Windows Server Administration Interview Study Guide

Comprehensive Preparation for Network, DNS, and DHCP Topics

Reference Book: Mastering Windows Server 2022 by Jordan Krause (4th Edition) Author: 10-time Microsoft MVP Award Winner
Prepared for: Technical Interview Preparation

Table of Contents
1. Network Settings Fundamentals
2. DNS (Domain Name System)
3. DHCP (Dynamic Host Configuration Protocol)
4. Console Applications and Management Tools
5. PowerShell Commands Reference
6. Common Interview Questions
7. Troubleshooting Scenarios
8. Quick Reference Cheat Sheets

1. Network Settings Fundamentals

1.1 IP Address
What is an IP Address?
An IP (Internet Protocol) address is a unique numerical identifier assigned to every device connected to a network. It serves two
primary functions:
Host/Network Identification: Identifies the device on the network
Location Addressing: Provides the location of the device in the network topology
IPv4 vs IPv6
Feature IPv4 IPv6
Address Length 32 bits 128 bits
Format Dotted decimal ([Link]) Hexadecimal (2001:0db8:85a3::8a2e:0370:7334)
Address Space ~4.3 billion addresses ~340 undecillion addresses
Example [Link] fe80::1
IP Address Classes (IPv4)
Class Range Default Subnet Mask Purpose
A [Link] - [Link] [Link] (/8) Large networks
B [Link] - [Link] [Link] (/16) Medium networks
C [Link] - [Link] [Link] (/24) Small networks
D [Link] - [Link] N/A Multicast
E [Link] - [Link] N/A Experimental
Private IP Address Ranges (RFC 1918)
Class Private Range CIDR
A [Link] - [Link] [Link]/8
B [Link] - [Link] [Link]/12
C [Link] - [Link] [Link]/16
Why IP Address is Necessary
Unique Identification: Every device needs a unique address for communication
Routing: Routers use IP addresses to forward packets to correct destinations
Network Segmentation: Enables logical separation of network resources
Access Control: Firewall rules and policies are based on IP addresses

1.2 Subnet Mask

What is a Subnet Mask?
A subnet mask is a 32-bit number that divides an IP address into:
Network portion: Identifies the network segment
Host portion: Identifies the specific device on that network
How Subnet Mask Works
IP Address: [Link] = 11000000.10101000.00000001.01100100
Subnet Mask: [Link] = 11111111.11111111.11111111.00000000
-------- Network -------- -- Host --

Network ID: [Link]

Broadcast: [Link]
Usable Range: [Link] - [Link]

Common Subnet Masks and CIDR Notation

Subnet Mask CIDR Hosts Binary
[Link] /8 16,777,214 11111111.00000000.00000000.00000000
[Link] /16 65,534 11111111.11111111.00000000.00000000
[Link] /24 254 11111111.11111111.11111111.00000000
[Link] /25 126 11111111.11111111.11111111.10000000
[Link] /26 62 11111111.11111111.11111111.11000000
[Link] /27 30 11111111.11111111.11111111.11100000
[Link] /28 14 11111111.11111111.11111111.11110000
[Link] /29 6 11111111.11111111.11111111.11111000
[Link] /30 2 11111111.11111111.11111111.11111100
Why Subnet Mask is Necessary
 Network Boundary Definition: Determines which devices are on the same network
Efficient IP Utilization: Allows dividing large networks into smaller subnets
Broadcast Domain Control: Limits broadcast traffic to specific segments
Security: Enables network segmentation for access control
Subnetting Calculation Quick Reference
Number of hosts = 2^(host bits) - 2

Example: /24 subnet

Host bits = 32 - 24 = 8
Hosts = 2^8 - 2 = 254 usable addresses

1.3 Default Gateway

What is a Default Gateway?
The default gateway is the IP address of the router that connects the local network to other networks (including the internet). It's
the "door" through which traffic leaves the local network.
How Default Gateway Works
1. Device wants to communicate with an IP address
2. Device compares destination IP with its own IP using subnet mask
3. If same network: Sends directly via ARP
4. If different network: Sends to default gateway
Example Scenario:
Your IP: [Link]/24
Default Gateway: [Link]

Destination: [Link] → Same network → Direct communication

Destination: [Link] → Different network → Send to gateway ([Link])

Why Default Gateway is Necessary

Inter-network Communication: Without it, devices can only communicate within their subnet
Internet Access: Required for accessing resources outside the local network
Routing Decisions: First hop for all traffic destined to other networks
Important Notes
Gateway must be on the same subnet as the device
A device can have only one default gateway per interface
If gateway is down, no external communication is possible

1.4 DNS Server Setting

What is DNS Server Configuration?
DNS (Domain Name System) server settings specify which servers the device should query to resolve domain names to IP
addresses.
Primary vs Secondary DNS
Type Purpose
 Primary DNS First server queried for name resolution
Secondary DNS Backup if primary is unreachable
Why DNS Server Setting is Necessary
Name Resolution: Translates human-readable names ([Link]) to IP addresses
Service Location: Locates domain controllers, mail servers, and other services
Active Directory: Domain-joined computers require DNS to find domain controllers
Common DNS Server Addresses
Provider Primary DNS Secondary DNS
Google [Link] [Link]
Cloudflare [Link] [Link]
OpenDNS [Link] [Link]
Internal AD Domain Controller IP Secondary DC IP

1.5 Network Settings Summary

Complete Configuration Example
IP Address: [Link]
Subnet Mask: [Link] (/24)
Default Gateway: [Link]
Primary DNS: [Link] (Domain Controller)
Secondary DNS: [Link] (Secondary DC)

Static vs Dynamic (DHCP) Configuration

Method Advantages Use Cases
Static Predictable, no DHCP dependency Servers, printers, network devices
DHCP Automatic, centralized management Workstations, mobile devices

2. DNS (Domain Name System)

2.1 What is DNS?
DNS (Domain Name System) is a hierarchical, distributed database that translates human-readable domain names into IP
addresses. Often called the "phonebook of the internet."
Key Functions
Name Resolution: Converts names to IP addresses (Forward Lookup)
Reverse Resolution: Converts IP addresses to names (Reverse Lookup)
Service Location: Helps clients find specific services (SRV records)
Mail Routing: Directs email to correct mail servers (MX records)
2.2 How DNS Works
DNS Resolution Process (Recursive Query)
1. User types [Link] in browser

2. Client checks local DNS cache

└── If found → Return cached IP
└── If not found → Continue to step 3

3. Client queries configured DNS server (Recursive Resolver)

4. Recursive Resolver checks its cache

└── If found → Return to client
└── If not found → Continue to step 5

5. Resolver queries Root DNS Server (.)

└── Root returns: "Ask .com TLD servers"

6. Resolver queries .com TLD Server

└── TLD returns: "Ask [Link] authoritative servers"

7. Resolver queries Authoritative DNS Server for [Link]

└── Returns: "[Link] = [Link]"

8. Resolver caches result and returns IP to client

9. Client connects to [Link]

DNS Hierarchy
. (Root)
│
┌──────────────┼──────────────┐
│ │ │
.com .org .net
│ │ │
[Link] [Link] [Link]
│
[Link]

2.3 DNS Zone Types

Primary Zone
Definition: The authoritative, read-write copy of zone data
Storage: Local file ( C:\Windows\System32\DNS\[Link] ) or Active Directory
Updates: All record modifications are made here
Use Case: Main DNS server for a domain
Secondary Zone
Definition: Read-only copy of a primary zone
Storage: Local file only (cannot be AD-integrated)
Updates: Receives updates via zone transfer from primary
 Use Case: Fault tolerance, load balancing, reduced WAN traffic
Stub Zone
Definition: Contains only SOA, NS, and A records for authoritative servers
Storage: Local file or Active Directory
Updates: Automatically updates when NS records change
Use Case: Efficient referral to authoritative servers without full zone transfer
Active Directory-Integrated Zone
Definition: Zone data stored in Active Directory database
Features:
Multi-master replication (any DC can update)
Secure dynamic updates
Automatic replication with AD replication
No separate zone transfer needed
Requirement: DNS server must be a Domain Controller
Use Case: Enterprise environments with Active Directory
Zone Type Comparison
Feature Primary Secondary Stub AD-Integrated
Read/Write Yes No (Read-only) No Yes
AD Storage Optional No Optional Yes
Zone Transfer Source Receives Partial AD Replication
Secure Updates Optional No No Yes
Multi-master No No No Yes

2.4 DNS Record Types

A Record (Address)
Purpose: Maps hostname to IPv4 address
Example: [Link] → [Link]
Use: Most common record type for web servers, hosts
AAAA Record (IPv6 Address)
Purpose: Maps hostname to IPv6 address
Example: [Link] → 2001:db8::1
Use: IPv6 host resolution
CNAME Record (Canonical Name)
Purpose: Creates an alias pointing to another hostname
Example: [Link] → [Link]
Use: Aliases, CDN redirects
Important: Cannot coexist with other records of same name
MX Record (Mail Exchange)
Purpose: Specifies mail servers for a domain
Format: Priority | Mail Server
Example:
 [Link] MX 10 [Link]
[Link] MX 20 [Link]

Use: Email routing (lower priority = higher preference)

PTR Record (Pointer)
Purpose: Maps IP address to hostname (reverse lookup)
Example: [Link].[Link] → [Link]
Use: Reverse DNS lookups, email verification, logging
NS Record (Name Server)
Purpose: Specifies authoritative DNS servers for a zone
Example: [Link] NS [Link]
Use: Delegation, identifying authoritative servers
SOA Record (Start of Authority)
Purpose: Contains zone administrative information
Fields:
Primary name server
Administrator email
Serial number
Refresh interval
Retry interval
Expire time
Minimum TTL
Use: Zone transfers, caching behavior
SRV Record (Service)
Purpose: Locates servers providing specific services
Format: _service._protocol.name TTL class SRV priority weight port target
Example: _ldap._tcp.[Link] SRV 0 100 389 [Link]
Use: Active Directory (locating DCs), SIP, XMPP
TXT Record (Text)
Purpose: Stores arbitrary text data
Example: [Link] TXT "v=spf1 include:_spf.[Link] ~all"
Use: SPF, DKIM, DMARC, domain verification
DNS Record Types Summary Table
Record Purpose Example Value
A IPv4 address [Link]
AAAA IPv6 address 2001:db8::1
CNAME Alias [Link]
MX Mail server 10 [Link]
PTR Reverse lookup [Link]
NS Name server [Link]
SOA Zone authority (complex record)
SRV Service location 0 100 389 [Link]
 TXT Text data "v=spf1 ..."

2.5 Forward vs Reverse Lookup Zones

Forward Lookup Zone
Purpose: Resolves hostnames to IP addresses
Query: "What is the IP of [Link]?"
Response: [Link]
Reverse Lookup Zone
Purpose: Resolves IP addresses to hostnames
Zone Name Format: [Link] (reversed IP octets)
Example: Zone for [Link]/24 = [Link]
Query: "What is the hostname for [Link]?"
Response: [Link]

3. DHCP (Dynamic Host Configuration Protocol)

3.1 What is DHCP?
DHCP (Dynamic Host Configuration Protocol) automatically assigns IP addresses and other network configuration parameters to
devices on a network.
Key Benefits
Automatic Configuration: No manual IP setup needed
Centralized Management: All settings controlled from one place
Prevention of Conflicts: Ensures unique IP assignment
Efficient IP Utilization: Reuses addresses when devices leave

3.2 The DORA Process

DHCP uses a four-step process known as DORA:
1. Discover
Client → Broadcast ([Link])
"Is there a DHCP server on this network?"

Source IP: [Link]

Destination IP: [Link]
Source Port: UDP 68
Destination Port: UDP 67

2. Offer
Server → Broadcast/Unicast
"Yes! Here's an IP address you can use."

Offered Information:
- IP Address (e.g., [Link])
- Subnet Mask
- Lease Duration
- DHCP Server IP

3. Request
Client → Broadcast
"I accept the offer from Server X"

Why broadcast? To inform other DHCP servers

that their offers are declined.

4. Acknowledge
Server → Unicast/Broadcast
"Confirmed! The IP is yours for the lease duration."

Final configuration sent:

- IP Address
- Subnet Mask
- Default Gateway
- DNS Servers
- Lease Duration
- Other Options

DORA Visual Diagram

CLIENT SERVER
│ │
│──────── DHCP DISCOVER ─────────────────>│
│ (Broadcast) │
│ │
│<─────── DHCP OFFER ────────────────────│
│ (IP Offer) │
│ │
│──────── DHCP REQUEST ──────────────────>│
│ (Accept Offer) │
│ │
│<─────── DHCP ACK ──────────────────────│
│ (Confirmed) │
│ │

3.3 DHCP Lease Lifecycle

Lease Timeline
Lease Duration: 8 days (default in Windows Server)

Day 0 │ IP Assigned
│
Day 4 │ 50% - Client attempts RENEWAL (unicast to DHCP server)
(50%) │ └── If successful → Lease renewed
│ └── If failed → Wait until 87.5%
│
 Day 7 │ 87.5% - Client attempts REBIND (broadcast to any DHCP server)
(87.5%) │ └── If successful → Lease renewed
│ └── If failed → Continue using until expiration
│
Day 8 │ 100% - Lease EXPIRES
(100%) │ └── Client releases IP
│ └── Must start DORA process again

Lease Renewal Process

1. Renewal (T1 = 50%): Client sends unicast REQUEST directly to DHCP server
2. Rebind (T2 = 87.5%): Client broadcasts REQUEST to any available DHCP server
3. Expiration (100%): IP address released, DORA process restarts

3.4 DHCP Scope Configuration

What is a Scope?
A DHCP scope is a range of IP addresses that the DHCP server can lease to clients.
Scope Components
Component Description Example
Scope Name Descriptive identifier "Main Office Network"
Start IP First IP in range [Link]
End IP Last IP in range [Link]
Subnet Mask Network mask [Link]
Lease Duration How long IP is valid 8 days
Exclusion Ranges
IP addresses within the scope that should NOT be assigned:
Reserved for static devices (servers, printers)
Reserved for network equipment (routers, switches)
Scope: [Link] - [Link]
Exclusions:
- [Link] - [Link] (Network devices)
- [Link] (Printer)

3.5 DHCP Options

DHCP can distribute many configuration settings beyond IP addresses:
Common DHCP Options
Option Code Name Description Example
003 Router Default gateway [Link]
006 DNS Servers DNS server IPs [Link], [Link]
 015 Domain Name DNS domain suffix [Link]
044 WINS Servers NetBIOS name servers [Link]
046 WINS Node Type NetBIOS resolution type 0x8 (H-node)
051 Lease Time Duration in seconds 691200 (8 days)
066 Boot Server TFTP server hostname [Link]
067 Bootfile Name PXE boot file path boot\x64\[Link]
Option Levels
Level Scope Override Priority
Server Options All scopes on server Lowest
Scope Options Specific scope Medium
Reservation Options Specific client Highest

3.6 DHCP Reservations

What is a Reservation?
A DHCP reservation ensures a specific client always receives the same IP address based on its MAC address.
When to Use Reservations
Servers that need consistent IPs but DHCP management benefits
Printers and network devices
Devices requiring specific firewall rules
Machines with port forwarding needs
Reservation Components
Field Description Example
Reservation Name Descriptive name "HR Printer"
IP Address Static IP to assign [Link]
MAC Address Client hardware address 00:1A:2B:3C:4D:5E
Description Optional notes "3rd floor HP LaserJet"
Reservation vs Static IP
Aspect DHCP Reservation Static IP
Configuration On DHCP server On each device
Management Centralized Distributed
Options (DNS, Gateway) Automatic via DHCP Manual
Mobility Easier to track Harder to manage
Failover Supported N/A
3.7 DHCP Relay Agent
Why Needed?
DHCP uses broadcast messages, which don't cross router boundaries. DHCP Relay Agent forwards DHCP messages between
subnets.
How It Works
Subnet A Subnet B
([Link]/24) ([Link]/24)

Client DHCP Server

│ │
│── DHCP Discover ──>│ │
│ (Broadcast) │ │
│ Router │
│ (Relay Agent) │
│ │ │
│ │──────────>│
│ │ (Unicast) │
│ │<──────────│
│<── DHCP Offer ─────│ │

Configuration
Install DHCP Relay Agent on router or Windows Server with RRAS
Configure with DHCP server IP address
Enable on interfaces facing client subnets

4. Console Applications and Management Tools

4.1 DNS Management Tools
DNS Manager (GUI)
Launch: [Link] or Server Manager → Tools → DNS
Capabilities:
Create and manage zones
Add, modify, delete records
Configure forwarders
Monitor DNS statistics
Manage conditional forwarding
Command-Line Tools
nslookup
Primary tool for DNS queries and troubleshooting.
# Basic lookup
nslookup [Link]

# Query specific DNS server

nslookup [Link] [Link]
 # Interactive mode
nslookup
> set type=MX
> [Link]
> set type=A
> [Link]
> exit

# Query specific record types

nslookup -type=MX [Link]
nslookup -type=NS [Link]
nslookup -type=SOA [Link]
nslookup -type=TXT [Link]
nslookup -type=SRV _ldap._tcp.[Link]

# Reverse lookup
nslookup [Link]

# Debug mode (detailed output)

nslookup -debug [Link]

ipconfig DNS Commands

# Display DNS configuration
ipconfig /all

# Clear local DNS cache

ipconfig /flushdns

# Register with DNS server

ipconfig /registerdns

# Display local DNS cache

ipconfig /displaydns

PowerShell DNS Commands

# Resolve DNS name
Resolve-DnsName [Link]

# Query specific record type

Resolve-DnsName [Link] -Type MX
Resolve-DnsName [Link] -Type NS

# Query specific DNS server

Resolve-DnsName [Link] -Server [Link]

# Clear DNS client cache

Clear-DnsClientCache

# Get DNS client settings

Get-DnsClientServerAddress
4.2 DHCP Management Tools
DHCP Manager (GUI)
Launch: [Link] or Server Manager → Tools → DHCP
Capabilities:
Create and configure scopes
Set scope options
Create reservations
View leases
Configure failover
Backup/restore DHCP database
Command-Line Tools
netsh DHCP Commands
# Show all scopes
netsh dhcp server show scope

# Show scope configuration

netsh dhcp server scope [Link] show clients

# Show all options

netsh dhcp server scope [Link] show optionvalue

# Add exclusion range

netsh dhcp server scope [Link] add excluderange [Link] [Link]

# Add reservation
netsh dhcp server scope [Link] add reservedip [Link] 001122334455 "Printer"

PowerShell DHCP Commands

# Get all DHCP scopes
Get-DhcpServerv4Scope

# Get scope leases

Get-DhcpServerv4Lease -ScopeId [Link]

# Create new scope

Add-DhcpServerv4Scope -Name "Office Network" `
-StartRange [Link] `
-EndRange [Link] `
-SubnetMask [Link] `
-State Active

# Set scope options

Set-DhcpServerv4OptionValue -ScopeId [Link] `
-Router [Link] `
-DnsServer [Link],[Link] `
-DnsDomain [Link]

# Add exclusion
Add-DhcpServerv4ExclusionRange -ScopeId [Link] `
 -StartRange [Link] `
-EndRange [Link]

# Add reservation
Add-DhcpServerv4Reservation -ScopeId [Link] `
-IPAddress [Link] `
-ClientId "00-11-22-33-44-55" `
-Name "HPPrinter"

# Get reservations
Get-DhcpServerv4Reservation -ScopeId [Link]

4.3 General Network Troubleshooting Tools

ipconfig
# Full configuration display
ipconfig /all

# Release DHCP lease

ipconfig /release

# Renew DHCP lease

ipconfig /renew

# Release specific adapter

ipconfig /release "Ethernet"

ping
# Basic connectivity test
ping [Link]

# Continuous ping
ping -t [Link]

# Specific packet count

ping -n 10 [Link]

# Set packet size

ping -l 1500 [Link]

tracert (Trace Route)

# Trace path to destination
tracert [Link]

# Don't resolve hostnames (faster)

tracert -d [Link]

netstat
 # Show all connections
netstat -an

# Show with process IDs

netstat -ano

# Show statistics
netstat -s

4.4 Remote Server Administration Tools (RSAT)

Installing RSAT on Windows 10/11
# Install all RSAT features
Get-WindowsCapability -Name RSAT* -Online | Add-WindowsCapability -Online

# Install specific tools

Add-WindowsCapability -Online -Name [Link]~~~~[Link]
Add-WindowsCapability -Online -Name [Link]~~~~[Link]
Add-WindowsCapability -Online -Name [Link]~~~~[Link]

# Check installed RSAT features

Get-WindowsCapability -Name RSAT* -Online | Select-Object -Property Name, State

Available Management Consoles via RSAT

Console Command Purpose
DNS Manager [Link] DNS server management
DHCP Manager [Link] DHCP server management
Active Directory Users and Computers [Link] AD user/computer management
Active Directory Sites and Services [Link] AD replication management
Group Policy Management [Link] GPO management
Server Manager [Link] Overall server management

5. PowerShell Commands Reference

5.1 DNS Server PowerShell Module
# Install DNS Server Role
Install-WindowsFeature -Name DNS -IncludeManagementTools

# Create Primary Zone

Add-DnsServerPrimaryZone -Name "[Link]" -ZoneFile "[Link]"

# Create AD-Integrated Zone

Add-DnsServerPrimaryZone -Name "[Link]" -ReplicationScope Domain
 # Create Secondary Zone
Add-DnsServerSecondaryZone -Name "[Link]" -MasterServers [Link] -ZoneFile "[Link]"

# Create Stub Zone

Add-DnsServerStubZone -Name "[Link]" -MasterServers [Link] -ReplicationScope Domain

# Create Reverse Lookup Zone

Add-DnsServerPrimaryZone -NetworkId "[Link]/24" -ReplicationScope Domain

# Add A Record
Add-DnsServerResourceRecordA -ZoneName "[Link]" -Name "server1" -IPv4Address "[Link]"

# Add CNAME Record

Add-DnsServerResourceRecordCName -ZoneName "[Link]" -Name "www" -HostNameAlias
"[Link]"

# Add MX Record
Add-DnsServerResourceRecordMX -ZoneName "[Link]" -Name "." -MailExchange "[Link]" -
Preference 10

# Get all records in zone

Get-DnsServerResourceRecord -ZoneName "[Link]"

# Remove record
Remove-DnsServerResourceRecord -ZoneName "[Link]" -Name "oldserver" -RRType A

# Configure forwarders
Set-DnsServerForwarder -IPAddress [Link],[Link]

# Get forwarders
Get-DnsServerForwarder

5.2 DHCP Server PowerShell Module

# Install DHCP Server Role
Install-WindowsFeature -Name DHCP -IncludeManagementTools

# Authorize DHCP Server in AD

Add-DhcpServerInDC -DnsName "[Link]" -IPAddress [Link]

# Create new scope

Add-DhcpServerv4Scope -Name "Main Office" `
-StartRange [Link] `
-EndRange [Link] `
-SubnetMask [Link] `
-LeaseDuration 8.00:00:00 `
-State Active

# Set scope options (Gateway, DNS, Domain)

Set-DhcpServerv4OptionValue -ScopeId [Link] `
-Router [Link] `
-DnsServer [Link],[Link] `
-DnsDomain "[Link]"
 # Add exclusion range
Add-DhcpServerv4ExclusionRange -ScopeId [Link] `
-StartRange [Link] `
-EndRange [Link]

# Add reservation
Add-DhcpServerv4Reservation -ScopeId [Link] `
-IPAddress [Link] `
-ClientId "00-11-22-33-44-55" `
-Name "Printer-3F" `
-Description "3rd Floor HP Printer"

# Get all leases

Get-DhcpServerv4Lease -ScopeId [Link]

# Get all reservations

Get-DhcpServerv4Reservation -ScopeId [Link]

# Get scope statistics

Get-DhcpServerv4ScopeStatistics -ScopeId [Link]

# Backup DHCP database

Backup-DhcpServer -Path "C:\DHCPBackup"

# Restore DHCP database

Restore-DhcpServer -Path "C:\DHCPBackup"

5.3 Network Configuration PowerShell

# Get network adapters
Get-NetAdapter

# Get IP configuration
Get-NetIPConfiguration

# Get IP addresses
Get-NetIPAddress -AddressFamily IPv4

# Set static IP address

New-NetIPAddress -InterfaceAlias "Ethernet" `
-IPAddress [Link] `
-PrefixLength 24 `
-DefaultGateway [Link]

# Set DNS servers

Set-DnsClientServerAddress -InterfaceAlias "Ethernet" `
-ServerAddresses [Link],[Link]

# Enable DHCP
Set-NetIPInterface -InterfaceAlias "Ethernet" -Dhcp Enabled

# Test network connectivity

Test-NetConnection -ComputerName [Link]
Test-NetConnection -ComputerName [Link] -Port 443
6. Common Interview Questions
6.1 Network Settings Questions
Q: Why is an IP address necessary? A: An IP address provides unique identification for every device on a network, enables
routing of packets to correct destinations, allows network segmentation, and forms the basis for access control policies.
Q: What happens if two devices have the same IP address? A: An IP conflict occurs. Both devices may experience intermittent
connectivity issues, packet loss, and communication failures. The network may detect the conflict and disable one or both
interfaces.
Q: What's the difference between a subnet mask and a default gateway? A: A subnet mask defines the network boundary
(which IPs are local vs remote), while the default gateway is the router address used to reach remote networks. The subnet mask
answers "Is this destination local?" and the gateway answers "Where do I send remote traffic?"
Q: Why do we need a default gateway? A: Without a default gateway, a device can only communicate with hosts on its local
subnet. The gateway provides the path to reach other networks, including the internet.

6.2 DNS Questions

Q: What is DNS and why is it important? A: DNS (Domain Name System) translates human-readable domain names to IP
addresses. It's essential because humans remember names ([Link]) better than numbers ([Link]), and it
enables the entire internet naming hierarchy.
Q: Explain the DNS resolution process. A:
1. Client checks local cache
2. Queries recursive resolver
3. Resolver queries root servers → TLD servers → authoritative servers
4. IP returned and cached at each level
5. Client receives IP and connects
Q: What's the difference between a forward and reverse lookup zone? A: Forward lookup resolves names to IPs
([Link] → [Link]). Reverse lookup resolves IPs to names ([Link] → [Link]).
Q: What is an Active Directory-integrated zone and why use it? A: An AD-integrated zone stores DNS data in Active Directory
instead of text files. Benefits include: multi-master replication, secure dynamic updates, automatic replication with AD, and no
separate zone transfer configuration.
Q: What's the difference between a secondary zone and a stub zone? A: A secondary zone contains a complete read-only
copy of all zone records. A stub zone only contains SOA, NS, and A records for authoritative servers. Stub zones are more
lightweight and automatically update when NS records change.
Q: Name and explain five DNS record types. A:
A: Maps hostname to IPv4 address
AAAA: Maps hostname to IPv6 address
MX: Specifies mail servers with priority
CNAME: Creates alias pointing to another name
PTR: Maps IP to hostname (reverse lookup)
Q: What is an SRV record and why is it important for Active Directory? A: SRV records locate servers providing specific
services. AD clients use SRV records to find domain controllers (e.g., _ldap._tcp.[Link] points to DCs). Without proper SRV
records, domain authentication fails.

6.3 DHCP Questions

Q: What is DHCP and what problem does it solve? A: DHCP (Dynamic Host Configuration Protocol) automatically assigns IP
addresses and network settings to clients. It eliminates manual configuration, prevents IP conflicts, enables centralized
management, and efficiently utilizes IP address space.
Q: Explain the DORA process. A:
1. Discover: Client broadcasts request for IP
2. Offer: Server offers available IP with settings
3. Request: Client requests offered IP
4. Acknowledge: Server confirms lease
Q: What ports does DHCP use? A: UDP 67 (server) and UDP 68 (client).
Q: What is a DHCP scope? A: A scope is a range of IP addresses available for DHCP to lease. It includes start/end IP range,
subnet mask, lease duration, and can have exclusions and options configured.
Q: What is a DHCP reservation and when would you use it? A: A reservation assigns a specific IP to a client based on MAC
address. Use for devices needing consistent IPs (printers, servers) while still benefiting from DHCP's centralized option
management.
Q: What is DHCP lease duration and what happens when it expires? A: Lease duration is how long a client can use the
assigned IP (default: 8 days in Windows). At 50%, client attempts renewal. At 87.5%, client broadcasts rebind. At 100%, IP is
released and DORA restarts.
Q: What is a DHCP Relay Agent and why is it needed? A: DHCP uses broadcasts which don't cross router boundaries. A relay
agent forwards DHCP messages between subnets, allowing a single DHCP server to serve multiple network segments.
Q: Name five settings DHCP can distribute to clients. A:
1. IP Address
2. Subnet Mask
3. Default Gateway (Option 003)
4. DNS Servers (Option 006)
5. DNS Domain Name (Option 015)
6. WINS Servers (Option 044)
7. Lease Duration (Option 051)

6.4 Console Applications Questions

Q: How do you open the DNS management console from a workstation? A: Install RSAT (Remote Server Administration Tools),
then run [Link] or access via Server Manager → Tools → DNS.
Q: What command would you use to troubleshoot DNS resolution? A: nslookup for DNS queries, ipconfig /displaydns
to view cache, ipconfig /flushdns to clear cache, ipconfig /registerdns to re-register with DNS.
Q: How do you clear the local DNS cache? A: ipconfig /flushdns or PowerShell: Clear-DnsClientCache
Q: What PowerShell cmdlet would you use to get DHCP leases? A: Get-DhcpServerv4Lease -ScopeId [Link]
Q: How can you check network settings via command line? A: ipconfig /all shows IP address, subnet mask, default
gateway, DNS servers, DHCP status, MAC address, and lease information.

7. Troubleshooting Scenarios
7.1 DNS Troubleshooting
Scenario: Client cannot resolve domain names
Diagnostic Steps:
1. Check network connectivity
ping [Link]

2. Check DNS configuration

ipconfig /all

3. Test DNS resolution

nslookup [Link]
nslookup [Link] [Link]

4. Clear DNS cache and retry

ipconfig /flushdns
ipconfig /registerdns

5. Check DNS server status

nslookup
> server <dns-server-ip>
> [Link]

Common Causes:
Incorrect DNS server configuration
DNS server unreachable
Corrupted DNS cache
DNS service not running on server
Firewall blocking port 53
Scenario: Internal names resolve but external don't
Likely Cause: Missing or misconfigured DNS forwarders
Solution:
# Check forwarders
Get-DnsServerForwarder

# Set forwarders
Set-DnsServerForwarder -IPAddress [Link],[Link]

7.2 DHCP Troubleshooting

Scenario: Client receives 169.254.x.x address (APIPA)
Cause: Client cannot reach DHCP server
Diagnostic Steps:
1. Check physical connectivity
Check cable, switch port lights

2. Release and renew

ipconfig /release
ipconfig /renew
 3. Check DHCP server availability
ping <dhcp-server-ip>

4. Check scope has available IPs

Get-DhcpServerv4ScopeStatistics -ScopeId [Link]

5. Check for DHCP relay if on different subnet

Common Causes:
Network disconnection
DHCP server down
Scope exhausted (no available IPs)
Missing DHCP relay agent
Firewall blocking UDP 67/68
Scenario: Client gets wrong IP or options
Diagnostic Steps:
1. Check reservation exists for MAC
Get-DhcpServerv4Reservation -ScopeId [Link] |
Where-Object {$_.ClientId -eq "00-11-22-33-44-55"}

2. Check scope options

Get-DhcpServerv4OptionValue -ScopeId [Link]

3. Check server-level options

Get-DhcpServerv4OptionValue

4. Check for multiple DHCP servers

(Rogue DHCP can cause issues)

7.3 General Network Troubleshooting

Systematic Approach
1. PHYSICAL LAYER
- Cable connected?
- Link lights on?
- Correct port?

2. DATA LINK LAYER

- ipconfig /all (check MAC)
- Switch port enabled?

3. NETWORK LAYER
- IP address correct?
- Subnet mask correct?
- Can ping gateway?
- Can ping local hosts?

4. TRANSPORT LAYER
- Firewall blocking?
- Service running?
 - Correct port?

5. APPLICATION LAYER
- DNS resolving?
- Service responding?
- Application configured correctly?

Quick Diagnostic Commands

# Check all network settings
ipconfig /all

# Test gateway connectivity

ping <default-gateway>

# Test internet connectivity

ping [Link]

# Test DNS resolution

nslookup [Link]

# Trace route to destination

tracert [Link]

# Check active connections

netstat -an

# Check ARP cache

arp -a

8. Quick Reference Cheat Sheets

8.1 Network Settings Cheat Sheet
Setting Purpose How to Check
IP Address Device identifier ipconfig

Subnet Mask Network boundary ipconfig

Default Gateway Route to other networks ipconfig

DNS Server Name resolution ipconfig /all

Private IP Ranges
Class A: [Link]/8
Class B: [Link]/12
Class C: [Link]/16

Common Subnets
/24 = [Link] = 254 hosts
/25 = [Link] = 126 hosts
/26 = [Link] = 62 hosts
/27 = [Link] = 30 hosts
/28 = [Link] = 14 hosts
/30 = [Link] = 2 hosts

8.2 DNS Cheat Sheet

Zone Types
Type Writable AD Storage Use Case
Primary Yes Optional Main zone
Secondary No No Backup/Load balance
Stub No Optional Efficient referral
AD-Integrated Yes Yes Enterprise AD
Record Types
Record Purpose Example
A Name→IPv4 host → [Link]
AAAA Name→IPv6 host → 2001:db8::1
CNAME Alias www → webserver
MX Mail server 10 [Link]
PTR IP→Name [Link] → host
NS Name server [Link]
SRV Service location _ldap._tcp → dc1
TXT Text/SPF v=spf1 ...
DNS Commands
nslookup <hostname> # Basic lookup
nslookup -type=MX <domain> # MX records
nslookup <hostname> <server> # Query specific server
ipconfig /flushdns # Clear cache
ipconfig /registerdns # Register with DNS

8.3 DHCP Cheat Sheet

DORA Process
D - Discover (Client broadcast)
O - Offer (Server response)
R - Request (Client accepts)
A - Acknowledge (Server confirms)

Key Ports
Server: UDP 67
Client: UDP 68

Lease Timeline
50% - Renewal (unicast)
87.5% - Rebind (broadcast)
100% - Expiration

Common Options
Code Name Purpose
003 Router Default gateway
006 DNS Servers Name resolution
015 Domain Name DNS suffix
044 WINS Servers NetBIOS
066 Boot Server PXE server
067 Bootfile PXE boot file
DHCP Commands
Get-DhcpServerv4Scope # List scopes
Get-DhcpServerv4Lease -ScopeId <IP> # List leases
Get-DhcpServerv4Reservation -ScopeId <IP> # List reservations

8.4 Management Console Commands

Tool Command Purpose
DNS Manager [Link] DNS management
DHCP Manager [Link] DHCP management
AD Users [Link] AD objects
GPO Management [Link] Group Policy
Server Manager [Link] Server admin
Computer Management [Link] Local admin
Services [Link] Service management

8.5 Interview Preparation Checklist

Before the Interview
Understand IP addressing and subnetting
Know all DNS record types and their purposes
Explain DORA process from memory
Practice nslookup and ipconfig commands
Understand zone types and when to use each
Know DHCP options and their codes
Practice PowerShell cmdlets
Key Concepts to Master
Why each network setting is necessary
DNS resolution process (recursive queries)
Difference between zone types
DHCP lease lifecycle
When to use reservations vs static IPs
Troubleshooting methodology
Practice Labs
Set up Windows Server VM with DNS role
Configure forward and reverse lookup zones
Create various DNS records
Set up DHCP with scope and reservations
Practice using management consoles remotely

Appendix: Recommended Resources

Books
Mastering Windows Server 2022 by Jordan Krause (4th Edition)
Windows Server 2022 Administration Fundamentals by Bekim Dauti
Windows Server 2022 & PowerShell All-in-One For Dummies by Sara Perrott
Online Resources
Microsoft Learn: DNS on Windows Server
Microsoft Learn: DHCP on Windows Server
Active Directory Pro: Windows DNS Zones Explained
Practice Environment
VMware Workstation or Hyper-V
Install Windows Server 2019/2022
Configure DNS and DHCP roles
Create test domain environment
Document prepared for technical interview preparation Based on Windows Server 2012/2016/2019/2022 administration Last
updated: January 2026