Chapter 5 Windows networking
1.ifconfig
*-a -Shows information for both active and inactive interfaces. *Interface up-Enables the specified interface. *Interface down-Disables the specified interface. *Interface dhcp release-Releases the DHCP lease. *Interface dhcp start-Leases a new DHCP address. *Interface ip_address-Assigns a static IP address. *Interface netmaskip-address-Assigns a netmask for a static IP address.
2.ifconfig
*-a-Shows information for both active and inactive interfaces. *Interface up-Enables the specified interface. *Interface down-Disables the specified interface. *Interface mtuvalue Sets Ethernet MTU. *ifconfig has largely been superseded by the newer and more powerful ip command, but it's still installed and widely used on modern systems.
Network location
*Every network you join has a location type *If you're connected to a domain, the location type will also be Domain and its settings will be controlled by the network administrator *If you're not on a domain, you can choose which settings you want to use
Public folders
*Every version of Windows from Vista onward installs public folders, by default in C:\Users\Public *They're primarily designed for files shared between different local users, but you can also easily enable sharing of all public folders over the network. *either all public folders are shared to the network, or none are.
2.Creating Remote Desktop Connections
*Like Remote Assistance, Remote Desktop Connections can be opened by double-clicking a configuration file: the difference is that you're not prompted for a session password, just user credentials. *If you don't have a file, you can create a connection from any system *you just need to know the remote system's address and valid user credentials.
The NETDOM command
*NETDOM is a command-line tool that allows management of Windows domains and trust relationships. *It is used for batch management of trusts, joining computers to domains, verifying trusts, and secure channels.
Mapped network drives
*Navigating to network shares can be a little tedious, so when you access one frequently you can map it as a network drive. *it just assigns a drive letter to the folder so it appears like one of your local drives. *Network drives appear in your drive listing in Windows Explorer.
5.Using Windows Firewall with Advanced Security
*Not only can you create rules based on location and application, but also on ports, protocols, IP addresses *all sorts of other features supported by other enterprise firewall software. *It's just a different interface that gives you more detailed access to the program's underlying features and the types of rules you can create.
Folder sharing
*Ordinary shared folders take a little knowledge and configuration to use properly, but *they give you the most control over just what you can share and who can access it. *You can choose any folder on your computer and share it along with all of its subfolders. *Depending on your exact sharing settings, you can control which users can access the folder, and whether they can modify the folder's contents or just read it.
3.Windows Firewall maintains separate sets of rules for Public and Private network locations.
*Private networks are a little less strict *the ports used for network discovery and file sharing on LANs are blocked on Public networks. *Windows Firewall isn't just intended to protect against outside attacks *prevent malicious programs like malware from communicating over the network
Remote Server Administration Tools (RSAT)
*RSAT (Remote Server Administration Tools) is a Windows Server component for remote management of other computers also running that operating system. ... *RSAT allows administrators to run snap-ins and tools on a remote computer to manage features, roles and role services.
1.Creating Remote Desktop Connections
*Remote Desktop connections work much differently than Remote Assistance. *The biggest difference is that while Remote Assistance requires someone actually at the remote system to allow you in *Remote Desktop Connection is just the opposite. *Assuming the system is configured to accept incoming connections, all you need to get full control is valid credentials. *Likewise, the control is full, just like if you had logged into the computer locally.
Requesting Remote Assistance
*To establish a Remote Assistance connection, you first need to send the request from the receiving system. *You'll need to share a file either by email or some other means, and a password. *if you're both using Windows 7 or newer and if your network supports it *you can use the Easy Connect feature to send the file.
Giving Remote Assistance
*When you answer a Remote Assistance request, and the recipient gives you permission, that doesn't immediately give you control of the remote computer *At first you just get to see the other computer's desktop. *You can open a chat window, or request direct control, and the remote user can end the session at any time
2.Windows Firewall
*Windows Firewall blocks all incoming connections not needed for important network functions *allowing outgoing connections used by installed client applications
1.Windows Firewall
*Windows Firewall, a host-based firewall application which protects all network connections by default. *Windows Firewall allows you to configure rules, or exceptions, that apply to specific types of traffic.
Joining workgroups or domains
*You can change your computer name, change your workgroup, or join a domain from the same window. *Individual computers recognize each other by name on the workgroup or domain, so when configuring the network, it's important to make sure each system has a unique name.
The NET command
*You can manage network shares from within the Windows GUI, but you can also do so by using the command-line utility, net. Actually, *net is a rather multifaceted tool. Not only can it manage your network shares and print jobs *can control communication sessions, and even start or stop services on the local computer.
Sharing folders
*You can share individual folders to your workgroup or homegroup. Homegroup sharing only allows you to choose whether it is read-only or read-write access *workgroup sharing allows you to set more detailed users and permissions.
syntax like in this sample command:
*command -pip_address [interface_name] [/all] command is the command name. -p and /all are options or switches you can use to change the command's functions. You enter them exactly as they look. ip_address and interface_name are variables or arguments used with the command. In this case, you'd enter a remote IP address or a local network interface address, respectively. Brackets around any element indicate that it's optional.
Remote Desktop Connection
*designed to log into unattended remote systems *for example to access your work computer from home. *Any Windows edition can connect to a Remote Desktop Connection host system, but only business and professional editions can receive incoming connections.
2.What happens if the Public location disables?
*disables most workgroup and homegroup sharing features *instructs Windows Firewall to use stricter rules *It's best when sharing on the local network isn't important and you're just using the LAN to reach the Internet *for example at a public Wi-Fi hotspot, or when directly connected to a broadband modem.
3.what do Private, Work, and Home locations do when used?
*instruct Windows Firewall to use its generally less restrictive Private settings. *enable workgroup sharing features, including file and printer sharing as well as the network discovery service used to browse computers on the local network.
4. what does Windows Firewall do when it detects an unfamiliar program attempting to communicate through the network, inbound or outbound?
*it will ask whether you want to allow it. *. When a certain application can't connect to the network *it's usually worth making sure the firewall isn't blocking it.
1.In some Windows editions Public
*networks can be either Public or Private. * In other editions Private networks are further subdivided into Home and Work networks
1.TCP/IP tools
*using the command-line utilities available in any Windows or Unix-like operating system with a TCP/IP stack.
1.Administrative shares
.Administrative shares *By default, all versions of Windows create administrative shares accessible only to users with administrative privileges *They're hidden, so they won't appear when you just browse available resources, and they're not accessible to ordinary network users, but they collectively provide total access to your computer.
2.Administrative shares
.Administrative shares *You can't permanently delete administrative shares: they'll just be recreated the next time you log on. * You can disable them if you need the added security, but doing so can interfere with certain network functions. *Administrative share names are easy to recognize because they end with $, for example C$ represents the C drive, and PRINT$ represents all installed printers.
Netdom add
Adds a workstation or server account to the domain.
common net commands Net Computer
Adds or removes a computer from a domain
Browsing networks
Browsing networks You can type a network location into the Address bar using the format \\COMPUTERNAME\ResourcePath
common net commands Net Continue
Continues a Windows service.
5.TCP/IP tools netstat
Displays a variety of network information including active connections, routing tables, and traffic statistics
Netdom help <command>
Displays help information for a given command.
common net commands Net Use
Displays or connects to shares on remote computers
8.TCP/IP tools traceroute/tracert
Displays the hop-by-hop path to a given host, along with the round-trip time to each hop.
1.Domain
Domain Domains are client/server networks centrally managed from one or more Windows servers.
2.Domain
Domain Domains can have thousands of computers spread across multiple local network segments, as long as all client systems can communicate with their servers. Domains are centrally administered from servers. Administrators create and manage accounts for the entire domain, including what resources each account is allowed to access. In general, only business editions of Windows can join domains, while home editions cannot. Business editions usually have "Business", "Professional", "Enterprise", or something similar in the name.
3.Domain
Domain With a domain-based account you can log onto any computer on the domain, whether or not you have a local account on the system. You can still log onto that computer's local accounts, but won't be able to access any domain resources. The resources shared by each computer on the domain, whether it's a client or a server, are centrally controlled by administrators. Domain users typically have limited permissions to change system settings
2.Network Discovery is typically off for private networks, and on for public networks. True or false?
False
what is the The only difference between Private, Work, and Home locations?
Home and Private networks allow homegroup membership if the operating system itself does, but Work networks do not.
3.Homegroup
Homegroup Each user on the homegroup can choose whether to share any of a list of commonly shared items, such as photos, videos, music, or printers. Computers on a homegroup continue to use their local or domain accounts. Unlike workgroups and domains, homegroups don't have unique names.
2.Homegroup
Homegroup Homegroups are created by one user, and can be joined by anyone with a shared password. The password is only needed once, when initially joining the homegroup. Computers already in workgroups can create or join homegroups. Computers in domains can join homegroups, but not create them. Home and business editions of Windows can join homegroups, but Windows Server editions might not be able to.
1.Homegroup
Homegroup Windows 7 and later systems can join homegroups, intended to allow easier sharing of common resources like photos, videos, and printers on home networks.
12.You can't ping any other hosts, even on the local subnet. What should you check next? Choose the best response.
IP address settings
2..ipconfig
IPv6 -address for all interfaces, or for a single specified interface. Useful for checking or repairing DHCP settings. /release6 -[interface] Like /release, but for IPv6 address. /renew6 -[interface] Like /renew, but for IPv6 address /displaydns-Displays the current contents of the DNS cache. /flushdns -Deletes the DNS cache. Useful when the current cache has incorrect entries. /registerdns-Renews all DHCP leases and re-registers with DNS servers.
3.TCP/IP tools ifconfig
In Unix-like operating systems, displays or configures IP settings for network interfaces
2.TCP/IP tools ipconfig
In Windows operating systems, displays or refreshes IP settings for network interfaces.
9.TCP/IP tools pathping
In Windows, behaves similarly to tracert by pinging every hop along the route to determine relative latency
4.TCP/IP tools nbtstat
In Windows, displays diagnostic information for NetBIOS over TCP/IP
4.Which set of Windows Firewall rules is generally least permissive?
Incoming connections on public networks
Netdom join
Joins a workstation or server to the domain, including making accounts if necessary
common net commands Net View
Lists computers and devices on the network
common net commands Net Sessions
Lists or ends communication sessions with network computers
common net commands Net Share
Lists, creates, and removes network shares on the local computer
8.Which window would show you bindings for "Local Area Connection 2"?
Local Area Connection 2 Properties
Netdom computername
Manages both primary and alternate names for a domain computer.
Creating VPN connections
Many workplaces use virtual private networks (VPNs) that allow you to join a LAN remotely via a secured internet connection.
2.Mapping network drives
Mapping network drives 1.In Windows Explorer, right-click the shared folder and click Map network drive. 2.In the Map Network Drive window, set options. •From the Drive list, choose the drive letter you want to use. •Check Reconnect at login if you want the share to be permanent. Otherwise it will only last until you restart your computer. •Check Connect using different credentials if you want to connect to the share as a different user. 3.Click Finish.
1.Mapping network drives
Mapping network drives When you use a shared folder often, you can map it as a network drive so it will appear in your normal list of drives.
14.On your laptop, you can see a couple of hotspots, but not the one you want to connect to. What can you try to fix it? Choose all that apply.
Move the laptop closer to the WAP. Set the network to connect without SSID broadcast.
Netdom move
Moves a workstation or server from one domain to another, making accounts if necessary.
13.You can connect to the Internet, but not to local network shares. What should you check first?
Network location
3.What can you manage with the net command? Choose all correct answers
Network print jobs Network shares Windows services
1.ipconfig
Parameter Description /all-Displays additional information for each interface, including name, physical address, DNS, and DHCP settings. /release -[interface] Releases the current IPv4 -address for all interfaces, or for a single specified interface. Useful for removing bad DHCP settings. /renew -[interface] Renews the current IPv4
common net commands Net Pause
Pauses a Windows service
6.TCP/IP tools nslookup
Performs DNS lookups and displays the IP address of a given host name.
9.You need to make sure an adapter is configured to use the network's QoS settings. Which advanced Ethernet property should you check? Choose the best response
Priority
Netdom query
Queries the domain for membership and trust relationship settings.
Remote Assistance
Remote Assistance is used for remote technical assistance connections *Any Windows edition can give or receive remote assistance, but the receiving system needs to actively request assistance
Netdom remove
Removes a workstation or server from the domain
Netdom renamecomputer
Renames a domain computer (but not the domain controller) and its associated account
Netdom reset
Resets the secure relationship between a workstation and its domain controller
common net commands Net Accounts
Sets logon and password requirements for users
common net commands Net File
Shows or closes open files on a server.
common net commands Net Start
Starts a Windows service.
common net commands Net Stop
Stops a Windows service.
7.TCP/IP tools ping
Tests the reachability and latency of a given host
5.Windows Firewall with Advanced Security can be seen as a more powerful interface to the same Windows Firewall application. True or false?
True
7.Even if you use other web browsers, you might only need to configure proxy settings for Internet Explorer. True or false?
True
6.What kind of network connection could you use to connect to your workplace LAN through your existing home Internet connection? Choose the best response.
VPN
Homegroup folders
When you create or join a homegroup, you share your user folders and printers. By default, all your media folders are shared, but Documents is not, but you can customize the list as you like.
10.Which of the following Windows editions can receive incoming Remote Desktop connections? Choose all that apply.
Windows 7 Professional Windows Vista Business
1.Which sharing model is designed to let independent users share individual folders and printers? Choose the best reply.
Workgroup
2.Workgroup
Workgroup All systems in a workgroup must be on the same local network. Usually a workgroup has twenty or fewer machines. There's no password needed to join a workgroup, and no central administration.
1.Workgroup
Workgroup By default, every Windows workstation is configured for a peer-to-peer sharing method based on the workgroup.
3.Workgroup
Workgroup Each computer has its own list of user accounts, called local accounts. To log onto that computer, you need to have credentials for one of its accounts. Each computer is able to choose what it shares and with whom.
netdom command
[computer] [{/d: | /domain:} domain ] [options]
Public and private locations
each separately configurable in other network security settings. For example, Windows Firewall and folder sharing permissions both allow you to separately configure Public and Private networks.
11.Which network tools are found in Windows but not typically in Unix-like operating systems? Choose all that apply
ipconfig nbtstat
1.nbtstat
nbtstat *In Windows, nbtstat shows settings for NetBIOS over TCP/IP (NBT). NetBIOS was originally designed for early LANs: *while NBT allows it to be used on modern networks, it's still increasingly seen as a legacy protocol, and you'll likely only encounter it working with older hosts and networks *The command-line utility is not generally found in Unix-like TCP/IP tools, but it's still a standard part of Windows. *nbtstat [-aRemoteName] [-AIPAddress] [-c] [-n] [-r] [-R] [-RR] [-s] [-S] [Interval]
3.nbtstat
nbtstat *[-R] -Purges and reloads remote cache name table. *[-RR] -Like -R, but first releases, then re-registers all NetBIOS names with the name server. *[-s] -Lists current NetBIOS sessions and statistics, using NetBIOS names. *[-S] -Lists current NetBIOS sessions and statistics, using IP addresses. *[Interval] -Repeats results at the specified interval (in seconds) until you press Ctrl+C to stop.
2.nbtstat
nbtstat *[-a RemoteName] -Lists the NetBIOS table of a remote PC with the specified NetBIOS name. *[-A IPAddress] -Lists the NetBIOS table of a remote PC with the specified IP address. *[-c] -Lists the NetBIOS cache table, including both names and IP addresses. *[-n] -Displays names that have been registered locally. *[-r] -Lists names resolved by local broadcast or a Windows Internet Name ServiceWINS server.
1.netstat
netstat *The netstat command allows you to get statistics related to active connections and routing. *netstat itself displays a list of communication sessions along with source and destination hosts and ports
2.netstat
netstat -? -Displays system-specific help. -a -Displays all connections and listening ports. -b -In Windows, displays the executable which created each connection or listening port. In BSD-based operating systems, lists traffic quantity in bytes. (Linux uses -p for the Windows function.) -e -Displays Ethernet statistics in bytes or frames sent/received.
3.netstat
netstat -f -In modern Windows versions, displays FQDN for remote addresses. -p proto -In Windows, shows connections for a particular Transport layer protocol. With -s , it can also include Network layer protocols. -r -Displays the routing table. -s -Displays statistics by protocol. -t -In Linux, displays only TCP connections. -at for TCP and -au for UDP.
2.nslookup
nslookup *nslookup -Enters interactive mode using the default DNS server. *nslookup - server -Enters interactive mode using a specified server. *nslookup host -Performs a single lookup using the default DNS server. *nslookup hostserver -Performs a single lookup using a specified server.
1.nslookup
nslookup *perform DNS lookups on the command line *It can find the IP address of a given FQDN *so you can use it both to find addresses or use known names just to make sure your DNS settings are working properly *You can perform single lookups, or else you can enter an interactive mode that lets you just enter addresses until you press Ctrl+C to return to the command line.
1.ping
ping *checks connectivity to a given host in terms of packet loss percentage, along with latency and number of hops traversed *Typically, one use of the command represents several individual echo request packets sent and measured individually.
Windows and Unix-like operating systems use the same commands:
the exact syntax often varies by exact version
