Recreation DNS Host from the export file in a Microsoft DNS server

The following script is designed to add hosts, a list of exported and host IP addresses that originated from outside the area of a DNS server, Microsoft DNS server DNS particular area.

The basic functions of the script:
AddDNSHost.vbs CScript / DNS Server: DNS Server / DNSZone: DNSZone / hostname: Hostname / hostip: hostip

It's an example:
AddDNSHost.vbs / DNS Server: 192.168.0.1 / DNSZone: DNSZone.local / hostname: this computer/ Hostip: 192.168.1.123

A very simple way to build more commands can be accessed from any application spreadsheet where column A contains the list of host names, column B, to keep their IP addresses respected and column C, the following command ( line 1):

= "AddDNSHost.vbs / DNS Server: 192.168.0.1 / DNSZone: DNSZone.local / hostname:" & A1 & "/ hostip:" & B1

The above command can be copied only once for each row. The resulting command is constructedimmediately be pasted into a command prompt

'* * * * * * * * * * * Start of AddDNSHost.vbs * * * * * * * * * * *

On Error Resume Next

strDNSServer Wscript.Arguments.Named = ("DNS Server")
strDNSZone Wscript.Arguments.Named = ("DNSZone)
strHostName Wscript.Arguments.Named = ("host")
strHostIP Wscript.Arguments.Named = ("hostip)

If Len (Trim (strDNSServer))> 0 and Len (Trim (strDNSZone))> 0 and Len (Trim (strHostName))> 0 and Len (Trim (strHostIP))>0 Then
If Right (UCase (strHostName), Len (strDNSZone) + 1) "." & UCase (strDNSZone) Then
strHostName strHostName = & "." & StrDNSZone
End If
intRecordClass = 1
intTTL = 600

strComputer = "."
September objWMIService = GetObject ("winmgmts: {impersonationLevel = impersonate}" & strComputer & "rootMicrosoftDNS)
September objWMIService.Get objItem = (MicrosoftDNS_AType)
intReturn objItem.CreateInstanceFromPropertyData = (strDNSServer, strDNSZone,strHostName, intRecordClass, intTTL, strHostIP)
If Err.Number = 0 and = 0 Then intReturn
StrHostName & WScript.Echo vbTab & "Added"
Other
StrHostName & WScript.Echo vbTab & "Failed"
End If
End If

'* * * * * * * * * * * Start of AddDNSHost.vbs * * * * * * * * * * *

Visit : Intel Core i7 920 2.66GHz Store

Online E-mail Server Test

The spam problem is growing. With the increase in spam, there is a proliferation of technologies for blocking spam.

Five years ago, implementing a solution for e-mail is as easy as choosing your favorite MTA (Postfix, Qmail, Sendmail, Exchange Server or Lotus Domino) and configure a static IP.

Now, if you do the same (and more), it is very likely to encounter problems with e-mail address of some agency or another. AntiSPAM technology used by the receiver will decide that your spam e-mail and e-mail will be returned, or worse, land in the spam folder (and removed from the receiver without checking!)

Since none of the anti-spam technologies are dominant, are different technologies used by different e-mail server. This means that your e-mail can be considered as SPAM e-mail from different servers for different reasons. Sometimes your e-mail can be considered as SPAM from the same e-mailserver cites different reasons at different times.

If your organization is large enough, you can use the "All my other emails are fine, though, so the problem is on your side" logic and bully the other E-manager to disable all the anti-spam take.

But if the recipient is a bigger entity, the opposite view would be thrown at you ("We are receiving emails from all, so you better make your e-mail server). This is a nightmaresituation of an administrator e-mail and this is when you need to learn all the anti-spam technologies.

Usually most of the mail delivery problems caused by these anti-spam technologies.

Check HELO greetings
Reverse DNS Check
DNSBL (RBL)
SPF
Domain Keys
SpamAssassin content controls
BATV (Bounce Address Tag Validation)
Greylisting
URIBL
There are other not so widely used that technology can play in a few cases, and if youthat, Good luck!

Previously you had to do the routine tests referred to above, and as a result of the techniques above to see a problem. An online test server and solves this problem by automating the entire process. All you have to do is an email address to send a test e-mail.

Email Server receiver analyzes the e-mail servers, e-mail and its properties and provides a report with details of your e-mail server of respectall the technologies mentioned above.

See Also : Inspection Mirror Audio Integrated Amplifier Sennheiser Headsets

The importance of a DNS server addresses

DNS stands for Domain Name System. This is the entire system of web sites that allows the name to something like site.com web browser and easy to find. DNS Server on any computer or Web server running the software that allows access to, and an IP ( Internet Protocol). There are the main DNS server that contains all the DNS information and IP. These constitute the highest level of the system, while lowerBranching levels and should include all Internet service provider servers and server farms are used by large companies, all different DNS addresses and IP addresses.

If you want a domain name for the site, I really do not know any of this information. You do not know what a DNS address, which is the IP address of your computer, or other similar situations. But understanding how it works can help you if you have technicalproblems. Well, you have some understanding of what a technician can tell when troubleshooting.

Understand, in general, as the DNS addresses of work can also help solve your home computer. Sometimes the browser will refuse to specific websites or on websites and is a problem of DNS address in your system. Your browser is actually working and what is known as a DNS resolver or DNS client when you use itsurf the Internet. You send a request to the server owned by your Internet service provider to bring to a particular site and the provider sends the information to you.

If your ISP is not directly related to the site you are trying to reach a site hosted somewhere else, then it is a DNS resolver, which sends the request to another server for reporting information. When the information in your browser the words such as site.com,It seems that the numeric IP address of the site and make requests based on that number.

The site is created with your domain name, IP address, DNS servers and clients that allow users to view the site. If you're browsing and you are having trouble taking on some sites, the Internet service provider can help you giving the IP addresses of DNS servers, so you can verify that your browser is configuredgood.

The DNS name is basically the name you type to get a website. The DNS system uses this name as possible, so you do not have to type the website of the IP to access each track. 'S one of those little things that you do not really need to know, but that makes it possible for people who use the Internet without any technical knowledge.

Tags : Fabulous Super Store Blu Ray Disks

How to make a Windows NTP Network Time Server Configuration

computer synchronization is very important in modern computer networks, precision and time synchronization is critical in many applications, particularly time sensitive operations. Imagine buying an airline seat only to be told at the airport that the ticket was sold twice because it was then purchased a computer that had a slower clock!

Modern computers have internal clocks called Real Time Clock chips (RTC) that provide time and date. Thischips are battery backed so that even during power outages, they can maintain time but personal computers are not designed to be perfect clocks. Their design is optimized for mass production and low cost rather than maintaining accurate time.

For many applications, can be quite adequate, although many of these machines need time to be synchronized with other PCs on a network and the computers are not synchronized with each other problems can arise, such as file sharing networkor, in some environments even fraud!

Microsoft Windows 2000, a time synchronization utility built into the operating system called Windows Time (W32Time.exe) that can be configured to operate as a network server. Microsoft and others recommend that you configure a time server with a hardware source rather that the Internet where there is no authentication.

If you want to configure the Windows Time service to use the internal hardware clock, thenfirst check that w32time is located in the list of system services in the registry to check:

Click Start, Run and type regedit and click OK.

Locate and click the following registry entry:

HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesW32Time

We strongly recommend that you back up the registry as serious problems can occur if you modify the registry, the changes to the registry is done at your own risk.

To begin the configuration of ainternal clock, click the following subkey:

HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesW32TimeParameters

In the right pane, right-click ReliableTimeSource, click Edit.

In the Edit DWORD Value, then type 1 in the Value data box, click OK

Close the Registry Editor

To restart the Windows Time service, Run (or alternatively use the Command Prompt).

Type: net stop w32time & & net start w32time

Then press Enter.

Onlocal reset 'time the computer, type the following on all computers except the time server which must not be synchronized with itself:

w32tm-s

Configuring the Windows Time service to use an external time source, regedit, click Start, Run, and type and then click OK.

Locate the following subkey:

HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesW32TimeParameters

In the right pane, click Type then click Edit Edit Value, type NTP in the Value data boxbox and click OK.

Now, in the right pane, right-click ReliableTimeSource, click Edit.

In Edit DWORD Value data box, type 0, click OK.

NtpServer right mouse button in the right pane, click Edit.

In Edit Value, type the Domain Name System (DNS), each DNS must be unique.

Now click on OK.

For Windows 2000 Service Pack 4 only the time correction settings to do thisfind:

HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesW32TimeParameters

In the right pane, right-click MaxAllowedClockErrInSecs, and then click Modify the Edit DWORD Value box, a second time in seconds the maximum difference between the local clock and the time received from the NTP server types should be considered as a valid new time.

Click OK.

To find the polling interval:

HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesW32TimeParameters

Inthe right pane, right-click the period, and then click Edit.

In Edit DWORD Value data box, type 24 then click OK

Close the Registry Editor

Click Start, then Run and type the following command and press Enter:

Net stop w32time & & net start w32time

the local 'Recovery time computer, type the following on all computers except the time server which must not be synchronized with itself:

Network Time Protocol (NTP) is an Internet protocol used totransfer of accurate time information for the time, so that an exact time can be obtained

For the Network Time Protocol, NTPServer, locate and click:

HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesW32TimeTimeProvidersNtpServer

In the right pane, click Enabled, and then click Edit.

In the Edit DWORD Value, type 1 under Value data, click OK.

Now go back and click onon

HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesW32TimeParametersNtpServer

In the right pane, click NtpServer, and then click Edit in the Edit DWORD Value data, type in the right pane, click NtpServer, and then click Edit in the Edit DWORD Value data, type the domain name system ( DNS), each DNS must be unique and need 0x1 to the end of each DNS name otherwise changes will have no effect.

Now click on OK.

Identification andClick on the following

HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesW32TimeTimeProvidersNtpClientSpecialPollInterval

In the right pane, special poll interval right mouse button, click Modify.

In Edit DWORD Value data box, type the number of seconds for each poll, ie 900 to poll every 15 minutes, and then click OK.

To configure the correct settings, found:

HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesW32Timeconfig

In the rightRight click MaxPosPhaseCorrection, and change, in the Edit DWORD Value, under Base, click Decimal, under Value data, type a time in seconds as 3600 (one hour) and then click OK.

Now go back and click:

HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesW32Timeconfig

In the right pane, right-click MaxNegPhaseCorrection, and then click Change.

In the Edit DWORD Value box, under Base, click Decimal, type in the data value of the time in seconds that you want to poll such as 3600 (polls inhour)

Close the Registry Editor

Now that Windows Time Service, click Start, Run (or alternatively use the Command Prompt) and type reboot:

net stop w32time & & net start w32time

And on any computer other than the time server, type:

W32tm / s

And this is the server which should now be up and running.

Friends Link : Virtual Space

IPv6 (Cisco) Training - Using the "DNS server and a domain name (IPv6)" Commands

Well, since this article is a kind of long I'm going straight down to it, so without further ado let us begin.

The "DNS - server" (IPv6) command, a Cisco IOS "DHCP for IPv6 pool configuration mode command is used to specify the network Domain Name System (DNS) server IPv6 (s) available on one.

Here is the correct syntax and example of the "DNS - server" (IPv6) command:

Syntax: router (config-dhcp) #> DNS - Server IPv6 address
Example: Router (config-dhcp) # dns - server 2001:0 DC8: 3000:3000:: 42

Note that the router prompt "DHCP for IPv6 pool configuration" mode argument is the IPv6 address and IPv6 address of the DNS server available.

Now, in case you're wondering if you can use (configure) the "DNS - server" (IPv6) command several times on a router, if you have multiple DNSnetwork servers. And the new IPv6 addresses delete (overwrite) the current (old) IPv6 addresses.

Also, if you search for a specific DNS server for the list of DNS servers, all you have to do is type the word "no" in front of the command as you can see below:

-Address-dhcp) # no DNS - server config ipv6 Syntax: router (
Example: Router (config-dhcp) # no DNS - server2001:0 DC8: 3000:3000:: 42

Ok, that basically sums up the "DNS - server" (IPv6) command, so, go to "domain name" (IPv6) command.

The "domain name" (IPv6) is also a command from Cisco IOS "DHCP for IPv6 pool configuration" mode command, but is used to configure a domain name for a DHCP client for IPv6, also known as a router or an applicant RR.

Here is the correct syntax and example of the "domain name" (IPv6)command:

Syntax: router (config-dhcp) # domain domain
Example: Router (config-dhcp) # domain ittechtips.com

Announcement that the router prompt is still "DHCP for IPv6 pool configuration" mode and domain of the argument concerning the domain name is used by the client. So in the example above, the router (client) uses the domain name ittechtips.com.

And, like the "DNS - server" (IPv6) command, the "domain name" (IPv6)command can be used (configured) multiple times on a router. And, new domain names do not delete (overwrite) the existing domain names.

Finally, if you delete a domain name to a DHCPv6 client (RR) should see the word "no" to the "domain name" (IPv6) command as shown below:

Syntax: router (config-dhcp) # no domain domain
Example: Router (config-dhcp) # no domain ittechtips.com

I hope this article is very informativeand helped you quickly understand the use of "DNS - server and the domain name" (IPv6) commands. If you need to learn, I suggest you go to my website, where the latest information on Cisco IPv6 design and deployment techniques available.

To your success,

Thanks To : Blank DVDs Store. LOWER Prices in The Same Item Network Consulting

ISC DHCP Server Configuration

The dhcpd server is a server that allows clients to connect to the DHCP server and requests the IP address and gateway / dns. DHCP is used in most of the major networks as a means of easy to manage IP addresses. Linux is just a server, dhcpd called creative. Dhcpd is available on the website on the Internet Software Consortum isc.org. The server must be available from your distribution, however, so check withdistribution.
ISC provides only the standard package tarball, so if your distribution does not provide the dhcpd package, it will go to the SAI kit. Download the file and extract it using the following commands:

gunzip dhcpd version.tar.gz
tar-xvf dhcpd Version.tar

Be sure to replace the current version to version. Now run the following commands:

CD dhcpd version
. / Configure
to
make install

DHCPD installwithout problems, if not, please contact the mailing list on the ISC website. There are only three tasks with dhcpd, the first is to edit the configuration file. Put the following in / etc / dhcpd.conf:

# / Etc / dhcpd.conf from Christopher Peace
ddns-update-style ad-hoc;
default-lease-time 259200;
max-lease-time 300000
option subnet-mask 255.255.255.0;
option routers 192.168.0.1;
option domain-name-servers 192.168.0.1;
subnet192.168.0.0 netmask 255.255.255.0
{Range 192.168.0.20 192.168.0.40;
range 192.168.0.50 192.168.0.90;}

Of course you want to replace the router, domain server, netmask, and range of what your network. So, I have a network that I use DHCP for a total of 60 IP addresses assigned. This range is from 0.20 -. 40, 0.50 and -. 90. DHCPD only IP addresses within this range, as I like to keep 0.1 -. 19, -. 49 .41, and .91 -. Free for servers and as 254.The "default-lease-time 'and' max-lease-time" settings are used to indicate how long the DHCP lease will last if the customer does not require additional time (default), and when asked the most .. time (max) This time is in seconds if you have a static IP assigned to a host, use the following syntax in the file / etc / dhcpd.conf.:

Host Joe {hardware ethernet
00: C0: F0: 25: b7: 15;
fixed-address 192.168.0.205;}

This will be the IP address of 192.168.0.205 to any Joetime to request an IP. The MAC address is the address of Ethernet hardware.

Now we enter the next step, create the directory / var / state / dhcp / dhcpd.leases:

touch / var / state / dhcp / dhcpd.leases

DHCPD can now start to try it. First, if you currently have another DHCP server on the network, turn on that. Then do the following:

/ Usr / sbin / dhcpd

Finally, the launch of a DHCP client (if using Windows 98/2000/XP/NT, pleaseThe ipconfig command to release the IP and then renew typing:

ipconfig / release_all
ipconfig / renew_all

This should take a little ', since the DHCP client is looking for the source server. After a little' time out, and then query the network for DHCP servers, finding our Linux. Now, once you are sure DHCPD works, we need an init script for the creation of DHCPD. This is used to start, stop and restart the dhcpd. This script initrun automatically at startup to start dhcpd. Put the following in / etc / init.d / dhcpd:

#! / Bin / sh
# / Etc / init.d / dhcpd Christopher Pace
In "$ 1"
start)
echo-n "Starting dhcpd: dhcpd"
start-stop-daemon - start - quiet - exec / usr / sbin / dhcpd
echo "."
,,
stop)
echo-n "Stopping dhcpd: dhcpd"
killall -9 dhcpd
echo "."
,,
restart)
echo-n "Starting dhcpd: dhcpd"
killall-HUP dhcpd
echo"."
,,
*)
echo "Usage: / etc / init.d / dhcpd {start | stop | start | reload | force-reload}"> & 2
exit 1
,,
ESAC
exit 0
You should now:
chmod 700 / etc / init.d / dhcpd
ntsysv

Thanks To : Toshiba Satellite Laptops Store. LOWER Prices Inkjet Printer Ink

Configure the FTP server using FileZilla on Windows 7

FTP stands for File Transfer Protocol, if you want to know more, you can check on Wikipedia. FTP is actually less popular nowadays, as many users of other protocols for exchanging files, especially P2P BT. FTP, still play an important role.

Let's say that you have a file that is 300 MB and you want to send to your friend overseas immediately. What would you do? Usually email attachment limit (usually not so highas 300 MB) and will be extremely slow and unstable when you try to transfer via instant messaging software like MSN. The best bet is to configure the FTP server at home and allow your friend to download from your computer. The mind, then you have an account to view files and take them anywhere.

If all the remote desktop setting up your home, you probably leave your computer on 24 * 7 just so that you can not accesswhenever you want. Or if you have a spare computer as I do, why do not you try to use the people? I'll show you how your computer to an FTP server.

After trying some of the FTP server software, freeware FileZilla Server has been my choice.

Ok, let's start.

The first thing to do is install the package just downloaded (the link above), installation is fairly simple and I do notto arrive at retail.

After installation, FileZilla server starts and you should be able to see the following interface:

Before you go ahead and set the ports, we want a user to ensure that the works to add. We are going to choose "Edit -> User" (. If there is a link, just below the "Edit" in the menu bar)

I have a user called "anonymous", and make sure the "Password" box is checked, because I'd be likemy account public FTP visitors can download from my FTP server. If you want other accounts, make sure the "Password" is selected on the basis of secure access to enforce. For many users, you can use another location, or you can just create a group and assign the path to all members of that group.

On the left you will see the "Shared Folders" the folder you want to "anonymous" as well as the rights that would seemfeasible. When finished, click OK.

Note: The shared folder is the root directory that you selected (in this case, is "anonymous") could be seen, but all the folders that the folders are visible to the user.

The thing that Windows users, you probably missed when setting up FileZilla is the firewall. About the installation, even if you have the means to allow computers to access your FTP Server, there is something wrongis correct.

Locate your firewall settings, you can find FileZilla Server Interface can be allowed in the list, but this is the problem. We need to FileZilla Server Core instead of the interface. The interface is just the user interface for end users like you and me for access to the basic program. Then click Add to select "FileZilla Server" from the installation folder:

Now OK.

If you have two or more computers at home,you can buy a test. First check your internal IP address. If you do not know how to do it, check out my previous post, set the remote desktop. For example, I discovered that the internal IP of 192.168.1.111 is my server, then on another computer, I type in just ftp://192.168.1.111.

Note: If a port other than 21, say that the port 22, type ftp://192.168.1.111:22 if you do not know which port is, in fact, is underinstitution -> General Settings: If it works for you, we will go, other than those new to read instructions or ask me.

FTP server is intended to cover in a network, if you just try to set it up at home, then you are done, but according to the situations introduced in my first paragraph, I would like to see the world.

How a Remote Desktop, we will establish port forwarding. In my case, because my FileZilla Server on port 21 on my computer, Ineed a way to send the FTP application on this port. Ideally it would be nice if you can configure the port 21 and outer door, because every time you type in the address bar, we do not need to type the port number (default port of FTP browser is 21). However, most ISPs (Internet Service Provider), for example, I use Telus blocking port 21. We need a different port as our outer door to find:

I suggest port 5050 as my remote port and all FTP requests through this port willNext to port 21 on my server. I am using D-Link DIR-825, if your router, refer to the instruction manual.

If dynamic DNS, then you have done, if not, go back and read my post, it is very simple.

Let's say you have your dynamic DNS name as myServerAtHome.no-ip.org, then when you're out, you can simply type ftp://myServerAtHome.no-ip.org:5050, but when you get home, you may onlyftp://192.168.1.111.

You can set your browser to visit your FTP server, though, I recommend using FTP software. FileZilla Server is a great FTP server and client software they have. You can check the website FileZilla if you do not have one, why not try FileZilla Client?

Friends Link : Blu-Ray Movies Store. LOWER Prices in Same Item Laser Printers Store. LOWER Prices in Same Item

DNS Server Error and how to solve the problem

DNS stands for Domain Name System, which is used to assign Internet Protocol addresses to domain names. It gives phone numbers for the domain names of websites. Every computer connected to the Internet has an IP address, which is represented by numbers and points. A web site can be accessed using the IP address.

It is not easy to remember IP addresses for each site as it is to remember domain names of websites. Domain names are translated into IP addressessystem and it is only then that the Web page is loaded via the Internet service provider with the help of Hyper Text Transfer Protocol.

When the DNS server is not able to name the IP address corresponding to the domain name, called the DNS server error. There are several reasons for this error. The error can be locally or remotely. local problem, the computer is not connected to the Internet. The problem means that the remote server is a problemauthentication.

The data input or output is in control of the firewall. Some software programs have avoided the firewall settings. Sometimes the server is blocked by firewall. To resolve this problem, open the Control Panel and go to Windows Firewall settings. If your browser is not added to the Exceptions tab, click Add Program, then choose the browser that the list of programs that open. Click OK. Go to the HTTP port to add and insertthe name and 80 for the port number.

Sometimes it can be quickly DNS cache poisoning bug, which can be solved with the command "ipconfig / flushdns" on commission.

Clearing the browsing history and cookies will also help to resolve the DNS server error.
The DNS settings for the Internet should be controlled. The information must be taken by the ISP and DNS settings must be entered correctly.

Thanks To : Laptop Store Save!

Install and configure the DNS server BIND

DNS is crucial to your server if you want to be accessible on the Internet. The reason is that domain names are much easier for users to type and easy to remember. So, you have a DNS server if you think you have Internet users connect to the server. The default DNS server is the Berkeley Internet Name Domain (BIND). BIND is available via the Internet or ISC Software Consortum isc.org. InIn addition, available through your BIND distribution. In the case of BIND, I would recommend you to download the packages via the website of your distribution. Before a domain name, you must register first, that there are several services available to register domain names. Once installed, then edit the file / etc / named.conf and add the following to it:
zone "desireddomain.com" {
type master;
file "desireddomain.db";
};

You are obviously replacethe "strings desireddomain, if necessary, with the new domain name. This voice tells the service specified that this server is the master server (DNS 2 DNS servers needed for redundancy). Now then, we will now use the file" desireddomain.db "which should be placed in the name of the working directory, which is specified at the beginning of / etc / named.conf. In this file, we need the following information:

IN SOA nameofyourfirstdnsserver.com. nameofyourseconddnsserver.com. (
1000000; Series
10,800; Refresh - 3 hours
3600; Again - 1 hours
86,400; expired - 24 hours
3600), Minimum - 1 hour

IN NS nameofyourfirstdnsserver.com

www IN A ipaddressofwebserver
FTP in a ipaddressofftpserver
SMTP in a ipaddressofmailserver

This must be stored in the directory specified in the first lines of / etc / named.conf. Now we will configure a secondary DNS server or a slave> DNS Servers. This is much easier than setting up the primary server. The only change the named.conf file / etc / on the secondary server. The following should be stored in the file / etc / named.conf file:

zone "desireddomain.com" {
type slave;
file "desireddomain.db";
};

Now we can get the configuration file of the first server using a utility that comes with BIND, named-xfer. We will do this by entering:

named-xfer-zdesireddomain.com desireddomain.db-f \-s 0 addressofprimarynameserver

This will copy the configuration file of the primary DNS server). BIND should start automatically, if not, then you can start with the following command (for most systems:
/ Etc / init.d / named start

You must allow somewhere between 24 and 48 hours for the DNS records updated when you move the DNS server from host to host. DNS is a protocol for large andmakes our lives easier, we're too lazy (like a domain name instead of IP).

Friends Link : Tension Force Portable MP3 Walkman Store

Support Tools for Windows Server support and management

When you purchase the CD of Windows server support, there are various tools in the set. In some tools included are some of the most essential and useful tools in below.

Dcdiag is actually a command line to access and its function is to monitor Active Directory. Run this program will help to make analysis of the state of domain controllers in the forest, the analysis of the necessary permissions for replication, generate reportsall the problems of registration and test DNS connectivity and replication, and report any errors or problems? Repadmin is accessible to the command line that is included in this set-support for Windows server and the function of sight of the replication topology from the perspective of each domain controller, then the administration to better understand the transmission of data and support the individual problems that may occur with replication.In addition, this tool also be used to generate a replication topology manually in case the site link bridging is disabled. This tool also support server also offer several other features, including its function to see the data controller Meta replication to determine the most recent data replication and forced replication between different domains.

Another tool that comes with the Windows server support REPLMON. This tool is known as auseful graphical tool that can be easily used or applied by the program of group support tools or the command prompt. Just like repadmin, this tool also helps the administrator to see the forest wide bridgehead servers, domain controllers in the domain and the current status of the server errors. This support tool also checks the replication topology and gives a graphical representation of the replication partners. Not only does this help the admin directory partitions to conduct the synchronization, replicationthe domain and receive a status report.

The installation process of Windows 2003 Support Tools is not difficult. All you have to do is follow six easy steps:

Log on as administrator

Put the installation CD of Windows server support.

Click "NO" if the message asks you to reinstall Windows.

When the Welcome screen, click "Task operate additional displays.

Click "Browse this CD"

Go to "Support" and then "Tools" and doubleClick Suptools.msi file for the installation wizard. This will guide you through the installation CD of Windows server support.

Related : Preview Games Console External Laptop Linux Thread

Windows Small Business Server 2008 Standard and Premium expectations

Microsoft recently announced the release of Windows Small Business Server 2008 Standard and Premium Edition set for release November 12, 2008.

The release of Server 2008 marks one of the most significant upgrades Microsoft has made to the line of server software. Perhaps only the release of Windows 2000 was a step most important to the product line. Before the release of Windows 2000, NT 4.0 was available only for servers.

The newtechnologies available in Server 2008 will prove to be more favorable to society than previous versions.

Small Business Server 2008 Standard and Premium

Server 2008 is the first release of a new server product from Microsoft Server 2003 R2. The innovations contained in this release are well worth the wait. With the release, as with Vista, Microsoft makes the most of the 64-bit computing environment that isaround for several years.

Some of the major developments in the new release is an update to Active Directory (AD) infrastructure, which has since Windows 2000 was released. However, many functions within Server 2008 is very powerful and have the latest Microsoft server operating system in a radically different direction.

The Small Business Server 2008 Standard Edition comes with Microsoft Exchange Server 2007, Windows SharePoint Services 3.0, Windows Server Update Services 3.0, Microsoft Forefront Security for Exchange Server, Windows Live OneCare for Server and integration with Office Live Small Business.

The Small Business Server 2008 Premium Edition includes all the products in the Standard Edition plus Microsoft SQL Server 2008 Standard for Small Business.

Server Core

Server Core is one of the characteristics of this new radical.> Server Core provides a minimal version of Server 2008 are installed on machines that only need specific functionality. For example, Server Core can be configured on common features that normally the server, such as DHCP server, DNS server, file server and Active Directory, as well as operations such as streaming media, printing services, or even Windows Virtualization.

Server Core is designed for usenetwork administrators and server management staff to develop a core team of highly specialized and efficient, using the computing environment is Server. Server Core Installation is very different from other Microsoft operating systems on a PC or server installations minimal. The interface - usually from the command line, but a task manager or the Notepad window may be sued.

IT professionals can enjoy a Server Core installation, where necessary.Maintenance under such a system is an absolute minimum, because the server where the software is installed only focused on a specific function, instead of multiple functions on a full install of Server 2008. There are also inherently less vulnerable to a potential hacker to work under that setting, so security is a breeze. The simplest system also ensures fewer software errors that occur when you least expect it - as when an application installed that is not fully compatible with Microsoft software.

Given all these benefits for a minimal installation, it becomes clear that the time management involved with this specialized servers is significantly reduced. Less time means less maintenance management of IT staff, or at least, not one staff to spend time making sure that the firewall keeps up or a problem highlighted by several functions in a typical> Server.

Hyper-V

In Server 2008, Hyper-V option, which increases the presence of Microsoft in the world of virtualization. Virtualization provides a single machine to take over the functions of two or more machines, using the same resources, without overlaps or conflicts. Virtualization has many advantages for the business world that they are difficult to track. The limited number of machines in a virtual environment can save money for abusiness in many different ways. Less machines use less energy in less space and can be effectively managed by fewer staff.

Today, the machines can handle the added functionality of virtualization requirements, often CPU, memory and hard disk space is wasted or never used. Virtualizing a server environment is a trend that will continue to see over the next decade.
earlier version of Microsoft virtualization, Virtual Server, uses apopular virtualization technique called "virtualization host-based" where the main installation operating system runs a service called "Virtual Machine Monitor (VMM) that provides virtual environment to another operating system.

Hyper-V works differently with a hypervisor. A hypervisor provides an abstraction layer in boat running only the minimum functions of the kernel, abstracted from the environment required to run multiple operating systems and theircorresponding applications on top of the kernel. This results in a faster and more scalable than the virtual VMM methodology.

However, an important consideration is that Hyper-V is largely depends on the hardware. To fully exploit the speed and scalability of Hyper-V Microsoft virtualization infrastructure generally requires hardware acceleration. This hardware is not uncommon, however. Examples of these are AMD's Pacifica and Intel VT extensions their respective Opteron and Xeon.

Setting up a virtual machine on Hyper-V is a breeze with the wizard, and console access to virtual environments is simple and effective. Hyper-V is integrated into the Server 2008 version and it is just file and print services, making configuration and management are very simple and familiar to the experience with earlier versions of Microsoft.

Easier Server Management

Previousserver installations> had a separate management console for each role within the Manage Your Server dashboard. Manage Your Server is a useful extension to the previous releases server management console were not so neatly collected. However, with Server 2008, this a step further convenience with all new Server Manager.

With Server Manager, administrators have a one-stop-shopmanagement server for the first time. It 's very likely that most of the time, the IT staff never need to use another tool to manage the system, Server 2008, and will be very grateful. Again, with this tool, Microsoft reduces the time required to perform simple tasks.

Within Server Manager, the roles and features installed on the system as of 2008 Server DHCP server, DNS server, file services, Domain services, etc. All these are available for the management and control with the click of a mouse. Very useful troubleshooting tools are also conveniently located in the Server Manager, such as Windows Firewall, Device Manager, Event Viewer and WMI Control. The new Windows Server Backup tool is also located here and will be further discussed, because it is a significant improvement in itself.

Click on any of the management tools inside> Server Manager, the administrator of a special home page, which provides information relevant to the role. Hence, more information is collected, what advice the understanding of the task or function and links to other useful tools that help administrators in almost every situation.

Terminal Services server goes hand in hand. This is the power that enables administrators to remotely configurePC. In previous versions, Terminal Services only allowed the whole system PC remotely deployed, rather than specific applications. The changes to version 2008 Server via the remote desktop client reworked, in which a user logs on to download and install the application without the administrator to oversee the operation.

Other improved Server 2008 Features

Windows Server Backup has been enhanced for faster backupsnew technologies. O server full or incremental backup, the IT staff will notice the difference from previous versions of Microsoft. Restoring a backup is much easier. Previously, this had to be done manually by multiple backup and an incremental backup was performed, but only the date of backups to choose the repair can take place.

Other improvements to the backup service in Server 2008,the ability to restore on another computer, if necessary, the possibility of applications and better planning to return to automate the daily backups. The backup service also allows for remote administration by adding the backup module to the Server Manager console.

Microsoft BitLocker is a new technology available in Server 2008. Debut with the release of Vista, BitLocker encrypts the entire hard drive as a first physicalline of defense against the physical theft of sensitive data that can be included inside. BitLocker provides peace of mind for the offices of the organizations in which physical security can not be what it is at the head office.

Another new feature is the read-only Domain Controller (RODC), which allows staff to set up the infrastructure of Active Directory read-only. This configuration includes the Active Directory replication is unidirectional, rather than two directions, as it isnormally configured. An organization could use this setting back the branch that takes you back to the central office may not be as fast or reliable. In this scenario, Active Directory is configured in a central office and then sent to remote sites before it is used.
The combination of configuration of Server Core, RODC and BitLocker provides a level of security in the Server 2008 version is impossible in a previous version. ConfigureMachines such as read-only ensures that data can not be compromised even if a hacker managed to penetrate the perimeter defenses. Although theft may occur when a server was stolen at a remote site, BitLocker ensures that data on the machine to decipher, making the checks for the RODC administrators to reconfigure the network, with a few mouse clicks.

Internet Information Services (IIS) technology is the server-side for the first time availableWindows NT 3.51 in 1995. With the full release in the seventh IIS Server 2008 for the first time, the service is completely configurable. Webmasters indicate precisely the services you want to allow - and what services you need out. All IIS 7 is also supported by new Server Manager console.

Versions and Licensing

different product editions of Windows Server 2008. A secondthe version is configured for each specific type of hardware platforms, such as 32-bit or 64-bit versions and are available with built-in virtualization, while others leave the function.

It 'important to the products of the different ways to know when the Microsoft server licenses purchased. The Microsoft Open Licence is for smaller customers with less than 250 desktop computers in their network. From five licenses can be purchased andwith these permits, the owner has the right to transfer images to different machines or transfer of a license to another machine.

Microsoft Volume Licensing is designed for networks with more than 250 computers. Within this group are held at different levels to provide flexible payment program. same rights under the Open License, but there are additional discounts for volume purchases.

Both types of licenses with the option to add Microsoft Softwareassurance plan that provides support for Microsoft products.

Software Assurance includes full support, including training and the ability to speak with representatives from Microsoft to assist in the creation and management software for Server 2008.
Software Assurance must not be forgotten in a Microsoft acquisition. With the purchase, software upgrades are included, in addition to the version of rights that guarantees the buyer the right, without additional costs, new editionsof goods purchased must be available during the duration of Software Assurance.

Web Server 2008

This version is configured for the device indicates the ability to function as a Web server and little else. This provision may not be the configuration of the domain controller and does not contain the new Microsoft virtualization technology, Hyper-V. However, Web Server 2008 is supported by a Server Core installation. Thisversion can be purchased in 32-bit or 64-bit and supports up to four processors.

Windows Server 2008 Standard

The standard version is equipped with all the basic features of the new improvements and technologies described in this article. It 'available in 32-bit and 64-bit and also supports up to four processors. The Standard Edition can be purchased with or without Hyper-V virtualization. If the version with virtualizationpurchased, it also comes with five client access licenses (CALs). It is worth noting that Hyper-V is available with 64-bit editions of Server 2008. A virtual copy can be configured with the standard edition.

Windows Server 2008 Itanium

The Itanium edition is fully customized for specific servers that work is how to run the database server or application. Itanium does not support Hyper-V, nor support for Server Core. It 's justAvailable in 64-Bit Edition, bought each processor to a maximum of 64 supported processors and supports up to 64 GB of RAM.

Windows Server 2008 Enterprise

Companies can also be purchased in editions 32-bit or 64-bit, with or without Hyper-V virtualization. At company level, 25 CALs standard with the installation and instead of a maximum of four processors, this edition is the support of eight. Enterprise also providessupport a much more system memory (RAM) with the increase in the number of processors supported: up to two terabytes versus standard 32-gigabyte version. Four cases are available with the Enterprise edition.

Windows Server 2008 Datacenter

Once again, the Datacenter version, purchased both a 32-bit or 64-bit and with or without Hyper-V virtualization support. In terms of licenses are purchased per processor and the Datacenterpurchasing organization is granted unlimited virtual instances. Datacenter Edition was purchased with the Enterprise edition for machines that can benefit from unlimited virtualized environments. The Datacenter Edition supports up to 64 processors to 64-Bit Edition.

It 's also interesting to note that the Hyper-V can be purchased as an add-on editions purchased without the feature. However, at a cost of only $ 28, it is almost unthinkable because someonewould choose to purchase Server 2008 at any level, without this technology.

Other editions should be available in the near future, Windows Small Business Server and Windows Essential Business Server. Both new releases, regardless of the specific configuration chosen, will be available only in 64-bit editions. As their names to show, the issues for SMEs with up to 50 workstations in the Small Business Edition and up to 250 jobsEssential Business Edition.

In addition, specific functionality within each issue are chosen by these new versions. Small Business Server will come with Server 2008 Standard, Exchange Server 2007, SharePoint Services 3.0, a one-year subscription to Forefront Security for Exchange Server and Windows Live OneCare, the all in one package. The Premium version contains all of the above and a copy of SQL Server 2008 and Server 2008Standard, which allows installation on two computers.

Windows Essential Business Server 2008 can be installed on three different machines and includes Server 2008, Exchange Server 2007, Forefront Security for Exchange Server, System Center Essentials 2007 and the next version of ISA Server and Internet Security, when available. The Premium edition adds SQL Server 2008.

See Also : Soil Permeability

How to Create a Windows NTP Network Time Server Configuration

Synchronization of computer is very important in modern computer networks, precision and timing is crucial in many applications, particularly time sensitive operations. Imagine buying an airline seat only to hear at the airport that the ticket was sold twice because it was then purchased a computer that had a slower clock!

modern computers have internal clocks called Real Time Clock chips (RTC), the date and information. Thischips supported the battery so that even during power outages, may time but personal computers are not designed to be perfect to keep the clocks. Their design has been optimized for mass production and low cost rather than maintaining accurate time.

For many applications this can be quite adequate, but often need time machines to be synchronized with other PCs on a network and when computers are not synchronized with every other problem may arise, Such as file-sharing networksor, in some environments even fraud!

Microsoft Windows 2000, a time synchronization tool built into the operating system called Windows Time (W32Time.exe) that can be configured to operate as a network server. Strongly Microsoft and others recommend a server when configured with a hardware source instead Internet, where there is no authentication.

If you configure the Windows Time service to the internal hardware clock, usefirst make sure W32Time is the list of system services in the registry to verify:

Click Start, Run and type regedit and click OK.

Locate and click the following registry entry:

HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesW32Time

It is strongly recommended that you back up the registry as serious problems can occur if you modify the registry incorrectly, modifications to the registry at your own risk.

To begin configuring ainternal clock, click the following subkey:

HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesW32TimeParameters

In the right pane, click ReliableTimeSource, click Change.

In the Edit DWORD Value, type 1 in the Value data box, click OK

Close the Registry Editor

To start the Windows Time Service click Start, Run (or alternatively use the operations command prompt).

Type net stop w32time & & net start W32Time

Then press Enter.

Alocal reset 'time on the computer, type the following on all computers except the time server which must not be synchronized with itself:

w32tm-s

To configure the Windows Time service to an external source, click Start, Run, type regedit and then click OK.

Locate the following subkey:

HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesW32TimeParameters

In the right pane, click Type then click Modify, in edit Value type NTP in the Value dataand click OK.

Now, in the right pane, right-click ReliableTimeSource, click Change.

In the Edit DWORD Value window, under Value data, type 0, click OK.

NtpServer right mouse button in the right pane, click Edit.

In the Edit DWORD Value, type the Domain Name System (DNS), DNS, each unique.

Click OK.

For Windows 2000 Service Pack 4, set the settings to make this correctionfound:

HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesW32TimeParameters

In the right pane, click MaxAllowedClockErrInSecs right, then change the Edit DWORD Value box, type a time when the second maximum number of seconds difference between the local clock and the received time from the NTP server to be considered a valid new time.

Click OK.

To find the polling interval:

HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesW32TimeParameters

Inright pane, click Period, then click Edit.

In the Edit DWORD Value window, under Value data, type 24 then click OK

Close the Registry Editor

Click Start, then Run and type the following and press Enter:

Net stop w32time & & net start W32Time

To reset the local 'time of the computer, type the following on all computers except the time server which must not be synchronized with itself:

Network Time Protocol (NTP) is an Internet protocol used toaccurate transfer of time, time that the information together, so an exact time can be obtained

For the Network Time Protocol, NTPServer, locate and click:

HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesW32TimeTimeProvidersNtpServer

In the right pane, click Enabled, then click Edit.

In the Edit DWORD Value, type 1 under Value data, click OK.

Now go back and clickon

HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesW32TimeParametersNtpServer

In the right pane, click NtpServer, then change the Edit DWORD Value data, type in the right pane, click NtpServer, then change the Edit DWORD Value data, type the Domain Name System (DNS), each DNS must be unique and need 0x1 to the end of each DNS name otherwise changes will not take effect.

Click OK.

Research andClick on the following

HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesW32TimeTimeProvidersNtpClientSpecialPollInterval

In the right pane, click Special Poll Interval, click Edit.

In the Edit DWORD Value window, under Value data, type the number of seconds you want for each poll, ie 900 will poll every 15 minutes, and then click OK.

To configure correction, found:

HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesW32Timeconfig

LawMaxPosPhaseCorrection right mouse button, then change the Edit DWORD Value box, under Base, click Decimal, under Value data, type a time in seconds such as 3600 (one hour) then click OK.

Now go back and click:

HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesW32Timeconfig

In the right pane, click MaxNegPhaseCorrection, then change.

In the Edit DWORD Value window below, click Decimal in the Value data type the time in seconds that you want to poll such as 3600 (in pollshour)

Close the Registry Editor

Now it is time to restart Windows, click Start, Run (or alternatively use the command prompt facility) and type:

net stop w32time & & net start W32Time

And on each computer, other than the time server, type:

W32tm / s

And this is the time server should be up and running now.

Friends Link : Preview Games Console XBOX 360 Hardware Store Save!

Set Up FTP Server Using FileZilla on Windows 7

FTP stands for File Transfer Protocol, if you want to know more about it, you can check it out at Wikipedia. FTP is actually getting less popular nowadays as users have lots of other protocols to exchange files, P2P especially BT. FTP, however, is still playing a very important role.

Let's say, if you have a file that's about 300MB and you would like to send it over to your friend oversea immediately. What would you do? Usually emails have attachment limit (usually it's not as high as 300MB) and it will be extremely slow and unstable if you try to transfer over instant messenger software like MSN. The best solution will be setting up your own FTP server at home and authorize your friend to download from your computer. Mind as well, you can set up an account so that you can view all of your files and grab them wherever you go.

If have already set up your remote desktop at home, you will probably leave the computer on 24*7 just so that you can access it any time you want. Or if you have a spare computer like I do, why don't you try to make use of it? I am going to show you how you can make your computer into a FTP server.

After trying a couple of the FTP server software, the freeware FileZilla Server became my choice.

OK, let's get started.

The first thing you will need to do is to install the package you just downloaded (from the above link); the installation is quite straight forward and I am not going to get into too detail.

Upon successful installation, FileZilla server will launch and you should be able to see the following interface:

Before we go ahead and set it up the ports, we would like to add a user to make sure it works. We will go to choose from "Edit-->Users" (Or there is a shortcut icon right underneath the "Edit" on the menu bar.)

I created a user named "anonymous", and I make sure the "Password" field is uncheck because I would like to make this as my public FTP account that visitors could download from my FTP server. If you would like to set up other accounts, make sure your "Password" filed is checked to enforce a secure login. For different users, you can assign different path, or you can just create a group and assign the path to all members in that group.

On the left hand side, you will see the "Shared folders", you can specify the folder path you would like "anonymous" to look at as well as the permission you would like to grant. Once it's done, click OK.

Note: The shared folder directories is the root folder that the selected user (in this case, it's "anonymous") could see, but any folders contained by root folders are also visible to this user.

The common thing Windows users would probably miss while setting up FileZilla is the Firewall. Over the installation, even though you grant permission for FileZilla server to access your computer resources, there is something not quite correctly set up.

Browse to your firewall setting, you should be able to find FileZilla Server Interface might be in the allow list; however, this is the problem. We should allow the FileZilla Server core instead of the interface. The interface is just the UI for end users like you and me to access the core program. So we click add to choose "FileZilla Server" from the installation folder:

Now it should be OK.

If you have two or more computers at home, you can give it a test now. First find out your internal IP address. If you don't know how to do it, check my previous post, set up your remote desktop. For example, I found that my server's internal IP is 192.168.1.111, then on the other computer, I simply type in ftp://192.168.1.111.

Note: If you have a different port other than port 21, let's say you have port 22, you should type in ftp://192.168.1.111:22 if you don't know what port it is, it's actually under setting-->General setting: If it works for you, we will move on; otherwise, please read the instructions again or ask me.

FTP server is meant to be exit in a network, if you just try to set it up at home, then you are done; but according to the situations I introduced in my first paragraphs, I do want to make it global.

Like a Remote Desktop, we will also need to set up port forwarding. In my case, since my FileZilla Server is on Port 21 on my computer, I will need to somehow forward the FTP request onto this port. Ideally, it would be great if we can set up port 21 as external port because every time we type in the address, we don't need to type in the port number (Browser's default FTP port is port 21). However, most of the ISP (Internet Service Provider), for example I use Telus, block port 21. We will need to find an alternate port as our external port:

I set up Port 5050 as my external port and all FTP request through this port will be redirect to Port 21 on my server. I am using D-Link DIR-825, if you have different router, please refer to the instruction on your manual.

If you set up your Dynamic DNS, then you are already done, if not, please go back and read my post; it's extremely easy.

Let's say you have your Dynamic DNS name as myServerAtHome.no-ip.org, then when you are outside, you can simply type in ftp://myServerAtHome.no-ip.org:5050, but if you are at home, you can just type in ftp://192.168.1.111.

You can use your browsers to visit your FTP server, however, I do recommend you to use FTP software. FileZilla Server is a great FTP server and they do have client software too. You can check FileZilla's website; if you haven't got one, why don't you try FileZilla Client?

Friends Link : Remote Console Wireless Fence Blu Ray Disks

Securing IIS 6.0 Web Server on Windows 2003

Hacking a Web Server
With the advent of Windows 2003 and IIS 6.0 there was a sharp turn in the way hosting services were being provided on Windows platform few years back. Today, web servers running on Internet Information Services 6.0 (IIS 6.0) are highly popular worldwide - thanks to the .NET and AJAX revolution for designing web applications. Unfortunately, this also makes IIS web servers a popular target amongst hacking groups and almost every day we read about the new exploits being traced out and patched. That does not mean that Windows is not as secured as Linux. In fact, it's good that we see so many patches being released for Windows platform as it clearly shows that the vulnerabilities have been identified and blocked.

Many server administrators have a hard time coping up with patch management on multiple servers thus making it easy for hackers to find a vulnerable web server on the Internet. One good way I have found to ensure servers are patched is to use Nagios to run an external script on a remote host, in turn alerting on the big screen which servers need patches and a reboot after the patch has been applied. In other words, it is not a difficult task for an intruder to gain access to a vulnerable server if the web server is not secured and then compromise it further to an extent that there is no option left for the administrator but to do a fresh OS install and restore from backups.
Many tools are available on the Internet which allows an experienced or a beginner hacker to identify an exploit and gain access to a web server. The most common of them are:

IPP (Internet Printing Protocol) - which makes use of the IPP buffer overflow. The hacking application sends out an actual string that overflows the stack and opens up a window to execute custom shell code. It connects the CMD.EXE file to a specified port on the attacker's side and the hacker is provided with a command shell and system access.

UNICODE and CGI-Decode - where the hacker uses the browser on his or her computer to run malicious scripts on the targeted server. The script is executed using the IUSR_ account also called the "anonymous account" in IIS. Using this type of scripts a directory transversal attack can be performed to gain further access to the system.

Over these years, I've seen that most of the time, attacks on a IIS web server result due to poor server administration, lack of patch management, bad configuration of security, etc. It is not the OS or the application to blame but the basic configuration of the server is the main culprit. I've outlined below a checklist with an explanation to each item. These if followed correctly would help prevent lot of web attacks on an IIS web server.

Secure the Operating System
The first step is to secure the operating system which runs the web server. Ensure that the Windows 2003 Server is running the latest service pack which includes a number of key security enhancements.

Always use NTFS File System
NTFS file system provides granular control over user permissions and lets you give users only access to what they absolutely need on a file or inside a folder.

Remove Unwanted Applications and Services
The more applications and services that you run on a server, the larger the attack surface for a potential intruder. For example, if you do not need File and Printer sharing capabilities on your shared hosting platform, disable that service.

Use Least Privileged Accounts for Service
Always use the local system account for starting services. By default Windows Server 2003 has reduced the need for service accounts in many instances, but they are still necessary for some third-party applications. Use local system accounts in this case rather than using a domain account. Using a local system account means you are containing a breach to a single server.

Rename Administrator and Disable Guest
Ensure that the default account called Guest is disabled even though this is a less privileged account. Moreover, the Administrator account is the favorite targets for hackers and most of the malicious scripts out there use this to exploit and vulnerable server. Rename the administrator account to something else so that the scripts or programs that have a check for these accounts hard-coded fail.

Disable NetBIOS over TCP/IP and SMB
NetBIOS is a broadcast-based, non-routable and insecure protocol, and it scales poorly mostly because it was designed with a flat namespace. Web servers and Domain Name System (DNS) servers do not require NetBIOS and Server Message Block (SMB). This protocol should be disabled to reduce the threat of user enumeration.

To disable NetBIOS over TCP/IP, right click the network connection facing the Internet and select Properties. Open the Advanced TCP/IP settings and go to the WINS tab. The option for disabling NetBIOS TCP/IP should be visible now.

To disable SMB, simply uncheck the File and Print Sharing for Microsoft Networks and Client for Microsoft Networks. A word of caution though - if you are using network shares to store content skip this. Only perform this if you are sure that your Web Server is a stand-alone server.

Schedule Patch Management
Make a plan for patch management and stick to it. Subscribe to Microsoft Security Notification Service (http://www.microsoft.com/technet/security/bulletin/notify.asp) to stay updated on the latest release of patches and updates from Microsoft. Configure your server's Automatic Update to notify you on availability of new patches if you would like to review them before installation.

Run MBSA Scan
This is one of the best way to identify security issues on your servers. Download the Microsoft Base Line Security tool and run it on the server. It will give you details of security issues with user accounts, permissions, missing patches and updates and much more.

That's it to the basic of securing the operating system. There are more fixes which can be performed for further securing the server but they are beyond the scope of this article. Let's now move on to securing the IIS web server.

IIS 6.0 when setup is secured by default. When we say this, it means that when a fresh installation of IIS is done, it prevents scripts from running on the web server unless specified. When IIS is first installed, it serves only HTML pages and all dynamic content is blocked by default. This means that the web server will not serve or parse dynamic pages like ASP, ASP.NET, etc. Since that is not what a web server is meant to do, the default configuration is changed to allow these extensions. Listed below are some basic points that guide you to securing the web server further:

Latest Patches and Updates
Ensure that the latest patches, updates and service packs have been installed for .NET Framework. These patches and updates fix lot of issues which enhances the security of the web server.

Isolate Operating System
Do not run your web server from the default InetPub folder. If you have the option to partition your hard disks then use the C: drive for Operating System files and store all your client web sites on another partition. Relocate web root directories and virtual directories to a non-system partition to help protect against directory traversal attacks.

IISLockDown Tool
There are some benefits to this tool and there are some drawbacks, however, so use it cautiously. If your web server interacts with other servers, test the lockdown tool to make sure it is configured so that connectivity to backend services is not lost.

Permissions for Web Content
Ensure that Script Source Access is never enabled under a web site's property. If this option is enabled, users can access source files. If Read is selected, source can be read; if Write is selected, source can be written to. To ensure that it is disabled, open IIS, right click the Websites folder and select Properties. Clear the check box if it is enabled and propagate it to all child websites.

Enable Only Required Web Server Extensions
IIS 6.0 by default does not allow any dynamic content to be parsed. To allow a dynamic page to be executed, you need to enable the relevant extension from the Web Service Extensions property page. Always ensure that "All Unknown CGI Extensions" and "All Unknown ISAPI Extensions" are disabled all the time. If WebDAV and Internet Data Connector are not required, disable that too.

Disable Parent Paths
This is the worst of all and thanks to Microsoft, it is disabled in IIS 6.0 by default. The Parent Paths option permits programmers to use ".." in calls to functions by allowing paths that are relative to the current directory using the ..notation. Setting this property to True may constitute a security risk because an include path can access critical or confidential files outside the root directory of the application. Since most of the programmers and third-party readymade applications use this notation, I leave it up to you to decide if this needs to be enabled or disabled. The workaround to Parent Paths is to use the Server.MapPath option in your dynamic scripts.

Disable Default Web Site
If not required, stop the Default Web Site which is created when IIS 6.0 is installed or change the property of Default Web Site to run on a specific IP address along with a Host Header. Never keep it running on All Unassigned as most of the ready-made hacking packages identify a vulnerable web server from IP address rather than a domain name. If your Default Web Site is running on All Unassigned, it means that it can serve content over an IP address in the URL rather than the domain name.

Use Application Isolation
I like this feature in IIS 6.0 which allows you to isolate applications in application pools. By creating new application pools and assigning web sites and applications to them, you can make your server more efficient and reliable as it ensures that other applications or sites do not get affected due to a faulty application running under that pool.

Summary
All of the aforementioned IIS tips and tools are natively available in Windows. Don't forget to try just one at a time before you test your Web accessibility. It could be disastrous if all of these were implemented at the same time making you wonder what is causing a problem in case you start having issues.

Final tip: Go to your Web server and Run "netstat -an" (without quotes) at the command line. Observe how many different IP addresses are trying to gain connectivity to your machine, mostly via port 80. If you see that you have IP addresses established at a number of higher ports, then you've already got a bit of investigating to do.

Visit : All In Ones Printers Store

The Importance of a DNS Server Address

DNS stands for Domain Name System. This is the whole system of naming websites that allows your web browser to take something like site.com and find it easily. DNS servers can be any computer system or server that runs software that allows access to the Internet, and is assigned an IP (Internet Protocol) address. There are main DNS servers that contain all of the DNS and IP information. These make up the top level of the system while the lower levels branch out and contain all Internet service provider's servers and server farms used by large companies, all of which contain various DNS addresses and IP addresses.

If you are planning on getting a domain name for your site, you really don't have to know any of this information. You don't need to know what a DNS address is, what your computer's IP address is or any other similar facts. But understanding how it all works can help you if you have technical problems. At the very least, you'll have some understanding of what an IT technician might tell you when troubleshooting.

Understanding in general how DNS addresses work can also help when troubleshooting your home computer. Sometimes the browser will refuse to bring up certain websites or any websites and it's a DNS address problem within your own system. Your browser is actually working as what's known as a DNS resolver or DNS client when you use it to surf the Internet. It sends a request to the server owned by your Internet service provider to bring up a certain site and your ISP then sends that information back to you.

If your ISP isn't directly connected to the site you are trying to reach, such as a site that hosted somewhere else, it then becomes a DNS resolver which sends the request to another server to bring the information back. When you type information into your browser with words like the site.com, it turns that into the numerical IP address of the site and makes requests based on that number.

The website that you create with your domain name will have an IP address that DNS servers and clients use to allow people to view your site. If you are browsing and you're having trouble bringing up certain sites, your Internet service provider can help you by giving you the IP addresses of your DNS server so you can make sure your browser is configured properly.

The DNS name is essentially the name you type in to get a website. The DNS system is what makes using that name possible so that we don't have to type in each website's IP number to access it. It's one of those little things that you don't really need to know about, but that makes using the Internet possible for people without any technical knowledge.

Tags : Buy Cheap Anti Virus 2010 | LOWER Prices Interesting Software Save Price!

Recreate DNS Hosts From Export File Into a Microsoft DNS Server

The following script was created to add hosts, from a list of exported hosts and IPs originally from a unrelated DNS server's zone, into the specified Microsoft DNS server's DNS zone.

The basic usage of the script is:
CScript AddDNSHost.vbs /DNSServer:DNSServer /DNSZone:DNSZone /HostName:HostName /HostIP:HostIP

And an example:
AddDNSHost.vbs /DNSServer:192.168.0.1 /DNSZone:DNSZone.local /HostName:MyComputer /HostIP:192.168.1.123

A very simple way of constructing multiple commands can be achieved with practically any speadsheet application where column A holds the list of host names, column B holds their respected IP addresses and column C the following command (starting from row 1):

="AddDNSHost.vbs /DNSServer:192.168.0.1 /DNSZone:DNSZone.local /HostName:" & A1 & " /HostIP:" & B1

The above command can be copied once for each row. The resulting constructed command can then be directly pasted into a command prompt

'* * * * * * * * * * * Start of AddDNSHost.vbs * * * * * * * * * * *

On Error Resume Next

strDNSServer = Wscript.Arguments.Named("DNSServer")
strDNSZone = Wscript.Arguments.Named("DNSZone")
strHostName = Wscript.Arguments.Named("HostName")
strHostIP = Wscript.Arguments.Named("HostIP")

If Len(Trim(strDNSServer)) > 0 And Len(Trim(strDNSZone)) > 0 And Len(Trim(strHostName)) > 0 And Len(Trim(strHostIP)) > 0 Then
If Right(UCase(strHostName), Len(strDNSZone) + 1) "." & UCase(strDNSZone) Then
strHostName = strHostName & "." & strDNSZone
End If
intRecordClass = 1
intTTL = 600

strComputer = "."
Set objWMIService = GetObject("winmgmts:{impersonationLevel=impersonate}!" & strComputer & "rootMicrosoftDNS")
Set objItem = objWMIService.Get("MicrosoftDNS_AType")
intReturn = objItem.CreateInstanceFromPropertyData(strDNSServer, strDNSZone, strHostName, intRecordClass, intTTL, strHostIP)
If Err.Number = 0 And intReturn = 0 Then
WScript.Echo strHostName & vbTab & "Added"
Else
WScript.Echo strHostName & vbTab & "Failed"
End If
End If

'* * * * * * * * * * * Start of AddDNSHost.vbs * * * * * * * * * * *

Recommend : Bose Headphones Store Save!

Online Email Server Test

The problem of SPAM is ever increasing. With the increase in SPAM, there is also an increase in the number of technologies for stopping SPAM.

Five years back, implementing an Email solution was as simple as choosing your Favorite MTA (Postfix, Qmail, Sendmail, Exchange Server or Lotus Domino) and configuring it on a Static IP.

Now if you do the same (and not do anything else), you are very likely to have problems delivering Emails to some body or the other. The Anti SPAM technology used by the recipient will decide that your email is SPAM and your email will be bounced, or worse, land up in Junk Email folder (and deleted by the recipient without checking)!

Since none of the Anti SPAM technologies are dominant, different technologies are used by different email servers. This means that your email could be considered as SPAM by different Email servers for completely different reasons. Sometimes your email could be considered as SPAM by the same Email server citing different reasons at different times.

If your organization is big enough, you can use the "All my other emails are going fine, so problem is on your side" logic and bully the other Email administrator to disable whatever Anti SPAM measure they are taking.

But if the recipient is a bigger organization, the reverse argument could be thrown at you ("We are receiving emails from everybody else, so you better fix your Email Server"). This is a nightmare situation for an Email administrator and this is when you need to learn all the Anti SPAM technologies.

Typically most of the Email delivery problems come about because of the following Anti SPAM technologies.

HELO Greeting Check
Reverse DNS Check
DNSBL (RBL)
SPF
Domain Keys
SPAMAssassin content checks
BATV (Bounce Address Tag Validation)
Greylisting
URIBL
There are other not so widely used technologies that may come into play in a few cases, and if you run into those, Good luck!

Previously, one had to do individual tests for the above and see if any of the above technologies cause a problem. An Online Email Server Test solves this problem by automating the whole process. All you need to do is to send an Email address to a test Email address.

The recipient Email Server analyzes the Email, Email server and its properties and delivers a report giving details of your Email server compliance with respect to all the above technologies.

Related : Printer Transfer Belts Store, LOWER Prices

Microsoft Server 2008 Certification - Routing's Not Just For Cisco Exams Anymore!

Knowing routing theory and routing protocols has always been a big part of earning your Cisco CCNA and CCNP certifications. According to Microsoft's exam blueprints for the Server 2008 certification exams, that knowledge will also serve you well on your Microsoft exams.

The topic outline for the Configuring Windows Server 2008 Network Infrastructure exam (70-642) specifically mentions routing and routing protocols as exam topics. Specifically mentioned are RIP, OSPF, and static routing - three topics every CCNA and CCNP candidate will be well prepared to handle!

IPSec isn't part of the CCNA exam, but you'll see it on at least one CCNP exam, and it's also listed as a 70-642 exam topic. IPv6 and IPv4 addressing are both covered on the 70-642 as well.

Microsoft's website lists the following major skills you should expect to see on this exam:

Configuring IP addresses and Services (routing with RIP and OSPF, static routing, persistent routing, addressing, DHCP and DHCP options including relay agents, IPSec policies, Authentication Header and Encapsulating Security Payload, subnetting, supernetting)

Configuring Name Resolution (DNS configuration, zones, records, replication, and integration with Active Directory, and client computer name resolution techniques)

Configuring Network Access (includes NAT, VPNs, RADIUS, 802.1x authentication, MS-CHAP, firewalls, and remote authentication methods)

Configuring File And Print Services (self-explanatory)

Monitoring And Managing A Network Infrastructure (includes SNMP and Windows Server Update Services)

Your CCNA and CCNP preparation will not quite be enough to get you past this exam, but as you can see, it'll give you a great head start!

Friends Link : Blank DVDs Store. LOWER Prices in The Same Item

Setup DHCP on a Windows Server

DHCP as you may know is Dynamic Host Configuration Protocol and it gives hosts on a network all of the IP information they need to communicate. IP Address, Subnet Mast, Gateway Address, DNS servers and WINS server addresses. For ease of administration DHCP is a great feature for small businesses to help setup their computer network quickly and easily without a lot of hassle. If you are using a Windows server for a file server, domain server, application server, or for pretty much any other reason you can add DHCP functionality for no cost.

First lets quickly go over how DHCP works because it is very simple in the flow and functionality of it. First we configure the server and we create a "pool" of IP addresses, normally this will be something like 192.168.1.100 to 192.168.1.200 depending on how many computers you are going to potentially have connect. As you can see with the IP addresses we specified we can have 100 computers connect using DHCP. Then we specify on the server what the subnet mask, gateway, and DNS addresses are going to be. Now when a client computer connects to your network via wire or wireless his computer will send out a "packet" basically saying "hey are there any DHCP servers out there to give me an address?" and obviously the server will respond back with a packet "yes, here you can use 192.168.1.105" and now the client computer has a working IP address and can communicate on the network. The DHCP server keeps track of what IP addresses it hands out based on the clients MAC address.

Now that we have an understanding of how DHCP works lets talk about configuring it on a Windows server. First thing is to make sure that the DHCP feature is installed and you can check this by seeing it Windows will allow you to configure DHCP, if not then you don`t have it installed. To install DHCP simply goto "Control Panel" then "Add Remove Programs" and on the left side select "Add/Remove Windows Components". Scroll down until you see "Networking Services" highlight it and click the details button. Then scroll down until you see "Dynamic Host Configuration Protocol (DHCP)" and check the box to the left and click "OK" then click "Next" and DHCP will be installed on your server. One thing to remember is if DHCP is not installed on your server already you will need the Windows Server CDs to install DHCP.

Now that we have DHCP installed on our server we can configure it by simply using the console. So click "Start" then "Run" and type "MMC" in the text box and click "OK" and a Console window will appear. Click "File" "Add/Remove Snap-in" or simply press CTRL+M and then click "Add..." and a list of all the services you can configure will show up and you want to select."DHCP" and click "Add". Once you do that you can back out by clicking "Close" and then "OK" and you should now see a DHCP menu on the left side of the console.

Double click on DHCP on the left side and choose your server. Now we need to create what is called a scope since you can actually run multiple scopes on a single DHCP server. Right click on your server under DHCP on the left hand side and choose new scope. You will be prompted with a "New Scope Wizard" to walk you through everything. Choose a name for your DHCP scope and then click next and choose your range of IP addresses you want to use and define you subnet mask. Default subnet mask is usually 24 in length or 255.255.255.0. Next you can choose addresses to exclude, this is a good idea if you are going to have some equipment with static addresses set within your IP range. Next you will want to select how long you want your lease to be and the default is 8 days. If you are going to have a few computers that will always be connected then 8 days is probably fine. If you are setting up like a wireless hot spot where a lot of different clients will be connecting you probably want to make the lease about 8 hours instead of 8 days. Click next and then click next again and you scope has now been created and your clients can get an address via DHCP.

Tags : Cool Cell Phones Store Save! Wireless Barcode

Free Windows Server Antivirus Software

Those of us in the server maintenance field know how expensive server software can be.  In many ways server software is like the restaurant industry, if you slap the "restaurant grade" label to a standard refrigerator the price goes up 300%. The same thing happens when you need "server backup" or other "server" software.  Luckily there are FREE alternatives out there.
 
ClamWin is an open source program designed to work on Microsoft Windows operating systems.  ClamWin will run on Windows 98/ME/2000/xp and 2003 versions.  ClamWin is based on the open source ClamAV engine but with a graphical interface to make it much more user friendly.  The only downside to using ClamWin is that it does not offer any real-time protection. In other words, it does not scan your system unless you ask it to.  If you have less critical systems in your server room like a backup DNS or DHCP server then this could be a possible solution for you.  As long as you schedule a scan manually as often as you feel it is needed, this could save you some bucks the next time your antivirus renewal comes up.
 
I would not recommend ClamWin for a critical production server.  You don't want to risk critical systems to an antivirus solution that doesn't scan real-time.  For all those other servers and all those older computers that are not used to access the internet (you know, the ones that are sitting in the basement, used by someone just to open that 10 year old application that no one will spend the money to upgrade), ClamWin could be the solution to save you a few licenses the next time you renew your AV software.

Visit : Spine Disc