Professional Documents
Culture Documents
70-741 PPTs
70-741 PPTs
XEduco
gdobrea@xeduco.net | @gdobrea
OR
Add-DnsServerResourceRecord -
ZoneName "contoso.com" -A -Name
"www.career" -IPv4Address "65.55.39.10"
Add-DnsServerResourceRecord -
ZoneName "contoso.com" -A -Name
"www.career" -IPv4Address "10.0.0.39” -
ZoneScope "internal“
Add-DnsServerQueryResolutionPolicy -
Name "SplitBrainZonePolicy" -Action
ALLOW -ServerInterface "eq,10.0.0.56" -
ZoneScope "internal,1" -ZoneName
contoso.com
Key Tips to Remember
•
•
•
•
•
•
Example question
You are the system administrator for Tailspin Toys. You administer the Active Directory Domain Services
(AD DS) environment along with DNS. Recently, another administrator added a new DNS Address (A)
record for www2.tailspintoy.com. The record points to 10.10.5.254. Forward name resolution is fully
functional. However, the web administrators are reporting that 10.10.5.254 is not resolving to
www2.tailspintoys.com. You need to ensure that 10.10.5.254 resolves to www2.tailspintoys.com.
A. Add a second Address (A) record for 10.10.5.254 and point it to www2.tailspintoys.com.
B. Add a second Address (AAAA) record for 10.10.5.254 and point it to www2.tailspintoys.com.
C. Add a PTR record for www2.tailspintoys.com and point it to 10.10.5.254.
D. Add a PTR record for 10.10.5.254 and point it to www2.tailspintoys.com.
02 |
• Install and configure DHCP
Install and Configure DHCP Service
• Understand the DHCP options available
Implement an advanced DHCP solution
DHCPv6
•
•
When you use DHCP failover:
•
•
•
What are DHCP security options?
services
Windows Server 2016 IPAM
• IP addressing management of
• Tracking activity of
physical and virtual networks (SCVMM
IP address/user/mc
Unified IP integration)
• IP utilization &
address • Integrated IP addressing, DNS and
trend
Mgmt. DHCP management
• Audit config
Configure IPAM
• Requirements :
• Trivia :
• Distributed, Centralized, and Hybrid
• Database not shared between servers
Server discovery
• What can be discovered?
• Manage or not
• Windows Internal Database and external database (SQL) supported
• Windows Server 2016: IPAM supports
04 |
• Implement network connectivity solutions
• Implement virtual private network (VPN) and
DirectAccess solutions
VPN and Routing
AD FS AD DS
Web Application
Proxy LOB
Client devices applications
Firewall Firewall
Internet Microsoft
applications
Corporate network
Example question
Example question
How DirectAccess works for internal clients
Active
AD DS Directory
domain
Internal client
Internet
Internet domain controller
controller
computers
websites
websites DNS server
Connection
security rules
DirectAccess NRPT
server
Network
location
server
CRL distribution Internal network
point resources
How DirectAccess works for external clients
DirectAccess
DNS server server
Internet
websites
Active Directory
domain controller
DNS server
Connection
security
rules
Internal network
NRPT resources
External
client
computers
DirectAccess
• Implement Network Policy Server (NPS)
Configure NPS
Network Policy Server policies
START
Yes No Go to next
Are there Does connection policy
No policies to Yes attempt match
process? policy conditions?
Yes
Is the remote access
permission for the user
No account set to Deny Access?
Reject
No Yes connection
attempt
Is the remote Is the remote access
Reject access permission on the
Yes No
connection permission for policy set to Deny
attempt the user account remote access
set to Allow permission?
Access? Yes Accept
connection
No Does the attempt
connection attempt
match the user
object and profile
settings?
Configure NPS policies
05 |
• Implement IPv4 and IPv6 addressing
Configure IPv4 and IPv6 Addressing
Important factors to know about Addressing…
• Understand IPv4 Subnetting & Supernetting
• Understand IPv6 Addressing
• Assign an IPv6 Addresses and check the
route (route print)
Tunneling
• Automatic or Manual Configuration
• 6to4
• ISATAP
• Teredo
• PortProxy
• Implement Distributed File System (DFS) and
Branch Office solutions
Planning for DFS
User in New York Server in New York
2
1
\\Contoso.com\Marketing
DFS
1 \\NYC-SRV-01\ProjectDocs Replication
Folder
Targets \\LON-SRV-01\ProjectDocs
Namespace
2
User in London Server in London
Head Office
Branch Office
(Hosted Cache Mode)
Branch Office
(Distributed Cache Mode)
Example question
06 |
• Implement high performance network solutions
Converged Networking
DCB policies
configured for
Mgmt, Storage,
Migration &
Clustering traffic.
Utilizes SMB
Multichannel &
SMB Direct
Hyper-V vSwitch
Hyper-V vSwitch with SET
NIC Team
Virtual switch expanded functionality
The virtual switch improvements in Windows Server 2016 include:
• Extended port ACLs
• Dynamic load balancing
• Coexistence with third-party forwarding extensions
• RSS support on the virtual machine network path
• Network tracing enhancements
• Router guarding
• DHCP guarding
• Trunk mode for virtual machine
• Port mirroring
• VLAN isolation through a Private VLAN
• Extended bandwidth management
Network adapter advanced features
Hardware
acceleration:
• VMQ
• IPsec task
offloading
• SR-IOV
• Determine scenarios and requirements for
implementing software-defined networking (SDN)
What is Software Defined Networking?
• Software Defined Networking enables you to:
• Virtualize the network layer in a datacenter
• Define polices for the physical and virtual networks
• Manage the virtualized network infrastructure
Physical Physical
server network
CA spaces
Network Controller Overview
• Highly available and scalable server
role
• Southbound API
• Can manage:
Network Controller features
IP subnets
VLANS,
L2 and L3 switches
Host NICs
Datacenter Firewall
• Highly scalable, manageable,
and diagnosable software-
based firewall
• Freedom to move tenant virtual
machines to different compute
hosts without breaking tenant
firewall policies
Software Load Balancing
Layer 4 load balancing for both “North-South” and “East-West” Transmission
Control Protocol/User Datagram Protocol (TCP/UDP) traffic
Software-based, multitenant, BGP-capable router
RAS Gateway features:
• Addition and removal of gateway VMs
• Site-to-site VPN gateway connectivity by using IPsec
• Site-to-site VPN gateway connectivity by using GRE
• Point-to-site VPN gateway connectivity
• Layer 3 forwarding capability
• BGP routing
Network Controller Deployment Requirements
• You can only deploy Network Controller to the Windows Server 2016
Datacenter edition.
• The management client you use must be installed on a computer or
virtual machine running Windows 10, Windows 8.1, or Windows 8.
• You must configure dynamic DNS registration to enable registration of
required DNS records for Network Controller.
• If the computers or virtual machines running Network Controller or the
management client for Network Controller are joined to a domain, you
must:
o Create a security group that holds all the users that have permission to
configure Network Controller.
o Create a security group that holds all of the users that have permission to
configure and manage the network by using Network Controller.
Learning Resources
Course 20741 - outline
Module 1
Planning and implementing an IPv4 network
Module 2
Implementing DHCP
Module 3
Implementing IPv6
Module 4
Implementing DNS
Module 5
Implementing and managing IPAM
Course 20741 outline, continued
Module 6
Remote access in Windows Server 2016
Module 7
Implementing DirectAccess
Module 8
Implementing VPNs
Module 9
Implementing networking for branch offices
Module 10
Configuring advanced networking features
Module 11
Implementing software-defined networking
Born To Learn Site http://borntolearn.mslearn.net/
TechNet https://technet.microsoft.com/
TechNet Virtual Labs
https://technet.microsoft.com/en-
us/virtuallabs/default
Microsoft Virtual Academy https://mva.microsoft.com/en-
US/training-courses/whats-new-in-
windows-server-2016