Windows Server

How to Setup Windows Server 2012

by Isaac D. Mao

In the following scenario, we've just installed Windows Server 2012 onto a virtual machine (Oracle Virtual Box) and will then add essential roles/features such as DNS, DHCP, and etc.

1. Installing DNS

  • Assign static IP to the Windows Server 
             
  •  Go to the Server Manager and click on [Add Roles and Features] to install the DNS server role.
             
  •  Add a new zone in the form of <department.company>.com
             
  • Notice that two records (Name Server - NS and Start of Authority - SOA) are added automatically to the DNS server. We need to configure the properties of the two records.
    • SOA identifies the base DNS info about the domain (which is the primary name server here).
    • SOA: We'd better change the Serial Number as something like 2014101106
    • SOA: We'd better enter [nas1.dun.mao.com.] for the Primary Server.
    • SOA: We'd better enter [hostmaster.dun.mao.com.] for the Responsible person. 
    • Note: The above two entries end with a period (.).  
    • NS is about authoritative name servers for the zone.
    • NS: Remove the existing entry and add  [nas1.dun.mao.com] and [10.0.2.15].
  • We can then use a Registrar to propagate the new DNS name server(s) to the Internet.
  • In the properties of the DNS Server, there is a tab called [Root Hints]. We use root hints to prepare authoritative servers for non-root zones so that they can discover authoritative servers that manage domains at a higher level or in other subtrees of the DNS domain namespace. By default, Root Hints contains records for the Internet root servers. If we are using the DNS on a private network, we can edit or replace the default records with internal root servers.
  • With the following setting, the DNS server will only respond to DNS request on the 10.0.2.15, which means only hosts on the same network subnet of 10.0.2.15, or hosts with a router that connects them to that same segment, can have submit queries to this DNS server. 
                  
  • When a Unix-based DNS server (BIND) acts as the primary DNS server, to enable the Windows DNS server to load data from a Unix-based DNS server, the Windows DNS server should enable BIND secondaries to allow Windows DNS server can see BIND’s name and FQDN.
             






















No comments:

Post a Comment

Subscribe to: Posts (Atom)