Time
1 hour 27 minutes
Difficulty
Intermediate
CEU/CPE
4

Video Description

Configuring the DNS Server Role This lesson covers configuring the DNS server; this is done on the server manager dashboard using the add roles and features wizard. This lesson features step-by-step on screen instructions that allow the participant to follow along with the instructor as he sets configures the DNS server. Servers learn how to set up to connect to a DNS server using an IP address to obtain a server-qualified domain name then wait for it to resolve and validate.

Video Transcription

00:16
installing the data server role is no different than installing any of the other rules or features on the server. Once again, we actually do it from our server manager dashboard. Or we could also do it from our partial environment
00:27
were served manager dashboard. We go and we click on our manage. So what's get It's on our manage options.
00:34
Ad rules and features remove rolls. If we wanted to remove a role, could do that also. So gonna add our rules of features.
00:42
And we have our admirals features wizard down lock box, and that is something that will pop up consistently
00:49
and we on this screen we can always disable that if you want for the purpose of our training, we leave it there so that we could see it comes up, including the option to start to remove rolls and features wizard if you selected the wrong room
01:02
it at by accident.
01:03
So we're gonna go ahead and move on.
01:04
Yeah, we could choose our role based feature
01:07
our role based or future based installation.
01:11
Ah, already sa mo desktop service is installation is for specific
01:15
environment only, and you're only and use it for that one case. So we're going to go ahead and move on here, Click God next
01:23
and we will select a server from the server pool or we select a virtual hard disk. We could have that Virtual artists can actually be a system that's not even up and running. Which case we could go ahead. And
01:34
if we select a virtual hard disk, we go to the process here
01:38
that we would actually be able to work with a specific hard disk and actually start the process of getting the installation done on it in when it obviously was turned on, it would actually be able to finish the process for us.
01:52
We're gonna go ahead and continue with our local only network. L O N Dash S V R. One on a date. I'm not comin. That's what we're going to install our d. A s s going to be a d n a stand alone D. N s servers not going to be a actor, director, integrated data server. So let's go ahead and continue on here. We click on next
02:10
and we select from our list of many options here, and we go ahead and we're going to
02:15
select
02:16
our D. N s server. So go ahead, select the D N. A server, and it'll bring up your ad features that are required for the D. N. A server. Obviously, if you're required to get a one Adam. So we're gonna go ahead and add those features and we have the include manager tools about applicable.
02:34
So had ad features.
02:36
And then we will move on to the X scream. So we're going to click out next
02:40
the next screen. We have the features. Was it so we just finished with Rolls part. Now we have the select features part.
02:46
We aren't actually going to include any features in this. We're going to do just the one d N s role. So go ahead and move on. Click on next.
02:53
It would get information about the domain name system fried standard meth for associating days with numeric Internet addresses. Touch what Dennis is about. Ah, basically, if we integrate de ns with active directory, it makes ah replication much more efficient. If we do that needed if we have a need, a stand alone d n A server do not need to have an integrated active directory
03:14
that's an option. And that's what we're doing in this particular case.
03:16
So we'll go ahead and move on to click on next year.
03:20
We have an option to restart the destination server automatically if required. No notices his destinations ever. It doesn't say server as because if we did this to a virtual hard disk or to another server, that it would actually work the function on the remote server or the virtual hard disk of necessary.
03:37
This particular case, we do not need to do that because D and it's not gonna require reboot.
03:42
Although if we were removing the service, it would require reboot. So this particular case, we're going to go ahead and move on and click on this doll, and it will start the process as it goes to the process. It tells us down here at the bottom, you say you know Isis is
03:54
he tells you you can close this wizard without interrupting running task. View the test bar Prague, view the task progress or open this page again by clicking on notifications in the command bar. They click contest details so we could actually leave this open. We could leave it. We close it. If we want to bear in mind that we're looking at, what are we going to do?
04:14
One roller feature addition at a time. And I got to actually try to
04:17
run multiples of these at the same time. If you're gonna do multiples, do it in the same process. So it actually go through the process and up here to give you your future installation progress. And you could go ahead, monitor this right here, this little grey text hair, uh, obviously very light. But it says it's delicious started. And when you reach the point where
04:36
the installation is complete, it will tell you that it's completed.
04:40
And what's the disco plated? That we could go ahead and close out the close button. Or you could go ahead and close out with the close window acts at the top of the standard window screen. Either way won't have any impact. So we have our installation succeeded on our server, so that's good to go. And we're not going to go ahead and close this out.
05:00
And now that we have installed notice, ah, who go. We bring back up our environment here. With that, we have a power show up into the background in case we did it.
05:09
And here we have our back on our tools and we notice in our environment here we now have our d It s over here. So we have Ah di, it s environment appear at the top. So D and s is what we're gonna be working with.
05:20
We actually want to go to the management council for that. So under our tools menu, we're going Thio, go as the standard Lee d'oh to our d n s option,
05:31
do UNESCO and open that up
05:33
and we're gonna look at the feature set that we actually you're going to deal with the terms of basic configuration ever did us. Let's go and get this large a little bit, so it fits in with the rest of our environment. There we go.
05:46
Head No. So you have a server here
05:47
on the left hand side and the service also listed on the right we want to do is when I go ahead, expand that server out just for right now so you could see what's underneath it. We have logs for look up zones, reverse lookup zones, trust points conditional foreigners. But we really want to do right now is where she want to finish configuring the server so we won't actually go ahead and, uh,
06:08
right click on our server itself
06:10
and we wish you want to look at the
06:12
properties of the server. So this our data server itself go and look at the properties that we will have ways to configure this to the next level.
06:20
First thing we have is the interface is, if we have more than one network card in here, it'll show all the network cards that we have that we could decide which
06:30
of those cards or those interfaces we're going to listen for D. N s traffic on and right now set up for all I P addresses and you notice there's an I. P. V six and a night PV four address down here. And we could actually disable I p v six or I p v four, depending on the needs of our network or we kill Eva both and we could actually select.
06:46
There's multiple that cards we could say only less of Adidas traffic on
06:50
ah 123 However, when you want to, we don't have to listen to on all of we could use different nick cards for different purposes. Next that we have is four orders. So appear at the top. We're gonna go in to our Ford a stab
07:02
And this guts has put in a a generic destination destination for order for anything that our d n a server doesn't already have in its system. So anything that's not in its D. N s fording environment, it's gonna eat. You want to know, Where do I go to next? If I don't know where it is, where do I go? So that particular case, it's fairly straightforward. It fairly easy to do
07:21
You come down here and you go and you click on the
07:25
edit button had click on Edit Ed, You would put in the i. P. Address of a server. Any server that is a D. N s server that you want to forward request to. This is typically your eyes p or a one of the public Deanna servers such as Google or level three, and you were just put in the I p. Address of what the service. So you go ahead,
07:45
it actually click in the spot
07:46
and has start typing in 8.8.
07:48
If it doesn't, it doesn't elite, which is what's already there. You need to remove it. Eight dot a dot a 8.0.0.8. Anyone hit? Enter. And if you have networking activity to the
07:58
that allows access to that d n a server and it will actually give you a resolution to that server, it doesn't matter what the server is there Give a resolution to this server and give you a servant fully qualified domain name. If it does, you know, validated. And I could have multiples of these. If I want it, I can actually
08:16
decide what order I want to put these in. By moving them up or down.
08:18
We're actually going to install one. We don't want to. You want to use the Ford or to our network externally right now? So we're actually gonna install this, But basically, when you get the I P address in there, you just hit the enter key and you would wait for it to resolve and validate. And then you would actually either go with just the one or you would add another one in there
08:37
for what we're doing we're going to go ahead and cancel this out
08:41
and we're going to nose down here at the bottom. It also says use route hits if deal forward is available Written. Answer once again, those master D. N s service on the Internet that if you have absolutely no success finding a dinosaur come anywhere else, you go to the master service and I'll tell you who's responsible for a particular
08:58
ah top level domain name space such as dot com dot or got that or the others. It could even be a country,
09:05
and it keeps track of all. This is
09:07
so moving on of here, we noticed we have our advanced tab.
09:11
So what are advanced? Have we're gonna see what we have. We noticed we have a variety of things we could do. We could disable Rikers in, but if that will disable our fording, so we typically don't want to do that. We have enabled buying secondaries. If were you connecting to or communicating with a UNIX D. N s environmental need, those, um, enable round robin.
09:28
That's another one that we could use to
09:31
actually do multiple lookups, two different dia, two different Web servers For example,
09:37
um, we could sure secure cash against pollution. That's actually an important one. We really don't want our Deanna's cash to be polluted with incorrect or malicious information. So we certainly want to do that. And then we have, like, d n a sec. If we're going to set up Dina Sacks, which is preferable if we're gonna be communicating externally with the d. A s ever. We certainly wanna have
09:58
encrypted communication. We want to make sure that
10:01
that is handled. And it also requires configuring certificate appropriately. So we're going to say we're gonna check the names, So we're gonna say loads own data. Start up. We're gonna reload it from we needed to do it from active directory and registry Noticed. We can also do it from a file or just from registry. The standard is
10:18
default is actor director registry. But if it's ST Louis server,
10:22
you might not do it from active directory because you may not want to
10:24
Ah, we can enable automatic scavenging of sterile records so that we're actually going to go and check here and the default to seven days. I could make it any number of days. I want. I can also make it any number of hours I want. So you have to choose what this does is anything that has not updated or communicated with the D n a server and said that if it's
10:45
actor director integrated, if it hasn't
10:46
done a communication with the server and said, this is my current I p address that after that period of time and actually be removed from the D. A s entries. Otherwise, if you haven't made this too, if you have to take this into account. If you're actually managing this yourself and everything static, then you want to make that a very long period or not Use it at all.
11:05
We talked about the route hits a moment ago. So here's our routines. Tab. We're gonna click on the route his tab and noticed there's a whole slew of service center knows how they all in dot net and all our route dash service dot Net and you get a B c d e f g et cetera Ed.
11:18
Those could actually be modified, so if there was an update to it, you could actually edit it and change the i P address for example or the name
11:26
we can add to it. If there's more we want to add to it, we can actually remove some. And if comes down to it, we can actually go ahead and even copy that information from another service. So if I've removed the route hands out of here and I now need to restore them for a particular reason, such as I'm retiring another server, then I might want to copy them from the server before I do so
11:46
Next tab we have appear for figuring is where debug log in
11:50
debug logging is used to actually find out what's going on behind the scenes and D and s. So this is basically a way to find out where we're having issues if we're having issues. Uh, actor director, you may find out that you do utilize this because an actor directory, uh, you find ah,
12:05
larger number than expected of issues. Bulls back down to D, and it's not functioning properly. We're gonna go ahead and select our logs packets for debugging here and notice we get a list of packets that we can select any conflict from this list, either it coming out going use UDP TCP
12:22
well, if it's a request of the response, query, transfers, updates, notifications,
12:26
any of these, it doesn't matter. You select what you think you need, and what you do is paid. Pay attention that the more you select, the bigger your log files. Going to be a dentist has a lot of activity, relatively speaking, in terms of Deanna's requested such So you're gonna want to state. And in consideration of your log files,
12:43
you can log unmatched incoming response packets. We could actually
12:48
log details. We can filter packs by P address. We checked that we could say OK, filtering. We could put in a specific I P address, and you just typed out less than God put it in, and you also have the option to set it into a large fowl. But when you do this year, you have to go ahead and type in the log file path. So it's a full file path name,
13:07
for example. It's fits on your C drive, and you have a log directories to a C colon, backslash logs,
13:13
and then obviously would be also give it the name, which would, for example, be de ns de bug. Not well, Whatever you wanna call XML t x t C as you could put it in the format. You what? And then you want to really take into consideration the size that you're gonna allow for this long file in terms of bites. So remember, this is, um, bites, not kilobytes or megabytes.
13:31
So you didn't take that into consideration, Make sure it's large enough
13:35
for anything that you're gonna do in terms of debug logging. Remember, this is debug logging, debug logging in this case, which we're not gonna actually turn on for our server right now is actually different than event log in the next tab.
13:48
So in the event logging,
13:50
we have what type events that were gonna log for D. N s. I will get a log. Everything
13:54
just errors,
13:56
airs and warnings or nothing.
13:58
Ah, lot of places will take into consideration. There's some Deanna's log information that you don't need. But remember, the D. N s event log within Windows tends not to have that much in it. So typically, all events is not a significant issue in terms of space. And the last thing we have, Tim wise up here at the top is we have monitoring.
14:18
So on our monitoring tab, we can actually just test to make sure our data servers running properly. So you go ahead and you
14:26
check the box. It says a simple query against this server.
14:28
It's like God
14:30
test. Now there comes back and gives you an answer that says
14:33
pass. Now, if you actually have set up with Rick Ursa Query to other data servers such as other active director D. N A service, you can run a record or curse of query, which actually makes sure that the N s servers are talking to each other properly. Obviously, if we were to run it now, since this is a stand alone d n a server with no recursive partners, it would actually fail.
14:54
It takes the
14:54
sometime to failure. It takes about a minute to fail. But the boss ghetto error warning in your D. N s management council telling you that it failed. So when I should go to go through that process because we don't need to and if you want to, we could perform an automatic testing at the following intervals. We can actually have it tested on a regular basis, which helps us monitor our situation.
15:15
So that's our d. It s in terms of installation and configuring it
15:18
in the big picture. We obviously have to configure the D. N s its environment itself. But this is actually just d n a server. So we actually install the roll, and we looked at the options we have for configuring the server. And when we're done, you go and click on okay or apply here and everything is ready to go. Now we have our d. N s server up and running,
15:37
and we will actually
15:39
look into our next Ah, lesson in module will actually go into what we're going to do within the D. N s environment to control the manage our environment.

Up Next

Manage a Network Infrastructure

Helping an organization determine how to build, design, and protect their network is a highly demanded skill. Gain a deep understanding of the requirements needed to securely manage a network infrastructure in less than an hour.

Instructed By

Instructor Profile Image
Michael Boberg
CEO of Broadline Enterprises, LLC
Instructor