Bài Tập Thực Hành Môn Quản Trị Mạng

Bi tp thc hnh mn Qun tr mng
MC LC
Bi 1: CI T WINDOWS SERVER 2003 V DCH V AD .................................2

1.1. Ci t Windows Server 2003 Enterprise Edition ...............................................2
1.2. Ci t AD. .....................................................................................................10
BI 2: TO V QUN L TI KHON NGI DNG V NHM ...................19
2.1. Qun l ti khon ngi dng v nhm cc b ..................................................19
2.1.1.1.2. Xa ti khon .........................................................................................22
2.1.1.1.3. Kha ti khon .......................................................................................24
2.2. Qun l ti khon ngi dng OU trn active directory ...................................27
2.2.1. To v cu trc OU..........................................................................................27
BI 3. THC HNH QUN L A V TH MC DNG CHUNG ...........30
3.1 To mt phn vng m rng mi. .......................................................................30
3.4 To mt simple volume ...................................................................................35
3.6 To mt Striped volume ......................................................................................40
3.6 To mt Mirrored Volume ..................................................................................41
3.7 To mt Raid 5 volume .......................................................................................43
BI 4. THC HNH CI T, QUN L DCH V TRUY CP T XA ........44
4.1. Remote Desktop Connection ..............................................................................44
4.2 Remote Desktop Console ...................................................................................47
4.3 Remote Assistance ...............................................................................................50
BI 5. THC HNH CI T V CU HNH DCH V DNS .........................58
L thuyt: ...................................................................................................................58
BI 6. THC HNH CI T V CU HNH DCH V NAT .........................75
L Thuyt ..................................................................................................................75
Bi 7: Thc hnh Ci t v cu hnh dch v Web ...................................................86
L thuyt v m hnh thc t .....................................................................................86
Bi 8: Thc hnh Ci t, Thit lp mt s Rule cho ISA 2006 .................................94
L thuyt ....................................................................................................................94
8.1 Ci t ISA Server ...............................................................................................95
Page: 1
Bi 1: CI T WINDOWS SERVER 2003 V DCH V AD

1.1. Ci t Windows Server 2003 Enterprise Edition
1. a a CD ci t vo CD-ROM, khi ng li Computer. Cho php boot t a
CD
2. Chng trnh Windows setup bt u load nhng Files phc v cho vic ci t.
Nhn Enter khi m hnh Welcome to Setup xut hin
3. c nhng iu khon v License trn Windows Licensing Agreement, sau
nhn F8 ng vi cc iu khon quy nh ca MS
4. Trn Windows Server 2003, xut hin mn hnh to cc phn vng Partition trn
a cng, trc ht to Partition dng cho vic ci t H iu hnh. Nhn ENTER.
Page: 2
5. Trn Windows Server 2003, chn Format the partition using the NTFS file system
Nhn ENTER.
6. Chng trnh Windows Setup tin hnh nh dng (format) a cng, s ch

t pht cho tin trnh ny hon tt
7. Computer s t Restart khi tin trnh copy File vo a cng hon tt

8. Computer s restart li v boot giao din ha. Click Next trn trang
Regional and Language Options. Click Next
Page: 3
9. Trn trang Personalize Your Software, in Tn v T chc ca Bn

V d: Name: Server 2003
Organization: UTEHY
Page: 4
10. Trn trang Product Key in vo 25 ch s ca Product Key m bn c v

click Next.
11. Trn trang Licensing Modes chn ng option c p dng cho version
Page: 5
Windows Server 2003 m bn ci t. Nu ci t Licence ch per server

licensing, hy a vo s connections m bn c License. Click Next.
12. Trn trang Computer Name v Administrator Password in tn ca Computer v
d Server2003, tn ny c in vo Computer Name text box. in tip vo mc
Administrator password v xc nhn li password ti mc Confirm password (ghi nh
li password administrator cn thn, nu khng th bn cng khng th log-on vo
Server cho cc hot ng tip theo). Click Next.
13. Trn trang Date and Time Settings xc lp chnh xc Ngy, gi v mi gi Vit
Nam (nu cc bn Vit Nam), lu time zone l GMT + 7 . Click Next.
Page: 6
14. Trn trang Networking Settings, chn Custom settings option

15. Trn trang Network Components, chn Internet Protocol (TCP/IP) entry
trong
Components
v
click
Properties.
16. Trong Internet Protocol (TCP/IP) Properties dialog box, xc lp cc thng s sau:
IP
address:
172.16.10.2.
Subnet
mask:
255.255.255.0.
Default gateway: 172.16.10.1 (ch Default Gateway 10.0.0.1 ny cng l IP
address
ca
Card
Ethernet
cua
Router
ADSL).
Preferred DNS server: 127.0.0.1 v Additional DNS server la a ch m ISP
cung cp cho ADSL Router, v d : 203.162.4.1
Page: 7
17. Click OK trong Advanced TCP/IP Settings dialog box.

18. Click OK trong Internet Protocol (TCP/IP) Properties dialog box.
19. Click Next trn trang Networking Components.
20. Chp nhn la chn mc nh mi trng Network l Workgroup (chng ta s to
mi trng Domain sau, thng cp (promote) my ny tr thnh mt Domain
controller v cng l thnh vin ca Domain. Click Next.
Page: 8
21. Tin trnh ci t c tip tc v khi Finish, Computer s t khi ng li

22. Log-on ln u tin vo Windows Server 2003 dng password m chng ta to
cho ti khon Administrator trong qu trnh Setup.
23. Xut hin u tin trn mn hnh l trang Manage Your Server, bn nn check vo
"Don't display this page at logon checkbox" v ng ca s Window li.
Nh vy chng ta kt thc qu trnh ci t Windows Server 2003 Enterprise

Page: 9
Edition
1.2. Ci t AD.
Hy tng tng trong cng ty bn c khong 5 my tnh vi mi my chng
ta s to cc User Account cho nhn vin truy cp. Tuy nhin nu ngi dng ng
nhp vo my 1 lm vic sau anh ta sang my th 2 lm vic th mi ti nguyn
do anh ta to trn my 1 hon ton c lp vi my 2 v thm ch vi tng my
Admin phi to cc User Account ging nhau anh ta mi truy cp c, mi chuyn
s khng tr nn qu rc ri nu cng ty chng ta c chng y my . Nu cng ty bn
c khong 100 my th mi chuyn li khc, vn t ra l ch l mi my Admin
phi ngi to 100 Account nhn vin truy cp? v v mi my c lp vi nhau
vic tm li d liu trn my m ta tng ngi lm vic trc l cc k kh khn.
Do Windows c tnh nng l Domain Controller (DC) gip ta gii quyt rc
ri trn. iu kin c mt DC l bn phi trang b mt my Server ring c gi
l my DC cc my cn li c gi l my Client, c h thng c gi l Domain
Khi Administrator ch vic to User Account ngay trn my DC m thi nhn vin
cng ty d ngi vo bt c my no trn Domain u c th truy cp vo Account
ca mnh m cc ti nguyn anh ta to trc u c th d dng tm thy.
lm vic ny chng ta i vo chi tit, trc tin bn phi dng mt my
lm
DC
cch
nng
cp
ln
DC
nh
sau:
Vo mc TCP/IP ca my DC chnh Preferred DNS v chnh l IP ca my
DC
Vo Start ->Run g lnh dcpromo ->Enter

Page: 10
Trong ca s Active Dirrectory Installation chn Next
Check mc Domain in a new forest sau nhp Next
G Domain ca bn vo trong v d ny l utehy.edu.vn sau nhp Next
Page: 11
Tip tc chn Next
Tip tc chn Next
Page: 12
Tip tc chn Next
Trong ca s DNS Registration Diagnostics chn mc 2
Tip tc chn Next
Page: 13
Tip tc chn Next(G Password vo trong trng. y l pass dung khi

phc hoc xa AD. C th trng cng c)
Click Next
Tin trnh upgrade ln DC bt u
Page: 14
`Trong qu trnh ci t nu Windows yu cu bn chn a CD Windows

Server 2003 vo bn c chn vo v ok
tip tc ci t sau bn ch cho hon tt v Restart li my.

Sau khi khi ng li my bn ch thy rng t nay v sau ti mn hnh ng
nhp xut hin thm dng Log on to
Page: 15
Bn ng nhp vi password khi bn ci t Windows 2k3.

kim tra xem my c Up ln DC hon tt hay cha bn vo System
Properties xem s thy xut hin mc Domain: utehy.edu.vn
Nh vy l chng ta hon tt qu trnh nng cp mt my ch Win2k3 ln

thnh mt DC.
Page: 16
Bi tp lm thm:
Ci t Windows 2k3 vi tn PC l: Server 2. Password administrator l: utehy
Nng cp Win2k3 trn thnh DC vi tn DC l: utehy1.edu.vn
1.3 Join mt my PC client vo trong domain.
Ti my client(trong m hnh bi lab ny ta s dng Windows xp.)
t cc thng s IP cho my client nh sau:
IP address: 172.16.10.3
Subnetmask: 255.255.255.0
Default Gateway: 172.16.10.2
Preferred DNS Server: 172.16.10.2
Cick chut phi vo mycomputer->Properties
Chn tab Computer Name.

utehy.edu.vn ->ok
Click Change. Chn Domain:v g
Page: 17
in thng tin username v password ng nhp vo domain.
Mn hnh hin ra ch Wellcome l thnh cng
Khi ng li my tnh v dng tn user trong domain ng nhp vo my tnh
Page: 18
BI 2: THC HNH
TO V QUN L TI KHON NGI DNG V NHM
2.1. Qun l ti khon ngi dng v nhm cc b
2.1.1. Cng c qun l ti khon ngi dng cc b
qun l ti khon ngi dng cc b chng ta c 2 cng c chnh. l
giao din dng lnh CLI v giao din ha s dng Snapin Local Users and Group.
2.1.1.1. Cc thao tc c bn trn ti khon ngi dng cc b
2.1.1.1.1. To ti khon mi
To ti khon c tn l Student1 vi password l: 12345a@
a. S dng cu lnh trong CLI.
- vo run g cmd ri ok
Giao din dng lnh CLI hin ra.

Trong mn hnh dng lnh ta g lnh: net user student1 12345a@ /add
Ri Enter. Mn hnh hin ln The command completed susscessfully l thnh
cng.
b. S dng mn hnh ha.(i vi nhng my cha nng cp ln thnh DC)

- Nhp phi vo My Computer chn Mange ->System tools ->Local User and
group ->Users.
Page: 19
Right click vo Users chn New Users. Hp thoi New users xut hin.
y mnh s to mt users l student1
Page: 20
y ti xin gii thch cc du check box bn di phn Password v

Confirm
Password.
dng
th
nht
User must change password at next logon : Nu check vo checkbox ny th khi
to user th user phi thay i password ngay trong ln ng nhp u tin.
User cannot change password : Khng cho php user thay i password.
Password never expires : Password khng bao gi b thay i gi tr. Password to
ra default thng c gi tr trong 42 ngy.
- Lu : Nu chn User must change password at next logon th User canot
change password v Password never expires s khng c php chn na.
- y ti s b user must change password at next logon cho user student1.
Xong ri.Sau khi thc hin xong cc thao tc chng ta thy c user l
student1 trong Uers.
Page: 21
By gi bn hy log off Administrator v log on vo student1.

2.1.1.1.2. Xa ti khon
a. S dng giao din dng lnh

Trong mn hnh dng lnh ta g lnh: net user student1 /delete
cng.
Page: 22
b. Xa ti khon bng giao din ha

- Nhp phi vo My Computer chn Mange ->System tools ->Local User and
group ->Users.
Click chut phi vo user mun xa chn Delete( y chng ta s xa user

student1).
Page: 23
Ri click vo Yes. User student b xa
2.1.1.1.3. Kha ti khon

a. S dng cu lnh qua ca s dng lnh CLI.

Trong mn hnh dng lnh ta g lnh: net user student1 /active no
cng.
Page: 24
b. S dng giao din ha.

Nhp phi vo My Computer chn Mange ->System tools ->Local User and
group ->Users.
Click chut phi vo user mun kha chn Properties. Tch vo Account is
disableri click OK
2.1.1.1.4. i tn ti khon (Sinh vin t lm)

2.1.1.1.5. Thay i mt khu (Sinh vin t lm)
Page: 25
2.1.2. Qun l nhm ngi dng cc b.

2.1.2.1. Cng c qun l nhm ngi dng cc b
Cng ging vi vic qun l ngi dng cc b, qun l nhm ngi dng
cc b chng ta c 2 cng c chnh. l giao din dng lnh CLI v giao din
ha s dng Snapin Local Users and Group.
2.1.2.1. To nhm ngi dng cc b.
a. S dng giao din dng lnh.
Cng tng t nh vic to v qun l ngi dng bng dng lnh. Vic vo
giao din dng lnh nh th no t by gi ti s khng ni li na. Trong bi thc
hnh ny chng ta s to ra 1Local group l: Sinhvien.
Trong mn hnh dng lnh ta g lnh: net localgroup sinhvien /add
cng.
Sau s dng lnh: net localgroup sinhvien student1 /add thm student1
vo nhm sinhvien va to.
b. S dng giao din ha.

Nhp phi vo My Computer chn Mange ->System tools ->Local User and
group ->Group
Page: 26
Click chut phi v chn New Group. in tn nhm, m t v add thm

thnh vin cho nhm. V click ok.
2.2. Qun l ti khon ngi dng OU trn active directory

2.2.1. To v cu trc OU.
Bn hon thnh thit k cu trc OU ca utehy.edu.vn v bn phi to cc OU
Page: 27
ny ti Active Directory, to 4 OU l: Sales, Markerting, Accounts v Executives.

1. ng nhp vo my tnh bng ti khon Min Administrator
2. M Active Directory Users and Computers t Thc n Administative
Tools
3. Nhn chut phi vo tn min ca bn (utehy.edu.vn) pha bn phi, tr
ti New v nhn Organizational Unit. Hp thoi New Object - rganizational Unit xut
hin
4. Ti trng Name g Sales.
5. Nhn OK
6. Lp li cc bc trn cho ba OU cn li: Markerting, Accounts v
Executives.
2.2.2To ti khon ngi dng min.
First Name
Nguyen
Tran
Nguen
Tran
Midle name
Van
Thi
Thi
Tuan
Last Name
Anh
Lo
Hien
Anh
1. Nhn phi chut vo OU Markerting ti Active Directory Users And

Computers, tr ti New v nhn vo User. M ra New Object User wizad.
2. Ti hp Firt Name g Nguyen. Ti hp Initial g Van. Ti hp Last Name
g Anh. Ti hp User Logon Name g tn ng nhp cho nguyenvananh. Nhn
Next.
Page: 28
3. Ti hp Password g 12345a@. Ti hp Confirm Password g

12345a@.B chn User Must Change Password At Next Logon. Chn User Cannot
Change Password. Nhn Next.
4. Kim tra li thng tin cung cp ti New Object User wizad v nhn
Finnish.
5. Lp li cc bc 1-4 to cc ti khon cho ba ngi dng cn li.
Page: 29
Page: 30
BI 3. QUN L A V TH MC DNG CHUNG

3.1 To mt phn vng m rng mi.
Bn c yu cu to mt phn vng m rng mi trn my ch ca bn s
dng 1 GB khng gian trng ang sn sng.
1. Ti cu lnh Run nhp diskmgmt.msc. Mn hnh qun tr Disk
Management xut hin.
CH Disk Management c sn trong mn hnh qun tr Computer
Management v c th c a vo trong mt mn hnh MMC ty bin. Khi n
c thm vo mt MMC ty bin, bn c th la chn n qun tr my tnh cc
b hoc mt my tnh xa.
2. Kch chut phi vo phn cha nh v k bn Disk 0 trong mn hnh hin
th pha di ca Disk Management v la chn New Partition. New Partition Wizard
xut hin.
3. Nhp Next. Trang Select Partition Type xut hin.
4. La chn Extended Partition ri nhp Next. Trang Specific Partition Size

xut hin.
5. Trong iu khin Partition Size in MB nhp 1024.
Page: 31
6. Nhp Next.
7. Ghi li mn hnh ca trang tng kt Completing The New Partition Wizard
8. Nhp Finish ng wizard li.
3.2 To mt a Logic mi
Bn va c thng bo rng c khng gian trng trn mt trong cc
a trn my ch ca bn v bn quyt nh to mt a logic mi s dng khng
gian trng ni trn. a logic s c kch thc l 1 GB v c nh dng theo
chun FAT32.
1. Trong mn hnh qun tr Disk Management la chn phn khng gian trng
ca Disk 0. y l khng gian trng trn phn vng m rng c to ra trong bi tp
8-1.
2. Kch chut phi vo phn khng gian trng ca Disk 0 v la chn New
Logical Drive. New Partition Wizard xut hin.
Page: 32
3. Nhp Next. Trang Select Partition Type xut hin.
4. m bo rng la chn Logical Drive c la chn v nhp Next.

Trang Specific Partition Size xut hin.
5. Trong iu khin Partition Size In MB nhp 1024.
6. Nhp Next. Trang Assign Drive Letter Or Path xut hin.
Page: 33
7. Gi nguyn k t a nh mc nh ri nhp Next. Trang Format Partition

xut hin.
8. Gi nguyn Format This Partition With The Following Settings c la

chn v la chn FAT32 t danh sch th xung File System.
9. Trong hp vn bn Volume Label nhp DATA.
Page: 34
10. Nhp Next.

11. Trang tng kt Completing The New Partition Wizard xut hin
12. Nhp Finish. Phn vng c to ra v h thng ca bn bt u nh
dng n. Khng thc hin bt k cng vic no cho ti khi tin trnh nh dng kt
thc..
3.3 Chuyn i a c bn thnh a ng.
1. Trong Disk Manager kch chut phi vo biu tng Disk 0 trong
phn di ca mn hnh.
2. Trn thc n ng cnh, la chn Convert To Dynamic Disk. Hp thoi

Convert To Dynamic Disk xut hin.
3. Nu bn c nhiu a trn my tnh, m bo rng ch c duy nht Disk 0

c la chn.
4. Nhp OK. Hp thoi Disks To Convert xut hin.
Page: 35
5. Nhp Convert. Hp thng bo Disk Management xut hin.
6. Nhp Yes xc nhn qu trnh chuyn i. Hp thng bo Convert Disk

To Dynamic xut hin.
7. Nhp Yes. Hp thng bo Confirm xut hin.
8. Nhp OK. My tnh ca bn s khi ng li.

9. ng nhp vi ti khon Administrator.
10. M MMC Disk Management.
CU HI Da trn nhng thng tin do Disk Management cung cp, cc kiu
volume ca hai phn vng ca bn l g?
3.4 To mt simple volume
y l dng c lp mi d liu nm trn nh dng ny nu xy ra ri
ro s khng phc hi c, nh dng ny tng ng vi nh dng Primary
Basic.Bn cn to thm mt simple volume trn my ch c tn l HOME. Volume
ny s c s dng lu tr cc th mc gc ca ngi s dng v s c nh
dng theo chun NTFS. Kch thc ca volume ny l 500 MB.
M MMC Disk Management nu n cha c m
Page: 36
Kch chut phi vo vng khng gian a cha nh v trn a Disk 0 v la

chn New Volume.
Nhp Next.
Trn trang Select Volume Type m bo rng la chn Simple c
chn.
Nhp Next. Trong trang Select Disks m bo rng a Disk 0 xut hin
trong hp danh sch Selected. Nu cha xut hin, la chn n trong hp danh sch
Available v nhp Add. Danh sch ny ch bao gm cc a ng, cc a c bn
khng xut hin y.
Page: 37
6. Trong iu khin Select The Amount Of Space In MB nhp 500 ri

nhp Next.
7. Trong trang Assign Drive Letter Or Path chp nhn cc mc nh v nhp
Next.
8. m bo rng la chn Format This Volume With The Following Settings
c chn.
9. m bo rng NTFS c la chn trong danh sch th xung File
System.
10.
Trong
hp
vn
bn
Volume
Label
nhp
HOME.
11. Nhp Next.
12. Trang tng kt Completing The New Volume Wizard xut hin
13. Nhp Finish. Volume mi ca bn c to ra v h thng bt u khi
Page: 38
to tin trnh nh dng volume.

3.5 To mt Spanned
nh dng ny s ni 2 hay nhiu phn vng ca 2 hay nhiu cng li vi
nhau thnh mt phn vng duy nht vi dung lng tng ng gp khc nhau, v
c tng dung lng bng cc phn vng cng li c ng dng nhm to thnh
mt a khng l lu tr rt nhiu. Tuy nhin nu xy ra ri ro d liu s khng
phc hi c.
1. to mt Spanned Volume vi tn l D2, trong cng 1 gp 100Mb v
cng 2 gp 200Mb
2. Click Next
Page: 39
3. Next
4. Kim tra li a va to.
Page: 40
3.6 To mt Striped volume

nh dng ny s ni 2 hay nhiu phn vng ca 2 hay nhiu cng li vi nhau
thnh mt phn vng duy nht vi dung lng tng ng gp bng nhau, v c tng
dung lng bng cc phn vng cng li c ng dng nhm to thnh mt a
khng l lu tr rt nhiu v tc truy xut cc nhanh c ng dng nhiu trong
phng Internet. Tuy nhin nu xy ra ri ro d liu s khng phc hi c. Trong
phn D3 c phn tn ti 3 ni l cng 1 chim 100Mb& cng 2 chim
100Mb & cng 3 chim 100Mb, tuy nhin trong My computer ch hin th cho ta
thy mt D3 (G:) duy nht vi dung lng l 300Mb m thi
=> Chng ta khai thc c 300Mb, vi tu chn ny khi ghi chp d liu ln a
cng chng s tri u ln c 3 nn tc ghi chp l cc nhanh v mi cng ch
lm 1/3 cng vic m thi, nhng mt trong ba cng b hng th d liu hon ton
mt trng
Page: 41
3.6 To mt Mirrored Volume

nh dng ny s ni 2 phn vng ca 2 cng li vi nhau thnh mt phn vng duy
nht vi dung lng tng ng gp bng nhau, v c dung lng bng phn na
dung lng cc phn vng cng li m thi. Tuy nhin d liu c an ton cao v
Page: 42
thc cht d liu lun c to thnh 2 bn ging ht nhau lu trn 2 cng, nhng
b li ta phi mt kh nhiu chi ph cho vn ny.
To mt Mirrored Volume vi tn l D4, trong cng 1 gp 100Mb v cng 2
gp 100Mb
Page: 43
3.7 To mt Raid 5 volume

nh dng ny s ni 3 phn vng ca 3 cng li vi nhau thnh mt phn
vng duy nht vi dung lng tng ng gp bng nhau, v c dung lng bng
2/3 dung lng cc phn vng cng li. Tuy nhin d liu c an ton kh tt v
thc cht d liu lun c to thnh 1 bn d phng phc hi khi c s c xy ra
To mt RAID-5 Volume vi tn l D5, trong cc cng u ng gp l
100Mb
Trong phn D5 c phn tn ti 3 ni l cng 1 chim 100Mb& cng 2

chim 100Mb & cng 3 chim 100Mb, tuy nhin trong My computer ch hin th
cho ta thy mt D5 (I:) duy nht vi dung lng l 200Mb m thi
=> Chng ta ch khai thc c 200Mb m thi, vi tu chn ny khi ghi chp d liu
ln a cng chng s ghi chp ln 2 cng cng mt lc & mt dng lm file nh
phc hi nu mt trong 2 trn b li nn c tc kh nhanh nhng mt trong 2
cng b hng th d liu vn cn
By gi bn 2 ct:
Fault Tolerance: kh nng chu li
Overhead: Dung lng b mt i
Dng RAID-5 c kh nng chu li tt, tuy nhin n s mt i 33% dung lng
Page: 44
BI 4. THC HNH CI T, QUN L DCH V TRUY CP T XA

Thng thng l mt qun tr mng khng phi lc no chng ta cng phi ngi trn server lm vic
c.Trn thc t ngi ta hn ch n mc thp nht vic ngi trn server lm vic, v th mt qun tr mng lun
ngi t my Client nhng s dng cc tin ch ca Windows m vn c th truy cp vo my server v nh l
anh ta ang lm vic trn vy. Cc cng c c gi l Remote Desktop
Trong Windows cung cp cho ta mt s cng c Remote Desktop nh:
Remote Desktop Connection
Remote Desktop Console
Remote Assistance
Remote Desktop Connection

Trong bi ny ti ly 2 my mt my server chy h iu hnh Windows Server
2003 v mt my client chy h iu hnh Windows XP. V gi s rng ti ngi trn my
Server truy cp vo my XP. Trc tin ta xc nh my XP l my s c
Remote bi server nn trc tin ta phi Enable Remote Desktop ca my XP th my
server mi c th truy cp vo. bt tnh nng ny bn nhp phi vo My Computer
chn Properties, chn tip tab Remote v check chn mc Allow users to connect remotely to
this computer
By gi t my Server bn bt chng trnh Remote Desktop Connection ln bng cch

vo Start ->Accessories ->Communications ->Remote Desktop Connection(Hoc vo run->mstsc)
Page: 45
Trong ca s Remote Desktop Connection bn chn Options. G a ch IP ca my m bn

mun remotedesktop vo.
Lc ny mn hnh hin ra trc mt bn chnh l mn hnh lm vic ca my

XP (bn ch c thanh ngang mu vng bn trn c ghi r IP hoc tn my ma bn
ang Remote).Trong khi ti my XP mn hnh.
Page: 46
Remote Desktop Connection cn h tr ta mt tnh nng kh hay l thay

v ta phi chn a CD vo my XP mi c th ci c thm cc software m ta
mun, nhng vi tnh nng ca Local Resources cho php bn chn a ngay ti my
server nhng vn c th Remote vo my XP v ci t bnh thng. Ti ca s
Remote Desktop Connection chn tab Local Resources chn mc Disk Drivers v
nhp Connect
Page: 47
Lc ny ti mn hnh Remote Desktop ca my XP bn vo My Computer

s thy xut hin thm cc a Map t Server trong D on SERVER chnh l
a CD-Rom ca my SERVER
4.2 Remote Desktop Console

Vi Remote Desktop Connection ta c th d dng theo di cng nh ng
nhp vo bt k my no trong mng, tuy nhin vi nhu cu cng vic ca bn cn
lun phin qua li gia hng chc my Remote, nu s dng Remote Desktop
Connection th qu rm r v khng thn thin.
Chnh v th Windows c sn cng c Remote Desktop Console gip ta c
th chuyn qua li nhanh chng gia hng chc my ang Remote trong h thng
Page: 48
mng
Bn vo Start ->Programs -> Administrator Tools ->Remote Desktop
Trong ca s Remote Desktop Console nhp phi vo Remote Desktop chn

Add new connection... thm mt my cn Remote vo
Ca s Add new connection hin ra bn nhp IP hoc tn my c Remote

vo Server name or IP address. Mc Connection name bn nhp tn my sau
ny d nhn bit
Page: 49
Sau khi Add xong Icon my s 10 s hin trong cy th mc Remote

Desktop, v bn nhp vo th Windows s t ng Remote n my . V c nh
th bn ln lt add cc my trong h thng mng vo y
Tuy nhin mc nh Windows ch cho php bn Connect ti ti a l 3 my

cng mt thi im m thi, khc phc vn ny bn vo Control Panel ->
Add/Remove Programs ->Add/Remove Windows Components. Sau chn tip
Page: 50
2
mc:
Terminal
Server
Terminal Server Licensing (thc t bn phi tr tin cho Microsoft v vic ny y)
Sau chn Next v tin hnh ci t bnh thng.
4.3 Remote Assistance

Ngoi vic iu khin my tnh t xa bng Remote Desktop, Microsoft cn
ng dng cng ngh ny vo vic gip trc tuyn rt hu ch v thng dng.
Hy th tng tng xem cng ty bn c hng trm my tnh v bn l mt
nhn vin trong cng ty khng rnh v my tnh lm, v thnh thong bn gp mt s
trc trc khng th xoay s ni, vic bn cn lm by gi l tm anh qun tr mng
nh anh ta gip mnh gii quyt rc ri trn.
Tuy nhin trong mt cng ty to nh th u phi ch c mnh bn gp rc ri
v u phi qun tr mng lun thnh thi v ng c, ch vi ngi qun tr mng
thi lm sao p ng ni y.V th Windows thit k ra Remote Assistance gip
gim ti cho cc qun tr mng & qua cng gip ngi dng c th thng qua
Remote Assistance hc hi thm mt s kin thc t pha qun tr mng.
Ly v d ti l mt nhn vin trong cng ty trn v ang cn s gip t
pha k thut m khng n phi i tm kim h cho mt cng nn ti bt tnh nng
Remote Assistance ca Windows ln
Vo System Properties chn Tab Remote check mc Allow Remote Assistance
invitations to be sent from this computer
Page: 51
Sau vo Start ->Programs ->Remote Assistance
Page: 52
Trong ca s Help & Support Center bt ra ti chn Invite someone to help

you: mi mt ngi no n gip bn
L do ti phi to li cho mi ny l v trong t k thut c n 5-7 nhn

vin, m ti cng khng bit ai trong h ang rnh v sng sng gip ti na. K n
bn chn Save invitation as a file lu file cho mi ny li
Page: 53
Lc ny Windows s yu cu bn nhp tn ca mnh & qui nh thi gian sng

cho file cho mi ny (mc nh l 1h) trong bi ti chn mc nh l 1 gi vy c
ngha l sau khi to li cho mi ny xong 1h sau nu khng c ai gip bn (kch hot
n) n s ht hiu lc. Tip tc chn Continue
Bi v li cho mi ny bn s cho c phng k thut bit nn nu mun ch c

ai gip mnh thi th bn nn chn Password cho file ny.
Page: 54
Sau bn lu file ny li ti mt th mc c Share cho Everyone l

Read. Trong bi ny l th mc Help c Share trc v ti lu file ny vo
y vi tn l Helpme
Sau khi lu hon tt nhim v ca bn by gi l nhc my in thoi ln gi

cho phng k thut cho h bit my mnh ang ngi (IP 172.16.10.3) to Remote
Assistance ri v nh h vo gip . Khi cc qun tr mng s tm cch xc nh
my bn ngi v truy cp vo ngay lp tc bng cch nhp \\172.16.10.3. V h s truy
cp vo th mc Help v kch hot file Helpme ca bn
Page: 55
ng nhin nu bn t password th phi cho anh ta bit nhn vo
Sau khi ngi qun tr mng kt ni & nhp password thnh cng ti mn hnh
Desktop ca bn s hin ln bng thng bo i khi Nh qun tr ng ti gip bn v
ang kt ni ti my bn, bn c mun cho anh ta xem mn hnh lm vic ca bn & tr chuyn (Chat)
vi bn khng?
Bn chn Yes chp nhn cho anh ta ng nhp vo my mnh.Lc ny ti

mn hnh ca bn s hin ln ca s Remote Assistance c cc cng c nh tn gu
(Chat), gi tp tin (Send a file), ni chuyn (Talking).
Page: 56
Cn ti mn hnh ca nh qun tr s hin th nguyn xi mn hnh Desktop ca

bn cng vi mt s cng c khc dnh cho Admin
Page: 57
Lc ny bn v nh qu tr c th tr chuyn vi nhau a ra hng gii

quyt cho s c m bn gp phi.Tuy nhin trong mt s trng hp tr chuyn nhu
th ny khng em li kt qu, nn admin s s dng quyn Take Control iu
khin lun mn hnh my bn lm thay bn mt s cng vic lc ny bn ch vic
ngi .. hc hi thm
Page: 58
BI 5. THC HNH CI T V CU HNH DCH V DNS

L thuyt:
Gi s ta dng thnh cng mt DNS Server v c mt my Client trong
mng gi yu cu n DNS Server ny hi xem mt my c tn l
mail.utehy.edu.vn. u. Khi bn thn my DNS Server ca chng ta cng
khng bit thng tin v my mang tn mail.utehy.edu.vn. u c v n s chy
thng ln cc Server cp cao nht l 13 Server Root ca th gii hi. Tuy
nhin bn thn ca cc my Root ny vn khng bit chnh xc thng tin yu cu
nhng n bit cc my DNS Server qun l cc domain .edu, .net... u v n s
tr li cho DNS Server ca ta thng tin v cc my DNS Server m n bit ny. Lc
ny my DNS Server ca chng ta li tip tc gi thng tin n my DNS Server
qun l domain .edu hi xem my mail.utehy.edu.vn. u. V d nhin my DNS
Server qun l domain .edu s khng h bit my no tn l mail.utehy.edu.vn.
Nhng n li c thng tin v my ch .edu.vn v n s tr li cho my ch ca chng
ta bit v thng tin ca my ch ny. DNS Server ca ta s da vo thng tin m
DNS Server qun l domain .edu.vn va cung cp s hi ngay n my ch
utehy.edu.vn xem my mail.utehy.edu.vn u. n y v cc my nh
mail.utehy.edu.vn.vwww.utehy.edu.vn.thuc quyn qun l ca my
utehy.edu.vn.nn lp tc n tr li ngay cho DNS Server ca ta a ch IP ca my
mail.utehy.edu.vn. Lc ny DNS Server c c thng tin y s hi p ngay
cho my Client yu cu, v ch c vy my Client ny da vo thng tin va c truy
cp thng n my mail.utehy.edu.vn.
Thc hnh:
Gi s ti c 2 mng mi mng ng vi mt Domain fit.net v utehy.com v

ti s dng dch v DNS Server trn hai mng sao cho chng c th phn gii tn
min tt cho nhau. cho n gin trong bi Lab ny ti s dng 3 mng trong hai
my PC01&PC02 l 2 my ci DNS Server c ni vi nhau thng qua Card Lan
vi mng 192.168.1.0/24.Mng ny ng vai tr nh mt Router dng ni 2 mng
172.16.1.0/24 v 10.0.1.0/24 ny li.
S mng:
IN
Cross
Cross
IN
Page: 59
Cu hnh IP cc my nh sau:
My
Card IN
c tnh
PC01
PC02
IP Address
172.16.10.1
10.0.0.1
Subnet Mask
255.255.255.0
255.255.255.0
127.0.0.1
127.0.0.1
Default gateway
Preferred DNS
Card Cross
IP Address
192.168.1.1
192.168.1.2
Subnet Mask
255.255.255.0
255.255.255.0
Default gateway
Preferred DNS
Card IN: ni gin tip 2 my PC01&PC03 vi nhau thng qua Switchv gia PC02 v PC04
Card Cross: ni gin tip 2 my PC01&PC02 vi nhau thng qua Switch
ci DNS Server th ti mi my sp ci DNS Server ta phi tr Preferred

DNS v IP ca chnh mnh nn ti y chng ta nhp l 127.0.0.1. Kim tra li thng
s ca 2 my PC01 v PC02 xem ng nh trong bi lab hay cha.
Page: 60
By gi ta tin hnh ci t dch v DNS ln 2 my PC01 & PC02 bng cch

chn Add/Remove Windows Components -> chn tip Networking Services v nhp
nt Details
Chn dch v Domain Name System (DNS) v tin hnh ci t n

Page: 61
Chy dch v DNS Server bng cch vo Start -> Programs -> Administrative
tools -> DNS
Page: 62
Mc nhin trong ny cha c g c v ta cn khai bo vi h thng cc tn

min m ta mun DNS phn gii, nhp phi vo Forward Lookup Zones chn New
Zone
Chn Primary zone
Khai bo ng tn min vi tng my DNS Server tng ng

Page: 63
Nhp Next tip tc
Trong bng Dynamic Update la chn th 1 khng cho ta chn l do chng ta ang cu hnh DNS
trong mi trng WORKGROUP ch khi no h thng chng ta Join Domain th ta mi c th chn la chn
ny, nn trong mi trng ny ti chn la chn th 2 Allow both nonsecure and secure dynamic updates
Page: 64
Nh vy ta ch va hon tt vic khai bo vi DNS Server v host m ta mun

phn gii t tn sang s m thi. Thm mt file host vo trong DNS m chng ta va
to. Click chut phi chn new host. Trong phn Name g PC01. IP th chn
192.168.10.1 v tch vo PTR
Tip tc nhp phi chn Reverse Lookup Zones chn New Zone cu hnh
cho DNS c kh nng dch ngc li t s sang tn
Page: 65
n y ta nhp IP ca mng chng ta l 192.168.10.0/24
Chn Next
Page: 66
Chn la chn 2
Mn hnh sau khi hon tt
Page: 67
Tip tc Pointer cho Reverse Lookup Zone
Nhp IP ca chnh mnh v nhp Browse. Chn ti PC01 v chn file host
Page: 68
Chn ok. n y cc h thng DNS Server c th phn gii tn min ca chnh mnh l fit.net
tuy nhin nu trong h thng c ci thm cc dch v nh Web Server, Mail Server... th DNS cha phn gii
c cc tn min nh www.fit.net, mail.fit.net .... Do ta cn to thm cc Alias (CNAME)(Nhng phn ny
sinh vin t tm hiu.)
Nhp phi vo domain tng ng chn New Alias (CNAME)
Page: 69
Ti Alias name nhp mail v Browse n pcx nh trn
Tng t to mt Alias tn l www
Page: 70
By gi ti PC01 ta test th cc domain nh: gccom.net, www.gccom.net,

mail.gccom.net u OK
Vo Run nhp cmd -> Enter
Nhp nslookup -> Enter
Sau ln lt nhp cc domain ca mnh vo test th xem sao
Page: 71
Tuy nhin khi ta ping n domain utehy.com th h thng bo l khng tm

thy
L do my PC01 khng th phn gii tn min utehy.com ny l v trong

Forward Lookup Zone ca n khng h c thng tin g a Domain kia, Domain
utehy.com l thuc mt DNS Server khc. Nh ni trn khi khng th phn gii
tn min no DNS Server s hi 13 DNS Server cp cao nht nhng v mng
chng ta ang gi lp nn n khng th hiu kythuatvien.com kia u c. V vy
chng ta phi tin hnh khai bo thng sut nhau gia 2 DNS Server ca ta. Nhp
phi vo PC01 chn Properties
Page: 72
Chn Tab Forwarders chn New
n y ta hon tt cu hnh DNS Server by gi 2 my c th gi

Email cho nhau bn cn phi to thm Mail Exchanger (MX)
Page: 73
Ti Host or child domain bn trng
Page: 74
Mn hnh sau khi hon tt
Lm tng t nh vy vi my PC02 ci t DNS cho tn min utehy.com
Page: 75
BI 6. THC HNH CI T V CU HNH DCH V NAT

L Thuyt
Trong bi DNS Server ta tm hiu v c ch phn gii tn min t tn sang
s nh vy tm li ta phi phn bit 2 dng IP sau y :
Trong mi trng WORKGROUP cc my lin h vi nhau thng qua IP
Address do chng ta t gn cho tng my hoc do DHCP Server cp pht cc IP
Address dng ny c gi l IP Private hay ni cch khc cc my t mt mng
khc thng qua Internet s khng th truy cp vo cc my ny vi IP Private .
M khi c h thng mng chng ta s lin lc vi cc mng bn ngoi thng
qua mt IP Address khc c gi l IP Public, IP ny ta c c l do nh cung
cp dch v ISP cung cp hoc bn phi lin h nh cung cp mua n. Nu bn
mua IP Public ny th IP Public ca bn l duy nht nhng nu l do nh cung cp
dch v gn th IP Public ny s l IP ng hay ni cch khc n s thay i mt cch
ngu nhin.
VD: H thng mng ca bn bao gm 5 my c IP Address t 192.168.1.2 n
192.168.1.6 v c gn vi mt Router ADSL c IP l 192.168.1.1 th cc IP ny
gi l IP Private
Lc ny nh cung cp dch v ISP s t gn cho ton h thng mng ca bn
mt IP bt k no chng hn nh 222.254.136.25 th IP ny s gi l IP Public, v
cc my trn Internet nhn vo mng ca chung ta ch thy duy nht mt IP Public
ny m thi.
By gi gi s ti c 2 mng hon ton c lp vi nhau v c th nhn thy
nhau thng qua mng Internet vi IP Public do nh cung cp dch v cp, tuy nhin
do mi mng c nhiu my tnh m t mng ny ch thy duy nht ca mang kia mt
IP Public duy nht m thi.
Vy khi ti ng t mt my tnh bt k trong mng th 1 ti khng th truy
cp ti nguyn ca mt my bt k t mng th 2 c
Tuy nhin vi cng c Network Address Translation - NAT ca Windows
s gip ta gii quyt vn ny. Tnh nng ch yu ca NAT Server l phn tch cc
yu cu ca cc my Client hoc cc yu cu t Internet v tr v kt qu yu cu
nu c.
VD: Trong mng ta ch nh my NAT Server c IP l 192.168.1.2 v mt
my ci dch v Web Server c IP l 192.168.1.5 th mt my no trn Internet
khi truy cp vo mng ca ta thng qua giao thc Web (Port 80) s c NAT
Server dn n my c IP l 192.168.1.5
NAT c 2 dng l NAT cng v NAT mm, vy khi no ta trin khai NAT
cng v khi no cn trin khai NAT mm?
Khi mng ca chng ta < 4 my th ta nn s dng NAT Cng
Khi tt c cc my trong mng LAN ni trc tip vi Router ADSL hoc
thng qua mt Switch v kt ni vi Router ADSL. Trong m hnh ny chng ta s
tit kim c chi ph nhng b li Modem ADSL s lm vic qu sc v bn thn
n cng c CPU v RAM phn tch d liu, nhng v CPU&RAM ca Router
ADSL rt khim tn nn x l cc gi tin rt chm chp.
Do vi mt mng > 4 my ta nn chn m hnh th 2 l NAT Mm. Vi
m hnh ny ta phi dng mt NAT Server vi 2 Card Lan ring bit. Mt Card ni
vi cc my khc trong mng thng qua Switch, Card cn li ni trc tip vi
Page: 76
Router ADSL. Khi cc my Client mun ln Internet phi thng qua NAT
Server v t NAT Server s thng qua Router ADSL kt ni Internet.
V NAT Server c CPU&RAM mnh gp nhiu ln so vi CPU&RAM ca
Router ADSL nn c tc x l nhanh hn.
Thc hnh
Trong bi Lab ny ti s dng 3 mng trong hai my PC01&PC03 c
ni vi nhau thng qua Card Lan vi mng 182.168.10.0/24 ng vai tr l mt
mng Internet. Mng 172.16.10.0/24 chnh l mng Lan ca chng ta v mng
10.0.0.0/24 l mng ngoi dng truy cp vo mng ca chng ta. Khi cc IP
trong mng 182.168.10.0/24 l cc IP Public
Trong my PC02&PC04 ng vai tr l cc my Client trong mng tng
ng
My PC01 s ci dch v NAT Server
Nh vy nu ta ng t my PC04 ta truy cp vo my PC02 thnh cng ng
ngha vi vic mt my t mng ngoi thng qua IP Public truy cp thnh cng vo
mng chng ta nh NAT Server dn ng.
S thc t:
182.16.10.0/24
172.16.10.0/24
INTERNET
NAT Server
LAN
S bi Lab:
NAT Server 2
NAT Server1
182.168.10.0/24
172.16.10.0/24
PC01
PC02
10.0.0.0/24
PC03
PC04
Page: 77

My
c tnh
PC01
PC02
PC03
PC04
IP Address
172.16.10.1
10.0.0.1
172.16.10.2
10.0.0.2
Subnet
Mask
255.255.255.0
255.255.255.0
255.255.255.0
255.255.255.0
172.16.10.1
10.0.0.1
Card IN Default
gateway
Preferred
DNS
Card
Cross
IP Address
182.168.10.1
182.168.10.1
Subnet
Mask
255.255.255.0
255.255.255.0
Default
gateway
Preferred
DNS
Card IN: ni gin tip 2 my PC01&PC03 vi nhau thng qua Switch

Card Cross: ni trc tip cc cp my PC01 vi PC03v PC02 vi PC04
V trong bi Lab ny 2 my PC01&PC02 ng vai tr l Router nn ta phi

ci t LAN Routing c th ni cc mng li vi nhau. Kim tra cc thng s ip
ca card mng c 2 my trc khi tin hnh ci t.
PC01:
PC02:
Page: 78
Ci t LAN routing cho PC01 kt ni gia mng 172.16.10.0(LAN) v

mng 182.168.10.0(WAN)(Vic ci t phi tin hnh trn c 2 PC01 v PC02,
nhng y ti ch lm nguyn trn my PC01, cn PC02 t na chng ta s lm
tng t). Click chut vo Start->All Programs->Administrative tools->Routing
and Remote Access
Nhp chut phi vo PC01 chn Configure and Enable Routing and Remote
Access
Next->chn Custom configuration

Page: 79
nh du NAT and basic firewall v LAN routingri click Next
Mn hnh summury hin ra chng ta chn Finish. H thng hi chng ta c

mun start dch v hay khng ->chn Yes
Page: 80
Ti NAT Server nhp phi vo NAT/Basic Firewall chn New Interface
V NAT Server yu cu phi c 2 Card Lan tr ln, mt card ng vai tr

ng ra ca cc my trong mng Lan (trong bi ny chnh l Card IN) Card cn li
kt ni Internet v l ng vo ca cc yu cu t Internet (trong bi ny chnh l
Card Cross). V vy ti y ta phi cu hnh c 2 Card ra vo ca h thng.u tin
bn chn Card IN
Page: 81
V Card IN ch kt ni vi cc my trong mng Lan nn IP ca n l IP

Private nn trong mc Interface type chn la chn u tin Private interface
connected to private network
Tip tc cu hnh cho Card Cross

Page: 82
Nhng ln ny ta chn l Public interface connected to the internet v chn

lun 2 la chn bn di l:
Enable NAT on this interface: bt tnh nng NAT trn cng ny
Enable a basic firewall on this interface: bt tng la trn cng ny
Page: 83
n y c bn ta hon tt cu hnh xong NAT Server cho cc my trong

mng LAN nhng nu mt my no trn mng Internet truy cp vo mng chng
ta s vn cha vo c cc my Client bn trong do n ch thy duy nht mi IP
Public ca Router chng ta m thi (trong v d ny IP Public chnh l IP Card Cross
ca my PC01). V d trong h thng mng chng ta by gi c my PC03 ci dch
v Web Server v bn mun ai khi truy cp vo mng chng ta thng qua giao
thc Web (Port 80) s truy cp thng vo my ny. Do ti NAT Server ta phi cu
hnh Card Cross ch nh cc cng giao tip vi bn ngoi. Ti ca s Network
Address Translation Properties ca Card Lan bn chn Tab Services and Ports
Page: 84
Chn tip mc Web Server (HTTP). Ca s Edit Services hin ra cho ta thy
r rng Port m ta ang cu hnh chnh l Port 80, ti y ta phi nhp IP ca my
PC03 vo ti mc Private address c nh vy khi my ngoi truy cp vo h thng
mng th NAT Server s da vo y dn ng n my PC03.
Page: 85
Nh vy l chng ta cu hnh xong dch v NAT. Ty vo trng hp c

th mng LAN ca chng ta bn trong cn NAT dch v g(cho php t bn ngoi
truy nhp vo) th ta NAT dch v tng ng vi a ch IP ca my bn trong
mng LAN.
Chng ta cu hnh tng t nh vy trn my PC02.
Page: 86
Bi 7: Thc hnh Ci t v cu hnh dch v Web
L thuyt v m hnh thc t

Trong cc bi trc chng ta tm hiu v cch dng mt NAT Server... v
cch ty chnh NAT inbound, NAT outbound nhm ch nh vi cc my bn ngoi
truy cp vo vi giao thc no s c NAT Server dn dt vo my Client tng
ng chy ng dng trn Port . Ly v d trong mng chng ta c hng chc my
tnh v ta xy dng thnh cng mt Website gii thiu v cng ty chng ta chy n
nh trn mt PC no , tuy nhin hin ti trang Web ny ch c cc my trong cng
mng chng ta mi c th xem c m thi cn cc my t ngoi Internet khng
th xem c v khi nhn vo mng chng ta chng ch thy duy nht IP Public ca
Router chng ta do ISP cung cp m thi. Vy ta xy dng mt NAT Server nh bi
trc v ch ng cho cc my truy cp vo mng chng ta thng qua Port 80 s
chy thng vo may ci Web Server m truy cp. Tuy nhin ch l trng hp
my ca bn ch chy mt trang Web duy nht m thi.Gi s cng ty chng ta l mt
cng ty chuyn cho thu Hosting (lu tr Website) th vi mi khch hng ta phi
lm ring mt Web Server cho h th va tn km i khi li qu d gi cho nhng
Website c qu t ngi truy cp hn na nh cc bn bit u t cho mt Server
khng phi r. Chnh v th gii php trn khng c chn m thc t ngi ta dng
mt Web Server m trong n c th chy t hng chc n hng trm trang
Web.Ngoi ra cn c cc dch v khc nh FTP Server, Mail Server.... Vy trong
bi ny chng ta s cu hnh mt Web Server sao cho tha cc yu cu t ra nh
trn
Web Server
B.
Thc hnh:
cho n gin trong bi Lab ny ti s dng 3 mng trong hai my
PC01&PC03 l 2 my c ni vi nhau thng qua Card Cross vi mng
182.168.10.0/24.Mng ny ng vai tr nh mt mng Internet dng ni 2 mng
Page: 87
172.16.10.0/24 v 10.0.0.0/24 ny li.

Trong my PC01 va ng vai tr l my NAT Server va l my gi lp
Router.
My PC02 l my gi lp Router.
My PC03 l my s ci dch v Web Server v n s chy 2 trang Web l
utehy.com v fit.utehy.com
My PC04 ng vai tr l mt my Client bt k no trn mng Internet
Nh vy chng ta thy s xut hin thm cc tn min utehy.com v
fit.utehy.com m bn thn cc my trong mng s khng hiu cc domain ny v vy
ti my PC01 & PC03 ta phi ci thm dch v DNS Server phn gii chng
PC02
PC01
182.168.10.0/24
10.0.0.0/24
172.16.10.0/24
PC04
PC03
Chng ta s s dng kt qu ca bi thc hnh trc.V y ti s khng ni

li cch ci v cu hnh DNS cho my bn ngoi c th hiu c tn min bn
trong na. M chng ta s i vo phn ni dung chnh l ci t v cu hnh IIS
6.0 hay Webserver trn Win2k3.
ci dch v IIS ln my PC02 trc thao tc nh sau:
Vo Add/Remove Windows Components nhp chn Application Server nhng khng check
checkbox pha trc m nhp Details
Page: 88
Nhp chut check vo mc Internet Information Servies (IIS) ci dch v

Web Server v lc ny my s t check lun Enable network COM+ access, ch
bn khng c b ny v nu b dch v IIS s c ci nhng khng chy
c. Sau t chut ti Internet Information Servies (IIS) nhp tip Details
Chn tip mc File Transfer Protocol (FTP) Services ci dch v FTP

Server sau click OK
Page: 89
Tr li mn hnh Add/Remove Windows Components bn chn tip mc

Email Services ci dch v Windows Mail Services v nhp Next ci t
By gi gi s ti c 2 trang web utehy.com v fit.utehy.comt ti 2 th

mc vi tn tng ng trong a C:\ sao cho khi ngi dng t Internet truy cp
vo h thng vi tn min no n s duyt cc trang web trong th mc .
Page: 90
Nh vy trong mi th mc nh vy ti s to mt trang web mang tn Default.htm vi ni dung ty

thch (nu mun tm hiu thm v Web bn phi tm cc ti liu lin quan n Web hoc theo hc cc kha v
web design)
By gi chy chng trnh IIS bng cch vo Start ->Programs >Administrative Tools ->Internet information services (IIS) manager
Page: 91
Mc nh IIS s ci t sn cho ta mt websites mang tn Default Website tuy nhin trong bi ny ta

khng cp ti m ch cu hnh cho 2 trang web chng ta chy m thi, nn bn nhp phi vo Web Sites
chn New ->Web site...
Ti ca s Web Site Desciption nhp tn bt k gi s ti t l

www.utehy.com
Page: 92
Ti mn hnh IP Address and Port Settings bn ch Host header for this

Web site (Default none) y chnh l ni m ta nhp chnh xc tn min ca trang
web vo y c nh vy khi mt yu cu no truy cp vo h thng vi tn min
no IIS s ch n trang web m c Host header tng ng. Trong ny ti nhp
l utehy.com cho trang Web utehy.com
Trong ca s Web Site Home Directory bn Browse... n th mc cha cc

trang web ca Web Sites utehy.com trong v d ny l C:\utehy.com
Page: 93
Ti mn hnh Web Site Access Permissions nu chng ta chy web vi cc

ngn ng ASP, PHP... th check cc tng ng, tuy nhin trong bi chng ta khng
i xa hn m ch chn mc nh u tin l Read v nhp Next hon tt.
Page: 94
Bi 8: Thc hnh Ci t, Thit lp mt s Rule cho ISA 2006

L thuyt
Trong khong vi nm tr li y Internet pht trin vi tc chng mt v
l cng c khng th thiu trong thi i cng ngh ngy nay.Tm quan trng ca n
khng ch nh hng n ngnh cng ngh cao m cn vn xa ti cch lnh vc
khc. Hay ni cch khc Internet gn nh xa b nh ngha v khng gian a l
v qua mi ngi trn th gii u c th lin lc vi nhau mt cch nhanh chng
cho d c cch xa n hng vn cy s. Hn na y chnh l mt khng gian m
mt th gii tri thc ca loi ngi, ngi ta c th trao i kin thc, d liu.... vi
nhau gn nh ngay lp tc. i km vi nhng tin ch l vn nn virus, trojan,
spam, la o, tn cng vo h thng my tnh ngy cng ang dng v rng khp.
Nhng k tn cng vi nhiu mc ch v t li hoc v mun chng t bn thn m
bt chp tt c chng len li vo h thng chng ta tn ph d liu hoc to bo hn
l nh cp thng tin c mt ca mt quc gia no .... Ngay t nhng nm u ca
th k 21 vn nn ny tr nn nhc nhi v l ni bon khon chung ca ton x
hi.
Cc hng bo mt my tnh trn ton th gii khng ngng cho ra i, pht
trin v hon thin cc chng trnh bo mt ca mnh m tiu biu nht chnh l
chng trnh Internet Sercurity Acceleration Server (ISA Server) ca
Microsoft.Vy c ch hot ng ca ISA nh th no di y chng ta s i su
vo nghin cu n.Theo Microsoft gii thiu th ISA Server l mt bc tng la
(Firewall) l chng trnh chuyn v bo mt h thng mng. Mi thng tin ra vo h
thng ca chng ta u phi qua ISA kim duyt rt k lng. Hay ni cch khc khi
dng ISA Server ln th gii ca chng ta s c chia ra lm 3 phn ring bit:
- Internal Network: Bao gm tt c my tnh c trong mng chng ta, ni mt
cch khc y chnh l mng LAN ca chng ta cn bo v.
- Local Host: l mt bc tng ngn cch gia mng chng ta v th gii,
chnh l my ISA Server
- External Network: l mng Internet, nh vy mng Internet c xem nh
l mt phn trong m hnh ISA m thi
Page: 95
LAN
DC
Internet
ISA Server
Internal network
Local host
External netwokr
B. Thc hnh.
8.1 Ci t ISA Server
By gi chng ta tin hnh ci t ISA ln h thng. cho n gin ti s
dng m hnh 2 my v mng ti ln Domain l utehy.com.
S Lab:
192.168.10.0/24
172.16.10.0/24
IN
DC
LAN
Cross
ISA Server
PC03
c tnh
My
Tn
Card IN
PC01
PC02
PC03
ISA
DC
PC
IP Address
192.168.10.1
Subnet Mask
255.255.255.0
Default gateway
Preferred DNS
Card Cross
IP Address
172.16.10.1
192.168.10.2
172.16.10.2
Subnet Mask
255.255.255.0
255.255.255.0
255.255.255.0
192.168.10.1
172.16.10.1
Default gateway
Preferred DNS
172.16.10.2
172.16.10.2
127.0.0.1
Mng 172.16.10.0/24 l mng gi lp mng Internet

Page: 96
- My PC01 chnh l my ISA Server Join vo domain

- My PC02 ng va ng vai tr l my DC Server va l my Client
thuc mng 192.168.10.0/24.
ISA khng yu cu chng ta phi ln Domain nhng trong bi chng ta s
thao tc trong mi trng Domain tn dng cc tnh nng mnh m ca n.Sau khi
cu hnh IP cc my hon tt bn phi xc nhn rng cc my Ping thy nhau rt tt.
Trc tin ci c ISA bn phi p ng cc yu cu sau y:

- a ci ISA phi c nh dng l NTFS
- ci t .Net Framework 3.0 tr ln
- Vo Services tt dch v Windows Firewall i
Cng xin ni thm l c rt nhiu phin bn ISA Server cho chng ta ci t.
Tuy nhin trong phn ny ti ch cp ti ISA Server Enterprisem thi
Ti my PC01 bn Logon vo User Administrator ca Domain v chy
chng trnh Setup ISA Server ln chn Install ISA Server 2006
Page: 97
Trong mn hnh License Agreementchn Accept
Page: 98
Trong mn hnh Customer Information in cc thng tn ri click Next
Trong mn hnh Setup Scenario chn mc th 3 v click Next
Mn hnh Component Selection hin ra chn Next
Page: 99
Trong mn hnh Enterprise Installation Options chn Create a new ISA
Mn hnh cnh bo hin ra chng ta chn Next
Page: 100
Trong mn hnh Internal Network click chut tri vo nt add v ta s thm

card mng IN vo
Chn Next tin hnh ci t
Page: 101
Sau khi ci t ISA thnh cng bn vo my PC02 ping th IP my PC01&

IP mng ngoi s thy khng th Ping c
Tuy nhin vi my ISA th ping rt tt
Page: 102
Nh vy ngay sau qu trnh ci t ISA s kha tt c mi cng ra vo ca

mng chng ta (192.168.10.0/24)
By gi ti s tin hnh cu hnh ISA sao cho cc my trong mng c th thy
c nhau. Vi ISA Server chng ta c 3 gii php cc my trong mng
192.168.10.0/24 truy cp c Internet:
LAN
DC
Secure NAT
Internet
Proxy
Firewall Client
ISA Server
Internal network
Local host
External network
Dng
u im
Nhc im
Secure NAT
Kim sot c tt c mi Port ra

vo h thng
Khng kim sot c User, trang

web...
Proxy
Kim sot c mi User, trang

web...
Ch kim sot c cc Port

443,80,21
Kim sot c tt c mi Port ra

vo h thng
Firewall Client
Kim sot c mi User, trang
web...
Ch h tr cc h iu hnh
Windows
Page: 103
Ci tSecure NAT
Vo Start -> Programs -> Microsoft ISA Server -> ISA Server Management
Mn hnh chnh ca chng trnh ISA Server
Nhp phi vo Firewall Policy chn New ->Access Rule
Page: 104
t tn cho Rule ny v d l Internal
Trong Rule Action chn Allow
Page: 105
Trong Protocol bn chn All outbound traffic v nhp Next
Ti Access Rule Sources nhp Add
Page: 106
Chn Internal trong th mc Networks
Ti Access Rule Destinations Add Externalv Internalvo
Page: 107
Nhp Next
Trong Filrewall Policy ta thy xut hin Rule Internal mi c to nhp

Apply thc thi Rule ny
Page: 108
Ra Command DOS ping th my ISA thy rt tt
Page: 109

Bài Tập Thực Hành Môn Quản Trị Mạng

Uploaded by

Document Information

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

Bài Tập Thực Hành Môn Quản Trị Mạng

Uploaded by

Copyright:

Available Formats

Bi tp thc hnh mn Qun tr mng

Bi 1: CI T WINDOWS SERVER 2003 V DCH V AD .................................2

Bi tp thc hnh mn Qun tr mng

Bi 1: CI T WINDOWS SERVER 2003 V DCH V AD

Bi tp thc hnh mn Qun tr mng

6. Chng trnh Windows Setup tin hnh nh dng (format) a cng, s ch

7. Computer s t Restart khi tin trnh copy File vo a cng hon tt

Bi tp thc hnh mn Qun tr mng

9. Trn trang Personalize Your Software, in Tn v T chc ca Bn

Bi tp thc hnh mn Qun tr mng

10. Trn trang Product Key in vo 25 ch s ca Product Key m bn c v

Bi tp thc hnh mn Qun tr mng

Windows Server 2003 m bn ci t. Nu ci t Licence ch per server

Bi tp thc hnh mn Qun tr mng

14. Trn trang Networking Settings, chn Custom settings option

Bi tp thc hnh mn Qun tr mng

17. Click OK trong Advanced TCP/IP Settings dialog box.

Bi tp thc hnh mn Qun tr mng

21. Tin trnh ci t c tip tc v khi Finish, Computer s t khi ng li

Nh vy chng ta kt thc qu trnh ci t Windows Server 2003 Enterprise

Bi tp thc hnh mn Qun tr mng

Vo Start ->Run g lnh dcpromo ->Enter

Bi tp thc hnh mn Qun tr mng

Trong ca s Active Dirrectory Installation chn Next

Check mc Domain in a new forest sau nhp Next

G Domain ca bn vo trong v d ny l utehy.edu.vn sau nhp Next

Bi tp thc hnh mn Qun tr mng

Tip tc chn Next

Tip tc chn Next

Bi tp thc hnh mn Qun tr mng

Tip tc chn Next

Trong ca s DNS Registration Diagnostics chn mc 2

Tip tc chn Next

Bi tp thc hnh mn Qun tr mng

Tip tc chn Next(G Password vo trong trng. y l pass dung khi

Tin trnh upgrade ln DC bt u

Bi tp thc hnh mn Qun tr mng

`Trong qu trnh ci t nu Windows yu cu bn chn a CD Windows

tip tc ci t sau bn ch cho hon tt v Restart li my.

Bi tp thc hnh mn Qun tr mng

Bn ng nhp vi password khi bn ci t Windows 2k3.

Nh vy l chng ta hon tt qu trnh nng cp mt my ch Win2k3 ln

Bi tp thc hnh mn Qun tr mng

Cick chut phi vo mycomputer->Properties

Chn tab Computer Name.

Click Change. Chn Domain:v g

Bi tp thc hnh mn Qun tr mng

in thng tin username v password ng nhp vo domain.

Mn hnh hin ra ch Wellcome l thnh cng

Khi ng li my tnh v dng tn user trong domain ng nhp vo my tnh

Bi tp thc hnh mn Qun tr mng

Giao din dng lnh CLI hin ra.

b. S dng mn hnh ha.(i vi nhng my cha nng cp ln thnh DC)

Bi tp thc hnh mn Qun tr mng

y mnh s to mt users l student1

Bi tp thc hnh mn Qun tr mng

y ti xin gii thch cc du check box bn di phn Password v

Bi tp thc hnh mn Qun tr mng

By gi bn hy log off Administrator v log on vo student1.

Giao din dng lnh CLI hin ra.

Bi tp thc hnh mn Qun tr mng

b. Xa ti khon bng giao din ha

Click chut phi vo user mun xa chn Delete( y chng ta s xa user

Bi tp thc hnh mn Qun tr mng