Ace MSFT XP Notes
From Wsms
Ace MSFT XP Notes
General Info
KEYBOARD Short Cuts
Windows Start Button = CTRL+Esc (then use the arrow and tab keys)
Selecting Functions/Data of a Menu = ALT + (appropriate) Letter
CTRL+L = Opens URL (but as if you re opened the window or the browser)
CTRL+O = Opens a new file from the desktop
CLI - Up Arrow brings the previus command
COMMAND LINE INTERFACE (CLI) COMMANDS
attrib = system attribute, hidden attribute, read only attribute, etc.
/? = a forward slash and a question mark after a command provides
help and other
options available with that command. e.g.: attrib /?
msiexec = command for .msi files
regedit = to edit/change registry data file.
Ping = Pprimary TCP/IP command used to troubleshoot connectivity, reachability, and name
resolution. (Loopback Test = 127.0.0.1)
ipconfig = command to get the local computers IP Address, etc.
tracert = The path displayed is the list of near-side router interfaces of the routers
in the path between a source host and a destination.
nslookup = Name Server Lookup - then enter the domain name to find out the IP address for
a domain name
net view = (net view computer name) - tells us what resources are available for a
particular computer on a local network.
msconfig - to make modification to the way your system boots
NOTE: boot.ini file is a systems file and a read only file. To make changes to this file
you will 1st have to turn off these attributes, make the changes and then turn back on.
HELPFUL URL's
testking.com - For all kinds of testing
transcender.com - For all kinds of testing
thechipmerchant.com - For CHEAP RAM for upgrade and inexpensive installations.
ACRONYM
MSDNAA - Microsoft Systems District Network Alliance Association
IMCP - Interactive Media Certification Program (Right Brain)
WSMS - Web Server Maintenance & Security (Left Brain)
HAL – Hardware Abstraction Layer
SCSI – Small Computer System Interface
MMC - Microsoft Management Console
CLI - Command Line Interface
PCI - Peripheral Control Interface
ISA - Industry Standard Architecture (8bit)
EISA - Extended Industry Standard Architecture (16bit)
DEP - Data Execution Prevention
SNMP - Simple Network Management Protocol
TCP/IP - Transmission Control Protocol and Internet Protocol
DHCP - Dynamic Host Control Protocol
WINS - Microsoft's Windows Internet Naming Service
DNS - Domain Name Server/Services
IANA - Internet Assigned Network Authority (ensures there is no duplication of addresses)
ICS - Internet Connection Sharing
VARIOUS CERTIFICATIONS
MCP - Microsoft Certified Professional
MCSA - Microsoft Certified Systems Administrator
MCSE - Microsoft Certified Systems Engineer
MCDST - Microsoft Certified Desktop Support Technician (80% of the
Entry level jobs are here)
DATE: Wednesday, September 6, 2006
Certification Notes
Get your certifications within 2 weeks after finishing a chapter
West City Center @ Point Loma is the testing center with discounted fees (usually on
Fridays)
Beta Exams are usually Free
Some of the projects done by students in the past included:
Server setup to support E-Commerce
WiFi related project
What is Virtualization?
Virtualization is a process where multiple operating systems are running on your system
simultaneously.
Popular Virtualization Software - FREE Versions
VMMare
Virtual Server
NOTE: Virtual PC is FREE.
Some of the most popular Operating Systems (OS)
Linux (by Red Hat)
Windows XP (by Microsoft)
You can create a virtual network on your pc or laptop where you can have both of the
above OS working. You can design so that Linux Os would be the web server and Win-XP would be
used to develop the website, IE, admin, etc.
DATE: Thursday, September 7, 2006
BENEFITS OF VIRTUALIZATION
The main benefit of virtualization is in doing Demonstration.
The 2nd benefit of using virtualization is that it sees all hardware as standard.
The 3rd benefit is the GUEST OS appears as a data file to the HOST OS.
You could also have Dual or Multiple Boot-up machines. When you do that you will be
provided with the menu of choices from which you can select an OS to run. However, you cannot
run two of them simultaneously.
Virtualization allows multiple operating systems to run simultaneously on your system.
One OS is the HOST which starts upon power up namely Windows XP OS. The other OS is known as
the GUEST. Note that only 1 HOST is allowed; however, you can have multiple GUESTS but there
are imitations.
MS Virtual Server (free) = Host can only be WIN-XP-Pro
VM Ware Server (free) = Host can be either Win-XP or Linux
Setting up WEBCT
Open IE and disable popup blocker (Tools --> Popup Blocker Off)
Go to webct.sdccd.edu (not webct.com)
Login/Create myWebCT (create an account)
Fill in FNAME, LNAME, EMAIL, WEBCTID, PASSWORD (Don't worry about login hint)
Login to your account
Add the Course - View by category - select On Campus - click update
Select CT - Web server Certificate 2006/07 - J. McGerald - Click on Pencil Icon
What is file system?
A file system basically is data file specification. It answers such questions as what is
the largest data file I can put on my hard drive, etc.
MS File systems
FAT - File Allocation Tables (since 1980)
NOTE: In FAT - Security is literally non-existent. So, data is insecure. Size is also an
issue.
NTFS - New Technology File system
NOTE: Allows spanning of data file across multiple hard drives. Has good security based
on user, encryption. So, it solves most of the issues that FAT file system had limitations on.
WINFS - Future/Planned File System
Linux File systems:
Ext2, Ext3 - for Linux
The standard structure of having 1 big gigantic hard drive (example: C: Drive) is the
single biggest security issue w/ computers today.
What you should do to overcome this is to partition the hard drive. Recommended
Partitions (with variable security) are:
System Files
Log Files - created by the system keeps changing constantly
Applications Data Files - created by the user
NOTE: Partitioning Hard Drives is for security reasons and not for efficiency. However,
having 2 HD (100 Gig) instead of 1 HD (200 Gig) means more efficiency and security.
You can buy XP-Pro either as:
Consumer CD - Means install the product w/ 1 product key on 1 pc. Activation is required
otherwise the product will stop running after 30 days. Activation discourages illegal copies. Volume License CD - Means install the product with 1 product key on multiple pc. No activation
is required.
NOTE: The consumer CD is different than the Volume License CD.
Example: The admin person flying off to a site and forgetting the volume license CD.
Cannot do anything!
NOTE: Registration (info for marketing) is NOT activation.
Types of Networks
(1) Peer-to-Peer Network: Referred as "Workgroup" connects 2 or more pc together. In each
PC there would be a database of the users (in the workgroup) to access their data and devices
that are on different PC’s from any pc.
Problems of Peer-to-Peer Network are that the maintenance is cumbersome and it puts
limitations on how many PCs you have on your network.
Example: When a user quits the company then it would be a nightmare for the administrator
to update the user database on all the computers.
The benefit Peer-to-Peer Network is that it is generally cheaper.
(2) Client-Server Network: connects numerous PCs together
Generally, the server is separate (but, not always).
Generally, the software in the clients is different than the server ((but, not always).
Generally, the server is more robust than the client machines (but, not always).
Server does the following:
(1) Authentification (all users must login) and
(2) The database of the user is only in the server and not on all the client PCs. The
problem with the client-server network is that that it is expensive to setup. The benefit with
the client-server network, it is much more simple to maintain and efficient for the network
administrators.
Differences between Win-XP-Home and Win-XP-Pro
Win-XP-Home - can build peer-to-peer network but, not a client-server network.
Win-XPPro - can do both.
NOTE: Win-XP (both Home and Pro) have automatic updates. So, if you keep your OS &
Software updated then chances are that you will have less likely of a virus attack.
However, in a corporate or business environment - automatic updates are disabled. They
usually have test workstations and update services that the administrator will have to check
and verify before a rollout for all.
6 Different versions of XP
1. XP-Pro - Used by power users, biz environment and all networks.
1.1. XP-Tablet using XP-Pro OS - It is sold to H/W Vendors only. So, cannot buy
this OS from the store.
1.2. XP-64bit - for the 64 bit processors.
2. XP-Home - used by everyone, only peer-to-peer network capability, no encryption, no
IIS, no WS, and no RDP capabilities.
2.1. XP-Media using XP-Home OS is sold to H/W Vendors only. So, cannot buy this OS
from the store.
3. XP Embedded - For Embedding the OS into various devices like cars, cell phones, PDAs,
etc.
NOTE: There are a lot of opportunities in the OS embedding field.
NOTE: If you are upgrading from XP-Home to XP-Pro then DO NOT do an upgrade, but do a NEW
install instead to avoid headaches.
Windows Service Pak 2 Improvements:
Security Center ==> Windows Firewall
Automatic Updates ==> Turned On
IE Changes - Pop Up Blocker and Prompt for Downloads
Plus Other - see handout feature for Windows XP new features
DATE: Friday, September 8, 2006
XP INSTALLATION
1. Install MS Win-XP Pro by following the handout.
2. Install Device Drivers from the CD.
NOTE: From the 4 automatic choices, Only Check Intel chipset INF Update and Intel PRO.
Uncheck SoundMax and Native Storage Patch.
DATE: Monday, September 11, 2006
Encountering Install Problems? How do you fix them?
(1) Somehow audio device driver got installed and the USB port was not available for the
mouse.
Possible Solutions:
You could have used a non-USB mouse like a PS2 mouse
use device manager to disable the audio devices driver
Use keyboard short cuts
(2) Proxy Server for IE
If you are on a Proxy server, like the North City Campus, then you will not be allowed to
do a few things on the browser unless you setup the proxy server settings.
What is a Proxy Server?
A Proxy Server is a device between the computer and the internet providing services as a
server with certain objectives as follows:
Limit the actual traffic on the net ==> Efficiency
To track and control what websites are used. So, theses are the 2 reasons (above) to use
Proxy Servers
Applying Proxy Server Settings (for north city campus):
IE --> Tools --> Internet Options --> Connection --> LAN Settings
Check off use proxy server settings
Address: nccache.sdccd.edu
Port: 8080
Check off Bypass Proxy Server for Local Addresses
(3) Updates - Windows Update Services (WUS) can only be installed on a windows server and
NOT on a desktop.
(4) Alternate Installs - Different ways to install WINXP
winnt/winnt32 – Install for Upgrade
NOTE: winnt (16 bit OS) = win 95 or older product; winnt32 (32 bit OS) = win 95 or newer
product
Network Install
RIS – Remote Installation Services (RIS server product)
Image Install – Using ghost server/client product (from Symantec) – Image of hard drive
to
look the same (not OS compliant). Used in the corporate environment these days.
(5) Logon Option – Create a password
Start --> Control Panel --> User Accounts --> Create Passwords (select Yes-Make Private)
NOTE: From the default logon screen hit CTRL+ALT+DEL twice and you will get a window
prompting you for the username and password and you can sign in as an administrator.
How do you get on to the administrator account when it is not shown on the user accounts?
Through Microsoft Management Console (Win-XP Pro only) and using snippets as follows:
Start --> Run --> MMC – This opens a console1 window.
Select File --> Add/Remove Snap in… (CRTL+M)
Click Add… (button), Select Local User & Groups, Choose Target Machine as Local Computer,
Select Finish and Press OK and Save as Console1.
Fast User Switching is appropriate and useful only at home or for a small company
environment. Turn the Fast User switching on by doing the following:
Start --> Control Panel --> User Accounts
Change the User Logon Off, and deselect Fast User Switching.
Disadvantages of fast user switching:
Those devices that are being used by the first user may not be available for the second
user. The PC on fast user switching will have less memory as more and more users are logged
on. So, this will slow the environment down.
NOTE: When the Welcome Screen Option is NOT selected then the fast user switching is
unavailable. So, Fast User Switching is only available when the welcome screen is checked on
to appear. Notice the Logon to Windows screen. This is how the normal corporate environment
it set up.
PROBLEMS - NOTE: The user name by default shows on the logon screen. This is a security
risk and hackers are already 50% in luck. Ideally, you would want the user name and password
to be blank. We can do this by using Group Policy in Win OS. Also, Administrator is also a
valid username which is common for most if not all. So, change the common name “administrator”
to “joeadmin” to avoid risk. In windows, you can rename administrator but cannot delete it.
NOTE: The shut down option should not be made available. Even the power on and power off
button is a security risk. This becomes vital when the computers are in public area. Only
the admin can shut down the system.
Ways to pick Username and ID:
Username and id should never have spaces or mixed cases because usually usernames and
used to create email ids. Always make the username one word in lowercase only.
Example: In Linux, Mary and mary are 2 separate users but it creates a problem when they
are turned into email ids. As the email ids are always in lower case.
Password Reset Disk – Is it good or bad?
Access tokens are provided to the user after validation for granting various permissions
on a network.
What is a Hashing algorithm?
A uni-directional mathematical algorithm which is clearly defined and easily available.
Each word produces a unique string. However, you cannot take that unique string and come up
with the string because it is one directional only. MD5 is one of the standards of hashing
algorithm.
What is Encryption?
Encryption is a bi-directional program. Data is sent to someone in an encrypted form and
then the encryption program is used to decode the data.
NOTE: Encryption is different than Hashing algorithm.
Example: P@ssw0rd --> MD5 --> Xy1!23f5 (unique string)
Good Passwords should have the following:
letters + numbers + special characters in mixed cases. Another thing to do is to take to
common words and misspell it and combine it.
NOTE: Remember not to use the words that are found in dictionary.
Secondary Logon Service
Make the secondary logon service available then open any document by RT_CLICK and select
the "Run As..." command option.
NOTE: This is a good practise for admin users doing something at users desk.
The following topic is important for certification exams:
Installation & Options
PXE compliant and non-compliant network card.
NOTE: The limitations with imaging is personalization.
DATE: Tuesday, September 12, 2006
====What tools do you have to move data like favorites, etc. from (as old as) Win-95 to newer
OS like Win-XP?====
(1) The Wizard in XP - Start --> All Programs --> Accessories --> System Tools --> Files
and Settings Transfer Wizard.
Note: The Windows Protection must be disabled. The 2 computers can either be setup on a
network or you can copy the stuff from the old PC in to a mdia storage (CD or Flash Drive) and
then move it in to the new PC.
(2) User State Migration Tool from the Command Line Interface (CLI)
NOTE: Buy a small biz server (about $1000) and you can run a network.
NOTE: Original media is not usually included when buying a new PC. So, you cannot do a
new install but simply a restore.
NOTE: If you want to add a new user vs. 100 users then we need to create a program that
uses a text file with (userid, passwd) (say in PERL) and run it from the CLI.
How do you use your PC info and diagnose problems?
Use the Help and Support tools in WIN.
Start --> Help and Support --> Tools (Use tools to view your pc info and diagnose
problems) --> Tools --> Command Line Reference A-Z
NOTE: Command on XP is different than on Server Product.
How do you run a command?
Though CLI - Command Line Interface
Start --> Run --> cmd (will give you a CLI window)
NOTE: In MSFT environment generally commands are not case sensitive, however in LINUX
environmnet it is. So, always keep it in lower case.
NOTE: command.com file is compatible to a 16 bit OS (a DOS compatible and an older
version file). However, command.exe is a newer command for a 32 bit OS.
How do you copy and paste from the CLI?
Click the C:\ prompt on the Top Left Corner of the CLI window, Click and select Edit and
Mark. Then select the area to copy and select copy and then paste it on to a notepad.
C:\ --> Edit --> Mark --> select the portion & hit enter or click copy and then paste it.
What is Microsoft Systems Installer (MSI)?
The MSI is a tool for installing and removing new applications with improved security.
Example: activeperl.msi
NOTE: MSI is critical for systems administrators.
There are 2 ways that .msi is supported in a domain network through some sort of
automation.
(1) Publishing a package
(2) Assigning a package
The process of automation is as follows:
a. Putting it on a shared drive & letting the user decide to install. This gives the
power to the user. Not Good.
b. You can have it installed on Powerup - while OS is loading - automatic
c. Logon Option
What happens when you turn on your PC?
See the handout for windows XP boot file.
(a) Pre-Boot --> POST (Power On Self Test) - A rundimentary checking of hardware like:
processor, memory, BIOS, etc.
(b) MBR = Master Boot Record - Checks for 1 or more HD then check for CDROM, where the
active partition is, etc. Many viruses attack MBR or NTLDR. It can be fixed by System Admin.
NOTE: Some time you may get a problem that NTLDR is missing. That is probably because the
BIOS is setup to follow the sequence Floppy, CD ROM, HD, Network. If blank floppy is inserted
on A:\ then you will get that error. NTLDR = New Technology Loader.
NOTE: multiple copies of windows OS is stored on the system. (boot.ini)
Example: boot.ini - available to admin only.
You must have some unpartitioned space on the HD to run multiple OS. A menu is provided
to select which OS you want to run. When you open boot.ini with notepad (File --> Open -->
\boot.ini) (select all files). You will be able to see the file as follows:
[boot loader]
timeout=30
(this means allow 30 sec for OS menu selection)
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
(this is path defination using RISC informs the NTLDR- ARC path is independent of the OS)
[operating systems] (Controllers with 4 parts)
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional"
/noexecute=optin /fastdetect
(multi(0) is for SCSI HD only and not for IDE HD, noexecute means that you cannot put
executable code on certain portion of the system – good security feature, SCSI but these day
IDE)
NOTE: If fastdetect is enabled and Win-XP Pro is running multiple OS (with menu) then
serial muse is ignored (not detected)
HAL – Hardware Abstraction Layer
Software talks to HAL, HAL talks to Hardware (memory, video, network, etc.)
NOTE: Device Drivers are H/W dependant
What is a registry?
A registry is an active database with information on hardware, software, operating system
and everything else about your system.
When the registry gets loaded one of the first things that happens is cloning of the
registry so that you have the ability to get back to that state. Device Drivers gets loaded as
well.
smss.exe = session manager (independant od th OS) starts off "services" running in
the background. Example: Print Services
winlogon.exe = logon prompt screen (win 200 Pro and higher)
lsass.exe = runs
NOTE: 0x0 is how hexadecimal values are written.
NOTE: regedit is a tool to edit/change registry database file.
How would you add services (Local)?
As a Snap In...
What do you see when you run regedit as a Run command?
You get the folders on the following:
HKEY_CLASSES_ROOT - Info about software configuration
HKEY_CURRENT_USER - Info about about user
HKEY_LOCAL_MACHINE - Info about local pc
HKEY_USERS - Info about default setting for users
HKEY_CURRENT_CONFIG - Info about active hardwares and their profiles
Where is the LastKnownGoodRecovery located?
Run --> regedit --> My Computer --> HKEY_LOCAL_MACHINE\SYSTEM\LastKnownGoodRecovery
How many ways are there to fix problems with system issues?
There are 4 Ways to do this:
1. System Restore - In XP-Pro you can control when to set and when to use. Generally,
automatically everytime when you boot the system. This is the path: Start --> Help & Support --> System Restore (in pick a task, select Create Restore Point and
name it)
Downside :
a. You need storage space - for restore points turned on automatically in XP-Pro it is
10% of HD.
b. When you shut off Restore Points - All the Restore Points are gone. This is done when
you had gone back
NOTE: Viruses cannot be removed by System Resotre.
2. Last Known Good Recovery/Configuration - You need to get into advanced reboot mode by
pressing F8 upon restart. Select from the choices - Last Known Good Configuration
NOTE: Last known good configuration does not work when someone attempts to logon because
in your boot the log files are written even when you try to make an attempt to logon.
3. Windows in Safe Mode - This is used by System Admins when encountered a problem upong
installing a new H/W or S/W. In default Safe Mode you get a 640x480 screen with limited
graphics and only basic device drivers (0x0) loaded. From here you can install and uninstall
DD, etc.
NOTE: One of the choices in Advanced Rebbot (F8) is "Enable Boot Logging" - This option
should only be selected with the help from MSFT help desk. You can use "Enable VGA Mode" when
installing a new video card, etc.
4. Recovery Console - It is not installed automatically in WIN-XP-Pro - You need the original
disk for running the Recovery Console. Run Win-XP-Pro CD and type help to see all the commands
available. MBR can be repaired or restored. NTLDR can be fixed by simply copying it on to HD.
95% of the time FIXBOOT command will fix the boot record and recover you from the
problem.
NOTE: Partition Magic allows yu to partition your HD (a GUI).
DATE: Wednesday, September 13, 2006
Personalization and Customization with Display Control Panels/Properties
How to get to Display Properties?
1. Start --> Control Panel --> Appearance and Themes --> Display
2. RT. CLICK Desktop --> Properties
You will get 5 Tabbed Menu Choices:
(1) Themes
(2) Desktop - Customize Desktop - Run Desktop Cleanup Wizard 60 days. (uncheck this to
avoid annoyance)
(3) Screen Saver
(4) Appearance
(5) Settings
a. Identify (Provides the display to split on to multiple monitors - up to 10). Used in
High Grpahics Applications and Control Rooms. Not Available is in XP-Home.
Example: Openview from HP runs on multiple monitors using XP
b. Advanced - Adapter - Sometime during multiple boot environment some OS like Linux will
give you problems with the video adapter. So, this is where you will come to fix it.
How many monitors can XP-Pro Support?
Usually the standard is 10. However, you will need 1 video card per monitor. Video card
must be either AGP or PCI - ISA/VESA will not work.
NOTE: Some corporate environment may want you to keep a standard desktop.
PCI = Peripheral Control Interface
AGP - ???
System Properties - Control Panel
Start --> Control Panel --> Performance & Maintenance --> System (Shortcut = RT+Click
MyComputer --> Properties)
Tabs = General, Computer Name, Hardware,
???
Virtual Memory& System Files (\Windows, \Win32) These 2 use most BIOS.
A better way to solve efficiency issues is:
(1) To have 2 separate HD. 1st with system files and 2nd with virtual memory.
Note: Select (.) No Paging file in 1st HD and deselect it on 2nd HD
(2) Separate channels is even better
(3) Having different controllers
NOTE: These above three concepts does not speed up the system
DEP - Data Execution Prevention is available w/ service pack 2 to enhance security.
?
DATE: Wednesday, September 27, 2006
Handout of Windows Printer Terminology.
A Print Server must have:
(1) Adequate disk space
(2) Enough CPU cycles or machine time available for processing print request
(3) Sufficient RAM
You Must decide how to prioritize the print job in the print queue?
What happens if the printer runs out of printer paper? or ink cartridge? or a toner?
Do you need printer pooling? A more advanced technology.
Only 10 users can be accessing the printer server (in XP-Pro).
Example: If the print server already have 3 users accessing the data then only 7 can use
print services.
NOTE: Large corporation use First seat licensing versus buying license per server. So, #
of client licenses
A great deal of Planning in required printing:
Need to know: What, how much, how fast, how reliable
If someone wants to print then it absolutely must print ==> more printers
History of printers:
Back in 1980's the printers were connected through a cable called: Parellel port, printer
port, (25 pins) etc were only one directional.
In 1985, 100MB zip dirves came along.
In 1990'25 pin serial port came along, 9 pin com ports were also introduced. 9 pin ports
can also be used for modem.
These days printers are connected through USB or a network cable. But, it does not mean
that just because we are connecting a printer through a network cable that it is a network
printer.
To setup a network printer you need to know its IP address.
print out the print configuration from the printer's menu and get the information you
need to set it up.
Adding a Printer as a Local Printer to Act as a Printer Server on a network using Printer
and Faxes Window
Control Panel --> Printer and Other Hardware --> Printer and Faxes --> Add a Printer
Select the radio button Local Printer (uncheck the automatically detect)
Select the printer port by creating a new port (since it is a network printer)
Select the Standard TCP/IP Port (a Wizard for Standard TCP/IP Port comes up)
Enter the Printer IP Address (or the Printer Name) (10.101.10.200)
select the info, add printer type (manufacturer) (you can add the Printer CD or let the
OS handle it) and model #, Name the printer and select as default. If this is going to be a
shared printer on a network then you can enable it.
NOTE: If you did not select sharing initially you can RT. Click the printer icon and
select sharing. Additional Drivers button is where you can select printer drivers for
different OS.
How do you know that something (folder or printer) is shared?
You will see the hand hold the icon as an indication that it is shared.
Adding a Printer on a network using Printer and Faxes Window
Control Panel --> Printer and Other Hardware --> Printer and Faxes --> Add a Printer
Select the radio button Network Printer (check the automatically detect)
Note: You will see the UNC (Universal Naming Convention)
Enter the network printer path: \\ws00\LJ4050 (this will connect to joe's printer)
Security for printing:
Everyone ===> Print Only
Administrators ==> Print, Manage Printers, Manage Documents
Manage printers/documents means you can pause documents, cancel printing of documents,
remove printers, etc.
In corporate environment, you as the admin must allow those people near the printer
device manage printers rights. This way if the printer is low on printer cardtridge then you
can get them to pause printing, etc.
Managing of documents allows you to pause, cancel, delete, reprint and specify a time to
print the document.
When you are using print pooling then you need to get into the "Ports" tab for the
Printer Properties (RtClick Printer). This is where you can assign/add, delete or configure
printer ports.
Advanced Tab can control: Printer Available only for a specific time, priority, printer
spooling, etc,
Example of Printer Spooling - A 300 page word document is stored away on a portion of
the disk (by the OS) and then sent to the printer called spooling. This way program finishes
printing faster.
Priority applies to network printing.
Example: Instructor over students, Different groups having different priority
requirements.
How do you set prinitng priority?
Have 2 Logical Printers LJ1(default printer), LJ2 (with advanced priority 5). This
allows the users in the network to pick if they have a high priority document to print on
LJ2.
Separator Page : pcl.sep (C:\WINDOWS\system32\pcl.sep)
Each print job will have a separator page indicating who it belongs to, how many pages
are printed, date and time, etc.
Note: If I have a color printer and wanted to change it to a black and white printer we
cannot simply have the logical drive point to it becasue the device drivers are different.
Note: The default location for the print spool is:
C:\WINDOWS\system32\spool\PRINTERS
You may need to assign a separate volume for this if you are doing print spooling (a new
path) where you have enough disk space like an H: drive volume. You may want to Log error
events, warning events, etc. (Event Codes: Info=0, Warnings=4, Errors=8, Critical=12)
By default the info logs are disabled because you will have huge data stored.
Generally, Windows logs only exceptions. Linux logs everything.
Printers and Faxes --> File --> Server Properties --> Advanced Tab
To manage your printer through web do the following:
Printer should be sharing enabled then on IE enter this:
http://localhost/printers/
TCP/IP
TCP/IP - Almost all the communications today are done through TCP/IP. IPX is a proprietry
protocol by Novell. It works on the same cabling.
Each computer on a network must have a unique TCP/IP Address. Fo accessing the outer
world (internet) then you need a gateway router.
A gateway has a minium of 2 connections.
IP addresses IPv4 ==> 32 bits addressing. Future move is to get into 128 bits addressing
IPv6.
Example: 3 computers A (192.168.1.1), B(192.168.1.2), and C (192.168.1.3), and Gateway
Router (192.168.1.4)
Most routers will not handle the local (internal network) addresses. Example: 192.168.1.#
so, if you needed to communiate with a different IP address you need to access the gateway
router.
Windows vista will be looking IP address into 32 bit. But, XP is in 32 bits.
What is the IP address of your computer? Given the IP address of your computer what other
IP addresses can you communicate with without using the gateway router?
EXAMPLE1
Address = 192.168.1.1
Subnet Mask = 255.255.255.0 ==> (255.255.255 ==> network, 0 ==> computer host)
Gateway IP = 192.168.1.254
NOTE: The first 3 dotted decimal numbers are same.
EXAMPLE2
Address = 10.101.20.1
Subnet Mask = 255.255.0.0 ==> (255.255.0 ==> network, 0 ==> computer host)
Gateway IP = 10.101.1.1
NOTE: If you have to connect to 192.168.1.17 then you know you are going to connect to
local network. But, If you have to connect to 192.168.0.17 then you know you are going to
connect to an outside network.
On the internet the www.abc.com is converted into and IP address by the DNS (Domain Name
Servers/Services).
Example of DNS1 IP address: 26.26.26.26
However, having one DNS IP is not good - what if that is down? So, you need atleast two
DNS IP adresses.
Example of DNS2 IP address: 38.38.38.38
DATE: Thursday, September 28, 2006
MULTIMDEIA SHOW
The components of an IP Address
(1) MAC Address (like a house address)
(2) IP Address has 4 groups of octets
(for small network --> w,x,y = Network ID and z=Host ID)
(for medium network --> w,x = Network ID and y,z=Host ID)
(for large network --> w = Network ID and x,y,z=Host ID)
How IP Addresses are wasted?
A = 127
B = 16,000
C = 2,000,000
IANA = Internet Assigned Network Authority (ensures there is no duplication of addresses)
Create Private Networks - Not registered
No restrictions to address alocation
Hosts are not accessible from the internet
Organizations need fewer addresses
Need to look an IP address in a binary form along with subnet mask.
When you are setting up a network you need to know the following things:
(1) IP Address for the computer
(2) Subnet Mask for the network
(3) Gateway router for connecting to outside world
(4) DNS1 - primary Domain Name Server
(5) DNS2 - secondary Domain Name Server
(6) WINS - WINS is Microsoft's Windows Internet Naming Service (You May Need This
(sometimes 2 like DNS))
In a small network the netbios naming convention is useful. Ex: In home "desk"
However, the computer still need to IP address.
Some large corporation may use betbios due to growth and legacy. So, you may need "WINS"
similar to the DNS in the above 5 things. WINS ==> WINS is Microsoft's Windows Internet
Naming Service.
To lookup your IP addresses - You need to be network connections control panel.
Start --> Control Panel --> Network and Internet Connections --> Network Connections
This will show you all the connections of your computer.
Rt. Click it and select properties. From the General tab this will allow you (in
properties) to obtain an IP address automatically. The Alternate Configuration tab (which
makes life easier for commuter) is available only if you use automatic configuration. If you
are assigning them manually then the Alternate Configuration tab is unavailable.
NOTE: Most of the time you have to leave it automatic - DHCP (Dynamic Host Control
Protocol) takes care of that.
A Server in general is a piece of software here.
Through Alternate Configuration tab you get Automatic Private IP. They are mostly in
169.254 range. Unique to MSFT.
If you turn on your computer and you see this in your IP address then it means that there
is a problem in your network. Example: cable problems, etc.
Problems with this concept through DHCP with automatic IP address:
(1) You may have 2 DHCP servers running resulting in provding duplicate IP addresses
causing network problem.
xample: PC-A = 192.168.1.15 and PC-B = 192.168.1.15 (this is 2 computers on the same
network)
(2) You may have 2 DHCP servers running resulting in provding different IP addresses
causing network problem.
Example: PC-A = 192.168.1.1 and PC-B = 192.168.0.1 (this is for 2 computers in the same
network with an IP address as if yuou are on 2 different networks)
(3) Imagine you are running in this class 3 OS: XP, Linux, win2003 server. Now instead of
37 computers having 37 IP Addresses you will have 111 IP addresses.
What happens if the DHCP is turned off?
Well, you will end up with the Alternate Private IP address.
What happens if DHCP can only provide 100 addresses and you need 111 IP addresses?
Well, you will end up with the Alternate Private IP address.
So, the 3 problems are:
Disconnected Cable,
Disconnected DHCP,
Disconnected Leases of IP Addresses
TCP/IP COMMANDS from CLI
TCP/IP communicates using 4 layers:
(i) Application - higher layer
(ii) Transport(tcp-relaible, udp-unreliable based on error checking)
(iii) Internet (Ping, etc. commands are here in this layer)
(iv) NetworkAccess Layers(low) - puts the data on cable, is it wired or wireless, this
layer is extremely h/w dependant like device drivers, etc.
So, as an application programmer you just need to know what I need to provide to
transport layer.
(1) Ping - Verifies IP-level connectivity to another TCP/IP computer by sending Internet
Control Message Protocol (ICMP) Echo Request messages. The receipt of corresponding Echo
Reply messages are displayed, along with round-trip times. Ping is the primary TCP/IP command
used to troubleshoot connectivity, reachability, and name resolution. Used without parameters,
ping displays help.
Ping 127.0.0.1 ==> To test if my internet (networking) software is running properly
a.k.a The local loopback address (127.0.0.1)
This is the first thing to do when trying to figure out network problems.
(2) Ipconfig - Displays all current TCP/IP network configuration values and refreshes
Dynamic Host Configuration Protocol (DHCP) and Domain Name System (DNS) settings. Used
without parameters, ipconfig displays the IP address, subnet mask, and default gateway for
all adapters.
NOTE: This is where you might see and APIP address 169.254.0.1 to 169.24.0.254
This is the second thing to do when trying to figure out network problems.
EXAMPLE: If you as an admin get a problem from sally that she cannot connect to internet.
(1) Is her software working (Ping 127.0.0.1)
(2) Check if she has a valid IP Address (ipconfig)
(3) Check if Gateway connection is working properly (Ping the gateway IP)
(4) Is the DNS Server down? (Ping the DNS IP)
(5) Is the internet down? (Ping the internet - Example: ping msn.com)
NOTE: Due to pinging the website a website can go down and so some admin disable the ping
request.
Example-1: ping www.ibm.com (we know that the DNS is working because you get an IP
address, but we do not know if the internet is functional because the request is timed out)
Example-2: ping www.apple.com (we know that the DNS is working because you get an IP
address, but we also know that the internet is working because we get all the info for the
ping)
(3) Tracert - Determines the path taken to a destination by sending Internet Control
Message Protocol (ICMP) Echo Request messages to the destination with incrementally
increasing Time to Live (TTL) field values. The path displayed is the list of near-side
router interfaces of the routers in the path between a source host and a destination. The
near-side interface is the interface of the router that is closest to the sending host in the
path. Used without parameters, tracert displays help.
NOTE: This is telling is how you are going from point A to B. The router path maybe
change. This is another testing tool.
(4) net view - The net view command lists the file and print shares of a computer using
Windows XP by establishing a temporary connection. To test TCP/IP connectivity by using the
net view command, open Command Prompt, and then type net view \\ComputerName. It will tell us
what resources are available for a particular computer on a local network.
Example: Sheila was on the network computer and everything was fine. After the break it
is not working. What's the problem? 3 Possible Solutions:
(1) Need to make another connection by ipconfig as follows:
(a) ipconfig /release - Sends a DHCPRELEASE message to the DHCP server to release the
current DHCP configuration and discard the IP address configuration for either all adapters
(if an adapter is not specified) or for a specific adapter if the Adapter parameter is
included. This parameter disables TCP/IP for adapters configured to obtain an IP address
automatically. To specify an adapter name, type the adapter name that appears when you use
ipconfig without parameters.
(b) ipconfig /renew - Renews DHCP configuration for all adapters (if an adapter is not
specified) or for a specific adapter if the Adapter parameter is included. This parameter is
available only on computers with adapters that are configured to obtain an IP address
automatically. To specify an adapter name, type the adapter name that appears when you use
ipconfig without parameters.
(c) ipconfig /flushdns - Flushes and resets the contents of the DNS client resolver
cache. During DNS troubleshooting, you can use this procedure to discard negative cache
entries from the cache, as well as any other entries that have been added dynamically.
(2) You could even reboot the computer and it would do the same thing. But, some users
may not be able to reboot for whatever reasons.
EXAMPLE: www.abc.com available at 10AM and not avaiable after the break
(1) server is down i.e. internet is down.
(2) the website was moved from one computer to another computer so DNS is not relating
the info. The network cache needs to be flushed out becasue the cache for the previous load
of the website is in the cache which obviously needs to be modified. So, use the ipconfig
/flushdns.
DNS - Domain Name Systems/Services
Used to link the domain names to IP addresses. nslookup is a CLI tool to lookup DNS info.
DNS works in the Hierarchal database format just as the WIN OS. Root Domain is "."
So, in reality "www.apple.com" = "www.apple.com."
The role of DNS in the network infrastructure:
DNS maps the abc.com to an IP address.
Benefits of DNS: Convenience, Consistency, Simplicity
Key components of DNS
(1) DNS Domain Name Space: "." = root, ".com, .org, etc." 1st level DNS Dmoains, ibm.com
= 2nd level domains
(2) Zones - Zone Transfers, Primary and Secondary Zone database file for all the info of
large damains.
(3) Host Name Resolution Processes - Forward Lookup Query is sent using FQDN hand it to
DNS and get an IP address.
Note: In Reverse Lookup Query you put an IP address and check to see if it is from as
certain domain.
How do you check if an email was a spam or not?
Through Reverse Domain Name lookup. But, this is a problem.
A hostname refers to a specific computer on the internet.
FQDN - A fully qualified domain name
(5) Nslookup - An interactive session which displays information that you can use to
diagnose Domain Name System (DNS) infrastructure. Before using this tool, you should be
familiar with how DNS works. The Nslookup command-line tool is available only if you have
installed the TCP/IP protocol.
Example: enter "nslookup" on the CLI and then enter the domain name.
Non-authoritative answer means that it is getting the answer from the server and not a
table (like the cache)
DATE: Friday, September 29, 2006
The following Multimedia Presentations were shown:
(1) How a packet flows through the OSI model - All People Seem To Need Data Processing
(2) How a packet flows through the TCP/IP model -
(3) The Name Resolution Process - 2 processes
(i) Host Name - part of hierarchical structure, the left most name, used on the internet
(ii) NetBios Name - Not part of hierarchical structure, used on the intranet and not on
the internet
The Name Resolution Process (in default order):
(i) DNS Name Cache - Name to IP address mapping is searched for on local machine cache.
You can flush the DNS Name Cache by the command "ipconfig /flushdns"
(ii) Hosts File - A local text based file administered by the sysAdmin. It is extremely
important. It resides in C:\WINDOWS\system32\drivers\etc
(iii) DNS - Name to IP address mapping is searched for on remote servers
(iv) NetBios Name Cache - You can flush the NetBios Name Cache by the command "nbstat"
(v) WINS - The Microsoft Windows Server is used to map the name to an IP address
(vi) Broadcast - A local broadcast is done to the subnet for mapping the name to an IP
address
(vii) Lmhosts File - A local file is searched for mapping the name to an IP address
NOTE: You can change the order of the name resolution process by making a change in the
registry.
DATE: Friday, September 29, 2006
ACTIVE DIRECTORY
A MSFT attempt to handle "directory services" technology.
Cannot implement with XP-Pro, you must need a server product. It basically is a database
for resources on a network like printers, users, computers, etc. on a network. Looks at
things as objects.
A search (query) can be made based on attributes of an object.
Benefits of Active Directory
(1) Configurable for small or large corporation
(2) Simplifies things for the users
(3) Centralized administration for System Admin (As an MCSE you need to be able to design
and manage Active Directory)
How Active Directory Enables a single signon - Multimedia Presentation
2 Steps for a single signon
(i) Authentication (by entering credentials) - Is this a valid user?
(ii) Authorization (after successful Authentication) - What rights does this user have
for various resources?
2 Things to keep in mind when structuring Active Directory - management of a forest
(a) Logical Structure of the Active Directory (database) - usually based on the
organizational structure.
Example: Microsoft.com - a tree (technet.microsoft.com (sales, marketing, etc.),
msdn.Microsoft.com (sales, marketing, etc.), etc.) and Msn.com - a tree
(b) Physical Structure of the Active Directory (database) - based on where the resources
are. To optimize network traffic. Example: Objects, organizational units, domains, domain trees, forests
Active Directory uses multi-master model with which the changes are replicated in the
domain controllers.
Concerns/conflicts with Active Directory:
(1) Attribute Conflicts
(2) Deleted Container Conflicts
(3) RDN (Relative Distinguisehd Name) Conflicts
NOTE: The globally unique stamp resolve conflicts
How fast do you need the connection?
Example: Law Offices at 2 locations
(i) Domain Controllers - to duplicate the databases at each loactions and storing of the
information.
(ii) Active Directory Sites - replication of and with other Active Directory
NOTE: When a user previldges are changed it does not become effective until he logsout
and relogsin again.
Connecting a Netwrork
Network Connections using network control panel:
Start --> Control Panel --> Network and Internet Connections --> Network Connections -->
Local Area Connection
ShortCut: RtClick + MyNetwrok Places and select properties (Disable, Status, Repair,
Bridge Connection, Properties)
Status : In the Support Tab, this is where you see your computers IP Address, Subnet Mask
and Default Gateway. Just as Ipconfig information from the CLI. Details provide more
information.
Repair: Does the connection repair as ipconifg (/flushdns, /release, /renew) functions
all in one.
Properties:
(1) This is where you may want to control who have access to the shared files and folders
on the network card level.
(2) If you are supporting other legacy protocols like ipx then you would come and click
install select TCP/IP and slecet from the choices given
Setting Up A New Connection
(1) Connect to the internet
(2) Connect to the network at my workplace using VPN
(3) Setup a home or small office network
(4) Setup an advanced connection
3 Wireless Networking Standards
(1) 802.11a - high speed (54 Mbps @ 5.8Ghz),
(2) 802.11b - oldest (1999), low speed (5.5 to 11 Mbps @ 2.4Ghz),
(3) 802.11g - high speed (54 Mbps @ 2.4Ghz),
NOTE: Problems with 2.4Ghz frequency range (microwaves, wireless portable phones,
materials in building structures)
Setting Up a Receiving end of wireless
For Access Point you need:
(a) SSID (system id) - Need to change the SYSID and Broadcast need to be turned off -
DISABLE
(b) WEP (wireless encryption protocol) - Need to turn this on
(c) Filtering of the MAC Address (for setting up a table of MAC Addresses so that only
those are allowed) - ENABLE ACTIVE MAC TABLE
DATE: Monday, October 02, 2006
VMWARE Issues - Product Key and Activation required
ICS - Internet Connection Sharing
Example: A computer "A" with XP-Pro installed and ICS turned on is able to connect to the
internet. However, all the other computer in the network "B", "C", etc. (connected to "A")
are also able to connect to the internet due to ICS turned on. The "A" computer works as a
gateway to the internet for all the PCs in the network and esentially becomes a DHCP Server as
well as Domain Name Server.
Conditions for ICS to work
(1) Must comply to the IP Address "192.168.0.#" and subnet mask of "255.255.255.0".
Anything else will not work.
(2) Only avaialable for Workgroup (Peer-Peer) network and not for domain
(Client-Server)type network
(3) The workgroup computers cannot be running any of the server products like windows
2000 or 2003 server.
FIREWALL
Port 80 needs to be turned on for incoming traffic.
Windows firewall is very limited.
Start --> Control Panel --> Network and Internet Connections --> Windows Firewall.
Default setting for firewall is ON
In Exceptions Tab - File and Printer Sharing, Files and Settings Wizard and Remote
Assistance is Turned ON.
Note: Remote Desktop and UpnP Framework is NOT turned ON.
One way to allow incoming traffic to look at the webpages is by:
(1) Add Port... button - Provide a Name & Port Number 80 with TCP. UDP is not checking
for errors and is for small strings of data. Change Scope allows you to pick who to allow:
all, one or specific users.
The firewall is universal and this is the only way to make an exception.
In Advanced Tab - Local Area Connection is checked off, but you can specify with Settings
button.
Security Logging Settings allows you to generate log files for successful and not
successful connections and the location and file size.
ICMP Settings allows you to share error and status info for troubleshooting for pinging.
Default Settings allows to restore default settings.
NOTE: Most of the time network connectivity issues are due to conflicts with Firewall.
So, turn them off and try again.
POLICY
Is the way to control things in Windows environment.
Policies are applied to the following 2 things:
(1) physical computer
(2) the users
snap-in allows you to change and set policies.
(1) Security Templates - Examine/Edit and Modify Security Templates. Security Templates
is an MMC snap-in that provides editing capabilities for security template files.
C:\WINDOWS\security\Templates - either we will use them as is or modify them.
NOTE: DOn't ever change the templates itself, make a copy (save as...) of one and modify
them.
Example: make a copy of "setup security" and rename it as "aces-security" --> Account
Policies --> Password Policy --> Maximum password age = 42 days changed to 60 days.
(2) Security Configuration and Analysis is an MMC snap-in that provides security
configuration and analysis for Windows computers using security template files.
NOTE: Open a database file named "Ace-Sample-DB" and link it to "aces-security"
RT.Click and select Configure Computer Now... and then Analyze Computer Now...
NOTE: So, changing security is a 2 step process (1) Configure and (2) Analyze
(3) Group Policy Object Editor (Local Computer Policy) This snap-in allows you to edit
Group Policy Objects which can be linked to a Site, Domain, or Organizational Unit in
the Active Directory or stored on a computer.
Computer and User Configuration.
(a) Account Policies - Local Computer Policy\Computer Configuration\Windows
Settings\Security Settings\Account Policies\Password Polciy
Password Compexity = more than 7 chars = U/L/#/Special
Things can be controlled: Password History, Max and Min Password Age, Min Password
Length.
(b) Account Policies - Local Computer Policy\Computer Configuration\Windows
Settings\Security Settings\Account Policies\Account Logout Polciy
Anything other than "0" enables it. if changed to 3 means the user will be given 3
choices after that it will lockout computer for 30 mins. Account Lockout duration = 0 means
the account is locked out until administrator unlocks it.
(c) Local Policies - Audit Policy - Audit account logon events (success and failure).
Audit account object access (printers, files and folders) enable it by checking off
success or failure and then go to that object and turn on auditing.
(d) Local Policies - User Rights Assignment
(i) Shut down the system - Admin, Backup Operators, Power USers, Users
(ii) Change the system time - Admin, Power USers
(e) Local Policies - Security Options
(i) Rename Admin Account from Administrator to Ace-Admin
(ii) Interactive Logon: Do Not Display Last User Name
(f) Local Computer Policy - User Configuration - Software Settings (for loading software)
(g) Local Computer Policy - User Configuration - Windows Settings - Scripts (for
logon/logoff)
(h) Local Computer Policy - User Configuration - Windows Settings - IE Maintenance
(browser UI, Conection, URLs, Security, Program)
(4) Resultant Set of Policy - This snap-in allows you to view the Resultant Set of Policy
for a user on a machine. The snap-in can be used to view policy that has been applied as
well as predict what policy would be applied to a user on a machine.
Action --> Generate RSoP Data (select the user you want to monitor)
This changes the "Resultant Set of Policy" to "user01 on WS09 - RSoP"
Note: If you want to add more user you have to add the snap-in again.
CLI = gpresult (command gives you more info from CLI)
NOTE: In a domain environment, the policies override structure is LSDOU (Local, Site,
Domain & Organizational Unit). So, OU overrides Domain, Domain overrides Site, and Site
overrides Local plociy.
NOTE: Event Viewer - is hidden in XP but not in Vista.
Add it as a snap-in or can get to it via: Computer Management --> System Tools --> Event
Viewer Application, Security, System
DATE: Tuesday, October 03, 2006
Services
A service is an application type that runs in the background and is similar to UNIX
daemon applications. Service applications typically provide features such as client/server
applications, Web servers, database servers, and other server-based applications to users,
both locally and across the network.
Note: You can Restart, Stop or Pause the service.
Services - through admin tool, through MMC or as a snap-in
(a) Starts upon system startup
(b) independant of the OS
(c) Runs at High level of security similar to adminstrator level
(d) This is where hacker likes to attack.
Winlogon Service - Allows you to logon to the system by providing you with a logon
service
IIS Admin - webserver - support of web services
Note: When you stop IIS Admin then other other services are automatically turned off (FTP
Publishing and World Wide Web Publishing)
General Tab allows you to select if you want this service to start in autmatic, manual or
disabled state.
Dependencies Tab show you which services the current service is dependant on and also
which services are dependant on the current service.
Recovery Tab allows you to recover from a failed service.
Log On Tab allows you to logon as a certain user.
Task Scheduler - Use Task Scheduler to schedule computer tasks to run automatically.
Note: The computer must be turned on to run this and usually the computer is required to be
up 24/7.
Start --> All Programs --> Accessories --> System Tools --> Scheduled Tasks
Monitoring and Optimizing System Performance:
Task Manager - Can be started 3 ways:
(1) CTRL+ALT+DEL
(2) CTRL+SHIFT+ESC
(3) taskmgr
(4) Rt+Click System Icon Tray - Task Bar
4 Tabs are shown in Task Manager:
(1) Applications - All the applications started by the user. Services are not listed
here.
(2) Processes - Snippets of codes started by OS automatically
NOTE: View --> Select Columns... - will give you more info on the processes.
(3) Performance - CPU Usage 80%-85% means you need to upgrade as CPu is overworked. If
you see a bar on CPU Usage with 2 separate windows then you have a dual processor running. Note: You can see performance through Administrative Tools. CLick on "+" and you will be able
to see counters for various performance objects.
(4) Networking -
NOTE: View --> Select Columns... - will give you more info.
What does a webserver need to do?
To service requests from other computers on the internet and display appropriate
information from the hard drive.
Example: IIS, Apache
Remote Desktop Protocol - RDP - fka - Terminal Services
Note: This is how you can monitor servers remotely.
client can run any MSFT OS or a VNC Client.
The other computer can run any server product (2000/2003) and Win XP-Pro.
Start --> All Programs --> Accessories --> Communications --> Remote Desktop Connection
System Properties --> Remote
Remote Desktop - Check off Allow Users to connect remotely to this computer.
Port has to be opened also. TCP 3389 is the port number that needs to be opened in the
firewall.
Note: XP-Pro allows only 1 remote connection however the server products allows 2 connections
at a time.
Remote Assistance
Requires both the user who needs the help and the expert to communicate.
Start --> Help & Support --> In Ask ofr Assistance click on "Invite a friend to connect
to your computer with Remote Assistance"
MAPI Client -
System Properties --> Remote
msconfig - to make modification to the way your system boots.
From the RUN command you get access to System Configuration Files.
system.ini, win.ini, boot.ini, services, startup
Backup and Restore Data (using ntbackup)
Start --> All Programs --> Accessories --> System Tools --> Backup
or Start --> run --> ntbackup
Note: Advanced Mode gives you more options
Automated System Recovery Wizard (ASR) is a full backup that requires a floppy and a
backup media.
Different kinds of backups.
Using removable media - like tapes, etc. (expensive to do backups)
(1) Must establish a backup policy which would be a function of our buisness environment.
(2) A critical business ==> backup daily (Mon to Fri)
(3) Crtical Disaster Recovery policy. Secure Storage Facility gets the backup every week
for archival.
Things to consider:
Do you want to backup everything - Full Backup? ==> Slower Backup and Faster Retore
Do you want to backup just the changes? ==> Faster Backup BUT Slower Restore
Note: archive bit is turned on upon backup and when changes are made then the archive bit
is turned off.
MSFT Normal Backup is full backup with archive bit turned on.
MSFT Copy Backup is like a full backup with out making any changes to the archive bit.
MSFT Incremental Backup examines the files for changes and backsup the changes and sets
the archive bit.
MSFT Differential Backup examines the files for changes and backsup the changes with out
making any changes to the archive bit.
MSFT Daily Backup backsup the changes made that day based on date and ignores the archive
bit.
DATE: Wednesday, October 04, 2006
Steps for Removing Malware, Spyware and other infections from your PC
(1) Install Java Run Time Environment from www.sun.com
(2) Run Housecall from www.trendmicro.com
Also see:
http://www.kaspersky.com
www.grisoft.com
Once PC is intact then run updates for windows.
PRACTISE EXAM
MSFT Readiness Review Suite - Objective Reviews (70-270)
(Installing, configuring and Administering Microsoft Windows XP Pro)
Review Windows XP
Creating Virtual Network and Virtual Machines
2 Products Avaiable for Free:
MSFT Virtual PC - Server (free) & Workstation (free)
VMWARE - Server (free) & Workstation (not free)
In our case:
Host = MSFT Win-XP-Pro with IIS and IE (looks at the guest info as one big data file)
Guest = Fedora Linux with Apache Server
