PModule 4
Continued with LLTD (network connections)
Setup a connected (ON TEST)
Dial-up and VPN
LAN
- Status
IPCONFIG /release
IPCONFIG /renew
IPCONFIG /flushdns
Clears the NetBIOS and ARP > cache
- UNC
\\VISTA\VISTA
net use i: \\vista\vista
Public Folder Sharing
Basic
Advanced
Share
- @ the folder level only
- the folder must be shared
Advanced
- read allows users to connect and view data, but also allows EXE's to run (i.e. .bat, .cmd and .exe)
Change (R W X D)
- same as readm, but also modify's data and delete data
Full Control
- modify share
- admin level
Advanced Basic
Read Reader
Change Contributor
Full Control Co-Owner
\\vista\c$
\\vista\d$
\\vista\e$
ETC
%systemroot%
admin$
print$ - spooler of a computer
NTFS Permissions
- NTFS partition
- any folder any file
* File + Folder level security
* Inherit
* Creator / Owner - if you create the folder / file you own it and have full control
X: drive letter of NTFS volume is the root
- top level folder (permission flow down)
6 Standard Permissions
IP V4 - TCP/IP
192.168.1.10/24
Classfull
3 Parameters to TCP/IP
1's = ON
0's = OFF
/8 =Number of 1's in the subnet mask
/16 = same
/24 = same
Private IP Range
Class A = 10.x.x.x
Class B = 172.16.x.x - 172.31.x.x
Class C = 192.168.x.x - 192.168.x.x
Exceptions
127.0.0.1
APIPA
169.254.x.x
255.255.0.0
Vista
- ICS (internet connection sharing)
Vista with 2 NICs = 1 NIC = Public IP = 131.107.2.200 = Internet
Vista with 2 NICs = 1 NIC = Private IP = 192.168.0.12 = Local Area Network
192.168.0.1 = Default GW
192.168.0.0
V1 = .10
V2 = .11
V3 = .12
192.168.0.12:1044 (port is an example)
NCPA.CPL
APIPA (automatic private IP address)
You cannot release an IP via IPCONFIG only renew
DHCP - must be installed on a server
With no DHCP a workstation will assign 169.254.x.x / 255.255.0.0 auto generates the last two octets
2 Services that resolve names to address
* DNS
* HOST NAMES
* FQDN
* Fully Qualified Domain Name (.suffix)
* WINS
* Computer Names
* NetBIOS names
Internal resolution - NT 4.0, 9X and anything below requires WINS
W2k and higher must have DNS for A.D.
See drawing in notes (i.e. CED.LOC and DC1)
IP V6 - TCP/IP
- 128 Bit Address
- 16 Block separated by a colon
- Each block is 16 bits represented by a 4 digit hexadecimal
-64 bit network component
-64 host component
0-9 A-F
FE80::
or
FE80:0000:
LLA
Link Local Address (APIPA) FE80
ULA
Unique Local Address (Private) FD
GA
Global Address (Public) 2000-3FFF
-RDP
-Remote Desktop
by default administrator(s) are part of the Remote Desktop User Group
Protocol
- it is installed by default with and server 08
- you must enable via system properties via control panel
- designed for remote administration 3389 rdp port
- Remote assistance
- users seeking help
- user will send an invitation to advanced user and ask for help
- the advanced user will be able to channel in the novice computer via invite (RDP) 3389
- view and chat with user
- interact with computer and take control of novice computer
this can be defined via policies
User can pause session to hide / privatize their session then unhide when done
- RDP
can be allowed to allow an inbound connections
firewall exceptions (3389)
Home Editions do not allow an inbound RDP connections
RSAT
Remote Server Administrative Tools
puts server tools on Vista
MODULE 6
- WAP (wireless access point)
- SSID
- MAC Filtering
- MIN DHCP Addresses
- USB Memory stick configuration
TCP/UDP ports
these ports move data
FTP: 21
TFTP: 69
HTTP:// 80
HTTPS:// 443
SMTP: 25
POP3: 110
IMAP: 143
DNS: 53 (TCP and UDP)
Windows Defender
Defination (ON TEST)
- UAC
User Account Control
- all users tun as standard
- users by default except the builtin admin account
- builtin admin disable by default --- they want to use 'run as'
- Computer Admins
-- if elevated privileges
-- UAC prompt will appear
-- continue?
- Standard User
--prompt will ask for admin password