FREE Monthly
Technology Updates
One-year Vendor
Product Upgrade
Protection Plan
FREE Membership to
Access.Globalknowledge
CISCO NETWORK
WINDOWS 2000
BUILDING A
Melissa Craft, CCNA, MCSE, Network+, MCNE, Citrix CCA
Elliot Lewis, CCNA, CCDA, MCSE, CCSE, MCP+I, MCT
TECHNICAL EDITOR:
Stace Cunningham, CCNA, CLSE, COS/2E, CLSI, COS/2I, CLSA
FOR
“Many of us are struggling with planning and running
a Cisco and Microsoft internetwork. This book clearly
explains Cisco Networking Services for Active Directory
(CNS/AD). Struggle no more!”
—Jacques M. Mueller, COO
EngineX Networks
71_FP.qx 11/20/00 3:50 PM Page 1 (1,1)
With over 1,500,000 copies of our MCSE, MCSD, CompTIA, and Cisco
study guides in print, we have come to know many of you personally. By
listening, we've learned what you like and dislike about typical computer
books. The most requested item has been for a web-based service that
keeps you current on the topic of the book and related technologies. In
response, we have created

, a service that
includes the following features:

■
A one-year warranty against content obsolescence that occurs as
the result of vendor product upgrades. We will provide regular web
updates for affected chapters.
■
Monthly mailings that respond to customer FAQs and provide
detailed explanations of the most difficult topics, written by content
experts exclusively for

.
■
Regularly updated links to sites that our editors have determined
offer valuable additional information on key topics.
■
Access to “Ask the Author”™ customer query forms that allow
readers to post questions to be addressed by our authors and
editors.
Once you've purchased this book, browse to
www.syngress.com/solutions
.
To register, you will need to have the book handy to verify your purchase.
Thank you for giving us the opportunity to serve you.

71_BCNW2K_FM 9/10/00 11:57 AM Page i
71_BCNW2K_FM 9/10/00 11:57 AM Page ii
CISCO NETWORK
WINDOWS 2000
BUILDING A
FOR
71_BCNW2K_FM 9/10/00 11:57 AM Page iii

Syngress Publishing, Inc., the author(s), and any person or firm involved in the writing, editing, or production
(collectively “Makers”) of this book (“the Work”) do not guarantee or warrant the results to be obtained from the
Work.
There is no guarantee of any kind, expressed or implied, regarding the Work or its contents. The Work is sold
AS IS and WITHOUT WARRANTY. You may have other legal rights, which vary from state to state.
In no event will Makers be liable to you for damages, including any loss of profits, lost savings, or other inci-
dental or consequential damages arising out from the Work or its contents. Because some states do not allow
the exclusion or limitation of liability for consequential or incidental damages, the above limitation may not
apply to you.
You should always use reasonable case, including backup and other appropriate precautions, when working
with computers, networks, data, and files.
Syngress Media® and Syngress® are registered trademarks of Syngress Media, Inc. “Career Advancement Through
Skill Enhancement™,” “Ask the Author™,” “Ask the Author UPDATE™,” and “Mission Critical™” are trademarks
of Syngress Publishing, Inc. Brands and product names mentioned in this book are trademarks or service marks
of their respective companies.
KEY SERIAL NUMBER
001 9TRR52MDSE
002 XPSTEH7TC4
003 CLNBC28FV7
004 DC128N4RL6
005 Z745Q25DBR
006 PF62R2DXMB
007 DT88A5ZX44
008 XRCJ743RTG
009 6532M92L8S
010 SMYR8PS2RN
PUBLISHED BY
Syngress Media, Inc.
800 Hingham Street
Rockland, MA 02370

Building a Cisco Network for Windows 2000
Copyright © 2000 by Syngress Media, Inc. All rights reserved. Printed in the United States of America. Except
as permitted under the Copyright Act of 1976, no part of this publication may be reproduced or distributed in
any form or by any means, or stored in a database or retrieval system, without the prior written permission of
the publisher, with the exception that the program listings may be entered, stored, and executed in a computer
system, but they may not be reproduced for publication.
Printed in the United States of America
1 2 3 4 5 6 7 8 9 0
ISBN: 1-928994-00-8
Copy edit by: Adrienne Rebello Proofreading by: Nancy Adams
Technical edit by: Stace Cunningham Page Layout and Art by: Shannon Tozier
Index by: Robert Saigh and Katharine Glennon
Project Editor: Katharine Glennon Co-Publisher: Richard Kristof
Distributed by Publishers Group West
71_BCNW2K_FM 9/10/00 11:57 AM Page iv
Acknowledgments
We would like to acknowledge the following people for their kindness and sup-
port in making this book possible.
Richard Kristof, Duncan Anderson, Jennifer Gould, Robert Woodruff, Kevin
Murray, Dale Leatherwood, Rhonda Harmon, and Robert Sanregret of Global
Knowledge, for their generous access to the IT industry’s best courses,
instructors and training facilities.
Ralph Troupe and the team at Callisma for their invaluable insight into the
challenges of designing, deploying and supporting world-class enterprise net-
works.
Karen Cross, Kim Wylie, Harry Kirchner, John Hays, Bill Richter, Kevin Votel,
Brittin Clark, Sarah Schaffer, Ellen Lafferty and Sarah MacLachlan of
Publishers Group West for sharing their incredible marketing experience and
expertise.
Mary Ging, Caroline Hird, and Simon Beale of Harcourt International for

making certain that our vision remains worldwide in scope.
Annabel Dent, Anneka Baeten, Clare MacKenzie, and Laurie Giles of Harcourt
Australia for all their help.
David Buckland, Wendi Wong, David Loh, Marie Chieng, Lucy Chong, Leslie
Lim, Audrey Gan, and Joseph Chan of Transquest Publishers for the enthu-
siasm with which they receive our books.
Kwon Sung June at Acorn Publishing for his support.
Ethan Atkin at Cranbury International for his help in expanding the Syngress
program.
Special thanks to the professionals at Osborne with whom we are proud to
publish the best-selling Global Knowledge Certification Press series.
v
71_BCNW2K_FM 9/10/00 11:57 AM Page v
vi
From Global Knowledge
At Global Knowledge we strive to support the multiplicity of learning styles
required by our students to achieve success as technical professionals. As
the world's largest IT training company, Global Knowledge is uniquely
positioned to offer these books. The expertise gained each year from pro-
viding instructor-led training to hundreds of thousands of students world-
wide has been captured in book form to enhance your learning experience.
We hope that the quality of these books demonstrates our commitment to
your lifelong learning success. Whether you choose to learn through the
written word, computer based training, Web delivery, or instructor-led
training, Global Knowledge is committed to providing you with the very
best in each of these categories. For those of you who know Global
Knowledge, or those of you who have just found us for the first time, our
goal is to be your lifelong competency partner.
Thank your for the opportunity to serve you. We look forward to serving
your needs again in the future.

Warmest regards,
Duncan Anderson
President and Chief Executive Officer, Global Knowledge
71_BCNW2K_FM 9/10/00 11:57 AM Page vi
vii
Contributors
Russell Brown (CCNP, MCSE+I, A+) is an independent consultant in
Minneapolis, MN. He focuses on networking and security, specializing
primarily in integrating Microsoft products with Cisco Routing. He has
over three years of computer consulting experience but still finds time to
play the guitar in several bands around the Twin Cities. Some of the
projects Russ has worked on include LAN/WAN troubleshooting for
small companies, Firewall and Proxy design and implementation,
designing procedures for desktop rollouts, and various routing and
switching implementations. Russ lives in Minneapolis, MN and can be
reached at His website is .
Melissa Craft (CCNA, MCSE, Network+, CNE-5, CNE-3, CNE-4, CNE-
GW, MCNE, Citrix CCA) designs business computing solutions using
technology to automate processes, and using business process reengi-
neering techniques. Melissa has successfully designed, implemented and
integrated networks ranging in size from a few nodes to over 100,000
nodes. Her consulting experience has incorporated extensive project
management, needs-analysis, LAN and WAN design, deployment and
operational turnover. Currently, Melissa is Director of e-Business
Offering Development for MicroAge Technology Services, a global sys-
tems integrator that provides IT design, project management, and sup-
port for distributed computing systems. Melissa holds a bachelor’s
degree from the University of Michigan, and is a member of the IEEE,
the Society of Women Engineers and American MENSA, Ltd. Melissa
currently resides in Glendale, Arizona with her family, Dan, Justine, and

Taylor, and her two Great Danes (a.k.a Mobile Defense Units), Marm-
aduke and Apollo and her Golden Retriever (a.k.a. Mobile Alarm Unit)
Pooka. Melissa can be contacted via e-mail at
Elliot Lewis (CCNA, CCDA, MCSE, CCSE, MCP+I, MCT) is the Director
of Solution Architecture at EngineX Networks, a leading infrastructure
design firm that specializes in designing and implementing industry-
leading networking technologies. Specialties include Voice over technolo-
gies, High Availability Infrastructure, IP Video/Audio Conferencing, IP
71_BCNW2K_FM 9/10/00 11:57 AM Page vii
viii
Telephony, Wireless, and Content Networking. Elliot has over 13 years of
experience in the design, implementation, and troubleshooting of large
mission critical networks. He authored Configuring Cisco Voice Over IP
with Syngress Media. He lives in Pleasanton, CA with his wife Meg and
two sons, James and Zachary.
Elliot Lewis contributed to the technical editing.
Sean Thurston (CCNA, CCDA, MCP+I, MCSE) is a Solution Architect for
EngineX Networks, a San Francisco-based Voice over IP/QoS network
design and implementation company. Sean has extensive network design
and implementation experience in complex LAN and WAN environments.
He lives in Renton, WA with his fiancée Kerry.
Technical Editor
Stace Cunningham (CCNA, MCSE, CLSE, COS/2E, CLSI, COS/2I,
CLSA, MCPS, A+) is a Systems Engineer with SDC Consulting located in
Biloxi, MS. SDC Consulting specializes in the design, engineering, and
installation of networks. Stace is also certified as an IBM Certified LAN
Server Engineer, IBM Certified OS/2 Engineer, IBM Certified LAN Server
Administrator, IBM Certified LAN Server Instructor, IBM Certified OS/2
Instructor. Stace has participated as a Technical Contributor for the IIS
3.0 exam, SMS 1.2 exam, Proxy Server 1.0 exam, Exchange Server 5.0

and 5.5 exams, Proxy Server 2.0 exam, IIS 4.0 exam, IEAK exam, and
the revised Windows 95 exam.
In addition, he has coauthored or technical edited about 30 books
published by Microsoft Press, Osborne/McGraw-Hill, and Syngress
Media as well as contributed to publications from The SANS Institute
and Internet Security Advisor magazine.
His wife Martha and daughter Marissa are very supportive of the time
he spends with his computers, routers, and firewalls in the “lab” of their
house. Without their love and support he would not be able to accom-
plish the goals he has set for himself.
Stace Cunningham authored a chapter in addition to acting as technical
director for the book.
71_BCNW2K_FM 9/10/00 11:57 AM Page viii
Contents
ix
Chapter 1—Developing a Windows 2000
and Cisco Internetwork 1
Introduction 2
Directory Enabled Network 2
The DEN Solution 4
About Microsoft’s Windows 2000 and Cisco’s IOS 8
Cisco’s IOS and Software Products 8
Cisco ConfigMaker 9
Cisco Fast Step 11
CiscoWorks 2000 13
Microsoft’s Windows 2000 14
Active Directory 17
Merging together with Cisco Networking Services
for Active Directory 20
Best Practices for Implementing a Network 20

Networking Basics 22
OSI Protocol Reference Model 23
Physical Layer 26
Data-Link Layer 27
Network Layer 27
Transport Layer 28
The Session Layer 29
The Presentation Layer 29
The Application Layer 29
Internet History 30
IP Networking Primer 31
Case Studies 36
ABC Chemical Company 36
West Coast Accounting, L.L.C. 37
Summary 38
FAQs 41
Chapter 2—A Tour of Windows 2000 43
Introduction 44
What’s New Since Windows NT 4 44
Active Directory 45
Installation Options 45
Security Options 47
Internet Information Services 48
71_BCNW2K_Contents 9/12/00 3:14 PM Page ix
x Contents
Terminal Services 48
Remote Access Protocols 49
Network Load Balancing 50
What Happened to WINS? 52
DNS Support 53

Recovery Console 56
Quality of Service 56
File System Changes and Disk Support 56
Active Directory Architecture 59
Domain Architecture Changes 59
Forest 59
Domain Tree 59
Domain 60
Sites 61
Organizational Units 61
User Accounts 61
Groups 63
FSMOs 63
Global Catalog 64
Configuration 64
Schema 64
LDAP 65
So, You Want to Migrate? 65
Quick! Plan Your Project 65
Windows 2000 Case Studies 67
ABC Chemical Company 68
West Coast Accounting, L.L.C. 68
Summary 69
FAQs 71
Chapter 3—Cisco Hardware and IOS Basics 73
Introduction 74
Networking Basics: The Difference between
Routers and Switches 74
Hierarchical Design Model 75
When Is It Appropriate to Use Routers? 76

When Is It Appropriate to Use Switches? 77
Switching Overview and Application 77
Cisco Switch Models 77
Catalyst 6500 Series 77
Catalyst 5000 Series 78
Catalyst 3500 Series XL 79
Catalyst 2900 Series XL 80
GBIC Technologies 81
VLANs and How They Function 82
Trunking Technologies 82
71_BCNW2K_Contents 9/12/00 3:14 PM Page x
Contents xi
VTP Servers and Clients 83
Layer 3 Switching 84
Onboard Layer 3 Options 85
6500 Series and the MSFC 85
5000 Series and the RSM 85
Routing Overview and Application 87
General Overview of LAN/WAN Technologies 87
Ethernet 87
Token Ring 87
HDLC 88
Frame Relay 88
PPP 89
Routing Models 89
7500 Series 89
7200 Series 90
3600 Series 91
1700 Series 92
1600 Series 93

800 Series 95
Cisco IOS 96
Differences in Switch and Router IOSs 96
Router Feature Sets 97
Enterprise 97
IP/IPX/IBM 97
IP Plus 97
Firewall Feature Set 97
Memory Requirements 97
Command Line Interface (CLI) 98
How to Get Around in the IOS 99
QoS Functionality and How it Works on Switches and Routers 104
RSVP 104
Queuing Techniques 105
Weighted Fair Queuing 105
Priority Queuing 105
Custom Queuing 106
Class-based Weighted Fair Queuing 106
Summary 107
FAQs 108
Chapter 4—Protocols and Networking Concepts 109
Introduction 110
The TCP/IP Protocol Stack 110
Setting an IP Address on Windows 2000 113
Establishing the Default Router 114
Testing IP with ICMP on Windows 2000 115
Setting an IP Address on a Cisco Router 115
71_BCNW2K_Contents 9/12/00 3:14 PM Page xi