tailieunhanh - mcsa mcse exam 70-296 study guide phần 2

bởi vì giao diện Web Quản trị không bao gồm một công cụ quản lý DNS. Trả lời C là không chính xác, bởi vì máy tính quản lý không bao gồm các snap-trong DNS. 5. Bạn là người quản trị mạng cho cua Joe tại một cuộc họp ở Redmond, Washington, bạn được thông báo rằng một trong mới được cài đặt Windows Server 2003 | Implementing DNS in a Windows Server 2003 Network Chapter 1 47 The previous scenario is a very general yet very easy way to secure your DNS servers. It s also a very good baseline for adding security to your name resolution strategy. In the sections to come we discuss some of the concepts and features that Microsoft has put forth to relating specifically to DNS and DNS security within Windows Server 2003. In the next section we discuss the three levels of security that Microsoft has defined for DNS. Levels of DNS Security DNS security like many other forms of security is a relative term. For some simply implementing a firewall and placing their DNS server behind it is sufficient security. For others only the latest and greatest top level of security will satisfy their needs. To assist you with your DNS security configurations for Windows Server 2003 Microsoft has broken security into three separate levels for comparison purposes Low level Medium level High level As you apply different security features to your Windows 2000 DNS namespace you systematically move from a lower level of security to a higher level. To make a real-world analogy you can compare it to security clearances that are in place in the . Government. Classification of documents and material within the . Government falls into one of five categories Unclassified Sensitive but classified SBC Confidential Secret Top secret As you go from unclassified to top secret the criticality of information security becomes more and more severe. Obviously knowing what the . Nimitz will be serving for lunch is probably much less a security risk than knowing what types of ammunition are stored on the ship. Microsoft s definition of security levels for DNS follows much of the same patterns. Things such as DNS access to the Internet dynamic updates zone transfer limitation and root hint configurations take on different aspects as you increase in security level from low to high. Let s begin by running through