Microsoft Official Course

Module 3

Designing and Maintaining an IP

Configuration and Address
Management Solution
Module Overview

Designing and Implementing DHCP

Planning and Implementing DHCP Scopes
• Planning and Implementing an IPAM Provisioning
Strategy
Lesson 1: Designing and Implementing DHCP

Best Practices for Designing an IPv4 Addressing

Scheme
Discussion: Selecting an IP Addressing Scheme
Planning DHCP Server Placement
Planning for DHCP Server Availability
Configuring DHCP Failover
Demonstration: Implementing DHCP Failover
Supporting IPv6 Hosts with DHCP
• Guidelines for Designing a DHCP Solution
Best Practices for Designing an IPv4 Addressing
Scheme

• Use classless IP addressing

• Use classless routing protocols

• Use variable length subnetting to divide IP ranges

• Use supernetting to combine IP ranges

• Use public addresses only when required

• Use private addresses where possible

• Use same addresses for same types of devices in each subnet

Discussion: Selecting an IP Addressing Scheme

Head Router
Office

Router Branch 2

Router

Branch 1

Branch 3

Wingtip Toys
Planning DHCP Server Placement

DHCP
Description
infrastructure
• Requires a DHCP server on each subnet
Distributed
• Uses more servers than centralized networks

• DHCP servers are placed in a central location

Centralized
• Requires DHCP/BOOTP relay agents

• Requires connecting routers that support

DHCP/BOOTP relay agents
Combined
Planning for DHCP Server Availability
Redundancy
Description
option

• Enables two DHCP servers to provide IPv4 addresses

DHCP failover and configurations
• Does not require failover clustering

• Divides DHCP scopes between multiple DHCP servers

Split scope • Based on 80/20 rule, one DCHP server provides 80%
of the address range; the second server provides
20%

• Involves enabling the DHCP service to fail over from

one cluster host to another
Failover clustering
• Enables a local method of failover, which achieves
greater fault tolerance

• Activated only when the need arises

Standby server
• Requires manual administration to ensure failover
Configuring DHCP Failover

You can configure failover in one of the following

two modes:
• Hot Standby
• Load Sharing

Additionally, you can configure the following DHCP

failover options:
• MCLT
• Auto state switchover interval
• Message authentication
• Firewall
Demonstration: Implementing DHCP Failover

In this demonstration, you will see how to configure

a DHCP failover relationship
Supporting IPv6 Hosts with DHCP

Based on how you have set up your routers, an IPv6

client might use:
• Stateless configuration. Involves no DHCPv6
service
• Stateful configuration. Involves a DHCPv6 server
Guidelines for Designing a DHCP Solution

• DHCP servers have low resource utilization and

are good candidates for virtualization

• For a combined DHCP infrastructure, base

DHCP server locations on the physical
characteristics of the LAN or WAN infrastructure

• Provide high availability for DHCP

• Limit each DHCP server to 1,000 scopes

Lesson 2: Planning and Implementing DHCP
Scopes

Determining DHCP Lease Length

Implementing Superscopes
Using DHCP Reservations
• DHCP Options Classes
Determining DHCP Lease Length

Option When to use Result

• At least 20% of IP addresses in
Increase scope are available Reduces DHCP–
the lease related network
duration • Network configurations rarely traffic
change
• A limited number of IP addresses
are available
Reduces the
Reduce the
• Client configurations change chance of running
lease
out of addresses
duration • Clients move often on your network for lease
• You have remote access clients
Implementing Superscopes

• Use superscopes when two subnets are present on

the same physical segment
• Configure the DHCP to recognize the two subnets
as a single physical segment
• Ensure that only one DHCP response is sent to
both subnets, instead of one DHCP response for
each subnet
Using DHCP Reservations

Reservations:
• Link a specific IP address with a specific MAC
address
• Are an alternative to static IP addresses
• Are easier to manage and modify than static IP
addresses
DHCP Options Classes

Vendor-defined classes:
• Identify vendor-specific hosts
• Are configured on the host by the vendors
• Are used to provide vendor-specific options

User-defined classes:
• Identify hosts with a specific configuration
requirement
• Can be configured on the host by an administrator
• Can be used to override the default options such
as a default gateway
Lesson 3: Planning and Implementing an IPAM
Provisioning Strategy

What Is IPAM?
IPAM Architecture
IPAM Deployment Requirements
Considerations for IPAM Deployment
Managing IP Addressing with IPAM
IPAM Management and Monitoring
• Demonstration: Implementing IPAM
What Is IPAM?

IPAM consists of four modules that provide the following

functionality:
• IPAM discovery
• IP address space management
• Multiple server management and monitoring
• Operational auditing and IP address tracking
IPAM Architecture

IPAM consists of two main components:

• IPAM server
• IPAM client

When deploying IPAM, you can select from three

topologies:
• Distributed
• Centralized
• Hybrid
IPAM Deployment Requirements

To ensure a successful IPAM implementation, you

must meet several prerequisites:
• IPAM server must be a domain member
• IPAM server should be a single purpose server
• To manage the IPv6 address space, enable IPv6 on the
IPAM server
• Sign in to the IPAM server with a domain account
• Belong to correct IPAM local security group on the IPAM
server
• Enable logging of account logon events for IPAM’s IP
address tracking and auditing feature
• Meet software and hardware requirements
Considerations for IPAM Deployment

When designing an IPAM deployment, consider the following factors:

• IPAM can only manage a single AD DS forest
• IPAM must not be installed on a domain controller, DHCP server, or
DNS server
• IPAM servers do not communicate with one another
• You can define the scope of discovery to a subset of domains in the
forest
• A single IPAM server many DHCP servers and DNS zones
• IPAM stores three years of forensics data
• IPAM supports only the Windows Internal Database
• IP address utilization trends are provided only for IPv4
• IP address reclamation support is provided only for IPv4
• IPAM does not check for IP address consistency with routers and
switches
Managing IP Addressing with IPAM

You can view and manage the IP address space by using the
following views:
• IP address blocks
• IP address ranges
• IP addresses
• IP inventory
• IP address range groups

You can monitor the IP address space by using the following views:
• DNS and DHCP servers
• DHCP scopes
• DNS zone monitoring
• Server groups
IPAM Management and Monitoring

With IPAM, you can:

• Monitor IP address space utilization
• Monitor DNS and DHCP health
• Configure many DHCP properties and values from
the IPAM console
• Use the event catalog to view a centralized
repository for all configuration changes
Demonstration: Implementing IPAM

In this demonstration, you will see how to:

• Install IPAM
• Configure IPAM
Lab: Designing and Maintaining an IP Configuration
and IP Address Management Solution
Exercise 1: Designing an IP Addressing Scheme for
Contoso (Optional)
Exercise 2: Planning DHCP to Support Your Proposed
Scheme
Exercise 3: Planning an IP Address Management (IPAM)
Deployment
• Exercise 4: Implementing DHCP and IPAM
Logon Information
Virtual machines: 20413A-LON-DC1
20413A-LON-SVR1
20413A-LON-SVR2
User name: Adatum\Administrator
Password: Pa$$w0rd
Estimated Time: 75 minutes
Lab Scenario

Over the years, IP address configuration and

management has been conducted on a mainly
reactive basis: a new server was required for a
department, and an IP configuration was
allocated. DHCP was introduced to help automate
and centralize the IP address allocations, but the
introduction of this key infrastructure service was
often not well planned. This often resulted in little
logic to the way in which devices were allocated
their IP configurations.
 
Lab Scenario (continued)

During the planned move to Windows Server 2012, the

manager of the IT department at A. Datum Corporation
has seen an opportunity to implement IPAM with Windows
Server 2012. After you have selected an appropriate
addressing scheme for the Contoso, Ltd network, you must
plan how best to use IPAM to manage your IP addressing
strategy; you must consider whether to centralize or
distribute the topology, what to integrate with IPAM (DNS
or DHCP), and how best to secure IPAM.
Having selected a suitable IPAM configuration, you must
also consider how to allocate IP addressing to server and
client computers by using DHCP. It is important that the
DHCP service is highly available. 
Lab Review

What was your approach to the IP design and

planning exercises?
• What was your approach to the IPAM deployment
planning exercise?
Module Review and Takeaways

• Review Question(s)