1. Trang chủ
  2. » Công Nghệ Thông Tin

Tài liệu Module 10: Configuring Internet Protocols docx

54 179 0

Đang tải... (xem toàn văn)

Tài liệu hạn chế xem trước, để xem đầy đủ mời bạn chọn Tải xuống

THÔNG TIN TÀI LIỆU

Thông tin cơ bản

Định dạng
Số trang 54
Dung lượng 1,61 MB

Nội dung

Contents Overview 1 IIS Integration with Exchange 2000 2 Examining Client Connectivity and Security 7 Kerberos Authentication 17 Front-end/Back-end Server Configuration and Security 19 Configuring NNTP Services 31 Troubleshooting Client Connectivity By Using Telnet 37 Lab A: Creating and Configuring an IMAP4 Virtual Server 38 Review 44 Module 10: Configuring Internet Protocols BETA MATERIALS FOR MICROSOFT CERTIFIED TRAINER PREPARATION PURPOSES ONLY Information in this document is subject to change without notice. The names of companies, products, people, characters, and/or data mentioned herein are fictitious and are in no way intended to represent any real individual, company, product, or event, unless otherwise noted. Complying with all applicable copyright laws is the responsibility of the user. No part of this document may be reproduced or transmitted in any form or by any means, electronic or mechanical, for any purpose, without the express written permission of Microsoft Corporation. If, however, your only means of access is electronic, permission to print one copy is hereby granted. Microsoft may have patents, patent applications, trademarks, copyrights, or other intellectual property rights covering subject matter in this document. Except as expressly provided in any written license agreement from Microsoft, the furnishing of this document does not give you any license to these patents, trademarks, copyrights, or other intellectual property.  2000 Microsoft Corporation. All rights reserved. Microsoft, Active Directory, BackOffice, Jscript, NetMeeting, Outlook, Windows, Windows NT are either registered trademarks or trademarks of Microsoft Corporation in the U.S.A. and/or other countries. Other product and company names mentioned herein may be the trademarks of their respective owners. Program Manager: Steve Thues Product Manager: Megan Camp Instructional Designers: Bill Higgins (Volt Technical), Jennifer Morrison, Priya Santhanam (NIIT (USA) Inc), Samantha Smith, Alan Smithee Instructional Software Design Engineers: Scott Serna Subject Matter Experts: Krista Anders, Megan Camp, Chris Gould (Global Logic Ltd), Janice Howd, Elizabeth Molony, Steve Schwartz (Implement.Com), Bill Wade (Wadeware LLC) Technical Contributors: Karim Batthish, Paul Bowden, Kevin Kaufman, Barry Steinglass, Jeff Wilkes Graphic Artist: Kimberly Jackson (Independent Contractor) Editing Manager: Lynette Skinner Editor: Kelly Baker Production Manager: Miracle Davis Build Manager: Julie Challenger Production Support: Marlene Lambert (Online Training Solutions, Inc) Test Manager: Eric Myers Courseware Testing: Robertson Lee (Volt) Creative Director, Media/Sim Services: David Mahlmann Web Development Lead: Lisa Pease CD Build Specialist: Julie Challenger Localization Manager: Rick Terek Operations Coordinator: John Williams Manufacturing Support: Laura King; Kathy Hershey Lead Product Manager, Release Management: Bo Galford Lead Product Manager, Messaging: Dave Phillips Group Manager, Courseware Infrastructure: David Bramble Group Product Manager, Content Development: Dean Murray General Manager: Robert Stewart Module 10: Configuring Internet Protocols iii BETA MATERIALS FOR MICROSOFT CERTIFIED TRAINER PREPARATION PURPOSES ONLY Instructor Notes This module provides students with the knowledge and skills to configure virtual servers in Exchange 2000 to connect Internet clients. The students will learn the different security options available for clients when connecting to a single computer running Exchange 2000 or front-end-back-end servers. The students will also learn how to create and implement newsgroups and to troubleshoot client connectivity by using Telnet. After completing this module, students will be able to: ! Describe the functionality that is provided by the integration of (Internet Information Services (IIS) with Exchange 2000. ! Describe the message transfer process and the security options for Internet clients using Internet Message Access Protocol version 4 (IMAP4) and Post Office Protocol version 3 (POP3) In addition, describe how Lightweight Direct Access Protocol (LDAP) protocols is used in the message transfer process. ! Describe the Kerberos authentication process. ! Explain the authentication process and the different firewall configuration options when using front-end/back-end servers. ! Configure a Network News Transfer Protocol (NNTP) virtual server, create and store newsgroups, and create newsfeeds. ! Troubleshoot client connectivity using by Telnet. Materials and Preparation This section provides the materials and preparation tasks that you need to teach this module. Required Materials To teach this module, you need the following materials: ! Microsoft PowerPoint  file 1572a_10.ppt Preparation Tasks To prepare for this module, you should: ! Read all of the materials for this module. ! Complete the lab. ! Practice the presentation with the PPT slides, noting any animation slides. ! Read the white paper, “Exchange 2000 Front-end and Back-end Topology,” in the Additional Readings folder on the Student Materials compact disc. Presentation: 60 Minutes Lab: 30 Minutes iv Module 10: Configuring Internet Protocols BETA MATERIALS FOR MICROSOFT CERTIFIED TRAINER PREPARATION PURPOSES ONLY Module Strategy Use the following strategy to present this module: ! IIS and Exchange 2000 IntegrationThis topic provides an overview of the functionality and protocols provided by the integration of Exchange 2000 with IIS. First, introduce the different protocols that are supported by IIS, and then the protocols that are supported when you install Exchange 2000. Stress that the protocols added by Exchange 2000 enable Internet client connectivity and accessibility to Exchange 2000 data. Next, describe the function of virtual servers and the different options that you can configure when creating a virtual server. Also, discuss the different reasons why you would configure more than one virtual server for a protocol. Also, stress that the students use Exchange System Manager to configure virtual servers. ! Examining Client Connectivity and Security This topic focuses on IMAP4 and POP3 client connectivity and security and LDAP client queries. First, discuss the capabilities of each client, and then review the message transfer process for each protocol. By understanding the process, the students can distinguish between the two protocols functionality and troubleshoot connectivity issues. Next, explain the authentication methods and SSL encryption used a to secure POP3 and IMAP4 client connections. Define LDAP and its uses, and then provide an overview of the LDAP query process when accessing Active Directory. ! Examining Kerberos Authentication The topic focuses on the Kerberos authentication process. The previous discussion on LDAP leads into the discussion of Kerberos authentication, because LDAP uses Kerberos. First, explain which components use Kerberos authentication. Next, step through the Kerboros authentication process. This discussion also applies to next topic of authentication when using front-end/back-end servers. ! Configuring Front-end/Back-end Servers This topic provides an overview of the features and function of front- end/back-end servers. First, introduce the front-end/back-end servers and describe the benefits that they provide, including scalability and load balancing. Next, describe the authentication process when using front-end servers. Next, define the term perimeter network, and then explain the ports that must be opened when the front-end server sits within the perimeter network. Also, outline the Transmission Control Protocol (TCP) ports that must be open to facilitate message transfer, encryption, and authentication. Next, discuss the other firewall options and the ports that must be open when using front-end/back-end servers. Lastly, discuss the options to opening ports and why you would use these alternative methods. Module 10: Configuring Internet Protocols v BETA MATERIALS FOR MICROSOFT CERTIFIED TRAINER PREPARATION PURPOSES ONLY ! Configuring NNTP Services This topic focuses on the implementation and configuration of NNTP services. First, you will discuss the configuration of an NNTP virtual server and creating and storing newsgroups. The key point is that you can store newsgroups on a local or remote file system or a public folder. Also, stress that you should store public folder newsgroups on a different public folder tree than the default tree for security purposes. Next, explain the function of a newsfeed and discuss the process of creating newsfeeds when using subordinate and master servers. ! Troubleshooting Internet Client Connectivity by Using Telnet Discuss the use of Telnet, and then open a Telnet session while you explain the different commands that Telnet supports. vi Module 10: Configuring Internet Protocols BETA MATERIALS FOR MICROSOFT CERTIFIED TRAINER PREPARATION PURPOSES ONLY Customization Information This section identifies the lab setup requirements for a module and the configuration changes that occur on student computers during the labs. This information is provided to assist you in replicating or customizing Microsoft Official Curriculum (MOC) courseware. The lab in this module is also dependent on the classroom configuration that is specified in the Customization Information section at the end of the Classroom Setup Guide for course 1572A, Implementing and Managing Microsoft Exchange 2000. Lab Setup The following list describes the setup requirements for the lab in this module. Setup Requirement 1 The lab in this module requires Exchange 2000 and a custom MMC. To prepare student computers to meet this requirement, perform one of the following actions: ! Complete the labs for Module 2, “Installing Microsoft Exchange 2000,” in course 1572A, Implementing and Managing Microsoft Exchange 2000. ! Install Exchange 2000 at D:\Program Files\Exchsrvr on each server into an organization named Northwind Traders. Components installed are Microsoft Exchange Messaging and Collaboration Services, Microsoft Exchange System Management Tools, and Microsoft Exchange Instant Messaging Service. Have the students create a custom MMC in the C:\Documents and Settings\All Users\Desktop that is saved as your_firstname Console. The MMC contains the Active Directory Users and Computers snap-in and the Exchange System snap-in. Setup Requirement 2 The lab in this module requires a custom OU, a user account for each student, a mailbox for each student, an Outlook profile, and for the Domain Admins group to be delegated full control of the organization. To prepare student computers to meet this requirement, perform one of the following actions: ! Complete the labs for Module 3, “Administering Microsoft Exchange 2000,” in course 1572A, Implementing and Managing Microsoft Exchange 2000. ! Create an organizational unit in Active Directory that is named your_servernameOU for each server in the classroom. Create a user account in each server’s OU for each student. The account is a member of the Domain Admins group and has a mailbox on the student’s Exchange server. Create an Outlook profile for each student on their own server that opens their mailbox. Delegate the full administrator role on the Northwind Traders organization. Importan t Module 10: Configuring Internet Protocols vii BETA MATERIALS FOR MICROSOFT CERTIFIED TRAINER PREPARATION PURPOSES ONLY Lab Results Performing the lab in this module introduces the following configuration changes. ! A new IMAP4 virtual server is created on each student machine. The virtual server is named your_servername IMAP4 Virtual Server and uses TCP port 149 and SSL port 999. ! A certificate is created for the IMAP4 virtual server. ! Outlook Express is configured to connect to the new IMAP4 virtual server. Module 10: Configuring Internet Protocols 1 BETA MATERIALS FOR MICROSOFT CERTIFIED TRAINER PREPARATION PURPOSES ONLY Overview ! IIS Integration with Exchange 2000 ! Examining Client Connectivity and Security ! Kerberos Authentication ! Front-end/Back-end Server Configuration and Security ! Configuring NNTP Services ! Troubleshooting Client Connectivity Using Telnet As more users connect to the Internet to send and receive e-mail messages, Internet client connectivity becomes an increasingly large administration issue. With the integration of Internet Information Services (IIS) with Microsoft Exchange 2000, you can provide an efficient and secure environment for users running Internet clients to access Exchange 2000 data locally and remotely. After completing this module, you will be able to: ! Describe the functionality that is provided by the integration of IIS with Exchange 2000. ! Describe the message transfer process and the security options for Internet clients using Internet Message Access Protocol version 4 (IMAP4) and Post Office Protocol version 3 (POP3) In addition, describe how Lightweight Direct Access Protocol (LDAP) protocols is used in the message transfer process. ! Describe the Kerberos authentication process. ! Explain the authentication process and the different firewall configuration options when using front-end/back-end servers. ! Configure a Network News Transfer Protocol (NNTP) virtual server, create and store newsgroups, and create newsfeeds. ! Troubleshoot client connectivity using by Telnet. Topic Objective To provide an overview of the module topics and objectives. Lead-in In this module, you will learn how to implement Internet protocols and connect Internet clients by using Exchange 2000 and IIS. 2 Module 10: Configuring Internet Protocols BETA MATERIALS FOR MICROSOFT CERTIFIED TRAINER PREPARATION PURPOSES ONLY # ## # IIS Integration with Exchange 2000 ! Default Protocols Supported by IIS ! Protocols Supported by IIS with Exchange 2000 ! Virtual Server Functionality in Exchange 2000 The integration of IIS with Exchange 200 provides the Internet protocols that enable Internet clients to gain access mailbox data in Exchange 2000. This integration also provides Exchange 2000 the ability to configure virtual servers to provide added functionality and scalability. Topic Objective To provide an overview how IIS is integrated with Exchange 2000. Lead-in By integrating IIS with Exchange 2000, Internet messaging clients can gain access to Exchange 2000 data. [...].. .Module 10: Configuring Internet Protocols 3 Default Protocols Supported by IIS Topic Objective To describe the default Internet protocols that IIS supports Lead-in IIS, by default, supports NNTP, HTTP, and SMTP Windows 2000 Windows 2000 IIS NNTP IIS HTTP SMTP IIS automatically installs when you install Microsoft Windows 2000 IIS supports the following protocols that enable clients... PURPOSES ONLY 4 Module 10: Configuring Internet Protocols Protocols Supported by IIS with Exchange 2000 Topic Objective To describe the additional protocols (IMAP4 and POP3) supported by IIS when Exchange is installed Lead-in When you install Exchange 2000, IIS supports two additional protocols Exchange 2000 Exchange 2000 IIS NNTP IIS HTTP SMTP POP3 IMAP4 In addition to the three default protocols supported... methods for local and remote clients For example, remote users sending messages over the Internet may want all messages encrypted for additional security, while users on the internal intranet do not require encryption BETA MATERIALS FOR MICROSOFT CERTIFIED TRAINER PREPARATION PURPOSES ONLY 6 Module 10: Configuring Internet Protocols ! To segregate traffic for the same protocol over different ports For example,... for a specific protocol, you will need to uniquely identify each virtual server To do this, you must specify a unique Internet Protocol (IP) port and address combination for each BETA MATERIALS FOR MICROSOFT CERTIFIED TRAINER PREPARATION PURPOSES ONLY Module 10: Configuring Internet Protocols 7 # Examining Client Connectivity and Security Topic Objective To provide an overview of IMAP4, POP3, and LDAP... server and client connectivity to Active Directory, which enables user authentication and directory lookups Most Internet mail clients, such as Outlook Express, include an LDAP client BETA MATERIALS FOR MICROSOFT CERTIFIED TRAINER PREPARATION PURPOSES ONLY 8 Module 10: Configuring Internet Protocols IMAP4 and POP3 Client Capabilities Exchange 2000 Exchange 2000 Server Server Topic Objective To describe... TRAINER PREPARATION PURPOSES ONLY Module 10: Configuring Internet Protocols 9 POP3 Message Transfer Topic Objective To describe a POP3 message transfer session Lead-in Established Connection (110) POP3 uses TCP port 110 and simple text commands to transfer messages Greeting Command(s) Response(s) Listening Listening Port 110 Port 110 Quit POP3 Client Signing Off Server Internet messaging clients, such... client-target server messages, and send it to the client BETA MATERIALS FOR MICROSOFT CERTIFIED TRAINER PREPARATION PURPOSES ONLY Module 10: Configuring Internet Protocols 19 # Front-end/Back-end Server Configuration and Security Topic Objective To provide an overview of configuring front-end/backend servers ! ! Authentication Process ! Front-end Server Sits In the Perimeter Network ! Front-end Server... communications between servers and the Internet You may need to configure DNS Note For more information on Exchange 2000 front-end and back-end server configuration, see the white paper entitled, Exchange 2000 Front-end and Back-end Topology included on your student compact disc BETA MATERIALS FOR MICROSOFT CERTIFIED TRAINER PREPARATION PURPOSES ONLY 20 Module 10: Configuring Internet Protocols Introduction to... content of the Exchange 2000 public folder system BETA MATERIALS FOR MICROSOFT CERTIFIED TRAINER PREPARATION PURPOSES ONLY Module 10: Configuring Internet Protocols ! 21 Server security You can place the front-end server within a perimeter network (an isolated network that sits between the Internet and an Intranet), because it contains no user or directory data This can help to increase security as the front-end... PURPOSES ONLY 26 Module 10: Configuring Internet Protocols Messaging Protocol Ports This table outlines the messaging protocol ports that must be enabled on the perimeter network’s firewall Front-end service TCP Port POP3 110 IMAP4 143 NNTP 119 HTTP 80 389 for LDAP, and 3268 for Global Catalog RCP and NetBIOS ports TCP and UDP port 88 for Kerberos LDAP and Kerberos Ports With all Internet clients other . Internet protocols that IIS supports Lead-in IIS, by default, supports NNTP, HTTP, and SMTP. Note Note Note 4 Module 10: Configuring Internet Protocols. 30 Minutes iv Module 10: Configuring Internet Protocols BETA MATERIALS FOR MICROSOFT CERTIFIED TRAINER PREPARATION PURPOSES ONLY Module Strategy

Ngày đăng: 24/01/2014, 10:20

w