2.6 Compare and contrast common network configuration concepts. Flashcards
DNS Address A
A records are for IPv4 addresses– Modify the A record to change the host name to IP address resolution.
DNS Address AAAA
AAAA records are for IPv6 addresses– The same DNS server, different records.
Mail Exchanger
Determines the host name for the mail server - this isn’t an IP address; it’s a name. (See pic on notes).
Text records (TXT).
Human-readable text information–Useful public information
–Was originally designed for informal information. Can be used for verification purposes–If you have access to the DNS, then you must be the administrator
of the domain name. Commonly used for email security
–External email servers validate information from your DNS. (See pic on notes).
Domain Keys Identified Mail (DKIM) (See pic on slide)
Digitally sign a domain’s outgoing mail
–Validated by mail servers, not usually
seen by the end user–The public key is in the DKIM TXT record.
Sender Policy Framework (SPF) (See pic on slide).
SPF protocol–A list of all servers authorized to send emails
for this domain–Prevent mail spoofing –Mail servers perform a check to see if incoming mail really did come from an authorized host.
Domain-based Message Authentication,
Reporting, and Conformance (DMARC) (See pic on slide)
Domain-based Message Authentication, Reporting,
and Conformance (DMARC) –Prevent unauthorized email use (spoofing) –An extension of SPF and DKIM.
You decide what external email servers should do with
emails that don’t validate through SPF or DKIM.That policy is written into a DMARC TXT record–Accept all, send to spam, or reject the email–Compliance reports can be sent to the email administrator.
DHCP Leases
Leasing your address– It’s only temporary– But it can seem permanent.
* Allocation– Assigned a lease time by the DHCP server– Administratively configured.
* Reallocation– Reboot your computer– Confirms the lease.
* Workstation can also manually release the IP address.
DHCP Scope properties
IP address range and excluded addresses. Subnet mask, Lease durations. Other scope options, DNS server, Default gateway, VOIP servers.
DHCP address reservation
Administratively configured.
Virtual LANs (See slide_
Virtual Local Area Networks
* A group of devices in the same broadcast domain
* Separated logically instead of physically
Virtual private network (VPN) (See slide)
Encrypted (private) data traversing a public network.
* Concentrator– Encryption/decryption access device, often integrated into a firewall.
* Many deployment options, Specialized cryptographic hardware, Software-based options available.