how to be an it administrator ppt

B IT Administrator roles and credentials = Chapter 1 First, let's discuss which cenfiations make sense to today's IT administrator, then Fl discuss what types of eoleye depres are right

Trang 1

Peres pote Cc ati

How to be an IT Administrator

Trang 2

‘Tech Publishing

PO Box 23714

Tigard, OR 97223

usa

Alrights reserved No part of this publication may be reproduced or istibuted in any form or by any means, or stored digitally, without prior written permission of the publisher

Trang 4

About the Author

Robert MeMillen has been in the information technology industy for

‘more than 14 years and holds over 35 technical certifications from companies like Mierosof, IBM, Novell, Apple, Cisco, Cheskpoint and many more Rober has yeas of experience being an IT administrator, including the postion of regional network adminisrlor fr PricewaterhouseCoopers Rober is now a partner and CEO of a successful computer consulting

company near Portand, Oregon, and host a weekly radio show on stations throughout the West Coast called the All Tech Radio show He has also

‘become the “Tech Guru for CBS affiliate Koin TV in Portland,

Robert received worldwide altention for succesfully retrieving deleted

<email during the Eneon seandal in 2001 that caused many executives to be indicted,

‘He has also trained our troops preparing for duty in the Middle East by showing IT staff how to protect their network from hackers and other

challenges while they are deployed in he Field

Trang 5

Contents

CChapter 1-1T Administrator Roles and

‘+ Certieation vs college degree Page 12

+ What to expect on your fist day Page 20

‘How does his job iter rom other jobs

+ What isthe car path for an IT Administrator? Page 24

Cchapter2- The pieces to your network and how they are

Trang 6

6

"What kin of hardware do you need te be successtl ana minimize

+ What somware 1008 do you use to

Cchapter4 Choosing the right staff, contractors, and vendors to support

‘+ How do you get the best harGware_ and sofware deals for your

+" What wit the company stat need

‘How do you generate excitement for

chapter 6- How to handle inheriting @

‘+The problems of taking over

‘+ How do you priorize your responsibiias? Page 169

Trang 7

Chapter 7-

Anywhere

chapter 8

Working on your network from

in the wort

Remote contol aptions 1a

‘administer your network,

‘What types of VPNs are out there and

whieh one is best?

How fo White Hat Attack your Network Page 210

Sarbanes-Oniey requirements and

Dealing with 17 stress

How do you learn to stay relaxed

How do you handle the tough customers? Page 281,

Getting job satisfaction and nancial reward Page 284

+ How to Keep curent in you job a8 17 Adminisvator and receive

‘+ What types of continuing education options

Trang 8

Foreword

have seen aft of change in my lifetime The word has transformed

‘self rom thousands of years of using paper and pen to a word ransformed

by electronic communication in just wo decades Even the moon landings

‘were inthe dark ages compared to where we are today Despite here being an Information supethighway we have created an information overload

“owever, the good thing is that, for dhe most pant, the internet and its exchange of ideas is sil ree We need to keep this freedom while sill being able to find good, accurate data in a reasonable amount of time

Enler th IT Administrator Only an educated and experienced

‘administcator wil be able to sift through the glut of information and find the hidden gems that we need todo our jobs Besides finding the right data, we need to beable to retrieve it withoui losing our identity to a hacker, or have

‘our computer become a zombie for SPAM,

Where does one goto school to be an TF Administrator? What book do

1 read or TV show do I watch? There are mans’ courses that prepare vou to be

‘competent technician, but theres so mach more wish Thad known tha

‘when I got state in this business

‘When I ist ied to got echnical cerifiatons twas anighimare to {get the information I needed to help me pass The books weren't focused (although there are beter ones no) and the self tests were mostly buguy and expensive Once I passed a est, wed a program that turned my experience Into afee online se tet 1 was amazing that in the 1990's this ie site

‘would get thousands of hts per day had so many emails thanking me for helping people get centfied without going broke that eventually some ofthe

‘endo like Cisco sai {had to take it down oF get sued Apparently, Twas tiving away too mich wseful information, They did't like tha [wanted 1 create something else that would help people become an IT

‘Administrator because I know it would sift out all the data people didn’t need and foeuson what was important This book isthe culmination that den Ï believe it wll make you more money happier and beter prepared than any

‘other book for this job, You can’t skip all he technical courses and

‘etfications you wll ned but ic will be te difference between buying a 1.7 liter compact and driving a Ferrari lt will just be beter

Trang 9

Preface

‘This book answers thecal tobe a guid fr all spring and current {information technology administators, Up until now, there has not been &

‘comprehensive book that covers, in detail dhe postion ofan IT

‘Administaior Whether you're considering becoming an IT administator

‘or you aleady are one this book is Fr so

‘We caver all arpecs ofthe information technology administrator position, We show you how to pick the proper hardware and personnel 10 Accomplish this dificult job, and how to thtive while doing it Athough this book i echnical in nature, the content is concentrated on how to do the job of an IT Administrator There are plenty of books that each you thw to build a server, but this book tells you why need tat server, and dozens of ether devices in a modem nevvork, We also yo into detail about howto be compliant with today's complex privacy laws

"No oer taining ean prepare ou for this pe of work like this book oes You may have paid thousands of dollars to be technically trained, but how prepared are you forthe actual day to day’ duties of an IT

administrator? We will demonstrate how to track client requests, deal with personality problems, hire the right stall, not get sipped of by contractors, rake the most money, and know what you're worth,

“This book shows you how to communicate your agenda, get the biguest IT budget and have some fun Ifyou eould, you would do this for Fre, right?

Trang 10

10

Acknowledgements

Hoaving started a business out of my garage that has srown to bea

‘multimillion dollar operation, have some people I would like

acknowledge lal started afer being laid ff from the fallout recession of 9/11 and the Dot Bomb era 1 got hereby aot of sweat and guessing unlit all made sense There was simply no one io ask Despite going 1a college and feading books, eveything avy skirted he opis inthis book

“Although spent years being an IT Administrator, Ino consult Airocly with them, That hard work has pai of and T appreciate each and every one ofthe administrators Ihave worked with over he years

Of course, my wife has always inspired me from the day we mol She has given me he reason to getup inthe moming, Otherwise think I would just stayin bed and see what happens

T ould also like to thank IBM and Microsoft work with them alot and 1 appreciate ther poduets and the businss model I as able to create

‘based on ther success, Even beter, [would like to tank Bill Gates for fooling IBM ino licensing his software (that didn't completely exist) instead

‘Of TEM just bving The world was aot less exciting when IBM was running everthing

T would ike to thank my staff and partners that work for and with me

a All Tech 1, LLC They too work very hard to make sure IT administators have what they need to do their job They have los of great stories of heroic

Trang 11

361

IT Administrator roles

and credentials

Certification vs college degree

What to expect on your first day

How does this job differ from other

jobs in the computer industry?

What is the career path for an IT

Administrator?

Trang 12

2 ẤT Administrator roles and credentials - Chapter 1

Certification vs college degree

‘Congratulations on choosing career path that is exciting and

rewarding!

remember when Iwas making the decision to go into the FT eld in the mid 1990's Iwas pivotal time forme in my life I was changing

In teens, had started a photography business which had served me

‘wel for many years uni the market changed dramatically I wanted toy Something new and different Many companies were moving from a per to

‘eer environment into the now fanlir server-worksation relationship we [know today Security’ was becoming an issue in large companies where data

‘was no longer considered open to everyone,

{as left witha choice between a college degre in computer science

‘or technical eetfcaions, I looked atthe difference in pay between the wo and the choice became pret obvious Certification was the way to goin the 1980's However, it's a diferen world toda I'you're planning on being ether a technician or an administator ofa small company, then erifieation will work just Fine But ifyou plan on going into IT management in a medium (or lrge corporation, a college depre in any of the computer sciences is the way 1 g0

How to be IT Administrator

Trang 13

B IT Administrator roles and credentials = Chapter 1

First, let's discuss which cenfiations make sense to today's IT administrator, then Fl discuss what types of eoleye depres are right for his Job, At that pont you can decide which path to follow I'you choose ‘management, then you'll need both a depree and cerifications

Inthe workplace, Microsoft i king Yes, there is a resurgence in Apple's Macintosh and almost every office has a east one Unis or Lin Server or workstation, but a Microsoft MCITP (Microsoft Certified IT

Professional erations the wa’ 10 go for atleast the nest decade, Besides

‘owning more than 90% ofthe business workstation envionment they also

‘own the majority of server deployments This certification i basically

‘equivalent tothe MCSE from Windows 2003, 2000, and NT Ht requires seven {ess to be passed Four of them ate cote and tree are your choice You can sec all the deals at ww microsoft com lerning/mepimeitp,

‘The MCTTP training will give you mos of the owledge you'll ood

to rma network inthe Mirosof environment, Being certified will make you very employable for many years Usualy.you'llenly have to update this

‘etification when Microsoft comes out withthe next generation of the Server software, Tis happens every thre o five years The fist ime you take the MCITP, you'll have to pass all seven exams I'you do the uperades within the timofame they give you, then you only have to take two or three uperade

‘ests, depending on your discipline

"You may be templed o do less than the fll course and wt lesser conlication like the MCTS (Microsoft Cnified Technology Specials), but if

‘ou want to really sueceed, then you need to pass al seven ‘This usually takes 18-24 months fo complete Ifyou are new to the LT business, vou should tke courses at your local community college to lear how to pass the exams and {gain some very good knowledge Then when you goto upgrade, it should only fake afew mons and, n most cases, vou ean do self stay to pass

Aspiring IT Administrators like yourself ean also take a boot camp

‘hat will get yu to passin afew weeks, But then you'll enly be “paper” cetfied You wouldn't as a minute an interview with an experienced IF

‘manager because you won't have the knowledge that youl nse by just,

‘memorizing the West answers For instance, you may know that a “hosts” ile is

‘sed on a computer to match names to IP addresses But ithe interviewer asks You why You would want to use “hosts ile instead of resolution through a DNS server, vou will ned to have exparonce with a server 10 answer that corretly

Tas new tothe industry inthe 1990s, and at that ime Novell was 0% of he server market I decided an intense five month technician ining

Trang 14

" IT Administrator roles and credentials = Chapter 1

cerifcaton class woul be the ight path for me at a college in my area, The TFadainistracor jb was not tll defined ack ten so there were no classes forthe position | could have hen Novll clases Io get a CNA or CNE cerifcaon, butt cold sce the handing on the wal fr than chen that time stonaly felt Microsoft was going fo dominate the nds and

Fortunately 19s right (id get es Novell NA codTcaon li on aly because one of mist jobs was on Novel 3.12) The Mero cases were just startin 0 fm forthe NT 3.8 cetieains, bu I knew that NT-4.0 was wound the comer I decided to 20 wth the technician's etiaton tha the Colle was offering because asthe closet matched elas could tke for theo wanted atte time Has mostly PC repair lass ut hat Was Fine

‘with me because I did't even kno the basis of haw ta emputer That leads uso ures ofthe "must have” ceicaions “The A and Network+ cortiiatons ae where you shou begin if sou have no ele what's inside a eamputr ora network besides the RAM and

bn Ethomet cable IFy0u dot kaa ho fo bla compater fons crt, or ant name all the emmponets on, then hod off on the Mirosot

erations unt you get these 10 dane The Ât comsisð of two tt ad whe you can ass them it shows employers you know how to fx computes Tha’ aver importa part a he

‘Tradminisatr’s jo Te Network shows emposers you kos how To network computes together to make them GÌ tïng vanous palosels sich sẽ

‘hemos imporant one TCP You can ae th leaming masa and lye fom hip.crietoncomptiangadeauaspx om thet ein ge ther eiications based on your intrest thik isa great en fo get erfied in Linx or Uns Thee ae ven some

“Apple cerfcatons (0 got cemifed in the for Apple which snow a eet erin, but they may bring it back wih the Macintosh

resurgence) College depress for an spicing IT administrator come in ven! favors: Infomation Sstens, Computer Seienee Bachelor of Tecnloe Bachelor of Applied Science, Stems Adminstrator and may more Various collges and universes canot seem 0 come oa consensus on what call these, so they just make them up Te important thing To remember boat the job of Fadnistaon that based on “infastvctse That means Soul be responsible Fr ll he computer workstations and servers and the Connections betwee them You'l als he responsible for Bath incoming and fulging conection othe eto the world through the interne Thal means {rewall and router proficeney

Trang 15

" IT Administrator roles and credentials = Chapter 1

In order to pick the right degree, you need to ask to see what the quirements are fr that depres I they cover the areas oFinfastretue in detail hen that would be he ight degre for you An example of some ofthe {9pes of classes would be Microsoft servers, networking routing, ñrewalls office applications, email servers, and basie SQL Although you won't be esponsble for being a programmer ou will eed tondestand basic Structured Query Langage so vou can delete and ad ables and permissions

‘You will also need wo program login sripts, which would be part oF the sever classes,

you have an MCTTP or are part ofthe way there, you can get eredit

‘owards graduation at some eoleges and universities n some eases you can take as much as a¥ear off ofa four year degree! However, these tes of colleges are more the type vou would atend at night with no entrance

‘equiroments other than ahigh school diploma or GED, and are not as

respected But for many of us, dats our best option because we need 10 work four eutent jobs by day and beter our positon in life wi school a ight

‘Times have changed alot in tae IT industyin the last 18 years, and so have the ob skills needed 1o do the work, Not long ago, most companies

‘weren't even connected 1 the inlemet All ofa sudden around the year 2000,

\we had fo be intemet security experts What will the nest 18 years bring? I's going o be all about privacy and proecting your network We go int these Skills later in the book, so heepeeading!

Here is is of other IT certifications that you may Lok into for your ater (Figurel-1)

ACHD

ACSA ACTC

cceE

ccsP CCNP

CCNA, cor

cco Cc0A, cóc

[Aczees Routing and LAN Switching How to be an IT Administrator

Trang 16

6 IT Administrator roles and credentials - Ct

‘Wieless LAN ABE for Validating Knowledge Content Networking

IP Communications Network Management Optical

Sales Exper Storage Networking VPN and Securty

cola CCAao CCAXP

CCEA xe

CCiW Otner Certification CCiW Associate

Master CiW/ Designer Certiicaton Master CIW Admin

Master CIW Enterprise Developer Securty Analyst

CDiAx crt ober Compria Ti+

LWẾT Lnúx Network Projecte RID®

Securiyt Servers POR convergence

Wireless [EEGGUNEIL Certs teal Hacker E-Commerce architect

Trang 17

7 TT Adminiseatorrols and credentials - Cha

Specialist Technology Foundations Legato cen

| Enleraays Networks | Enterasys Nelworss Coriicaton

‘Advanced Deployment Professional Certifies Administrator

Certified Enterprise Developer Certified Systems Expert (On Demane Business Solutons Developer Solutions Exper System Adminstrator

062 Certified Specialist ESenver Cerifed Specialst Deployment Professional Cerf Advanced Technical Expert Certified Advanced System

Adminstator Certified Aeociate Developer Certified Solution Designer IBM cerifeatonsI

IBM centetions I How to be an IT Administrator

Trang 18

Is IT Administrator roles and credentials = Chapter 1

Micosot Partner Competency mare

MGTS MCSE 2003 Secunty MCSE 2003 Messaging MCSE 2003

MCSE 2000 Security MesE

MCSDNET MCSA 2003 Mesa mee cost MGDBA, MCAD NET, MicosoR Gusiness Solitons Exchange Server 2007 Ness

NOSE NcoS NCE NGTS

SÓNG Bena BONE BSCNE CNE Upgrade

Trang 19

\Veriae Certfeation for Backup Trendmieto Cerileaton

Trang 20

20 IT Administrator roles and credentials = Chapter 1

What to expect on your first day

‘You will remember your fis day of you fist IT administrator job no smatir what happens, good ot bad My first day was both exciting and

stressful My boss as the CIO (Chief Information Officer fora bottle

‘making company He was prety bright and interviewed me for almost two hous before he gave me shot He eame up wih all kinds of questions that never would have answered corel iI had "paper ceications

“The frst thing he asked me tod on my first day wast installa

‘modem fo connect fo one of he executive's computers so he get could dial up

‘access to America On Line At that time AOL ws the biggest ISP and no one hhad DSL, ait wasn’t commercially available yet breathed a sgh of relict bcause hai ben tsÏng AOL for Years and installing an intemal modem was

‘piece of cake, even an Windows 3

[Pm very glad he didn't watch over me while twas working because they wore using Compag computers and 1 had never worked on one belare One thing you should know about all colleges is they don’t have the lest equipment All hai to work on were old brand-less PCs that opened up to the

‘motherboard in a completely diferent way than Compaq thik t tok me at Teast 30 minutes jst to open that ist case! When I finally Figured tout Thad the medem installed along with AOL in about tn minutes and the ob 35 complete I thought moe than once tha his is goins tobe the shortest carer

‘move ever, but he was quite pleased at my success He ddh’t even mention

hs long i took because I think he was distracted (or ust hind),

“The economy wasn’t hooming inthe hotle business at hat im, so their computers were really showing ther age 1 made a great impression those fist few weeks when I went around wo all he plans and created a database oftheir computers {ook the time to talk to each person individually {o ind out if her computer had the proper resources todo the job they had to

do, This made a personal coanecton with each employee and they Flt a ot

‘more comfortable coming to me when problems started popping up T then took invenory’of al shit spare parts and know where each one

‘was by organizing them into bins, As each eomputer broke took th PCS long wi te spre parts and fixed them much more quickly than if {hadn't taken the time tobe organized also took broken PCs and pated thon ou to

‘rate working computers to get them troueh afew mote months unt a nes

PC would get approved

Trang 21

+ IT Administrator roles and credentials = Chapter 1

‘The important things employers are Looking for isthe bility to be @ selfstater and tobe esoureefil Ifyou have to ask your employer what to do all the ime, then you're nt doing it right Use your senses when people are telling you what i going wrong (or right) with their computer tn my

experience, vey Few people will ll you when things ae going right, but they will goon all day about whats wrong Knowing what's working forthe

‘employees in your new company is just as important as knowing what's broken,

JT administrator left you with Inheriting a network disaster is covered in chapter six Make sure you don't enticize the previous administrator in pubic, because you don’t knows how deep he alliances go boven te previous administrator andthe companys sta Corporate polities are the same 25 sandbox polities when you were a toddler You dit takeaway anyone's toys until you were big enough to fend the other ids off

Trang 22

How does this job differ from other jobs in the computer industry?

‘When computes first started to show up in corporate offices, the person who knew the most about computers inthe office was recruited to do the job, Now tha IT administration i just a part ofthe overall corporate office, we ean discus how i fit ino ihe big picture

Te IT administrator isthe cor to every busines with a server That's patty much every busines with more than fen employees, All other computer Jobs in an office revolve around that position The ater positions that lead up and đoạn trom the IP Administrator include software programmers that design your custom software, website designers, website database

programmers, security expens, compliance administrators, network engineers, computer technicians, backup technicians, help desk technicians and

proprietary hardware specialists ‘Systems Administatoris a jb thats sometimes confused withthe

IT Administrator position This position is restited to administrating specifi systems, servers, or applications, ater than the entre infrastructure

‘You may soe that you do several ofthe jobs listed here alread, but in

‘many’ cases You'll need to hire contractors or employees when something i

‘ut of your area, oF when you have to much todo We cover how to hire contractors lair in his book

"The jab of programming is pretty much selFexplanacry, but the web designer and web database programmer positions may not be that obvious have found thatthe back end of a complicated website database i job all by itself Thavent seen many designers that were also good database

programmer, and vice versa, Most Ecommerce sites and websites wih @ large extranet or employee base require a database to store and seure the dan

A network engineer takes networking to he nex evel Hy

rmulipe oflicesin your company then you have multiple routes

directions I's not uncomman to have some routes to remote afices have site

lo site VPN connections, while others are connected by the ISP's pọn lo point oF MPLS connection These are deserved in more detail in chaper two, 'A computer technician not only fixes computers but also keeps up on

‘updates, patches, and virusispy ware management A backup specialist,

understands the routines and troubleshooting for complex backup rotations

Trang 23

and restoration procedures, This is something you as an IT Administrator

‘Should know, bur there are some eases when you need a specialist to get you fut of hot water if a restoration doesnt 0 well

‘Securty and compliance experts sound like the same thing, and sometimes can be done By he same person, but they reall ae two diferent jobs Secunty has more to.do with making sure both interna and external Communications are reasonably safe from hackers Complance experise focuses more onthe ats of making sure al ofthe federal an state laws are being followed so your boss doesnt end up in not water Ofcourse he's In hot water youre going in ater him

‘A proprietary hardware speciaist is someone who is certified in a specie typeof hardware such as IBM or HP server equipment They also know about how the software that's designed to manage these servers works Wah the hardware, They dont necessary work for any af hose

manufacturers They may have jist decided to specialize in them For Instance, i have become very proficient in IBM servers so |went onine and {ook cetiication tests rom ISM to show my boss atthe time that Iwas able

to fix mast any issue that came up You also get higher level suppor om the

‘manufacturer wien you do get certtied because you can bypass the level

‘one phone suppor that sometimes takes forever to get pas

Trang 24

What is the career path for an IT

Administrator?

Ina medium to large size network, you usually dont just jump into the position of Tr administrator Yourave to work your way up na smaller company, that ist usually the case because you're the ons handling

{everthing technical inthe company, Which job is harder? elie isthe FT administrator for a small company because of the “jack ofall rades”

‘mentality, On the other hand, you will see more complex issues ina larger company so it may be a 185 up,

Make sure you hve the ability and budeet to hire outside consultants

‘when it comes necessary Otherwise you wll bea miserable slave to your job, and no ane will ke you, You wil also probably smell ad From

Torgttng to ake showers You'll gain atleast a hundred pounds because your đie vi] sufer

‘Whew! That was prt’ dice stu, bu it happens to lo of people who don’t set expectations with their company propery Tom the srL

I'youdo start with a company that has an actual IT staff you may stan out asa technician or help desk porson until they see your skills start to Shine This may take a year or more based on Vout education, certification, and your abit to thnk on your fee But you have one thing they don’t have, and that’s the knowledge ofthis book Te early TF Administ

hhavea book lke this to walk them through the peis and pals that you will nov be able to avoid

‘Afleryou finaly become an IT Administrator, what path for upgrade

Is there? The next logical step would be promotion to management

Sometimes i's being at the ht place a the sight ime was promoted ata company toa management position when my boss was nowhere tobe found ater th Melissa worm was released ino avery large company 1 spoke with his boss in San Franeiseo and took over the responsibility for my office and bother ofies in several states, He didn't ask met: | just jumped in and started doing it figured if someone else more qualified was going to ask me to step

vn that would be fine, but I was going o show my boss's boss that I would Sil in the gap without being asked,

‘Well, shorty after that I was taking over my previous boss’ position and lying high Leceived a big raise a big bonus and an “exceeded

expectations rating OF eourse, I could no longer teat he jab as & 50 hour per

Trang 25

‘week deal anymore 1 was available 24/7, but that was ok because I now had a sta of ten under me could delegate but stil be in contro Within six

‘months we beeame so eflicient thal we had almost no need to work overtime Emergencies did happen, but we were ready for them wit spare pat

cetfed staf, and support contacts if we needed them,

Management in a big corporation was relly ot my goal But I learned from my experiences and [used them in my next career as the owner ofan IT consulting compan 1 also used them sith my earer in radio and television informing people about technology, Ifyou aren eleepreneur a hea then highly recommend atleast tree years experience working as an IT

alministator before you become a consultant How else would you know

‘administrators problems if you weren't ist in thet shoes?

owning a company doesn’t appeal to you then being an IT

Administrator, manager, or C1O at a company isa great ong term goal for

Xu Thị is am indusiey that wl be around as long as businesses ae I don"t

ee any possiblity that we wil ever go back o pencil and paper unless of | course there's some sort af apocalypse Then you would likely have other issues to deal with

Trang 26

26

Trang 27

362

The pieces to your network

and how they are used

Stroe (SAN, WAS, 8)

ppt lice tet Sena Eosea

Sect Serr an stay Davies (fasted hat ncchavaretSpyare Serer

"rà Šố

Tớ

Trang 28

28 The pieces tovournetwork and how they are used ~ Chapter 2

What does a network look like?

‘Your network may or may not conform to industy standards based on previous IF Administatrs for your new company This chapter will be the

‘most important ofthis book when it pertains tthe tetnieal aspects of your

jb I wil also be the longest You may’ need to refer back oi several times throughout your years as an IT Administrator

"This is what a basie modern network looks like (Figure 2-1)

Trang 29

” “The pieces to your network and how they are used - Chapter 2

‘Your network may have more or less of thes items, but this isthe

‘most common network of today, However, tis network is not complete wnt

‘you ad in ational components tht make your network more reliable and Secure You'll also have certain customizations that are unique Io your

‘company

ere is a comprehensive list you may ned inorder to tu your

‘company’s technical operation, We will ono detail foreach one

Backup Server and Backup Device

Updates and Ant Virus/Malware'Spsware Server

Trang 30

“The pieces to your network and how they are used - Chapter 2 Viewalization

‘VOIP Phone

IP Camera

Invusion Detection and Prevention Server

Trang 31

31 The pieces toyournetwork and how they are used ~ Chapter 2

Ethernet cable

Figue 22 {could walk you trough what al th cable classes are (Cat 1-8 for example), but that's beter explained inthe Network traning, Rather than tell you everything about every cable out ther, let's discuss what the bes, cables ae for today's network (Figure 2-2)

Lets str with litle hisory The fist neoworks were connected with 10BaseS cable Tis cable was a tick pies of copper surrounded by

insulation and was fasly inflexible voul typically be run ina giant cing

‘ound the office I had the same consistenes as person's aeKbone whichis

‘tem thal stuck over the yeas Since it could rarely be ran tous the wall, tas a constant source of falls fom tripping since there was no way to hide From this cable, a vampire tap was used to connect smaller 1Obase2 cables (ka 10baseT), These are basically the same as your television cable we

‘se today, The vampire taps were fw tech convertors tha wed shap teeth 10 bite ino the 1ObaseS cable and connect tothe T0base2 1Nbase2 was ile sore flexible than I0base, bu nt as flexible at Cat Sor Se From there they connected 19a BNC network ead plugged into your computer There is an argument about what BNC stands for Some say Bartel Nut Connector, while others say British Naval Connecter (H'y0u just say BNC then noone well correct you)

We now useastar topology whee all Ethernet cables are run toa patch panel and connected 1 a backbone switch The backbone swith is

‘sual the fastest switch you have in the fie From that site, other sites can connect to more eablesiTy.ou hase more connections than one Ssvteh ean handle, The reason i's called a star topology is because all cables branch out fom the backbone switch into a many faceted tar pattern, There

Trang 32

“The pieces to your network and how they are used - Chapter 2

ae other topologies that can be used, bu his is the industry standard of today

‘The reason iis sil referred fo ae a backbone vite stat it isthe single point of fale, just asthe old L0bases used to be Ihe backbone goes dwn, the body of your network wil fallow

‘You're going to have to choose benveen three cable types: Cats, Cat

SE, and Cat 6 Cat Swill un at 100 Ml speed, The cables ate cheap but the supply is dwindling Ct Se wil generate upto 00 Mb speed, but the actual speed wil vary from 400-600 Mbs, based on manufatuer Cat 6 wil goal the way to Gigabit speed but costs more and cable installers really dislike installing i Is almost as infleible as the old 10Base? and breaks easily Cate isthe best bet 1's as exible as Cat Sand about the same price, It may rot hate the speed of Cat 6, but it's no likely your network will saturate Se for he foreseeable Future You can nun video, voice and daa traffic all at once and not fill the Se pipe There are higher levels suchas Cat 7,8, and higher,

‘but the cost of those products and the instalation make these choices

‘unappealing

Data packes are also sent oer fiber connections The protocol is a liste different, but the advantages fiber ae peat and many Instead of being limited to 100 meters you can go several miles with fiber 1s the connection

of choice when going irom building to building because not only do you not Bạt No about distance, you also don’t have to think about inererence

‘The limitations of sending daa over copper are seen when you have any kind

of electrial interference placed near the eable Shielded twisted pais

Supposed to overcome this issue, but even with the shielding there axe

instances where interference of greater magnitudes will eause disruption Fiber has tvo wires that are run in parallel rom one connection othe

‘other One is fr upstream and the other i fr downstream This allows Full duplex between connections Original ber was sad to be 100 Mbs, but now the onlylimaaio are the switches you connect them toon ether end They can go into the terabytes in spood if you have the propery rated cable and the hardware to support 1s not practical to use fiom the server to the computer because fiber doesn't bend well All the fists and tums vou can do with Cat

Se won't be possible, and breaking off a strand of fiber i expensive 19 replace

‘New cabling tha is allowing fiber to bend more easily i being

developed and one daywill replace copper, but not frat last a decade Make sure you don’t look into the fiber connection, or 04 could actuals risk blindness Remember thsi highly concentrated light from one end to the other that you're working with,

Trang 33

33 The pieces toyournetwork and how they are used ~ Chapter 2 Fieri also being used to connect hard drives to servers, as explained ater o in his ehaper

Trang 34

54 The pieces toyournetwork and how they ae tesd ~ Chapler2

Patch panel

Figure 23 Patch pane!

[patch pant isa simple but crucial device that connects all your cables from thei various locations throughout the fie inte one panel Many

TT Administrators are tempred to cut comers by having the cables run from each desk through the walls and dioely into the switch, Bu that would be @ big mistake, Evenially, the connectors wil break ofTthe ends when done this

‘When the home runs go ino a patch panel (Figure 2-3), they get connected 1 short Ehemet patch cable othe switch, Ihe shot patch cable goes bad you just throw i out and replace it in shot order IFyou run the connections directly tothe switch without a patch pana, ten it takes alot Tonger to cutoff the connector and replace it with anew one In my

experience, the patch panel Ethernet cable always brea For someone high tp

in the company who has no time t wait fr you to do this procedure so,

‘many IT Administiators don't know how to make a eable,o¢ have the tools and pans necessary to doi Besides having the patch panel i's great idea to [know how to make cables You willbe the heroin more than one instance and provide your company with an additional, much neoded, skill ony takes bout 20 minutes For someone to show yout how todo this, of you can Took it

‘up on theinteret The tools required cost about $20 and can Be bought as a Kit from just about any hardware store, Most kits come with basic instructions

"You should also buy a cable tester for about $100 whether or not you lsem to make a cable: These testers will ell you if you have a break in the patch panel cable or the homerun back tothe desk I's vary simple to use You ust plug one end into one side of the cable and then plug the other end Into the othe side of the cable and see you get a beep tha say’ the eable is

Trang 35

35 The pieces toyournetwork and hw they are used ~ Chapter 2 goed or not The more expensive testers also tell you he wires are crossed Iiworks whether the eabl is 3° oF 307

‘Alhome un sa cable that rans from the patch pane! all the way’ tothe desk jack Ifyou don’t have enough home rus, itis a common practic to Thang a mini switch of of the connection by the desk as more desks are added,

‘We ll go into the potential issues with mini switches when we cover that later on in this chapter,

Trang 36

36 The pieces toyournetwork and hw they are used ~ Chapter 2

Routers

Figure 24 Laver 3 Nework router

A outer connects v0 networks that aren't onthe same subnet The

‘echnical aspects are beyond the seope ofthis book, but you usually only have

‘one router in your office and most ofthe ime it's provided by your ilemet service provider (Figure 2-4) It connects your intemal network tothe outside

‘world, Usually the last connection from your network isthe Firewall, This is then connected to the outer From ther, it's connected toa highspeed

‘modem I then it goes to your ISP, where its routed yet again othe inert, sounds like this would fake Forever, but it happens milions of times each second as dala is converted into small, manageable “packets

Some offices have more routers because they have remote offices connected by a point to point connection These routers sit inside your

network eaher than outside your firewall The reason for his i hal your emote offices ae considered tobe trusted networks, Your ISP may sell you

‘on this viel intemal service which is monitored and setup by them The {technology that made his happen used tobe called a Frame Relay, but most [SPs have converted othe mare modem MPLS (Mult Protocol Label

switching) MPLS has more lilt than Frame Relay’ because it allows troups of fies to be connected with all ypes of wale, not just data packets

—

‘We sy is “vinual” because it is a private ngok, bụtlã re i's being unled to yout ISP and then io your remote offies But that does ican it isn private

Trang 37

37 The pieces toyournetwork and how they aze used ~ Chapter 2

et,

Figure 2-5 Shows a router sending data between two diferent subnets

A router sis at ayer 3 ofthe OSI model network switeh connec

‘computers inthe same network, rather than computers i diferent network like a outer does A swith sits a aver 2 ofthe OSI model You will lear ore about this in your Network tesning It is very important to knows what layer each level of traffic comes inn so ou know ow o manage it Figure 5)

[recommend you stay with big name routes and switches for both higher quality and suppor Cisco, Noel and Adtran top my lis Advan is a Tot cheaper and its operating sv stem i very similar to Ciseo, Tha's because the same engineers who ereated Cisco's 10S broke of and started their own company Personally, Ist prefer Cisco because te difference between the

‘companies is enough to make me want to say witha company tat has the

‘most support especially when you get into complicated situations

‘You mas havea vey large alice where ceriain groups of stl use

‘much more bandwidih than others, You may also have a VOIP phone system, that's the ease, be sure to get a route that supports VLANS All the good

‘ones do VLANs are even supported in high end svitches VLANS allow you {0 Segment the network into smaller groups so everyone and everthing doesn’t have the chance to hog ll the resources VLANS also allow you to

‘manage and toubleshoot network issues more easly by the nat of segmentation Divide and conquer i a great toubleshooter VANS work by

‘eating a separate subnet for each VLAN vou create, For instance, segment | may be 192.168.1024, while segment 25 192.168 2.0.24 The 1 network is Segmented From the 2 network, But they all have the abit to roue ou tothe intemet,

Ifyou re having a problem ina nebwork af 1000 computers, it's alot easier to figure out which computers are eausing a broadeast storm you oaly reed t Took at the segment thas having he isu, Tony recommend

‘ullple VLANs ina network of more than 150 computers of you have a

‘VOIP phone system I you have les than 150 computers, you won't really see the advantage ofa VIAN andi willbe more touble Han i's woth ose

‘up and mainain IM you have a VOIP system st realy helps, egardless of how

Trang 38

3% The pieces toyournetwork and how they are used ~ Chapter 2

‘many computers you have, because it allows you to have QOS (Quality of| Service) et upto the firewall This lets you have VOIP trafic se oa higher promt than data raflic for masimum voie laity The last thing you want

fn aphone call with a customer is static

Trang 39

Firewalls

Figure 246 Firewalls protect your company from hackers

In ord to pick the best irewall for your company we fist need to See the ree types of firewalls tha are out there The first firewalls were actually just routers with ACLs (aeess consists) These aklitional

Security measures kep most people out based on their IP address, bul were suscepible o [P spoofing Spooling fools the ACL int believing the source address is different and ona trasted network The ACL then allows the

‘atacker in Based on the history of this typeof security, a router using ACLS

‘The second typeof firewall sa Proxy firewall, Microsoft had this builtinto thet TSA server, but there are other brands of Firewall appliances that do the same thing Every packet that comes in sinspeced for approved teffie, suchas inbound email and then the connection is txminated, The

‘connection is then reeteated betsseen the proxy and the intended intel resource This process i created on the way out othe IP address of the requestor

“This is by far the most secure ofall frewalls, but it comes ata cost 1s too sls for most companies who rely om speed and lots of bandh So

a third option had to be invented I'you do choose to use Microsof's SA Server, oF a third party product that installs onto a Windows server, You should not use that server for any other purpose your datas on the same server as the firewall, there's a bigger chance tat it wl be at risk because it has a network ear that faces the ntemet,

Br the mest popular Grewall now in uses the combination oF IP tables, Statful Inspection, and a ưee way handshake (Figure 2-6) This offers both speed and security although nothing will be as secure as a proxy

Trang 40

‘A packet comes in from an IP address to your network Then the firewall send a packet back othe originator asking if it sent the packet The

foniginator sends back an acknowledgement that it was the source of the fonginal request, or not IF it does acknowledge it was the erginator, then the three way handshake is complete, The firewall then keeps a able of IP

auldesses that are confirmed fr as long as data passes bet een it and the

‘internal resource The IP addres inthe table is eventually dropped alter the

‘originator IP address stops communicating with the firewall, ata is now allowed to pas o any allowed port based on the ACL you input into the firewall The IP address i no longer considered a thea! fr sending a spoofed packet

Linus has a fee version ofthis bul-inta every version Every SOHO (small fice home office) device by Netgear, Linksys, DLink and aters use this as woll Highor end iewalls made by Cisco and Checkpoint also use this technology with their own customized operating system, Checkpoint adds the audiional option of prosying web, email, and FTP trafic for added secunty (Cisco has upgraded their Pix device by purchasing several security companies and incorprating them into thet Firewall, I's nos called an "ASV

(Adaptive Security Appliance) firewall Among other Features, it also adds @ better GUI and built-in intasions detection and prevention measures,

Tm opinion, afl loaded CheeKpoint firewall ona Nokia

appliance isthe most secure firewall on the marke, but the costs prohibitive

to most companies The Ciseo ASA device offers the next best hing fora faction of the cost There ae also alot more people certified in Cisco than in Checkpoint Ihave experience and cetfcation with bath products, Thete was atime when Checkpoint owned the market inthe 1990's, but times have changed find myself working with more customers who want to replace (Checkpoint deviees with Cisco, mosly because ofthe difference in east 0

‘maintain the more expensive Checkpoint firewall

Tyou don’t allow any inbound traffic into your network using ACLS

‘or prowy (hen it doesn't matter what brand of Firewall you go with Because all traffic will be rejected, This means if you have no reason to allow inbound fle, thon You ean go with a much cheaper firewall 1 wil all be socure recommenda firewall that’s capable of failover ifyour company can afford it especially they host mission itcal services, Youhave wo ask your boss what it would cost to be down for 48 hous to determine if another $3-5K {s worth spending wo havea standby firewall that automaticaly picks up when you have an outage in your primary firewall You can also havea free Linus Firewall on standby fr thes types of emergencies as wall, butt won't be

Tiêu đề	How To Be An It Administrator Ppt
Thể loại	Bài Thuyết Trình

Định dạng
Số trang	304
Dung lượng	15,09 MB