CNIT 40 Proj 1: Making a DNS Server on Windows Server 2008 (20 pts.)

What You Need for This Project

Purpose

Make a DNS server on Windows 2008 Server.

Making Your VM (Virtual Machines) Folder

Click Start, Computer. Find the "VMs-S214" drive and double-click it to open it.

In the VMs-S214 window, right-click the empty space and click New, Folder. Name the folder "YOUR NAME VMs" replacing YOUR NAME with your own name.

Downloading the Virtual Machine

On the CNIT 40 Web page, scroll to the Projects section. Click "Downloading the Virtual Machines" link, as shown below.

Enter the name and password given out in class.

Download the Windows 2008 Server virtual machine. Most students are using the VMware version. It is a single-file 7-zip archive named Win2008-Target.7z.

Extracting the Windows Server 2008 Virtual Machine

  1. If you are working in S214, Make a folder for your Windows Server 2008 virtual machine on the VMs-S214 partition or some other available partition. I recommend making a folder with your name on it, and a subfolder within it named Srv2008.

  2. Right-click the Win2008-Target.7z file, click 7-Zip, and click "Extract Files...". In the "Extract to:" box, enter the path to the folder you prepared, such as "G:\YOURNAME\Srv08". Click OK.

DO NOT PUT VIRTUAL MACHINES ON THE C: DRIVES IN S214!

They fill the drive and make the machines stop working. Virtual machines left on the desktop, Documents folder, or other C: drive locations may be deleted at any time, as needed to keep the machines working.

Starting your Win2008-Target Virtual Machine

In the VMware Player window, click "Open a Virtual Machine". Browse to the VMs-S214 drive amd open the folder with your name on it. Open the "Win2008-Target" folder and double-click the "Windows Server 2008 2.vmx" file.

In the VMware Player window, click the green "Play virtual machine" button.

VMware Player will pop up several dialog boxes, asking whether this machine was moved or copied, telling you details about the processor, etc. Just accept the default choice for all those boxes.

To log in, you need to send a Ctrl+Alt+Delete to the virtual machine. On a Windows host, you can usually press Ctrl+Alt+Insert to do that. If that doesn't work, hunt through the VMware menus to send a Ctrl+Alt+Delete.

Log in as Administrator with a password of P@ssw0rd

When the server starts, it opens some windows by default. Close all windows.

You should see the Windows Server 2008 desktop as shown below:

Setting the Win2008-Target VM to Bridged or NAT Networking

In the VMware Player window showing your Windows 2008 Server desktop, on the top left, click Player, Manage, "Virtual Machine Settings".

In the "Virtual Machine Settings" box, on the left side, click "Network Adapter".

On the right side, click "Bridged: Connect directly to the physical network", or "NAT" -- either mode will work for this project. Click OK.

Testing Your Win2008-Target Virtual Machine's Internet Connection

On the Win2008-Target virtual machine, open Internet Explorer and go to
http://google.com
If you cannot open Google, which happens very often, try the troubleshooting steps listed below.

Troubleshooting a VMware Network Connection

  • RESTART: Restart the virtual machine
  • USE DHCP: In the virtual machine, click Start. In the Search box, type CONTROL NETCONNECTIONS and press Enter. Right-click "Local Area Connection" and click Properties. Double-click "Internet Protocol Version 4 (TCP/IPv4)" and make sure both the "Obtain an IP address automatically" and "Obtain DNS server address automatically" buttons are selected. Click OK. Click OK.
  • REPAIR THE CONNECTION: In the virtual machine, click Start, Control Panel, Network Connections. Right-click "Local Area Connection" and click Repair.
  • VMWARE BRIDGE PROTOCOL: In the Host machine, click Start and type "NETWORK CONNECTIONS" into the Search box. In the results, click "View network connections". Right-click "Local Area Connection" and click Properties. Make sure the "VMware Bridge Protocol" item is checked. Click OK.
  • MAKE A NEW VIRTUAL MACHINE: When all these actions fail, which is very common, you need to discard the virtual machine and extract a fresh one from the original .7z file.

Finding Your Win2008-Target VM's IP Address

On your Windows Server 2008 desktop, click Start. Click "Command Prompt".

In the Command Prompt screen, type in IPCONFIG and press the Enter key.

Your IP address apears, with the Subnet Mask and Default Gateway, as shown below.

Assigning a Static Address

A DNS server should have a fixed network address.

From your Windows Server 2008 desktop, click Start, right-click Network, and click Properties.

In "Network and Sharing Center", in the left pane, click "Manage network connections".

Right-click "Local Area Connection" and click Properties.

Double-click "Internet Protocol Version 4 (TCP/IPv4)".

Assign the same IP address, Subnet Mask and Default Gateway your saw in the IPCONFIG results, as shown below.

Set the DNS Server field to 127.0.0.1 and click OK.

In the "Local Area Connection Properties" box, click OK.

Adding the DNS Server Role

From your Windows Server 2008 desktop, click Start, right-click Computer, and click Manage.

On the left side, right-click Roles and click "Add Roles..." as shown below:

In the "Before You Begin" screen, click Next.

In the "Select Server Roles" screen, click the check box next to "DNS Server", as shown below:

Click Next.

In the "Introduction to DNS Server" screen, click Next.

In the "Confirm Installation Selections" screen, click Install.

The "Installation Results" screen should show a green check-box with the message "Installation succeeded", as shown below:

Click Close.

Resolving a Domain

From your Windows Server 2008 desktop, open a Command Prompt window.

Execute this command:

NSLOOKUP CCSF.EDU
You should see two lines identifying the DNS server as "localhost" and "127.0.0.1", followed by a "Non-authoritative answer" of "147.144.1.212", as shown below. (Note: some machines fail to show the "Non-authoritative answer" message--I don't know why. Also, some machines connect via IPv6 and show a link-local address beginning with fe80:: instead of 127.0.0.1.)

Saving a Screen Image

Make sure the Windows 2008 Server desktop is visible showing the Command Prompt window with these items:

You have now completed the first part of Project 1. To prove it, you need to capture an image of the screen and email it to me.

Note the hand symbol on the image above: that indicates screen images that you must capture and turn in.

Click the taskbar at the bottom of your host Windows 7 desktop, to make the host machine listen to the keyboard, instead of the virtual machine.

Press the PrintScrn key in the upper-right portion of the keyboard. That will copy the whole desktop to the clipboard.

YOU MUST SUBMIT A FULL-DESKTOP IMAGE FOR FULL CREDIT!

On the host machine, not the virtual machine, click Start.

Type mspaint into the Search box and press the Enter key.

Click in the untitled - Paint window, and press Ctrl+V on the keyboard. The desktop appears in the Paint window.

In the upper left corner of the "untitled - Paint" window, click the little blue square icon (it looks like a floppy disk, something people used to use long ago--you might never have seen one).

Save the document with the filename "YOUR NAME Proj 1a", replacing "YOUR NAME" with your real name.

Using an Authoritative DNS Server

The DNS server you have made isn't in charge of any particular domain. It just asks other servers for information and caches it for a while. That's known as "non-authoritative".

To find the authoritative server for CCSF.EDU, from your Windows Server 2008 desktop, in a Command Prompt window, execute this command:

NSLOOKUP
This starts NSLOOKUP in interactive mode, displaying a > prompt.

At the > prompt, enter these two commands, pressing Enter after each one (be careful, the "set" command is case-sensitive):

set type=ANY

CCSF.EDU

You see a lot more information about the CCSF.EDU domain, as shown below:

The results start with a message saying "Non-authoritative answer", because they came from your own local DNS server.

Notice the "primary name server" line in the middle of the output. That's the authoritative name server for the CCSF domain.

At the > prompt, execute this command:

CCSF.EDU ns3.ccsf.edu
You see information about the domain, without the "Non-authoritative answer" message, as shown below.

Saving a Screen Image

Make sure the Windows 2008 Server desktop is visible showing the Command Prompt window with these items: Click the taskbar at the bottom of your host Windows 7 desktop, to make the host machine listen to the keyboard, instead of the virtual machine.

Press the PrintScrn key. Paste the image into Paint and save it with the filename "YOUR NAME Proj 1b", replacing "YOUR NAME" with your real name.

YOU MUST SUBMIT A FULL-DESKTOP IMAGE FOR FULL CREDIT!

Exiting Interactive NSLOOKUP

On your Windows Server 2008 desktop, in the Command Prompt window, at the > prompt, execute this command:
quit

Observing DNS Client Cache Entries

From your Windows Server 2008 desktop, in a Command Prompt window, execute these commands:
IPCONFIG /flushdns

IPCONFIG /displaydns

The first command clears the cache, and the second one displays it.

This is the Client Cache, used by the local Windows system. You'd see the same thing on any Windows machine, even if it is not a DNS server.

The four records above permit forward and reverse name resolution for both the IPv4 loopback address of 127.0.0.1 and the IPv6 loopback address of ::1, which can also be written 0000:0000:0000:0000:0000:0000:0000:0001.

Notice that the reverse records have a "Record name" which is the IP address backwards, followed by ".ipv6.arpa" or ".in-addr.arpa".

Performing Forward Resolution of Loopback Addresses

From your Windows Server 2008 desktop, in a Command Prompt window, execute these commands:
nslookup localhost

nslookup ::1

nslookup 127.0.0.1

These commands perform:

Adding CCSF.EDU to the Client DNS Cache

From your Windows Server 2008 desktop, in a Command Prompt window, execute these commands:
ping ccsf.edu

ipconfig /displaydns

The pings time out, but that doesn't matter--the DNS resolution still was performed, so the CCSF record is added to the cache, as shown below:

Saving a Screen Image

Make sure the Windows 2008 Server desktop is visible showing the Command Prompt window with these items: Click the taskbar at the bottom of your host Windows 7 desktop, to make the host machine listen to the keyboard, instead of the virtual machine.

Press the PrintScrn key. Paste the image into Paint and save it with the filename "YOUR NAME Proj 1c", replacing "YOUR NAME" with your real name.

YOU MUST SUBMIT A FULL-DESKTOP IMAGE FOR FULL CREDIT!

Viewing a DNS Server Cache Entry

From the Windows Server 2008 desktop, click Start. Type in DNS. At the top of the search results, click DNS.

The "DNS Manager" opens.

From the menu bar, click View, Advanced.

In the left pane, expand the server item (it starts with WIN).

Expand "Cached Lookups".

Expand .(root).

Expand EDU.

In the left pane, click CCSF.

Several entries appear, including ns3.ccsf.edu and 147.144.1.212, as shown below.

TROUBLESHOOTING

If there is no "Cached Lookups" item visible, right-click your server in the left pane and click View, Advanced.

If there are no cached entries, they may have timed out. In a Command Prompt, ping ccsf.edu again. Then, in DNS Manager, click Action, Refresh.

Saving a Screen Image

Make sure the Windows 2008 Server desktop is visible showing these items: Click the taskbar at the bottom of your host Windows 7 desktop, to make the host machine listen to the keyboard, instead of the virtual machine.

Press the PrintScrn key. Paste the image into Paint and save it with the filename "YOUR NAME Proj 1d", replacing "YOUR NAME" with your real name.

YOU MUST SUBMIT A FULL-DESKTOP IMAGE FOR FULL CREDIT!

Turning In Your Project

Email the images to me as an attachments to an e-mail message. Send it to: cnit.40@gmail.com with a subject line of "Proj 1 From YOUR NAME", replacing "YOUR NAME" with your real name.

Send a Cc to yourself.


Last modified 9-26-16