IP ISP
ISP
ISP
DNS IP
WINS IP

TCP/IP NetBIOS
Internet (TCP/IP) WINS TCP/IP

NetBIOS

NTFS RAID 1
Web
NTFS RAID 5

Active Directory

ISA Server 2004

(SMBISA) ISA Server 2004

ISA Server
ISA Server 2004
ISA Server 2004
1.

ISA Server 2004

CD CD ISA Server 2004

2.
Firewall Client
3.

4.
1.
2.
3.
4.
5.
6.

IP
Windows

Windows

IP
7.


5.

6.
ISA Server
SMBISA IT

ISA Server
1.
2.

ISA Server SMBISA

3.

ISA Server
ISA Server

NTP

SMTP

Web

ISA Server Edge


Edge
ISA Server
1.

2.

3.
IP IP
4.
Web ISP
5.
SMBISA
6.
NTP
NTP ISA Server
ISA Server
ISA Server time.windows.com NTP

1.

ISA Server

DC NTP
2.



3.

4.
1.
2.
3.
4.
5.
6.



NTP (UDP)



1.


SMBDC SMBEX

1.
2.
3.
4.



IP

SMBDC
IP
5.

6.
1 6 SMBEX
7.
2.


SMBDC.BusinessName.com

SMBEX.BusinessName.com

3.

7.

8.

9.

10.

11.
ISA Server SMBISA
12.

ISA Server

1.

ISA Server DNS



2.

3.
4.
5.



ISA Server SMBISA

SMTP
SMTP ISA Server
ISA Server

SMTP SMTP SMTP

SMTP
Microsoft ISA Server SMBISA
1.

2.
SMTP SMTP
3.
SMTP SMTP
4.
SMTP
5.
SMBISA
6.
SMTP SMTP

ISA Server

Microsoft ISA Server SMBISA


1.

2.

3.
SMTP
4.
...
5.
SMTP
6.
SMBISA
7.
Web
Web ISA Server
ISA Server
Web

1.

2.
Web
3.

4.

1.

ISA Server


(MB)
2.
4000


3.
SMBISA
4.

1.

Microsoft ISA Server



2.
20
3.

SMBISA
4.
Web
Web
1.

ISA Server



2.


3.
4.
5.
6.
7.

Internet Web



SSL
SSL Web

8.
9.
10.
11.
12.

...

HTTP
FTP

SMBISA

Web Internet
Web Internet

ISA Server
HTTPS Web
HTTP Web
ISA Server Exchange OWA Extranet

TSWeb Web

- CA
- OWA Web Extranet Web TSWeb Web
ISA Server Internet

- Web ISA Server


ISA Server
ISA Server
ISA Server

ISA Server Web Web

ISA Server Web

1.

ISA Server

ISA Server
2.


3.
ISA Server
4.

5.
(SMBDC)

6.
ISA Server
7.

1.
2.
3.
4.
5.
6.

Internet Explorer http://SMBDC/certsrv



CA

1.

Web

2.

3.
4.

*.BusinessName.com
Administrator@BusinessName.com
BusinessName.com
BusinessName.com
Redmond


5.

7.

8.

9.

10.
HTTPS Web

1.

ISA Server



2.
Web Web ...
3.
Web Web
4.
HTTPS Web

IP
5.
HTTP SSLSSL
6.
443

7.
(*.BusinessName.com)
ISA Server
8.
HTTP Web
ISA Server
1.


2.
Web Web ...
3.
Web Web
4.
HTTP Web

IP
5.

ISA Server
6.
ISA Server Exchange OWA Extranet TSWeb Web
ISA Server Web Internet

Exchange OWA
Extranet
TSWeb Web
Exchange OWA
Exchange OWA Internet

ISA Server OWA


Extranet
Windows SharePoint Services Extranet
Internet ISA Server Extranet

TSWeb Web
TSWeb Web Internet
ISA Server TSWeb Web

1.
Internet Explorer
2.

3.

4.

1.
2.

ISA Server SMBISA



IP 10.0.0.0-10.0.255.25510.255.255.255-

10.255.255.255

3.

*.BusinessName.com


SMBISA

WPAD
DHCP

1.
2.
3.

DHCP
DHCP ...

4.
5.

WPAD

252



http://FQDN of ISA_Server_Name:Auto_Discovery_Port/wpad.dat

SMBISA.BusinessName.com:80/wpad.dat)

6.
...
7.


8.
252 WPAD
Internet Explorer
ISA Server Web
IT Internet Explorer

IP Internet Explorer
1.
2.
3.

Internet Explorer Internet


Internet ...
(LAN)
1.
2.


URL
http://FQDN of ISA Server:8080/array.dll?Get.Routing.Script
http://SMBISA.BusinessName.com:8080/array.dll?
Get.Routing.Script

4.

DHCP WPAD Web


Internet Explorer
Internet Explorer
1.
2.
3.

Internet Explorer Internet


Internet ...
(LAN)

DHCP

GPO
Active Directory Active
Directory GPO Firewall Client
Active Directory

Active Directory

Active Directory

Active Directory

1.
SMBISA mspclnt
2.

3.

Firewall Client

1.

2.

DHCP


Firewall Client
Firewall Client DHCP IP DHCP
WPAD ISA
Server

ISA Server
IP SMBDC
ISA Server
1.
2.
3.


ISA Server 2004 Microsoft
ISA Server

SMBISA.BusinessName.com)
ISA Server
4.

5.

ISA Server

Web IP
URL Internet
Web
1.

ISA Server


IP
2.
Web
3.
Web IP URL
4.
Web

1.
2.

ISA Server
Web

Web

3.
1.
2.
3.
4.




Lucerne

5.
6.
7.
8.

Windows ...
...

9.
10.
11.
12.
13.




Lucerne

SMBISA
4.
Windows

ISA Server HTTP HTTPS


Internet Explorer Windows
Web
Windows Windows Web

Web ISA Server Web


1.
2.

ISA Server
HTTP HTTPS Web

3.

Edge Web

Web (1)
Web (1)
4.

5.

Windows

6.

...

7.

8.
Lucerne
9.

10.

11.
SMBISA
12.

ISA Server IT
IT

ISA Server SMBDC

1.

ISA Server



2.

3.

SMBDC.BusinessName.com


Ping

4.
SMBISA
5.

1.
2.
3.

ISA Server

SMTP SMBEX.BusinessName.com
From_ISA_Server
ITAdmin@BusinessName.com

4.
SMBISA
5.

ISA Server
Internet
1.

ISA Server



2.
BusinessName.com IT
3.


4.


5.


6.
SMBISA
7.
C:\ISARpt-Published
SMBISA


8.

9.

10.

ISA Server 1:00


1:00

VPN
Microsoft Web

(WAN)

DHCP

Web
VPN

DHCP DHCP
IP
DHCP IP
ipconfig IP Internet Explorer Web

VPN

IP IP

10.1.0.0/24 10.1.0.1
255.255.255.0 IP IP
DHCP

ISP

ISP DNS IP

IP
ipconfig/release
ipconfig/renew DHCP
IP 10.1.0.1 Web

(PPTP) Internet (IPSec) VPN passthrough


Internet passthrough VPN

DHCP

IP IP DHCP

10.1.0.0/24
DHCP 10.1.0.10 10.1.0.254 IP DHCP IP
DHCP
ipconfig/release ipconfig/renew

10.1.0.10 10.1.0.254 DHCP

DNS WINS DNS WINS IP

Web

IT
Linksys BEFSX41 VPN
IP 192.168.1.1
IP 10.1.0.0/24

IP

IP

DNS

255.255.255.0
IP
ISP
ISP
ISP
1. ISP
2. ISP

Web

?
SMBBO1RTR
BusinessName.com

10.1.0.1IP


Java
ActiveX?
Cookie

IPSec
PPTP
PPPOE

MTU
DHCP

DHCP
IP
DHCP

DNS 1????
DNS 2
WINS

10.1.0.10
50
11520
ISP
ISP
?
?

10.

Web

DHCP

DHCP IP

Internet
(IANA) IP IP 192.168.1.0/24 IP
URL
http://www.faqs.org/rfcs/rfc1918.html
IP

IP
IP

Web IP
Web Internet Explorer
IP ipconfig

ISP IP ISP DHCP

IP ISP IP
PPTP passthrough PPTP VPN

Web

Linksys BEFSR41
IP 192.168.1.1

????Internet
????????Internet
IP

???????? DNS????
????????DNS
?????
???????? IP
???????? IP

DHCP
???????? DHCP
IP
DHCP

????VPN Passthrough
????IPSec Passthrough
????PPPoE Passthrough
????PPTP Passthrough

?
?
IP
ISP
ISP
ISP
ISP
ISP

?
?
192.168.1.1
255.255.255.0
?

192.168.1.100
50
11520
?
?

11.

Internet

ISA Server

1.

CD DVD Windows Server 2003

.dat
2.
c
MBSA (Microsoft Base Security Analyzer)
3.

MBSA
Internet
4.

24

VPN Internet
VPN

ISA Server VPN


VPN ISP VPN
Internet

DSL
VPN
VPN

Internet Explorer HTTP HTTPS Web


ISA Server
Internet
ISA Server

1.

HTTP HTTPS
2.

Web
ISA Server IP
Web URL

ISA Server
1.

2.

3.

4.

DHCP
VPN DHCP
IP IP DNS WINS
IP
Internet
Internet Web

ISA Server

VPN

IT IT

Internet


Windows Server
2003 ISA Server 2004
Microsoft Software Update Services
(SUS) Internet
Windows Server 2003 IT Microsoft
IT
URL Microsoft Web
http://www.microsoft.com/isaserver
IT SUS

ISA Server
ISA Server SSL

ISA Server

ISA Server IT

ISA Server
Internet
Internet
ISA Server

ISA Server ISA Server ?

ISA Server

VPN
Web
ISA Server

.dat

ISA Server 2004 Internet


Internet Web SMTP

Exchange Server 2003 Microsoft Outlook Web Access


2003

http://www.microsoft.com/downloads/details.aspx?familyid=77b6d819-c7b3-42d1-8fbb-f
ISA Server 2004 URL

http://www.microsoft.com/isaserver/evaluation/overview/default.asp
ISA Server 2000, Standard Edition ISA Server 2004 UR
http://www.microsoft.com/isaserver/evaluation/existingcustomer.asp

(IT)

(FTP) (HTTP), Web


(WebDAV),

(SMB) TCP Microsoft CIFS Internet

(RAID)

IT

My Documents
Roaming Profiles

Windows Server 2003

SMB
Microsoft Windows Samba
SMB

(DFS)

Microsoft Windows Storage Server 2003

(DNS) (DHCP) Windows

Internet (WINS)

Active Directory

(CA)
Windows Storage Server 2003 Windows Server 2003

Windows Server
2003 URL
http://www.microsoft.com/windowssersver2003
/techinfo/reskit/deploykit.mspx

DNS
DHCP
WINS
Active Directory
Windows Storage Server

IT

CAD
DFS

IT

UNIX LINUX Microsoft Windows

Microsoft Windows NT Microsoft Windows 2000

IT (TCO)

Windows Storage Server 2003


Active Directory CA

Windows

DFS DFS

Windows

(ACL)

Windows Server 2003

IT

IT

1. IT

FTPHTTPWebDAVSMB TCP Microsoft


CIFS IT

ACL
ACL

My Documents

Microsoft Windows Microsoft

Windows
SMB

IT

URL

FileSvr Users URL \\FileSvr\Users

DFS

URL

URL

DFS

DFS

DFS

DFS
1.

DFS

DFS DFS

IT
DFS

DFS DFS

DFS DFS DFS

DFS

DFS

DFS DFS DFS DFS


DFS

DFS
DFS

Active Directory DFS


Active Directory DFS

DFS

DFS
DFS

Active Directory DFS


DFS DFS

DFS
DFS

BusinessName.com
Windows Server 2003, Standard Edition
DFS DFS Windows
Server 2003, Enterprise Edition Windows Server 2003, Datacenter
Edition
DFS DFS
(FRS)

DFS

VPN LOB

DFS NTFS (NTFS)


DFS
DFS \\BusinessName.com\AllShares
DFS

\\SMBNAS\SalesData

ISA Server 2004

\\SMBISA\mspclnt

\\SMBNAS\RedirectedFiles
My DocumentsApplication
DataDesktop

2. DFS
Lucerne Publishing DFS \
\lucernepublishing.com\AllShares DFS

IT

Windows Server 2003 DAS


DNSDHCP

WINSActive Directory CA

Windows Server 2003 Windows Server

2003 DAS

Windows Storage Server 2003 Windows Storage


Server 2003 DAS

(SAN) SAN

TCO
TCO

Windows
Server 2003

Windows

TCO

Windows Storage Server

Storage Server
2003

TCO

Exchange
WHQL Windows Storage
Server 2003 Microsoft
Exchange Server

Web UI
Web

Windows
Active Directory

TCO TCO

Exchange

IT

3.

CAD

TCO

IT

RAID

Windows Storage Server 2003

(OEM) Windows
Storage Server 2003

30 Windows Storage Server 2003

Lucerne Publishing Windows Storage Server 2003

Lucerne Publishing IT

AutoCAD

Lucerne Publishing

Lucerne Publishing
Lucerne
Publishing

Windows Storage Server 2003


Windows
Storage Server 2003

Windows Server 2003 Windows Storage Server 2003


Windows Server 2003 Windows
Storage Server

IT

IT

64

DFS

7:00 12:00
Windows Storage Server

Lucerne Publishing

Lucerne Publishing

IT

IT

Microsoft Windows XP

My Documents

Application Data

Desktop

Active Directory
MyDocumentsApplicationDataDesktop

WANMy Documents
Application Data

Internet

URL
http://www.microsoft.com/technet/prodtechnol
/windowsserver2003/technologies/management
/user01.mspx#XSLTsection132121120120

NTFS Windows
Server 2003 Microsoft
Windows Server 2003 Windows Storage Server 2003

Windows Storage Server 2003

Microsoft

Windows Server 2003 Windows Server


2003

Microsoft OEM

Microsoft

Lucerne Publishing
Lucerne Publishing

Lucerne Publishing Microsoft Windows


Server 2003 Lucerne Publishing

Microsoft
Windows Server 2003 ntbackup
Windows Storage Server 2003

Windows Storage Server 2003

RAID RAID Windows Storage Server


2003 RAID RAID

IDE RAID
SCSI RAID IDE RAID
SCSI RAID

(IDE) SCSI

SCSI
15,000 RPM SCSI

Windows Server 2003

Microsoft

LOB

My Documents

CAD CAM

RAID 5

Total available disk space = Size of a disk * (number of disks 1)

LOB

RAID 5
RAID 5

OEM Windows Storage Server 2003

Windows Storage Server 2003

2.4GHz Intel Xeon CPU


1 GB RAM
10/100/1000 Mbps
SCSI RAID
SCSI (Ultra Wide 160/320 Mbps)
SCSI

18GB

backup-to-disk

SCSI RAID
SCSI
backup-to-disk

IT

Windows

Windows

Storage Server 2003 Storage Server

4.

2004 5

$5000
1.5TB

Windows Storage Server 2003


Windows Storage Server 2003
Windows Server 2003

Windows Storage Server

IP

IP 3

Active Directory Active Directory


Windows Storage Server 2003

Windows Storage Server 2003


HP NAS 2000s Windows Storage Server 2003

Windows Storage Server 2003 Web UI


OEM Web UI
HP NAS 2000s Web UI

RapidLaunch

SMBNAS HP NAS 2000s


Windows Storage Server 2003
Web UI
Web UI
1.
2.

SMBNAS Web
https://<SerialNumber of the NAS server>-:3202

https://D4059ABC3433-:3202
SSL
3.
OEM Web UI
4.

Web UI SMBNAS OEM


Web UI OEM

SMBNAS
1.
2.

Web UI

3.

SMBNAS

1.
2.

Web UI /

Active Directory
1.
2.

Web UI
Windows Storage
Server 2003

3.
4.

1
DNS DNS BusinessName. com
Active Directory
1.
2.

Active Directory
Active Directory

domain name\user name

3.

4.
SMBNAS
5.
SMBNAS
SMBNAS Web UI
https://smbnas:3202
https://smbnas.BusinessName.com:3202

SMBNAS DHCP DHCP


IP
DHCP
1.
2.

DHCP
LAN SMBNAS LAN MAC
1.
2.
3.
4.

Web UI SMBNAS
Web UI
SMBNAS
Windows cmd

ipconfig /all MAC


5.

6.
3.

DHCP IP DHCP


1.
2.
3.
4.

DHCP Micorsoft (MMC)


DHCP
...
MAC SMBNAS

IP IP
IP
IP 2

4.

SMBNAS
1.
2.

Web UI

Windows Storage Server


ipconfig /release Windows Storage Server
IP Web UI
ipconfig/release

backup-to-disk NTFS
backup-to-disk
backup to disk

SMBNAS OEM

Microsoft
SMB
Web UI SMB

1.
2.
3.
4.
5.
6.

SMBNAS Web UI
...

Windows (Microsoft SMB)


Windows

DFS

DFS
DFS SMBNAS
1.

Web UI SMBNAS Windows

E:\DFSRoot
2.

3.
4.
5.
6.
7.

Domain AdminsSYSTEM
Domain Users/

8.
DFS
9.
1.
2.

DFS
1.
2.
3.

BusinessName.com
DFS

SMBNAS.BusinessName.com
AllShares
4.

5.
E:\DFSRoot
3.

DFS

Active Directory
4.

SalesData
Lucerne Publishing SMBNAS

1.
2.
3.
4.

Active Directory salesuser


Active Directory salesgrp
salesgrpsalesuser
SalesDatasalesgrp

DFS DFS
5.
Active Directory salesuser
1.

(SMBDC) Active Directory

2.
salesuser
3.
salesuser@BusinessName.com

Exchange Exchange

4.

5.
Active Directory salesgrp
1.

(SMBDC) Active Directory

2.
salesgrp
3.
salesgrpsalesuser
salesgrp
1.

2.
...salesuser
3.
SalesData
1.

SMBNASSalesData

2.

3.
salesgrp

4.
Domain Admins Domain Admins
salesgrp Domain
5.
Admins

6.
DFS DFS
1.

SMBNAS DFS
\\BusinessName.com\AllShares...

2.

\\smbnas\SalesData

3.
DFS
(SMBISA)
Lucerne Publishing DFS
DFS
SMBISA ISA Server 2004
4 Internet
1.

DFS DFS

\\BusinessName.com\AllShares...

2.

\\smbisa\mspclnt

3.
\\BusienssName.com\AllShare
SMBISA
DFS
(SMBISA) (mspclnt)

1.
2.
3.

Web UI

4.

1.

Windows ->->

2.

3.

4.

5.

My DocumentsApplication DataDesktop Active


Directory
Active Directory
URL
http://www.microsoft.com/technet/prodtechnol
/windowsserver2003/technologies/management/user01.mspx

Windows Storage Server 2003


Windows Server 2003 Windows
Storage Server Web UI
...
1.
...
2.
Microsoft

1.
2.
3.

1.
2.

3.

4.

Windows Storage Server

Web UI

1.
2.

Windows Server 2003

3.

MBSA MBSA
(Microsoft Base Security Analyzer)
MBSA

1.

2.
DFS DFS
3.

4.

LOB
DFS
5.

6.

Windows Storage Server

1.
2.
3.
4.

ipconfig
ping
nslookup Internet DNS
Windows

SMB
SMB
Windows
1.

2.

3.

DFS
DFS
1
1.
2.
3.
4.

salesuser Windows
Windows \\BusinessName.com\Allshares
DFS DFS
DFS

2
1.
2.
3.

Windows
Windows \\BusinessName.com\Allshares
DFS DFS

4 Internet

1.

Windows

2.

3.

4.
My Documents

1.
2.

Windows
My Documents

Windows My
3.
Documents

4.
My Documents
Windows My Documents
5.

1.

Windows

2.

IT

DFS

DFS

DFS

Windows Server 2003

DFS Active Directory DFS


5 MB dfsutil Windows Server 2003 CD
support\tools DFS

Windows Server 2003

IT
(VPN) Internet

1.

2.

3.

4.
IT

OEM
Windows Server 2003 Windows Update (WUS)
Microsoft Windows Storage
Server 2003 OEM
OEM Windows Storage Server 2003

.dat

Windows Storage Server 2003

SMTP Windows Storage Server 2003

Web UI

Microsoft Microsoft Storage Community


Microsoft
Windows Storage Server 2003

Windows Storage Server 2003


Windows Server 2003

Windows Server 2003 URL

http://www.microsoft.com/windowsserver2003/default.mspx
Microsoft Windows Storage Server 2003 URL
http://www.microsoft.com/windowsserversystem/wss2003

/default.mspx
Windows Server 2003 URL
http://www.microsoft.com/windowsserver2003/technologies

/storage/default.mspx

Windows Storage Server 2003

Windows Storage Server 2003 URL


http://www.microsoft.com/windowsserversystem/wss2003

/techinfo/plandeploy/improvebusiness.mspx

Windows Storage Server 2003


URL
http://www.microsoft.com/windowsserversystem/wss2003
/techinfo/plandeploy/buildbetter.mspx

Microsoft
URL
http://www.microsoft.com/windowsserversystem
/storage/solutions/fileserverconsolidation/default.mspx

(DAS)

Windows Server 2003

(DAS)
IT (DAS)

(RAID)

RAID

(IDE) SCSI
10,000 RPM 15,000 RPM

RAID RAID
DAS

RAID RAID
DAS RAID

RAID

IT SCSI

RAID IT RAID

Windows Server 2003


Windows Server 2003
Windows Server 2003
Windows Server 2003
Windows
Web

Windows Server 2003

5
5

5
5

Extranet 100

20
IT

IT

Active Directory

RAID

IP IP IP

IP IP
(DHCP) IP IP

IP IP IP

(MAC) DHCP IP
(LAN) MAC
DHCP MAC
MAC
ipconfig /all MAC

MAC DHCP
DHCP DHCP

IP 10.0.0.1
IP 10.0.0.1


255.255.0.0

URL Windows Server 2003


http://www.microsoft.com/windowsserver2003/default.mspx
Windows Catalog URL
http://support.microsoft.com/default.aspx?scid=kb;[LN];323166
Internet
Internet

DHCP
(SMDBC SMBEX)
(SMBISA) DHCP

IP DHCP

MAC IP
IP DHCP (SMDBC SMBEX)
1.
2.
3.
4.

DHCP Microsoft (MMC)


DHCP


(SMBEXTNT)
SMBEXTNT.BusinessName.com
IP 10.0.0.4
MAC 000802455ea0

5.
6.

SMBEXTNT

ipconfig /release ipconfig /renew DHCP

IP
7.

RAID RAID
RAID

DHCP IP
MAC
IP DHCP MAC

(VPN)

CD CDROM
1.

RAID

NTFS

Windows Server 2003

IP
IP

2.

3.

URL
http://support.microsoft.com/default.aspx?scid=kb;[LN];323166
Internet Explorer
Windows Server 2003 Internet Explorer
Internet Explorer
Internet
Web
IT Web Web

Active Directory

Active Directory

1.
2.
3.
4.
5.
6.

...
BusinessName.com

Windows Server 2003 Windows Server 2003

Microsoft
30

Windows Server 2003


Windows Windows Server 2003
Internet
Internet
Internet Windows Server 2003
1.
2.

Windows

IT
1.

1.

(Certificate

Services) Internet Authentication Services (IAS)


Active Directory
2.
IAS
3.
Active Directory
4.
2.

1.
2.

IP
802.1x PEAP

RADIUS
IP
RADIUS IP

3.

802.1x (EAP)
LAN
-TLS
802.1x
(Protected
Extensible Authentication Protocol, PEAP) IT
PEAP
Internet Authentication Server
PEAP

Active Directory

Internet Authentication Service RADIUS

(CA)
PEAP Windows Server 2003
Active Directory Active Directory

Active Directory
Active Directory

1.
2.
3.

Active Directory (OU)

1.

2.

3.

4.

1.


2.

3.

4.
Internet
IAS
IAS RADIUS

IAS

CA 30

Internet (IAS)

1.
2.
3.
4.
5.
6.


EAP (PEAP) EAP
core1servername.BusinessName.com

7.

Microsoft
8.
2 MS-CHAPv2)

9.
IAS

RADIUS Internet
IAS RADIUS
IAS Internet (IAS)
RADIUS
1.
2.

RADIUS RADIUS
IP IP

RADIUS -
3.

WAP IAS 128

13 ASCII 26 HEXADECIMAL
(VSA) RADIUS
VSA VSA

Active Directory
RADIUS WEP

1.
2.
3.
4.

30

1.
2.

5.

RADIUS-

Internet (IAS)
802.1x NAS

(GPO)
Active
Directory

1.
2.
3.
4.
5.
6.
7.

>\\<.com>

GPO
GPO
\\Windows \\ (IEEE 802.11)
(IEEE 802.11)

...


(SSID)
8.
() WLAN

9.

WEP

IEEE 802.1x EAP EAP (PEAP)

10.

EAP IAS
CA

BusinessNameCA

11.
GPO OU OU
GPO Active Directory

AP IP IP IAS RADIUS Internet


IP IT IP 10.0.1.100
10.0.1.150
WAP DNS WAP HOST
PTR DNS WAP HOST PTR

MAC DHCP

802.1x EAP-TLS MD5/Password EAP-TLS

RADIUS IP IAS Windows IP


RADIUS 1812

RADIUS IP IAS Windows IP

RADIUS RADIUS IAS


RADIUS Internet
IAS 128 13 ASCII 26

HEXADECIMAL
SSID

IT

Microsoft Instant Messenger Web

MMC
MMC
Windows XP
1.
2.

secpol.msc

URL Windows Server 2003

http://www.microsoft.com/windowsserver2003/technologies/
management/grouppolicy
/default.mspx
URL
http://www.microsoft.com/technet/prodtechnol/winxppro/
maintain/rstrplcy.mspx?