Professional Documents
Culture Documents
Lab Guide
Infoblox Educational Services
Revision ncc-015-1
April 15, 2012
The contents of this document may not be copied or duplicated in any form, in whole or in part, without the prior written
permission of Infoblox, Inc.
The information in this document is subject to change without notice. Infoblox, Inc. shall not be liable for any damages
resulting from technical errors or omissions which may be present in this document, or from use of this document.
This document is an unpublished work protected by the United States copyright laws and is proprietary to Infoblox, Inc.
Disclosure, copying, reproduction, merger, translation, modification, enhancement, or use of this document by anyone
other than authorized employees, authorized users, or licensees of Infoblox, Inc. without the prior written consent of
Infoblox, Inc. is prohibited.
Infoblox, the Infoblox logo, Trinzic, NIOS, Keystone, bloxSDB, bloxHA and bloxSYNC are trademarks or registered
trademarks of Infoblox Inc.
All other trademarked names used herein are the properties of their respective owners and are used for identification
purposes only.
Introduction
Welcome to the NIOS Configuration Class Lab Guide. As you work your way through this guide you find it
useful to use your training book to assist you through the configuration portions of the labs. You will find that
each lab build on the slides you will have seen in the corresponding section of the training book.
Also, please note that eLabs is a shared resource for all Infoblox training courses. Please, while using the
eLabs environment, follow some simple rules:
1. Please do not upgrade any of the Infoblox Appliances while using them for training. This will effect
classes using the equipment after you.
2. Please do not change the password for the admin account. Labs in this course will show you how to
create new accounts, and set passwords for them, so there is no reason you should have to reset the admin
account password.
Thank you!
Introduction
In this lab, you connect to your appliance. You may want to look at Appendix A of this Lab Guide for
information on accessing the eLab environment.
Module Objectives
After successfully completing this module, you will be able to:
3. Once the Putty session opens, login TWICE using the following credentials:
Login: admin
Password: infoblox
The first login will get you into the Terminal server. The second login will get you into the appliance.
4. Once into your appliance try out the following SHOW commands:
show network
Write down your appliances address
show status
show license
show date
show version
show capacity
show upg<then hit the tab key>
1. Within your virtual XP machine, open a browser Chrome, Firefox, or Internet Explorer.
Note: Use Chrome while using eLab for best performance.
5. Click I Accept to the End-User License Agreement. The Infoblox NIOS Startup Wizard appears.
2. Step 2 Choose No in the section marked Is the Grid Master an HA pair? Click Next.
5. Step 5 Choose No to enabling NTP. Enter the current time, date and time zone. Click Next.
Introduction
In this lab, you browse the GUI.
Module Objectives
After successfully completing this module, you will be able to:
1. If not already there, go to your Dashboard by clicking on the Dashboards tab, then the Status sub-tab.
4. Choose another panel and close it by clicking the X in the upper right hand corner.
Confirm the deletion by clicking the Yes button at the confirmation screen.
6. Drag the panel that you closed in Exercise 1 onto the Dashboard.
7. If desired, do any configuration that you may want to do with the newly added panel, then click the gear
icon to close the configuration area of the panel.
The Grid panel opens. Within it you will see three panels marked Visualization, Members, and Services.
The Visualization panel will be open by default.
3. From the Toolbar, click the down arrow next to Grid Properties and select Edit.
The Grid Properties Editor dialog box opens.
6. Scroll down to the section marked Enable Remote Console Access and verify the checkbox is checked.
Note: All units in eLab have this setting already enabled. By default, on a factory reset box, this would be
unchecked.
1. Click the Grid tab at the top of the screen, and then Members from the sub-tabs.
The Grid panel opens. You should see your appliance listed.
7. A Restart button may appear at the top of your screen, in a blue bar. If this happens, follow these
procedures:
2. Click the Restart button from inside the Restart Grid Services window
2. Select an option from the Available List and click the ` button to move it to the Selected List.
Define the attribute type Department. This is done in the Administration panel.
Create an administrator account and add attribute data (the department of the administrator).
Change the display of the Administrators panel so it displays the new data.
5. Leave the Type set to String. If you want, add a comment to the Comment box.
6. Click Next.
7. Enter an administrators department in the Default Value box (make one up.)
This is optional. Whatever name you enter here will be displayed by default.
This Extensible Attribute will be used later in the class, in Lab #4.
As described earlier, a Smart Folder is essentially a saved search. In this exercise, you create a Smart
Folder.
1. Click the Smart Folders tab at the top of the screen to open the Smart Folders panel.
2. Click the Create button at the top of your screen to add a new Smart Folder
Introduction
In this lab, you gain familiarity with the NIOS system administration by performing key administrative tasks
such as performing backups, and configuring Syslog and NTP servers.
Module Objectives
After successfully completing this module, you will be able to:
Traffic Capture
2. Within the Members panel, click on NTP at the top of the panel.
The Services panel opens for NTP.
4. Add a check to the checkbox marked Synchronize all Grid Members with NTP.
8. Click Save & Close to save settings and close the dialog box.
Note that the appliance may restart after saving. If it does, log back in to the appliance and navigate back
to where you were so you can validate the NTP status.
Note: Steps 3 through 7 (below) are optional. They will have you connect (via telnet) to the router (the
NTP source) to validate that the time you see on your Infoblox device is the correct time. If you do not
want to do these steps, please procede to Exercise 4.
3. Open Telnet within your XP session and connect to the router at 192.168.1.1.
Password: infoblox
The output should show that the Cisco views itself as a Stratum 3 NTP server.
The output will show that the three Stratum 2 servers (the st value) that the router knows about. The
asterisk next to 130.126.24.53 indicates the NTP source that the router is actively using.
1. Return to the Infoblox GUI. You should still be in the Grid panel. Make sure you are in the Members
sub-panel.
2. In the Toolbar, select Backup > Grid Backup > Manual Backup.
A dialog box opens.
3. Select My Computer.
You have four options: My Computer, TFTP, FTP and SCP.
5. Choose to Save the file, if prompted, as we dont want to open it as a standard file, and save it to your
Desktop.
6. You should see a blue informational bar at the top of the GUI. Click the Close to close the message.
NOTE: TIME ZONE SETTINGS FOR YOUR APPLIANCE AFFECT THIS LAB. MAKE SURE
THE TIME YOU SET THE BACKUP TO RUN IS IN REFERENCE TO YOU APPLIANCES TIME.
1. You should still be in the Grid panel (Members sub-panel). If not, navigate back to it.
2. In the Toolbar, select Backup > Grid Backup > Schedule Backup.
A dialog box opens.
To check your work, run the Restore command and browse to your backup file on your appliance.
1. You should still be in the Members panel within the Grid panel.
4. Assuming your time zone is set correctly, and the time you scheduled the backup to run has passed, you
should see a backup in the section labeled Backup Set. You dont need to actually do the Restore, but
can, if you would like to see how it works.
2. Select your appliance by adding a checkmark to the box in front of its name.
6. Click Yes to close the warning message and begin the capture.
9. Click Save or OK (depending on what type of browser you are running) and save the file.
10. If you are running Internet Explorer, enter a name and choose a location for the file (such as your
desktop) and click OK twice. Firefox will open a window showing the file which will be saved in
C:\Documents and Settings\training\My Documents\Downloads.
The file is saved as a .tar.gz file.
Exercise 9 - Unzip the File with 7-Zip and View it With Wireshark
12. Open the traffic capture file:
3. Make sure that Program Files is selected in the Look in: drop down list
7. Another file (a .tar) will be shown in a new window. Double click it.
2.
9. Open the Finder (the panel along the left side of the GUI.)
11. Click the Restore button and verify the network is restored
Introduction
In this lab, you build administrator accounts.
Module Objectives
Configure administrator groups and roles
7. Click Next.
8. Click the Add button , which opens the Role Selector dialog box opens.
9. Dont select anything. Just look at the options and then click Close.
We want to assign permissions directly so well skip role assignment for now.
11. This opens the Dashboard Templates page. Select Default from the pull-down menu.
13. The Extensible Attributes page opens. We will skip this for now.
14. Click Save & Close. The Wizard closes and the new group is added.
Permissions are assigned through the Permissions Manager. In this exercise, you assign Read-only
permissions for All Zones to your group.
1. Open the Permissions panel. This is where you assign permissions to either Roles or Groups.
3. In the Permissions section (the bottom half of the panel where it lists your group name), open the menu
4. In the Manage Global Permissions editor, verify that your group is shown in the Group Permission text
box
8. Highlight your group name and verify that the assigned permissions are displayed in the Detailed
Permissions area at the bottom of the window.
3. Enter a user name, password and email address (make this up.)
1. Log out and then log back in using your new account.
5. In the first page of the wizard, enter a zone name such as infoblox.com.
6. Click Next.
7. When you get to the Member Assignment step in the wizard, you will find that you cant assign a grid
member to the zone. This is because you do not have permission to view the contents of DNS members.
In this exercise you create a custom role and assign it to your group. The role will have the following
permissions: DENY ALL to A records.
Afterwards, assign this role to the group you just created. Your group will have permission to see all records
in zones EXCEPT for A records.
8. In the Permissions section, click the Add button dropdown and select Global Permissions.
9. In the Manage Global Permissions editor, select DNS Permissions from the Permissions Type menu.
In the following exercise, you assign your new role to the group you created earlier.
6. When the Role Selector opens, click the tab on the left marked Custom Roles on the right.
Your custom role will then display in the middle of the pane as shown above.
10. Open the Quick Filter drop-down menu to see the filter options.
All Configured Permissions Shows all permissions configured for the selected object.
Effective Permissions Shows the outcome of all permissions and how conflicting permissions are
resolved.
1. Click on Administration
2. Click on Administrators
3. Click on Admins, then click on the button to create a new admin user
This will be the admin superuser login that you will use for the remainder of the class, so remember to login
credentials. You will need to recreate this user in a later lab exercise.
Introduction
In this lab, you will create a High Availability pair.
Module Objectives
After successfully completing this module, you will be able to:
Break an HA pair
Your instructor will assign you IP addresses from Appendix B in this lab guide. You will be assigned a LAN
and HA address. So will your partner. Your team will be also assigned one Virtual IP address.
1. Get your IP address assignments from your instructor or consult Appendix B in this lab guide.
You will see that all the necessary IP info (VIP, LAN and HA) has been provided.
The following steps should be performed by the person doing the Active node configuration.
The person doing the passive node configuration should wait until these steps are done.
3. The Members panel should be open as shown below. If it is not open, open it.
4. Add a check to the checkbox for the appliance that will be the Active node.
Several choices will become active in the toolbar.
8. Enter a Virtual Router ID, consisting of the last octet of the VIP.
For example, if your VIP is 10.100.1.14, then enter 14 for the Virtual Router ID.
9. Enter addresses for the LAN1 and HA ports for BOTH appliances.
Your instructor will provide addresses. Addresses are listed in the appendices of this lab guide.
The person who did Exercise 2 should do this exercise. The student who is configuring the Passive node
(Node 2) should skip to Exercise 4.
The person configuring Node 2 (the Passive) will do the following exercise. This exercise will cause the
Passive to join to the Active. To watch the entire join process, its best to connect to the Console connection
(via PuTTy) so that you can watch all of the generated messages during the join process.
1. On the Passive node, open the following: Grid panel > Grid Manager panel > Members panel.
3. Select Join existing grid (the default option) and click Next.
5. Click OK.
After completing the join, check the status of the HA pair. The status will change several times during the
join process.
2. If you click the arrow at in front of the Name, the two nodes will display. The status for both nodes
should be Running as shown below.
Force Failover causes the Active to send a VRRP advertisement with a priority of zero to the Passive, telling
the Passive that it is giving up control. Force Failover is useful for scheduled maintenance.
1. In the Grid panel, select the HA pair by adding a check to the box in front of the members name.
3. Click OK.
7. Close the web session and log back into the VIP.
When the session resumes, you will now be connected to Node 2, as Node 2 keeps the VIP as its LAN1 IP.
Node 1 keeps its LAN1 IP.
In this exercise, the person who originally configured Node 2 should change the IP address of Node 2 to its
old LAN address.
7. Close the web session and log back in using the LAN1 address.
Exercise 9 Configure Startup Wizard on Node 1
At this point, both appliances should have their original addresses. The breaking of the HA pair causes the
original Active (Node 1) to launch the Startup Wizard. Go ahead and configure your appliance through
the Startup Wizard, chosing the original configuration settings you used in LAB1.
The database on Node 2 (the original Passive) will need to be reset in order to get ready for the grid exercise.
4. Verify the database reset by logging into the appliances IP and check the configuration.
5. Configure your appliance through the Startup Wizard, chosing the original configuration settings you
used in LAB1.
Introduction
In this lab, you build a Grid.
Module Objectives
After successfully completing this module, you will be able to:
1. Log into the Grid Master and open the Grid panel.
Several people can be logged into the Grid Master at the same time.
2. The Members panel within the Grid Manager panel should be open. If it is not, open it.
3. Click the Add button in either the Members panel or the Menu (either will work.)
The Add Grid Member dialog box opens.
4. Enter the Host Name for the member that you are adding to the grid.
5. Click Next.
1. Run PUTTY and log into the appliance (using the eLab Console connection) that will be joining the grid.
6. Click OK.
During the next few minutes, your appliance will join the grid.
You will need to login to the GM and recreate your account, per the instructions in Lab #4, Exercise 8 in
order for you to have your user account login for the labs you will perform while a member of the grid.
Introduction
In this lab, you will enable your appliance to function as DHCP server
Module Objectives
After successfully completing this module, you will be able to:
DHCP, by default, is disabled on all grid members/standalone appliances. You must enable the service if you
want to use it. Use the course materials for detailed assistance in this task.
5. To start the DHCP service, click the Start option on the Toolbar.
2. You may need to refresh the screen to see the status change
Although the file wont have much in it, as we have not done any DHCP configuration yet, you can view the
DHCP configuration file of any member/standalone appliance as long as the DHCP service is running.
5. Click the dropdown for View DHCP Configuration, and choose IPv4
Introduction
In this lab, you will add a DHCP Network for later use by your Virtual Windows XP image.
Module Objectives
After successfully completing this module, you will be able to:
Define Networks
In this exercise, you will create a network and associate it with your appliance.
3. The Networks panel should open by default. If it isnt open, open it.
8. In the Networks box, enter the network address that your XP client is currently using. Your network will
be 10.100.x.0, where x is your student unit number (from 1-60).
For example, if your using Training-xp01, enter 10.100.1.0.
9. Click Next.
14. In the Routers section, enter a gateway address for your network. If you added 10.100.1.0/24, you router
will be 10.100.1.1 (the last octet will ALWAYS be 1).
15. Click Next to open the final page of the Wizard. This page gives you options to configure extensible
attributes. Add an EA (Site) and give it a value (whatever value you want!)
Introduction
In this lab, you will add a DHCP Network for later use by your Virtual Windows XP image.
Module Objectives
After successfully completing this module, you will be able to:
Define Ranges
Define Reservations
An address range is a pool of addresses that the server draws upon to assign to clients.
In this exercise, define a DHCP range for your 10.100.x.0 network. The last octet of these addresses will be 2
to 30, so your range should be from 10.100.x.2 to 10.100.x.30. We start with 2 as 1 is our router IP address.
2. Click the Add button dropdown menu and select Range from the menu.
The Add Range Wizard opens.
6. Click Next.
8. Click Next.
We wont change any of the network settings such as gateway and DNS server addresses, but you should
see the override set on Router. The value should be coming from the Network.
9. Click Save & Close to close the wizard and apply your settings.
We wont be configuring Extensible Attributes.
An address range is a pool of addresses that the server draws upon to assign to clients.
3. Click the Add button dropdown menu and select Exclusion Range from the menu.
The Edit Range Wizard opens.
4. Click the + to add a new row, and add the following information:
7. Look at the IP addresses in your range and verify the exclusion range is present
An address range is a pool of addresses that the server draws upon to assign to clients.
2. Click the Add button dropdown menu and select Fixed Address from the menu.
The Add Fixed Address Wizard opens.
4. Use the Address 10.100.x.200 for the IP address, assign by MAC address, and use the following for the
MAC address: 112233445566
6. Click Next.
7. Click Next.
We wont be adding any special DHCP options to the fixed address.
10. Look at the IP addresses in your Network and verify the fixed address is present
2. Click the Add button dropdown menu and select Reservation from the menu.
The AddIPv4 Reservation Wizard opens.
4. Use the Address 10.100.x.1 for the IP address, and Router for the Name.
5. Click Next.
We wont be adding any DHCP options to the reservation.
8. Look at the IP addresses in your Network and verify the reservation is present
5. Scroll down through the list until you get to the option Internet Protocol
TCP/IP.
9. After a few seconds, open a Command Prompt window and type in ipconfig /all.
You should see that your client has successfully acquired a new IP address which, most likely, will be
10.100.x.19.
Introduction
DHCP options are configuration parameters that can be sent by a server (or even a client) during the
negotiation process for an IP address. In this lab, you configure your appliance to send DHCP options to a
client device.
Module Objectives
After successfully completing this module, you will be able to:
In this exercise, you configure DHCP option 42, the NTP option.
6. Scroll to the bottom of the editor so you can see the section marked Custom DHCP Options.
The higher numbered options in the DHCP option space are undefined. These are the so-called vendor
configurable options. Vendors such as Avaya and Cisco often use these options as part of their VoIP phone
solutions to send the IP addresses of TFTP servers.
In this exercise, you configure your appliance to support a custom option. You will pick the option number,
give it a name and define it as an array of IP addresses. Afterwards, you will configure an address that the
appliance will send when a client requests the option.
SPECIAL NOTE: Due to a bug existing in the NIOS code (as of this writing), caution should be used when
adding the custom options. Coordination needs to be used so that 1 student at a time enters their option or
options may seem to disappear after being added. One student should create an option, save their work,
and single the next student to add their option.
1. Open the Networks panel so you are looking at the list of all networks
4. Scroll to the bottom of the editor so you can see the section marked Custom DHCP Options.
5. Open the pull-down menu and scroll to the bottom of the list.
Introduction
In this lab, you will view DHCP leases and create MAC filters.
Module Objectives
After successfully completing this module, you will be able to:
In this exercise, you will use the lease viewer and see detailed lease information.
3. You should be presented with all the leases in the grid. Scroll to your lease, or use the Go to feature to
help you find it, and select it (click the checkbox).
4. Click the Lease Details button to see the detailed information about your current lease.
In this exercise, you will use the lease viewer and see detailed lease information. Since this needs to be
enabled at the Grid level, only 1 student will need to do this (or the Instructor can). The steps listed below
should only be done by the 1 person selected to do so.
2. In the upper left-hand corner, if you see the like titled Toggle Advanced Mode, click it. Lease History is
considered an advanced feature and is only available to configure when you are using Advanced
Mode.
4. Check the checkbox titled Lease History, then select a member (any member will do, but Best Practices
says this shouls not be the Grid Master!) to be the Lease History member.
In this exercise, you will force your Windows XP client to release and then renew its DHCP lease, populating
data in Lease History.
1. From your Virtual Windows XP machine (NOT YOUR LAPTOP!), open a DOS window by clicking on
the icon called cmd on the desktop.
1. ipconfig /release
2. ipconfig /renew
6. You should be presented with the lease history for the entire Grid. You should have 2 lines for your client
showing both a Freed and Issued line.
You can always create a filter for your MAC address, IP Address, or both to limit the output to just your
information.
In this exercise, you will create a MAC address filter, and use the filter to deny a client from getting an IP
address.
4. In the Name box, enter a name for your filter, an optional comment, and click Next.
Remember - You are sharing a grid with other students, so choose a unique name to avoid conflicts.
7. Enter optional EAs, then click Save & Close to save the new filter.
3. Your MAC Address Filter name should show next to MAC Address Filter. If not, click the Select Filter
button and select your filter.
4. Enter a MAC address (make one up, or just use 11:11:11:11:11:11), then click Next.
6. Optionally enter som EAs and then click Save & Close.
2. Open the Networks Panel, if not opened, and click on yoru network.
You should see the range you have created.
3. Select the range (check the checkbox) and then click the Edit button.
4. Make sure that the range editor is in Advanced Mode. If the panel has a link marked Toggle Advanced
Mode, it means you are in Basic Mode. Click the link to enter Advanced Mode.
8. We want to use this filter to deny a client from getting an address, so click on Grant Lease and use the
dropdown to select Deny Lease.
Introduction
In this lab, you will configure your server to allocate and configure IPv4 networks using the IPAM panel.
Module Objectives
After successfully completing this module, you will be able to:
In this exercise, you will create an IPv4 /16 network from the IPAM panel, split it, then join to networks to
create one larger network.
3. Click the add icon (from inside the IPAM panel) and add an IPv4 network. The network should be
10.x.0.0/16, where x is your student number (from 1-60), and should be mapped to your grid member.
Example: If you are using Training-xp58, you would create 10.58.0.0/16.
4. Check the checkbox for your just added network, and from the Toolbar, click Split.
5. Move the slider to 24, and move the bullet to All possible networks. Click OK to finish.
6. Your /16 network should now shows as a network container. Click on the network container and you
should find all 256 (0-255) /24 networks.
7. Select the 10.x.252.0/24 network. Check the checkbox if in List mode, or click the 4th from the last
network block if in Net Map view.
10. Click on the 10.x.0.0/16 network. You should see all the /24 networks, and the new /23 network you just
created.
Try this in both the Net Map and List modes.
In this exercise, you will change the dynamic lease for your Virtual Windows Desktop in to a Fixed Address.
4. You should be in the IP Map view of your network. If you see the link (in the upper right hand side of IP
Map that says Toggle Advanced View, click on it and it should change to Toggle Basic View.
5. You should see one IP address (most likely 10.100.x.19) inside the DHCP range that shows up as being
used: . Click on this box, then click on the dropdown for Convert in the Toolbar.
7. You should see that the IP Address, MAC Address, and DHCP Client Identifier fields are all populated
for you from the lease data.
8. Optionally, add a Name and/or Comment, then click Save & Close.
9. Restart Service.
10. Optionally, look at the DHCP Configuration file for your member to see the new fixed address defintion.
Introduction
In this lab, you will enable your appliance to function as a file server.
Module Objectives
After successfully completing this module, you will be able to:
Infoblox supports FTP, TFTP and HTTP file distribution service. File Distribution service is disabled by
default. In this exercise, you configure and enable FTP. The steps you follow are largely the same for TFTP
and HTTP.
6. Check the checkbox labeled FTP File Listing (Failure to do this step will cause errors later!)
7. Click the button dropdown and select Any Address/Network from the menu.
9. In the toolbar, select the Start dropdown (make sure you click the dropdown or you will not start FTP)
and then FTP from the menu.
The service is started. You will need to refresh your screen to see the Status icon turn green.
In this exercise, you create a directory on your appliance and then upload a file to it. This will be just like the
example shown in your course materials (reference them for additional help.)
3. Select the new directory that you created and click Edit.
4. In the editor, change the name of the directory to voip-XX (where XX is your student unit number, from
01-60), and then click Save & Close.
7. Click Select.
9. Click Upload.
The file then uploads to your appliance.
In this exercise, you create a directory on your virtual Windows XP desktop, copy some files into it, then
upload that directory of files using DIW.
3. Open the FTP-Files folder, right-click in it, choose New -> Folder, and name the folder
Student-XX (where XX is your student unit number from 01-60)
4. Copy/create at least 2 files in to the new folder (doesnt matter what the files are, or what they
are named)
3. When DIW starts, enter the IP address, username, and password of your grid master
4. Using the course materials as your guide, run DIW and import the directory you created
Exercise 4 - Test Your Work Connect via FTP from a Web Browser
Using your web browser of choice, connect to the grid master via FTP and see/retrieve your files
3. Open your voip-XX amd Student-XX directories to see the files you uploaded
Module Objectives
Enable recursion
Introduction
In this lab, you will configure the use of forwarders , enable recursion, enable and test zone transfers.
DHCP, by default, is disabled on all grid members/standalone appliances. You must enable the service if you
want to use it. Use the course materials for detailed assistance in this task.
5. To start the DNS service, click the Start option on the Toolbar.
2. You may need to refresh the screen to see the status change
A forwarder performs lookups on behalf of other servers, thereby shielding other name servers from cache
poisoning and other attacks. Through time, a forwarder can build up a large cache and thereby provide
speedy service.
Forwarders can be configured at the Grid or member level. In this exercise, you configure a Forwarder at the
member level. To configure a forwarder, perform the following steps:
8. As our DNS servers will not be able to go through the firewall (by design) we want to check the box
labeled use forwarders only.
12. Click the button dropdown menu and choose Any Address/Network from the menu.
Note: This is the default behavior when you turn on recursion so you do not technically need to add any
if you want anyone to be able to do recursive lookups. Simply enable recursion and all addresses, by
default, will be allowed to do recursive lookups.
In this next exercise, you will enable zone transfers for your appliance. Afterwards, you will use DIG to test
your work.
4. Click Override.
5. Click the button dropdown menu and choose Any Address/Network from the menu.
Introduction
In this lab, you create zones and records.
Module Objectives
After successfully completing this module, you will be able to:
Configure Records
1. Open the following panels: Data Management > DNS > Zones.
2. In the Zones panel, click the Add button at the top of the panel to add a zone.
The Add Authoritative Zone wizard appears. If you click the button (and not the menu under it) you will
go straight into a wizard. If you open the menu under the button, select Authoritative Zone from the sub-
menu. This will get you into the wizard.
4. Click Next.
The Step 2 page appears.
5. Enter a name for your zone in the text box marked Name.
Examples: Infoblox.com or bill.com or abc.net.
6. Click Next.
The Step 3 page appears. This page asks for a server assignment.
7. Select the option marked Use this set of name servers. Do not click Next yet.
10. Click your appliance from the list and then click the Select button on the right.
11. Click the Add button to add the selected server to the list section.
12. You are now going to add a secondary server. Click the triangle on the Add button and select Grid
Secondary from the pop-up menu.
The Add Grid Member panel appears.
14. Click another students appliance from the list and then click the Select button on the right.
15. Click the Add button to add the selected server to the list section. The appliances name will be
listed next to the Select Member button.
18. Click Save & Close to close the dialog box and save changes.
A blue Restart Services message displays at the top of the screen.
19. Click the Restart Services button at the top of the screen to open the Restart Services dialog box.
3. Enter a name for the Delegated zone such as your sales or eng. You do not need to enter the full
name the parents zone name will append automatically.
4. Click Next.
7. Enter a server name and IP address (make them up) into the panel.
8. Click Next.
The Wizard will advance to Step 3 of 3 and will offer you a chance to add Extensible Attributes.
9. Click Save & Close to close the dialog box and save changes.
1. You should still be in the Zones panel. Click the Add button button at the top of the zone panel to
add a zone.
The Add Authoritative Zone wizard appears.
3. Click Next.
The Step 2 page appears.
4. Enter the network address: 10.100.x.0, where x is your Student number. For example, Student 1 would
create: 10.100.1.0. Make this a /24 network.
5. Click Next.
The Step 3 page appears. This page asks for a server assignment.
6. Add a primary server just as you did in the last two exercises.
Now test your work. Run DIG and attempt a zone transfer.
Introduction
In this lab, you create zones and records.
Module Objectives
After successfully completing this module, you will be able to:
1. Open the following panels: Data Management > DNS > Zones.
3. Open the menu under the Add button at the top of the panel and select Records > A Record.
5. Click the Save & Close to close and save the record.
1. Open the menu under the Add button and select Host > Host Record.
2. Click the Edit button in the toolbar at the top of the window.
The Records editor opens.
4. Click the Add button and enter an alias for the host record that you are editing (make one up.)
5. Click the Save & Close to close and save the record.
1. Navigate to the reverse zone you created earlier and open it by clicking it.
3. Enter an IP address of the following format: 10.100.x.y, where x is your Student number and y is a value
of your choice. For example, 10.100.1.5.
Introduction
This lab exercise shows you how to import data using the Data Import Wizard and the CSV Import function
Module Objectives
After successfully completing this module, you will be able to:
Migrate DNS data into your appliance using the CSV Import Function
This exercise will require you to retrieve a file, via ftp, to use during the import function. To retrieve the file:
5. The Data Import Labs folder containing the CSV Lab Files folder will be available for use in the next
exercise
4. Click on the Select button and browse to a folder on your desktop called Data Import Labs>CSV Lab
Files
5. Select the CSV file named for your student number, and click Upload
6. Make sure that Comma is selected for the Seperator value (this is the default value.)
9. After the import completes click the Save & Close button.
NOTE: The newly created zone will not be mapped to any member. Although this can be done via the CSV
input file, we do not know what you will name your mmber so we cannot add the proper verbage to the CSV
file. If you want, edit the imported zone and map it to your member.
Introduction
In this lab, we will look at some of the Infoblox features available for DNS, such as Name Server Groups and
Shared Record Groups.
Module Objectives
After successfully completing this module, you will be able to:
3. Make up a name for the Shared Record Group and enter it into the Name box.
6. Click the Add button to add the selected server to the list section.
7. Repeat steps 4 & 5, but this time, add a Grid Secondary, and choose another member of the grid.
Use Grid Replication in the Update Zones Using section.
9. Click Next.
10. Optionally, add any Extensible Attributes you may want to use, then click Save & Close when finished.
When updated, Shared Records dynamically update in all associated Views and zones.
3. Make up a name for the Shared Record Group and enter it into the Name box.
4. Click Next.
The next page in the wizard will ask you to select zones.
5. Click the Add button and add the zone you created in exercise 1, and, if you want, add another zone
that you may have added in an earlier lab.
6. Click Next.
This page asks for Extensible Attributes. We will skip this page.
7. Click Next.
The last page in the wizard presents you with Save options.
2. Open the menu under the Add button in the toolbar and select Records > Shared A Record.
3. Enter a host name such as printer1 and an IP address of your choosing. Note that you can not enter
fully qualified hostnames (in other words, do not enter dotted names such as printer1.infoblox.com.)
4. Click the Save & Close to close and save the record.
5. Create more Shared records for your Shared Record Group, if you desire, but make sure you have at least
1 added.
6. Open the zone(s) that you associated with the Shared Record group and see if your records have been
added to it.
Introduction
Microsoft Management is a licensed feature that allows an Infoblox appliance to remotely view and
optionally manage data on a Microsoft DNS and DHCP servers.
Module Objectives
After successfully completing this module, you will be able to:
Test your work by adding data to the Infoblox and watch it populate on the Microsoft server
Since we have been running in a Grid, we will want to break out of the grid so everyone can do their own
Microsoft Management definitions. If we did not, the first person to add the Microsoft server would not only
have added the server, they would have synchronized all the data, too.
1. Open PUTTY, choose the Console connection, and log into your appliance.
5. You might also want to change your session timeout settings as they will be back to 5 minutes.
We do not need a perminant license for this lab so we will add a temporary license via the CLI.
1. Using Putty, connect to your appliance (using either SSH or Console connection).
4. Answer Yes to all questions (Note: this will require you to log back into the GUI)
8. Click Next.
10. Check the boxes marked DHCP and DNS to enable management of those services.
11. Click the Test button to validate the credentials. Click the Close button to close the test results
window.
13. In the Extensible Attributes screen, enter optional extensible attributes, if you wish.
should change to OK. Click the Refresh icon to update the screen. The DHCP and DNS icons
should be green. You do not need to wait for OK as long as you see the blue Connecting status.
4. Click the Add dropdown and choose Authoritative Zone from the menu.
5. When the wizard opens, choose Add an authoritative forward mapping Zone and then hit Next.
7. Move the bullet to Use this set of name servers, then click the dropdown and choose Microsoft
Primary from the list.
11. Open your new zone and add an A record to it called test.
Check if the new zone has been added to the Microsoft server.
1. Within your virtual XP machine, open a Command prompt by clicking on the cmd icon on your desktop.
2. Map the network to your Microsoft server (so add a Microsoft Server, not an Infoblox Member.)
3. Add a range, and a fixed address to the network (make up whatever IP addresses you want for these as
long as they are inside your network definition.)
Introduction
Network discovery is a process of scanning networks for active unidentified devices such as manually
configured printers. It also provides a way to verify whether addresses are actively being used.
During a Discovery, the appliance sends out messages to the network that causes client devices to respond.
The appliance captures this data and adds it to its database. When new devices are discovered, they are
listed as unmanaged devices. These can then be converted to managed devices and incorporated into the
Infoblox database.
ICMP (ping)
NetBIOS
TCP
Depending on the discovery method, some or all of the following information is returned: IP address, MAC
address, OS (operating system), and NetBIOS
4. Open PUTTY, choose the Console connection, and log into your appliance.
8. You might also want to change your session timeout settings as they will be back to 5 minutes.
1. In the DHCP (or IPAM) panel, create the network 198.107.144.0 /24. Since we wont be using DHCP for
this network you do not need to assign it to any member.
Discovery can be run from the Dashboard or from the IPAM panel. In this exercise you run a network
discovery from the IPAM panel.
4. Choose the IPv4 Device Discovery tab on the left side of the Manager window
5. In the Discovery Manager dialog box, make sure that Mode is set to Full.
6. Assuming you did not skip step 3 (above), the 1981.07.144.0/24 network should already be in the network
list.
If not, click the Add button and select the 198.107.144.0/24 network.
Server: 198.107.144.50
Protocol: HTTPS (this is the default)
Port Number: 443 (this is the default if HTTPS is picked)
Username: admin
Password: infoblox
9. Click Test to validate the vSphere Server information, then click Add to add the server.
12. Open the Dashboard panel, and choose the Status panel to view the progress of the discovery.
Refresh button
13. While the discovery is running (this will take a few minutes) you can periodically click the Refresh button
to see the latest status. Optionally, you can click the Turn Auto Refresh On link in the upper right hand
side of the GUI to force NIOS to automatically refresh the entire Dashboard.
14. When the Discovery has finished, open your network in the IPAM panel to see what devices were
discovered.
15. If any conflicts had occurred, you could resolve them by clicking the conflicted address and then clicking
We see that we discovered data about 198.107.144.250 (6th box from the right on the bottom row). Click
on that object in the IP Map View and expand the Dicovered Data section to see the basic NIOS IP
Discovery data. We must configure the system to show us other data, like the data we learned from
vDiscovery.
17. Click the configure icon for the Discovered Data section.
18. In the Available column (on the left), scroll to the bottom of the list and highlight all the items starting
with Virtual Host Adapter through the bottom of the list (all of the items starting with the word
Virtual)
19. Click the Right Arrow icon to add them to the displayed items list.
20. Click the configure icon for the Discovered Data section to close the configuration section.
Note: You should now see additional information for IP address 198.107.144.250 from the vDiscovery
scan.
Introduction
In this lab, you connect to your appliance.
Module Objectives
After successfully completing this module, you will be able to:
Your exercises will use Infoblox appliances stored in a remote lab facility in California called eLab. You will
log into a virtual XP PC and use this PC to connect to an appliance. The following exercise shows you how to
get into eLab, launch the virtual XP PC and then log onto an Infoblox appliance.
1. Open a browser and enter this: http://elab.training.infoblox.com. (If possible, use Internet
Explorer.)
2. The eLabs firewall *may* prompt you for a login and password. Provide the following:
Login: training
Password: <Password will be provided by instructor>
Do not enter
this URL or
you will
bypass our
firewall and
not get
access
5. Click Open. This will cause Remote Desktop to start up. You will be prompted for another login and
password.
1. Save the information using the Save As function of your browser. Save the information as a
text file on your Desktop
2. A Remote Desktop icon will be saved on your Desktop. Double-Click the icon. You should
now see the window shown in step 8 (above)
7. If you are using Google Chrome, your browser will download the Remote Desktop icon, but will not open
the Remote Desktop session. When this happens, do the following:
1. You will see something like this at the bottom of the browser window:
3. In the list of all the files will be the file shown, above (In the above example, the file would be
Training-xp58.rdp)
5. A Remote Desktop icon will be saved on your Desktop. Double-Click the icon. You should
now see the window shown in step 8 (above)
Introduction
LAN1 This is your original address. Use this when your appliance is not in an HA pair.
HA You will need this and the VIP for the HA exercise.
VIP This is the address that you and your partner should share in the HA exercise.