Introduction to Internet Information Services (IIS)
Microsoft integrated Web server, Internet Information Services (IIS) allows you to create and manage Web sites within your organization. Allowing you to share and distribute information through the Internet or intranet. Came with Windows 2000 Internet Information Server (IIS) 5.0, which is basically the web server in the fastest time in Windows 2000 Server was introduced. IIS 5.0 is fully integrated with Active Directory directory service. Because of this integration, and additional features and improvements introduced with IIS 5.0 you can create and deploy scalable and reliable web applications, web sites and groups. This led to an improvement in security, administration, reliability and performance in the web environment. Windows XP Professional supports IIS 5.1. This version of IIS, if a slightly improved version of IIS 5.
With the introduction of Windows Server 2003, came the advent of Internet Information Server (IIS) 6. IIS 6 is included with the version of 32-bit and 64-bit versions of Windows Server 2003 editions. IIS 6 includes support for a series of protocols and management tools that allow you to configure the server as a Web server, File Transfer Protocol (FTP) server or a Protocol Simple Mail Transfer (SMTP). The management tools included with Windows Server 2003 allow you to manage Internet Information Services in Windows Server 2003 product platforms.
Understanding the origins of Internet Information Server (IIS)
The first version of IIS, Internet Information Services (IIS) 1, was released for Windows NT 3.51 server platform and includes support for Hypertext Transfer Protocol (HTTP), File Transfer Protocol (FTP), Gopher, SSL (Secure Sockets Layer) protocol version 1, and Common Gateway Interface (CGI). When initially introduced, meaning IIS Internet Information Server and Internet Information Services no. The name change of Internet Information Services IIS only occurred when 5 was released with Windows 2000 Server. Some features included with IIS 1 are:
IIS could integrate with the Windows NT platform.
* Virtual Server enabled multiple websites to host a hardware IIS, virtual directories allow you to store and website content on a file server and not on the Web server. This additional security to a Web server application.
* Basic authentication and Windows NT LAN Manager (NTLM) Challenge / Response authentication with support for improving the security of intranet.
SSL version 1 support * made it possible to create secure e-commerce sites.
* Open Database Connectivity (ODBC) that allowed logging to monitor Web traffic and troubleshooting.
* Internet Server API (ISAPI) received support for writing dynamic web applications, and has allowed the integration into HTML pages.
The next version of IIS, Internet Information Services (IIS) 2, was introduced with Windows NT 4 Server platform. The features and enhancements included in this version of IIS 2 were:
* IIS is integrated with the Windows NT installation, and can be installed, therefore when you install Windows NT.
* HTTP bytes was introduced, allowing Internet Explorer to recover from interruptions and continue downloading.
* Because the host names with the support of 2 IIS can host multiple websites on a server via an IP address and TCP port 80.
* The transaction log successful HTTP HTTP and not allowed the transactions to more efficiently troubleshoot Web server issues and Internet communication.
* Key Manager could be used to create key pairs for digital certificates for Secure Sockets Layer (SSL).
* The Index Server tool allowed users to run queries from the full text of Web content hosted in IIS through searches of content.
* HTML Administrator, an ISAPI application allows you to remotely manage the IIS server via the Internet using a web browser like Internet Explorer.
About 10 months after launch IIS, Internet Information Services (IIS) 3 was launched.
* The main features introduced with IIS 3 were the introduction of Active Server Pages (ASP), and 3 speed improvement over IIS IIS 1.
* Active Server Pages (ASP) made it possible for developers to create dynamic Web applications using a standard web browser to a customer interface for IIS. Web applications could include all the functionality of standard client / server applications.
* ASP supports connectivity to databases using Microsoft ActiveX Data Objects (ADO) and ODBC technology.
* The new Microsoft Visual Basic Scripting Edition (VBScript) and JScript scripting languages, along with ODBC can be used to create websites based on ASP, which is a more feasible solution for creating applications in C + + ISAPI.
* Microsoft Visual InterDev also included in 3 for the IIS Web application development with Visual Basic, Visual C + + and Visual J + +.
* Microsoft NetShow included support for streaming audio and video.
* Microsoft Transaction Server (MTS) was introduced to distribute Web applications.
With the release of Windows NT 4 Option Pack found Internet Information Services (IIS) 4. Windows NT 4 Option Pack includes enhancements and features specific to Windows NT 4 Server OS and IIS. These features and enhancements listed below:
* Microsoft Internet Explorer 4.01
* Microsoft Transaction Server (MTS) version 2. Version 1 was included in IIS 3.
* Index Server version 2 also.
* Microsoft Certificate Server, for creating a public key infrastructure (PKI)
* Microsoft Message Queue Server (MSMQ) for asynchronous communication in distributed applications.
Site Server Express * 2, the management of Web content in IIS computers
* SSL Version 3 includes support for 128-bit encryption.
* The HTTP 1.1 standard improves the reliability and effectiveness of the HTTP transfer. HTTP 1.1 has also improved the functionality of the host headers.
* The IIS Metabase is included in IIS 4 to store the configuration information for IIS. The metabase contains all the settings and configuration data for IIS.
* Microsoft Management Console (MMC) version 1.
* A new version of the Internet Service Manager is implemented as a series of plug-ins for Microsoft Management Console (MMC).
* HTML Administrator (HTMLA) enabled browser-based administration of IIS.
* Includes support for Simple Mail Transport Protocol (SMTP) and Transfer Protocol Network News (NNTP).
* Personal Web Server (PWS) is included for Windows 95 platforms.
With the introduction of the operating system Windows Server 2000 was the launch of Internet Information Services (IIS) 5. IIS 5 came with the name change of Internet Information Server Internet Information Services. IIS includes new features and improvements that have allowed administrators and Internet service providers (ISP) to create scalable web applications, web sites, web groups, and a reliable web environment. IIS 5 also includes specific enhancements for security, administration and applications. The features and enhancements included with IIS 5 are summarized below:
* Grouped Process is the application model introduced with IIS 5, which allowed various web applications to run on a shared memory space separate from Inetinfo.exe ’s Process in space.
* You could define the amount of CPU time for a website.
* IIS is integrated with Active Directory directory service in Windows 2000 introduced.
* Support for Web Distributed Authoring and Versioning (WebDAV), which allow users to edit, delete and move files and directories, and share documents over the Internet.
* HTTP Compression enabled transmit Web pages between the server and clients that support compression much faster.
* File Transfer Protocol (FTP) Reiniciar improved data transfer over the resumption of the download of a file when there was interruption in the process of data transfer.
* Administration and the specifics of the improvements is included with IIS 5 are listed below:
o With the introduction of IIS 5 came the ability to restart IIS without restarting the computer, too.
or Web-based administration tools allowing administrators to remotely administer the server using virtually any Web browser.
or Customize the error messages allowing administrators to send a message to the HTTP client when there are problems or errors on the website.
or Terminal Services, which was introduced in Windows Server 2000, allows you to remotely manage IIS and other Windows services.
* Specific security improvements and features included with IIS 5 are listed below:
or Server-Gated Cryptography (SGC), allows a further extension of SSL 128-bit encryption to be used.
Digest authentication or increased security for authenticating users of proxy servers and firewalls.
or IIS 5.0 is integrated with the Kerberos version 5, and is used for authentication between computers running Windows 2000.
or IIS certificate storage is integrated with IIS 5 Microsoft CryptoAPI (CAPI) of storage.
o A series of new security wizards are introduced in IIS 5, and in particular:
+ Wizard permissions, configuring access to the website.
+ Wizard Web Server Certificate to create certificate requests for the administration and the tasks of the certificates.
The + CTL (certificate trust lists) Configuration Wizard CTL. A CTL containing trusted Certification Authorities (CAs) for a directory. CTL configuration is beneficial when ISPs have multiple Web sites that require a single list of competent authorities of each site.
and program specific improvements and features included with IIS 5 are listed below:
+ Features including Active Server Pages (ASP) are:
# Improved error handling
# Windows Script Components
# Scriptless ASP
# Improved methods of flow control
# Integration with the Extensible Markup Language (XML)
# Improved performance of objects
+ Active Directory Service Interfaces (ADSI) 2.0 allows greater flexibility for configuring site by adding objects and properties for ADSI.
With the introduction of the operating system Windows Server 2003 was the launch of Internet Information Services (IIS) 6. Some key features and enhancements included with IIS 6 is summarized below:
IIS 6 and is fully integrated with Windows Server 2003.
6 or IIS is not installed by default, and ASP and FrontPage extensions are disabled. All permissions are set up.
or IIS 6 architecture is designed to move the core HTTP listen for increased performance and reliability. This means that the processing of HTTP requests has been transferred directly into the kernel.
or Incoming HTTP requests are handled by the component Http.sys kernel mode, meaning that a larger number of HTTP requests can be handled by IIS 6 IIS 5 it could handle.
Compatibility mode or IIS 5, IIS 6 is included with IIS allows you to change when you have 5 applications that only run under IIS 5.
and program-specific improvements include support for the latest web standards such as XML, SOAP and IPv6.
o The IIS metabase is formatted and saved as a text file using the Extensible Markup Language (XML). In IIS 4 and IIS 5, the metabase was stored in binary format. With IIS 6, you can use a text editor tool such as Notepad to edit the metabase file. You can also use Windows Management Instrumentation (WMI) or tools Active Directory Services Interface (ADSI) scripts to change the metabase file.
o If you change the metabase file manually or programmatically, you no longer need to stop and restart IIS to perform any modifications to the metabase file.
or feature of the history of the metabase in IIS 6 monitors changes to the IIS metabase, and automatically saves backups of the metabase when changes are made to it.
6 or IIS allows IIS administrators to copy settings from one physical machine to another machine through the use of scripting ADSI, WMI tools or administrator scripts provided by IIS 6.
or you can use the IIS Manager, or scripts to manage IIS administration.
Digest authentication or can be used in proxy servers and firewalls.
IIS 6 and can also use Passport authentication, due to its integration with Microsoft. NET Passport.
You can use the feature or group of Active Directory to secure IIS.
Before the architecture of IIS IIS 6
Prior to IIS 4, the architecture of IIS was in the process of transformation. This means that the Internet Services Application Programming Interface (ISAPI) DLL implemented in the service of the inetinfo.exe process.
With the release of IIS 4, reached the IIS metabase stores IIS configuration settings and data. This means that the IIS configuration is no longer stored in the registry. Only a few adjustments, such as keys used to start IIS remained in the Secretariat.
The IIS Admin Service, used to manage the IIS Metabase is included in IIS 4. IIS Admin Service is responsible for maintaining the IIS metabase, and to update the Secretariat with the configuration settings for other services of IIS, including the WWW service, FTP, NNTP and SMTP.
Another major change in the architecture of IIS 4, IIS 4 was that applications could run out of process, or process isolation. The improved reliability of the environment within their organization, because a single application failure and did not cause other applications and processes that are not on the server. You can configure the applications that run outside the process to start automatically when not. You can also start and stop applications running on the server and not impact other applications. When processes are executed in the process, the entire Web server not maintained until you restart or restart inetinfo.exe.
IIS 4 integration with Microsoft Transaction Server (MTS) and MTS Web Application Manager (WAM) component made it possible for applications to run out of the process is isolated in space. With IIS 4, the applications were to run the installation process. Settled only after the applications could be configured to carry out the process. This was done by navigating to the Properties dialog box for the virtual directory of the application, and then choose Run in separate memory space (isolated process) check box.
In short, IIS 4 provided the means to run applications in either process or output process. One of the main disadvantages associated with the execution of applications outside of process is that it runs slower than applications that run in process. For this reason, applications that are running out of process applications were mainly in the testing phase. It is also common to debug applications in IIS on the way out of process. Applications that run outside the process could not communicate with other applications running on the same machine, which obviously caused some problems in applications to communicate with other applications.
With the release of IIS 5 was able to run web applications in the following ways:
o Process: In this mode, applications run on the architecture of IIS 1 – 3 IIS, which means it runs as a main component of the Web server.
or process (isolated): In this mode, applications run in isolation, in their host Dllhost.exe.
or Combined Process: Applications will run as a process in common, apart from inetinfo.exe in the COM + hosting process Dllhost.exe. This in turn allows multiple ISAPI and ASP applications to interact or communicate. The implementation of web applications grouped in out-of-process better than the applications that run out of process (isolated).
The main drawbacks associated with the architecture of IIS 5 are listed below:
Applications that run in IIS process being carried to the core Web server, which meant that while the process is optimal, an application could cause the entire Web server process to collapse.
Applications that run on the isolated output (isolated) or groupings of process had poor performance implications. This essentially means that the application process of a performance issue when running in IIS 5.
Major differences between IIS 5 and IIS 6 Architecture
The main differences between IIS 5 and IIS 6 architecture is summarized below:
IIS 6 and HTTP architecture is moving to hear the core for higher performance and reliability. This means that the processing of HTTP requests has been transferred directly into the kernel.
or WWW service includes the new Web Administration Service (WAS).
models or applications based on IIS 6 are:
+ Work Process isolation mode isolates developer application code to all of the main services of IIS.
+ II5 isolation mode for backward compatibility for IIS 5 applications.
or IIS 6 includes support for multiple applications, each application pool can operate in isolation from other groups of applications.
Main components of IIS 6
With IIS 6, HTTP listener and routing moves to the kernel mode HTTP Listener component is put into operation through the Http.sys device driver in kernel mode. Http.sys runs on Windows Server 2003 TCP / IP networking subsystem in the TCP / IP stack in Windows Server 2003. Http.sys heard of HTTP requests that wish to establish connections with addresses and port numbers from the websites hosted on IIS. Http.sys responsibilities are summarized below:
or to listen, and route HTTP requests to work process. Application code running in user mode processes to deal with workers and processes. Multiple worker processes that usually run parallel to handle sets of applications.
or receives HTTP responses from the IIS worker processes and sends to the client. Http.sys not really the process forward HTTP requests, but for the correct IIS worker process for processing.
With IIS 6, or an application pool is associated with a queue as a core that routes HTTP requests Http.sys.
cache or HTTP responses for static content and dynamic content through a kernel-mode cache.
Manage connections for TCP or HTTP requests and responses.
o Managing bandwidth
Responsible for logging or text for the WWW Publishing Service.
o Managing the boundaries of connection and the connection time.
The implementation of the kernel mode HTTP listener through the Http.sys core component has led to the following benefits.
or process that runs in kernel mode have a higher priority than the processes so that any user, which means that Http.sys improvement in processing time of HTTP requests.
Http.sys or can continue to listen, and the tail of HTTP requests in cases where the application for Web applications is below.
With IIS 6, the IIS Admin service manages the IIS metabase, and updates to the Secretariat with the configuration settings for other services of IIS, including the WWW service, FTP service, NNTP service and SMTP service.
The Web Administration Service (WAS) component of IIS 6 handles creating websites in IIS 6, and consists of two components below. Which is implemented as a DLL in the process svchost.exe host.
or Configuration Manager, duties include:
+ Store and retrieve configuration data from the IIS metabase.
+ Set the routing table name in the beginning of Http.sys. It creates an entry in the routing table for each application pool.
+ Tip Http.sys Http.sys when the routing table needs the updates on it. The routing table must be updated when new application pools are created for new Web applications.
or Group Manager application management functions of the work processes of IIS include:
+ Start, stop, restart and recycling processes of worker
+ Monitor processes workers
A worker process in IIS 6 is a process developed by the user running the Web application code. A work process is really a host, called w3wp.exe. Worker processes process the user requests from the queue Http.sys. The worker process also returns a page or dynamic page to the requesting client through Http.sys. A work process may receive the following:
ASP Applications
or ISAPI applications and filters
or CGI applications
or Content
A group of applications consists of the following components:
A kernel mode or Http.sys request queue
o A single instance or multiple instances of w3wp.exe – worker processes.
In IIS 6, you can run applications in different configurations:
o An application pool is a work process that hosts the only web application which in turn is isolated from other applications through the process limits.
o An application pool worker process has a two-or host numerous Web applications.
o An application pool worker process has numerous hosting multiple Web applications. This concept is called a garden setting and the web is a new feature of IIS.
Register of HTTP requests with earlier versions of IIS include the text file formats are listed below. You can also access applications from a database ODBC. Tala was handled by the process Inetinfo.exe.
NCSA or standard format
or W3C Extended Format
The native format or IIS
With IIS 6, the logging is handled by the kernel mode HTTP listener, and ODBC logging is handled by worker processes. This in turn leads to better performance.
The kernel mode caching is managed by Http.sys static and dynamic content. Http.sys when it detects an HTTP request, first checks the cache, and retrieves the page from the cache. This is done in kernel mode, which means that performance is much higher contents of cache.
When a client requests an ASP page, the ASP code is compiled in an ASP model, which obtains in the cache memory cache. These templates are stored so that they can be used again. With IIS 6, the oldest in the templates from the cache are cached offline (on disk) when the cache is full. IIS 6 can store 250 templates in memory. In the cache of IIS 6 can be configured to use 64GB of physical memory.
The worker process isolation mode – IIS 6 Application Mode
Worker process isolation mode is the main mode of application in IIS, and includes the application pools, worker processes, health monitoring, and all other IIS 6 specific architectural elements. The characteristics of the worker process isolation mode are:
o An application pool can have one or more Web applications.
o The worker is responsible for processes HTTP requests from the queue.
o An application pool can contain a process of work or more processes (web garden).
Each application or group has an associated queue in kernel mode Http.sys.
A single application or failure does not lead to multiple applications that do not.
or ASP applications, ASP.NET applications and ISAPI extensions are loaded into the worker processes.
Inetinfo.exe or manages metadata and the FTP server, SMTP Service and NNTP Service.
Administration or Web services (WAS) manages application pools and worker processes.
The process that occurs when a client sends an HTTP request are listed below:
1. Http.sys listening to the customer and find the HTTP request.
2. If the request is invalid, an HTTP error code is returned to the client by Http.sys.
3. If the request is valid, Http.sys first checks the cache kernel mode response to determine if the client requesting the page is cached.
4. If the requested page is in the cache is returned immediately to the client.
5. The request is sent to the queue so that core group of applications Http.sys.
6. A working group of applications is the request from the kernel mode cache.
7. The worker process sends the response to the customer through Http.sys.
8. Http.sys caches the response.
Isolation mode of IIS 5 – IIS 6 Application Mode
IIS 6 can run in isolation mode for IIS 5 compatibility for applications that do not work properly on IIS 6. Applications that typically need to run IIS 6 in IIS isolation mode 5 are:
Applications or processes that need not reside in the application pool associated with the application.
or non-ASP.NET applications for all other applications requiring session state information to persevere.
ISAPI Applications that repeatedly load and run in parallel, and the realization of the ISAPI filter to read the raw data filtering.
IIS 6 architectural elements that are not available when running in IIS 6 Isolation Mode in IIS 5 are:
or Web gardens
Detection and Health
or processor affinity
or recycling processes
Fast or no protection
The main IIS Services and Protocols
IIS supports a limited number of protocols and services, which include:
or World Wide Web (WWW) service, which serves to connect the client HTTP requests to IIS IIS websites. The service also is used to publish Web services.
or Hypertext Transfer Protocol (HTTP) is a TCP / IP application layer protocol and is used to connect to web sites and creating Web content. HTTP is responsible for publication of static and dynamic Web content. A session consists of an HTTP connection, an HTTP request and HTTP response
1. The port 80 is used for HTTP connections. The client establishes a TCP connection to the server using a TCP Three Way Handshake.
2. After the connection is established, the client sends an HTTP GET request message to the server.
3. The server sends the client requests the Web page.
4. HTTP Keep-Alives maintains the TCP connection between the client and the server if it is enabled, so the customer can request additional pages.
5. If HTTP Keep-Alives is not enabled, the TCP connection is terminated after the requested page is downloaded.
or File Transfer Protocol (FTP) is a TCP / IP application layer protocol and is used for copying files to and from remote systems via the Transmission Control Protocol (TCP). FTP allows clients to upload and download files from an FTP server through a InterNetwork. Through IIS, you can create and manage FTP servers. You need an FTP server and FTP client to use the protocol. A session is an FTP connection, a request and response.
1. The client establishes a TCP connection to the FTP server through port 21.
2. A port number 1023 is assigned to the client.
3. The client sends a command to the FTP port 21.
4. If the client needs to receive data, it creates another connection to the client, to transmit data. This connection uses port 20.
5. The second connection is maintained in a TIME_WAIT state after the data is transferred to the client. The TIME_WAIT state allows additional data to be transferred. The TIME_WAIT state when it terminates the connection time.
or IIS Admin Service, used to manage the IIS metabase. It updates the registry with the configuration settings for other services of IIS, including the WWW service, FTP service, NNTP service and SMTP service.
o Simple Mail Transfer Protocol (SMTP) es una red TCP / IP de protocolo de capa de aplicación utilizado para el encaminamiento y la transferencia de correo electrónico entre hosts SMTP en Internet. Se trata de un cliente / servidor y servidor / servidor de protocolo.
o Red de Protocolo de transferencia de noticias (NNTP) es una red TCP / IP de protocolo de capa de aplicación utiliza para enviar mensajes a la red de noticias NNTP NNTP clientes y servidores en Internet. Se trata de un cliente / servidor y servidor / servidor de protocolo. El protocolo permite a un NNTP NNTP de acogida para reproducir su lista de grupos de noticias y mensajes con otro host a través de noticias, utilizando un método de empujar o tirar de un método. NNTP Un cliente puede establecer una conexión con un host NNTP para descargar una lista de grupos de noticias, y leer los mensajes contenidos en los grupos de noticias.
o Secure Sockets Layer (SSL) versión 3, que se utiliza para cifrar la autenticación HTTP y NNTP de datos y transmisión de datos a través de la criptografía de clave pública
o Lightweight Directory Access Protocol (LDAP) es utilizado por el Simple Mail Transfer Protocol (SMTP) para acceder a datos en el servicio de directorio.
o Transport Layer Security (TLS), que sirve para cifrar las transmisiones de datos SMTP.
o Multipurpose Internet Mail Extensions (MIME), utilizados para transmitir a los formatos de archivos de clientes HTTP. El servicio HTTP utiliza MIME.
Useful Links
Website Design New Orleans : Break-Thru Productions is a New Orleans based website design firm. We specialize in working with local customers.