Information Technology Reference
In-Depth Information
CHAPTER 3
and access
This chapter covers essential network technologies that will play an important part in the
exam: the Domain Name System (DNS); Virtual Private Networks (VPNs) and routing; and
DirectAccess, which enables remote domain-joined computers to be managed by the same
tools you use to manage locally connected computers, while optionally providing users who
work remotely a seamless experience that allows them to work remotely as easily as in the
office.
Objectives in this chapter:
■
Objective 3.1: Configure DNS zones
■
Objective 3.2: Configure DNS records
■
Objective 3.3: Configure virtual private network (VPN) and routing
■
Objective 3.4: Configure DirectAccess
There are three basic types of DNS zones: primary, secondary, and stub. Primary zones
can be Active Directory-integrated or can be conventional, stand-alone primary zones. A
primary zone is a zone hosted on the DNS server that is both authoritative for the zone and
the primary point of storage for the zone. The zone data can be hosted in Active Directory
Domain Services (AD DS) or in a local file on the DNS server.
Secondary zones contain all the information that a primary zone contains, but get their
information by transferring zone information from other DNS servers. Changes to DNS
records can't originate in a secondary zone, and a secondary zone is never authoritative for
the zone.
Stub zones are zones that contain only information about the servers that are authorita-
tive for the zones. Stub zones are useful for distributing information about where the full
information for a zone can be found, but don't have all the zone data.
Beginning with Windows Server 2012, there is full Windows PowerShell parity with the
user interface and the legacy dnscmd.exe command-line tool. There are two Windows
PowerShell modules that support DNS: DnsClient, and DnsServer.
