1.8 Explain the functions of network services

Question 1

Which DNS record can be used for Security?

Answer 1

TXT.(Sender policy framework and Domain Keys identifies mail. (DKIM)

Question 2

which DNS records is found in a reverse lookup zone?

Answer 2

PTR

Question 3

what is an IP exlustion

Answer 3

IP address range not given out by DHCP server.

Question 4

what are some DNS services?

Answer 4

Hostname to IP address Translation
Host Aliasing
Mail server Aliasing
Load Distribution

Question 5

List and name all DNS Record Types

Answer 5

10 in total
A (Host address)
AAAA (IPv6 host address)
ALIAS (Auto resolved alias)
CNAME (Canonical name for an alias)
MX (Mail eXchange)
NS (Name Server)
PTR (Pointer)
SOA (Start Of Authority)
SRV (location of service)
TXT (Descriptive text)

Question 6

A Record

Answer 6

A Records are the most basic type of DNS record and are used to point a domain or subdomain to an IP address. Assigning a value to an A record is as simple as providing your DNS management panel with an IP address to where the domain or subdomain should point and a TTL.

Question 7

AAAA Record

Answer 7

An AAAA record maps a domain name to the IPv6 address of the computer hosting the domain. An AAAA record is used to find the IP address of a computer connected to the internet from a name

Question 8

RR Record

Answer 8

A resource record, commonly referred to as an RR, is the unit of information entry in DNS zone files; RRs are the basic building blocks of host-name and IP information and are used to resolve all DNS queries. Resource records come in a fairly wide variety of types in order to provide extended name-resolution services

Question 9

SPF Record

Answer 9

A Sender Policy Framework (SPF) record is a type of Domain Name Service (DNS) TXT record that identifies which mail servers are permitted to send email on behalf of your domain. The purpose of an SPF record is to detect and prevent spammers from sending messages with forged From addresses on your domain.

Question 10

TXT Record

Answer 10

A TXT record (short for text record) is a type of resource record in the Domain Name System (DNS) used to provide the ability to associate arbitrary text with a host or other name, such as human readable information about a server, network, data center, or other accounting information.

Question 11

DKIM Record

Answer 11

Domain Keys Identified Mail is a process to validate sending domain names associated to email messages through cryptographic authentication. It achieves this by inserting a digital signature into the message header which is later verified by the receiving host to validate the authenticity of the sending domain.

Question 12

SRV Record

Answer 12

The SRV record is a Domain Name System (DNS) resource record that is used to identify computers that host specific services. SRV resource records are used to locate domain controllers for Active Directory.

Question 13

MX Record

Answer 13

Mail Exchange (MX) records are DNS records that are necessary for delivering email to your address. In simple DNS terms, an MX record is used to tell the world which mail servers accept incoming mail for your domain and where emails sent to your domain should be routed to.

Question 14

CNAME Record

Answer 14

CNAME is a Canonical Name Record or Alias Record. A type of resource record in the Domain Name System (DNS), that specifies that one domain name is an alias of another canonical domain name. Any system hosting a Web site must have an IP address in order to be connected to the World Wide Web.

Question 15

NS Record

Answer 15

NS stands for ‘name server’ and this record indicates which DNS server is authoritative for that domain (which server contains the actual DNS records). A domain will often have multiple NS records which can indicate primary and backup name servers for that domain.

Question 16

PTR Record

Answer 16

A pointer (PTR) record is a type of Domain Name System (DNS) record that resolves an IP address to a domain or host name, unlike an A record which points a domain name to an IP address. PTR records are used for the reverse DNS lookup. Using the IP address, you can get the associated domain or host name.

Question 17

Internal DNS

Answer 17

The internal clients likely will be members of your internal domain and will use a local DNS server for name-resolution tasks.

Question 18

External DNS

Answer 18

External DNS clients likely will be in a different domain and will use the Internet’s DNS servers to obtain information about your network. Managed by 3rd party.

Question 19

Third-party/cloud-hosted DNS

Answer 19

Externally hosted DNS for an internal/private network. May provide additional capabilities (availability, latency, scalability). Not controlled/managed by you.

Question 20

DNS Hierarchy

Answer 20

DNS uses a hierarchy to manage its distributed database system. The DNS hierarchy, also called the domain name space, is an inverted tree structure, much like eDirectory. The DNS tree has a single domain at the top of the structure called the root domain.
Dot (.) is the designation for the root domain.
Top level Domains (TLDs) & Country TLDs: .com, .net, .edu, .org, “country codes”, etc
2nd/3rd level domains: google, professormesser

Question 21

DHCP MAC reservations

Answer 21

Static DHCP entry assigning a specific IP address to a specific MAC address. Using MAC reservations has the effect of using DHCP to assign a static IP to specific devices, but doesn’t require manually assigning a static IP the the device.

Question 22

DHCP Pool

Answer 22

A group of IP addresses. Usually a separate pool for each subnet. Each subnet has its own scope:
* 192.168.1.0/24, 192.168.2.0/24, 192.168.3.0/24, etc.

Question 23

DHCP Scope

Answer 23

A pool of contiguous IP addresses
Exceptions can be made inside a scope

Question 24

DHCP Scope Options

Answer 24

Scope options are used to set additional network information when a host is assigned an IP address:
IP address range, subnet mask, lease duration, DNS, default gateway, WINS server

Question 25

DHCP IP exclusions

Answer 25

An exclusion removes an IP address or range of IP addresses from the pool of addresses that are given out by the DHCP server. The server will not give out excluded addresses. Therefore, a reservation should be used if a machine has a static IP address that falls within the DHCP address pool.

Question 26

DHCP Lease time

Answer 26

The DHCP lease is how long a device reserves an IP address on your network. The DHCP timer will try to renew a lease when the lease is 50% expired.

Question 27

DHCP relay/IP helper

Answer 27

Send DHCP request across broadcast domains

Question 28

DNS TTL

Answer 28

TTL (Time to Live) is a setting for each DNS record that specifies how long a resolver is supposed to cache (or remember) the DNS query before the query expires and a new one needs to be done.

Question 29

NTP

Answer 29

Network Time Protocol (NTP) is a networking protocol for clock synchronization between computer systems over packet-switched, variable-latency data networks. NTP is one of the oldest Internet protocols in current use.
NTP Stratum - accuracy level of the NTP source
Sync’ed clocks good for log files & authentication (Kerberos tickets)

Question 30

IPAM

Answer 30

IP Address Management is an integrated suite of tools to enable end-to-end planning, deploying, managing and monitoring of your IP address infrastructure, with a rich user experience.