Professional Documents
Culture Documents
Module 1
Scope A Scope B
DHCP Integration With IPv6
Name and
identifies the scope
description
• DHCP failover:
• Enables two DHCP servers to provide IP addresses and optional
configurations to the same subnets or scopes
• Requires failover relationships to have unique names
• Supports 2 modes
Mode Characteristics
Hot One server is the primary server and the other is the secondary
standby server. The primary server actively assigns IP configurations for the
scope or subnet. The secondary DHCP server only assumes this role
if the primary server becomes unavailable. A DHCP server can
simultaneously act as the primary for one scope or subnet, and be
the secondary for another.
Load This is the default mode. In this mode both servers supply IP
sharing configuration to clients simultaneously. The server that responds to
IP configuration requests depends on how the administrator
configures the load distribution ratio. The default ratio is 50:50.
What Is DHCP Failover?
Conditional Forwards queries for specific DNS suffixes to specific DNS servers
forwarding
Stub zones A regularly replicated copy of certain resource records that identify
authoritative DNS servers for specific DNS domains. It consists of the
following:
• The delegated zone’s start of authority (SOA) resource record,
name server (NS) resource records, and host (A) resource records
• The IP address of one or more master servers that you can use to
update the stub zone
Netmask Responds with addresses of hosts that are close in proximity based in
ordering IP address information of the client to DNS queries.
Addresses of hosts that are on the same subnet as the requesting
client will have a higher priority in the DNS response to the client
computer.
What Is the GlobalNames Zone?
GlobalNames
Zone
2
3 1
6
4
5 DNS Client
DNS Server
Forward
Lookup Zone
Options for Implementing DNS Security
Option Description
DNS socket
Randomizes the source port for issuing DNS queries
pool
Enabled by default in Windows Server 2012
DNSSEC
protects clients that are making DNS queries from
accepting false DNS responses
Resource Record This record holds a signature for a set of DNS records. It
Signature (RRSIG) is used to check the authority of a response.
Next Secure (NSEC) When the DNS response has no data to provide to the
client, this record authenticates that the host does not
exist.
• What Is IPAM?
• IPAM Architecture
• Scenarios for Using IPAM
• Requirements for IPAM Implementation
• Demonstration: Implementing IPAM
• Virtual Address Space Management in IPAM
• IPAM RBAC
What Is IPAM?
Virtualized
Network
Automation
(manage the IP
addresses for hybrid
cloud solution)
IPAM
You
IP can view and
address manage
space the IPinto
is divided address space
blocks, using the
subnets, ranges
following views: addresses:
and individual
• IP address blocks
• IP address ranges
• IP addresses
• IP inventory
You can monitor the IP address space using the following views:
• DNS and DHCP servers
• DHCP scopes
• Server groups
Using IPAM to Manage IP Addressing
• You can view and manage the IP address space using the following
views:
• IP address blocks
• IP address ranges
• IP addresses
• IP inventory: Viewing a list of all IP addresses in the enterprise along with their
device names and type.
• IP address range groups: organizing IP address ranges into logical groups
• You can monitor the IP address space using the following views:
• DNS and DHCP servers
• DHCP scopes
• DNS zone monitoring
• Server groups
Importing and Updating Address Spaces
• Use a text file to import individual IP addresses
• The mandatory fields for IP address import are:
• IP Address
• Managed by Service
• Service Instance
• Device Type
• IP Address State
• Assignment Type
• Use a text file to import or update IP address ranges
• The mandatory fields for IP address block import are:
• Network
• Start IP address
• End IP address
• regional Internet registry (RIR)
IPAM Monitoring