 |
|
|
|
Next: OK--The Floppy Disk Drive Question
|
| Author |
Message |
External
Since: Dec 24, 2007
Posts: 6
|
(Msg. 1) Posted: Mon Dec 24, 2007 9:44 pm
Post subject: ARP DNS Problems?
Archived from groups: microsoft>public>win2000>dns (more info?)
|
|
|
I have 3 regular network users who lose internet/network connections
daily. The problem seemed to develop back when a DNS sever that was a
Windows 2000 Domain controller was lost forever. The DNS server was
replaced with a new Domain Controller on a new machine with Windows
2003 installed. At first is was with a laptop user who takes laptop
with home every night. Now it has spread to two other users. As a test
one user was switch to a new network cable that goes to a main switch
on the network directly after the firewall. Connection is still lost
for that user.
The following are the steps I take to fix network access for the 3
which has to be done multiple times a day.
1st. On a machine that has problems connecting. I logged in as the
administrator and attempted to access the internet and got no
connection.
2nd I changed the name of the work station from test to test1 to see
if that made a difference to with the internal DNS. I rebooted the
workstation to and attempted to access the internet and I got no
connection with test machine.
3rd. I changed the workstation name back to test and rebooted the
workstation. I deleted the DNS cache on Server66 (new machine with Win
2003) to see if this made a difference, I got no connection with test
machine.
4th. I cleared the DNS cache on Server22 to see if this made a
difference I got no connection with test machine.
5th I cleared the ARP cache from the firewall and was finally able to
get the internet working on the test computer. |
|
| Back to top |
|
 | |
External
Since: Aug 27, 2007
Posts: 314
|
(Msg. 2) Posted: Tue Dec 25, 2007 2:11 pm
Post subject: Re: ARP DNS Problems? [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
|
|
|
Hello ,
Please give some more info about the DNS setup, how many DNS servers and
is DNS running as Active directory integrated zones? Also post an unedited
ipconfig /all form the problem machine and the DNS server.
Best regards
Meinolf Weber
Disclaimer: This posting is provided "AS IS" with no warranties, and confers
no rights.
** Please do NOT email, only reply to Newsgroups
** HELP us help YOU!!! http://www.dts-l.org/goodpost.htm
> I have 3 regular network users who lose internet/network connections
> daily. The problem seemed to develop back when a DNS sever that was a
> Windows 2000 Domain controller was lost forever. The DNS server was
> replaced with a new Domain Controller on a new machine with Windows
> 2003 installed. At first is was with a laptop user who takes laptop
> with home every night. Now it has spread to two other users. As a test
> one user was switch to a new network cable that goes to a main switch
> on the network directly after the firewall. Connection is still lost
> for that user.
>
> The following are the steps I take to fix network access for the 3
> which has to be done multiple times a day.
>
> 1st. On a machine that has problems connecting. I logged in as the
> administrator and attempted to access the internet and got no
> connection.
> 2nd I changed the name of the work station from test to test1 to see
> if that made a difference to with the internal DNS. I rebooted the
> workstation to and attempted to access the internet and I got no
> connection with test machine.
> 3rd. I changed the workstation name back to test and rebooted the
> workstation. I deleted the DNS cache on Server66 (new machine with Win
> 2003) to see if this made a difference, I got no connection with test
> machine.
> 4th. I cleared the DNS cache on Server22 to see if this made a
> difference I got no connection with test machine.
> 5th I cleared the ARP cache from the firewall and was finally able to
> get the internet working on the test computer. |
|
| Back to top |
|
| |
External
Since: Mar 29, 2006
Posts: 238
|
(Msg. 3) Posted: Tue Dec 25, 2007 9:44 pm
Post subject: Re: ARP DNS Problems? [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
|
|
|
In news:ff16fb6677b818ca152d3960364d@msnews.microsoft.com,
Meinolf Weber typed:
> Hello ,
>
> Please give some more info about the DNS setup, how many DNS servers
> and is DNS running as Active directory integrated zones? Also post an
> unedited ipconfig /all form the problem machine and the DNS server.
>
> Best regards
>
> Meinolf Weber
> Disclaimer: This posting is provided "AS IS" with no warranties, and
> confers no rights.
> ** Please do NOT email, only reply to Newsgroups
> ** HELP us help YOU!!! http://www.dts-l.org/goodpost.htm
>
Good point, Menolf.
In addition , what type of firewall is in place? Is it
a proxy? Does it support EDNS0?
Also, about the lost DC, exactly how did you 'replace' it? Was a Metadata
Cleanup ever performed? Did you seized the roles?
--
Regards,
Ace
This posting is provided "AS-IS" with no warranties or guarantees and
confers no rights.
Ace Fekay, MCSE 2003 & 2000, MCSA 2003 & 2000, MCSE+I, MCT,
MVP Microsoft MVP - Directory Services
Microsoft Certified Trainer >> Stay informed about: ARP DNS Problems? |
|
| Back to top |
|
| |
External
Since: Dec 24, 2007
Posts: 6
|
(Msg. 4) Posted: Wed Dec 26, 2007 10:18 am
Post subject: Re: ARP DNS Problems? [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
|
|
|
> > Please give some more info about the DNS setup, how many DNS servers
> > and is DNS running as Active directory integrated zones? Also post an
> > unedited ipconfig /all form the problem machine and the DNS server.
>
> > Best regards
>
> > Meinolf Weber
* 2 DNS Servers
* Active Directory Intergrated
* ipconfig /all form the machine with problem (Windows XP)
Windows IP Configuration
Host Name . . . . . . . . . . . . : test
Primary Dns Suffix . . . . . . . : <Insert domain name>.com
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : <Insert domain name>.com
Ethernet adapter Local Area Connection:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Broadcom 440x 10/100
Integrated Controller
Physical Address. . . . . . . . . : 00-1A-A0-3B-94-9F
Dhcp Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 192.168.0.41
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.0.100
DNS Servers . . . . . . . . . . . : 192.168.0.2
192.168.0.3
* ipconfig /all form DNS machine Server22 (Windows 2000 Server)
Windows 2000 IP Configuration
Host Name . . . . . . . . . . . . : Server22
Primary DNS Suffix . . . . . . . : <Insert domain name>.com
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : <Insert domain name>.com
Ethernet adapter Local Area Connection 2:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Belkin Gigabit Desktop Card
Physical Address. . . . . . . . . : 00-30-BD-BB-74-F1
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 192.168.0.2
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.0.100
DNS Servers . . . . . . . . . . . : 192.168.0.3
192.168.0.2
* ipconfig /all form DNS machine Server66 (Windows 2003)
Windows IP Configuration
Host Name . . . . . . . . . . . . : server66
Primary Dns Suffix . . . . . . . : <Insert domain name>.com
Node Type . . . . . . . . . . . . : Unknown
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : <Insert domain name>.com
Ethernet adapter Local Area Connection:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Broadcom BCM5708C NetXtreme II
GigE (NDIS VBD Client)
Physical Address. . . . . . . . . : 00-1C-23-C6-B1-63
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 192.168.0.3
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.0.100
DNS Servers . . . . . . . . . . . : 192.168.0.2
192.168.0.3
====================================================================
> In addition , what type of firewall is in place? Is it
> a proxy? Does it support EDNS0?
* Watchgaurd Firewall is in place
* It is not a proxy
* It does not support EDNS0
> Also, about the lost DC, exactly how did you 'replace' it? Was a Metadata
> Cleanup ever performed? Did you seized the roles?
>
> --
> Regards,
> Ace
>
* The replacement domain controller is Sever66. Server66 was promoted
to DC and had DNS installed/configured.
* Metadata Cleanup was not performed.
* Roles were not seized. >> Stay informed about: ARP DNS Problems? |
|
| Back to top |
|
| |
External
Since: Dec 24, 2007
Posts: 6
|
(Msg. 5) Posted: Wed Dec 26, 2007 10:19 am
Post subject: Re: ARP DNS Problems? [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
|
|
|
> > Please give some more info about the DNS setup, how many DNS servers
> > and is DNS running as Active directory integrated zones? Also post an
> > unedited ipconfig /all form the problem machine and the DNS server.
>
> > Best regards
>
> > Meinolf Weber
* 2 DNS Servers
* Active Directory Intergrated
* ipconfig /all form the machine with problem (Windows XP)
Windows IP Configuration
Host Name . . . . . . . . . . . . : test
Primary Dns Suffix . . . . . . . : <Insert domain name>.com
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : <Insert domain name>.com
Ethernet adapter Local Area Connection:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Broadcom 440x 10/100
Integrated Controller
Physical Address. . . . . . . . . : 00-1A-A0-3B-94-9F
Dhcp Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 192.168.0.41
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.0.100
DNS Servers . . . . . . . . . . . : 192.168.0.2
192.168.0.3
* ipconfig /all form DNS machine Server22 (Windows 2000 Server)
Windows 2000 IP Configuration
Host Name . . . . . . . . . . . . : Server22
Primary DNS Suffix . . . . . . . : <Insert domain name>.com
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : <Insert domain name>.com
Ethernet adapter Local Area Connection 2:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Belkin Gigabit Desktop Card
Physical Address. . . . . . . . . : 00-30-BD-BB-74-F1
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 192.168.0.2
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.0.100
DNS Servers . . . . . . . . . . . : 192.168.0.3
192.168.0.2
* ipconfig /all form DNS machine Server66 (Windows 2003)
Windows IP Configuration
Host Name . . . . . . . . . . . . : server66
Primary Dns Suffix . . . . . . . : <Insert domain name>.com
Node Type . . . . . . . . . . . . : Unknown
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : <Insert domain name>.com
Ethernet adapter Local Area Connection:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Broadcom BCM5708C NetXtreme II
GigE (NDIS VBD Client)
Physical Address. . . . . . . . . : 00-1C-23-C6-B1-63
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 192.168.0.3
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.0.100
DNS Servers . . . . . . . . . . . : 192.168.0.2
192.168.0.3
====================================================================
> In addition , what type of firewall is in place? Is it
> a proxy? Does it support EDNS0?
* Watchgaurd Firewall is in place
* It is not a proxy
* It does not support EDNS0
> Also, about the lost DC, exactly how did you 'replace' it? Was a Metadata
> Cleanup ever performed? Did you seized the roles?
>
> --
> Regards,
> Ace
>
* The replacement domain controller is Sever66. Server66 was promoted
to DC and had DNS installed/configured.
* Metadata Cleanup was not performed.
* Roles were not seized. >> Stay informed about: ARP DNS Problems? |
|
| Back to top |
|
| |
External
Since: Aug 27, 2007
Posts: 314
|
(Msg. 6) Posted: Wed Dec 26, 2007 4:29 pm
Post subject: Re: ARP DNS Problems? [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
|
|
|
Hello ,
Please check that all 5 FSMO roles are present and that you have at least
one Global catalog server:
http://support.microsoft.com/kb/324801
Metadata cleanup:
http://support.microsoft.com/kb/216498
http://technet2.microsoft.com/windowsserver/en/library/012793ee-5e8c-4...-9f66-4
Best regards
Meinolf Weber
Disclaimer: This posting is provided "AS IS" with no warranties, and confers
no rights.
** Please do NOT email, only reply to Newsgroups
** HELP us help YOU!!! http://www.dts-l.org/goodpost.htm
>>> Please give some more info about the DNS setup, how many DNS servers
>>> and is DNS running as Active directory integrated zones? Also post
>>> an unedited ipconfig /all form the problem machine and the DNS
>>> server.
>>>
>>> Best regards
>>>
>>> Meinolf Weber
>>>
> * 2 DNS Servers
> * Active Directory Intergrated
> * ipconfig /all form the machine with problem (Windows XP)
> Windows IP Configuration
> Host Name . . . . . . . . . . . . : test
> Primary Dns Suffix . . . . . . . : <Insert domain name>.com
> Node Type . . . . . . . . . . . . : Hybrid
> IP Routing Enabled. . . . . . . . : No
> WINS Proxy Enabled. . . . . . . . : No
> DNS Suffix Search List. . . . . . : <Insert domain name>.com
> Ethernet adapter Local Area Connection:
>
> Connection-specific DNS Suffix . :
> Description . . . . . . . . . . . : Broadcom 440x 10/100
> Integrated Controller
> Physical Address. . . . . . . . . : 00-1A-A0-3B-94-9F
> Dhcp Enabled. . . . . . . . . . . : No
> IP Address. . . . . . . . . . . . : 192.168.0.41
> Subnet Mask . . . . . . . . . . . : 255.255.255.0
> Default Gateway . . . . . . . . . : 192.168.0.100
> DNS Servers . . . . . . . . . . . : 192.168.0.2
> 192.168.0.3
> * ipconfig /all form DNS machine Server22 (Windows 2000 Server)
>
> Windows 2000 IP Configuration
>
> Host Name . . . . . . . . . . . . : Server22
> Primary DNS Suffix . . . . . . . : <Insert domain name>.com
> Node Type . . . . . . . . . . . . : Hybrid
> IP Routing Enabled. . . . . . . . : No
> WINS Proxy Enabled. . . . . . . . : No
> DNS Suffix Search List. . . . . . : <Insert domain name>.com
> Ethernet adapter Local Area Connection 2:
>
> Connection-specific DNS Suffix . :
> Description . . . . . . . . . . . : Belkin Gigabit Desktop Card
> Physical Address. . . . . . . . . : 00-30-BD-BB-74-F1
> DHCP Enabled. . . . . . . . . . . : No
> IP Address. . . . . . . . . . . . : 192.168.0.2
> Subnet Mask . . . . . . . . . . . : 255.255.255.0
> Default Gateway . . . . . . . . . : 192.168.0.100
> DNS Servers . . . . . . . . . . . : 192.168.0.3
> 192.168.0.2
> * ipconfig /all form DNS machine Server66 (Windows 2003)
>
> Windows IP Configuration
>
> Host Name . . . . . . . . . . . . : server66
> Primary Dns Suffix . . . . . . . : <Insert domain name>.com
> Node Type . . . . . . . . . . . . : Unknown
> IP Routing Enabled. . . . . . . . : No
> WINS Proxy Enabled. . . . . . . . : No
> DNS Suffix Search List. . . . . . : <Insert domain name>.com
> Ethernet adapter Local Area Connection:
>
> Connection-specific DNS Suffix . :
> Description . . . . . . . . . . . : Broadcom BCM5708C NetXtreme II
> GigE (NDIS VBD Client)
> Physical Address. . . . . . . . . : 00-1C-23-C6-B1-63
> DHCP Enabled. . . . . . . . . . . : No
> IP Address. . . . . . . . . . . . : 192.168.0.3
> Subnet Mask . . . . . . . . . . . : 255.255.255.0
> Default Gateway . . . . . . . . . : 192.168.0.100
> DNS Servers . . . . . . . . . . . : 192.168.0.2
> 192.168.0.3
> ====================================================================
>> In addition , what type of firewall is in place?
>> Is it a proxy? Does it support EDNS0?
>>
> * Watchgaurd Firewall is in place
> * It is not a proxy
> * It does not support EDNS0
>> Also, about the lost DC, exactly how did you 'replace' it? Was a
>> Metadata Cleanup ever performed? Did you seized the roles?
>>
>> --
>> Regards,
>> Ace
> * The replacement domain controller is Sever66. Server66 was promoted
> to DC and had DNS installed/configured.
> * Metadata Cleanup was not performed.
> * Roles were not seized. >> Stay informed about: ARP DNS Problems? |
|
| Back to top |
|
| |
External
Since: Mar 29, 2006
Posts: 238
|
(Msg. 7) Posted: Wed Dec 26, 2007 8:08 pm
Post subject: Re: ARP DNS Problems? [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
|
|
|
|
|
| Back to top |
|
| |
External
Since: Mar 29, 2006
Posts: 238
|
(Msg. 8) Posted: Wed Dec 26, 2007 8:12 pm
Post subject: Re: ARP DNS Problems? [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
|
|
|
In news:c4ae9870-59a7-4e3a-a3cd-113f16d4bc72@e10g2000prf.googlegroups.com,
typed:
> ====================================================================
>
> > In addition , what type of firewall is in
> > place? Is it a proxy? Does it support EDNS0?
>
> * Watchgaurd Firewall is in place
> * It is not a proxy
> * It does not support EDNS0
>
>
> > Also, about the lost DC, exactly how did you 'replace' it? Was a
> > Metadata Cleanup ever performed? Did you seized the roles?
> >
> > --
> > Regards,
> > Ace
> >
>
> * The replacement domain controller is Sever66. Server66 was promoted
> to DC and had DNS installed/configured.
> * Metadata Cleanup was not performed.
> * Roles were not seized.
Thank you for posting that information. It actually looks fine and the issue
is elsewhere. I would *highly* recommend to immediately follow Meinolf's
suggestions. They are extremely important. I may also suggest to upgrade the
Watchguard's firmware to the latest in order to support EDNS0 or Windows
2003 may not resolve certain domains with large data.
Ace >> Stay informed about: ARP DNS Problems? |
|
| Back to top |
|
| |
External
Since: Aug 27, 2007
Posts: 314
|
(Msg. 9) Posted: Fri Dec 28, 2007 12:38 pm
Post subject: Re: ARP DNS Problems? [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
|
|
|
Hello Ace Fekay [MVP],
No problem with that. 
Best regards
Meinolf Weber
Disclaimer: This posting is provided "AS IS" with no warranties, and confers
no rights.
** Please do NOT email, only reply to Newsgroups
** HELP us help YOU!!! http://www.dts-l.org/goodpost.htm
> In news:%23lJkkm2RIHA.1212@TK2MSFTNGP05.phx.gbl,
> Ace Fekay [MVP] typed:
>> Good point, Menolf.
>>
> Meinolf, I apologize for mispelling your name. - Ace
> >> Stay informed about: ARP DNS Problems? |
|
| Back to top |
|
| |
External
Since: Dec 24, 2007
Posts: 6
|
(Msg. 10) Posted: Fri Dec 28, 2007 1:41 pm
Post subject: Re: ARP DNS Problems? [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
|
|
|
> Thank you for posting that information. It actually looks fine and the issue
> is elsewhere. I would *highly* recommend to immediately follow Meinolf's
> suggestions. They are extremely important. I may also suggest to upgrade the
> Watchguard's firmware to the latest in order to support EDNS0 or Windows
> 2003 may not resolve certain domains with large data.
>
> Ace
Ok this is what I have done. The instructions for the one link for
"How to view and transfer FSMO roles in Windows Server 2003" did not
do much good because Server66 (Uses Win 2003 and replaced Server11
that died) was already pointing to Sever22 (uses Win 2000). I followed
the instructions for the "How to remove data in Active Directory after
an unsuccessful domain controller demotion". With those instructions I
was able to use adsiedit.msc to remove the Server11 references from
Server22 and there was no references of Server11 on Server66.
The problem has not gone away.
We have found doing an ipconfig /flushdns and ipconfig /registerdns
seems to work well to allow the workstations to connect past the
network gateway to the internet. >> Stay informed about: ARP DNS Problems? |
|
| Back to top |
|
| |
External
Since: Mar 29, 2006
Posts: 238
|
(Msg. 11) Posted: Fri Dec 28, 2007 8:48 pm
Post subject: Re: ARP DNS Problems? [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
|
|
|
|
|
| Back to top |
|
| |
External
Since: Mar 29, 2006
Posts: 238
|
(Msg. 12) Posted: Fri Dec 28, 2007 8:54 pm
Post subject: Re: ARP DNS Problems? [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
|
|
|
In news:cd2955d7-dd14-4b1d-819e-d8f6c81d8042@t1g2000pra.googlegroups.com,
typed:
>
> Ok this is what I have done. The instructions for the one link for
> "How to view and transfer FSMO roles in Windows Server 2003" did not
> do much good because Server66 (Uses Win 2003 and replaced Server11
> that died) was already pointing to Sever22 (uses Win 2000). I followed
> the instructions for the "How to remove data in Active Directory after
> an unsuccessful domain controller demotion". With those instructions I
> was able to use adsiedit.msc to remove the Server11 references from
> Server22 and there was no references of Server11 on Server66.
>
> The problem has not gone away.
>
> We have found doing an ipconfig /flushdns and ipconfig /registerdns
> seems to work well to allow the workstations to connect past the
> network gateway to the internet.
When you attempted to seize the roles, were you on the 2003 server? You want
to be on the server that you want the role to go to. I
A Metadata Cleanup is performed using ntdsutil, not ADSI Edit. ADSI Edit is
limited in this area. So it sounds like the Metadata Cleanup procedure was
not performed properly. Please follow this link again. Also, when you do the
procedure, copy and paste the data from the CMD prompt to notepad and post
it so we can see what was actually performed and what you are actually
seeing. You may have to change the CMD prompt properties to allow to view
more than the default 300 lines just in case. I usually change my CMD
properties to view 3000 lines as well as check the QuickEdit checkbox to
allow me to drag select everything in the CMD prompt.
Metadata cleanup:
http://support.microsoft.com/kb/216498
Also, post any Event log errors please on any of the DCs. Post the EventID#
and the Source name.
Thanks,
Ace >> Stay informed about: ARP DNS Problems? |
|
| Back to top |
|
| |
External
Since: Dec 30, 2007
Posts: 5
|
(Msg. 13) Posted: Sat Dec 29, 2007 9:55 am
Post subject: Re: ARP DNS Problems? [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
|
|
|
Hi Guys,
I'm a newbie so you'll have to forgive me here if my way off the mark here,
but ...here goes nothing ..
Riki ... I'd suggest a few steps to troubleshoot this. My "gut" feel is
that, while cleaning up old meta data in AD is important, I'm not sure how
it can impact DNS resolution of external namespaces directly. My thoughts
would be to test the network side of things first as follows (please forgive
me if you've already tried these steps. I didn't see anything in the
previous postings suggesting you'd done this).
1. You say three PCs can't browse the internet. How many CAN browse?
2. Of the PCs that DO work, are they DHCP enabled? I notice the busted PC is
NOT DHCP enabled.
3. I also notice that Server22 has its Primary DNS set to Server66 and vice
versa. I seem to recall a KB Article saying something about DNS servers
defaulting to use themselves first irrespective of the IP Config.
4. How have you configured the DNS Servers to forward queries? They should
be configured to either Forward queries to the firewall, Do recursive
queries themselves or use perhaps your ISP's DNS server. They should NOT be
configured as Root DNS servers. If one of them is, this may be your problem.
5. From a busted PC try the following both when Internet is working and
again when not working:
a. Open CMD Prompt. (Note down which server it connected to Server22 or 66)
b. try NSLOOKUP Server22.YourDomainName.com
c. try NSLOOKUP www.hotmail.com
6. If they return good data, try pasting the IP Address of Hotmail into your
web browser to see if it works.
7. If they can't resolve the names, do the same NSLOOKUP tests again, but
this time, change the NSLOOKUP prompt to use the alternate Internal DNS
Server
a. To do this type NSLOOKUP at a CMD Prompt, then type "server x.x.x.x",
then type in names to be resolved.
8. If that doesn't return anything, try your ISPs DNS server
9. If nothing works at all, check that you can Telnet to port 53 on
Server22, 66, the Firewall and your ISPs DNS Box (or even one of the Root
DNS Servers).
10. Might also be worth testing the telnet angle from one of the busted PCs
while the Internet is working OK to compare results.
11. If the Telnets don't work, Try pinging Server 22, 66 and the Firewall.
Finally, I'm assuming you have a DNS problem because that was the path that
was suggested in your original posting. However, are you sure it isn't some
kind of Proxy server problem or perhaps an authentication issue with your
Proxy, or some kind of networking problems?
Hope this helps,
Let me know how your tests go???
Rgds
JediK9
"Ace Fekay [MVP]" wrote in message
> In news:ff16fb66787f98ca1791642d11a0@msnews.microsoft.com,
> Meinolf Weber typed:
>> Hello Ace Fekay [MVP],
>>
>> No problem with that.
>
>
>
> Cheers!
> >> Stay informed about: ARP DNS Problems? |
|
| Back to top |
|
| |
External
Since: Dec 24, 2007
Posts: 6
|
(Msg. 14) Posted: Wed Jan 02, 2008 12:53 pm
Post subject: Re: ARP DNS Problems? [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
|
|
|
On Dec 28 2007, 8:54 pm, "Ace Fekay [MVP]"
wrote:
> Innews:cd2955d7-dd14-4b1d-819e-d8f6c81d8042@t1g2000pra.googlegroups.com,
> typed:
>
>
>
> > Ok this is what I have done. The instructions for the one link for
> > "How to view and transfer FSMO roles in Windows Server 2003" did not
> > do much good because Server66 (Uses Win 2003 and replaced Server11
> > that died) was already pointing to Sever22 (uses Win 2000). I followed
> > the instructions for the "How to remove data in Active Directory after
> > an unsuccessful domain controller demotion". With those instructions I
> > was able to use adsiedit.msc to remove the Server11 references from
> > Server22 and there was no references of Server11 on Server66.
>
> > The problem has not gone away.
>
> > We have found doing an ipconfig /flushdns and ipconfig /registerdns
> > seems to work well to allow the workstations to connect past the
> > network gateway to the internet.
>
> When you attempted to seize the roles, were you on the 2003 server? You want
> to be on the server that you want the role to go to. I
>
> A Metadata Cleanup is performed using ntdsutil, not ADSI Edit. ADSI Edit is
> limited in this area. So it sounds like the Metadata Cleanup procedure was
> not performed properly. Please follow this link again. Also, when you do the
> procedure, copy and paste the data from the CMD prompt to notepad and post
> it so we can see what was actually performed and what you are actually
> seeing. You may have to change the CMD prompt properties to allow to view
> more than the default 300 lines just in case. I usually change my CMD
> properties to view 3000 lines as well as check the QuickEdit checkbox to
> allow me to drag select everything in the CMD prompt.
>
> Metadata cleanup:http://support.microsoft.com/kb/216498
>
> Also, post any Event log errors please on any of the DCs. Post the EventID#
> and the Source name.
>
> Thanks,
> Ace
Ok this was done on Sever22 to eliminate Server11 (which was
ultimately lost).
C:\Documents and Settings\Administrator.DS>ntdsutil
ntdsutil: metadata cleanup
metadata cleanup: connections
server connections: connect to server server22
Binding to server22 ...
Connected to server22 using credentials of locally logged on user
server connections: quit
metadata cleanup: select operation target
select operation target: list domains
Found 1 domain(s)
0 - DC=<insert domain name>,DC=com
select operation target: select domain 0
No current site
Domain - DC=<insert domain name>,DC=com
No current server
No current Naming Context
select operation target: list sites
Found 1 site(s)
0 - CN=DS,CN=Sites,CN=Configuration,DC=<insert domain name>,DC=com
select operation target: select site 0
Site - CN=DS,CN=Sites,CN=Configuration,DC=<insert domain name>,DC=com
Domain - DC=<insert domain name>,DC=com
No current server
No current Naming Context
select operation target: list servers in site
Found 5 server(s)
0 - CN=server22,CN=Servers,CN=DS,CN=Sites,CN=Configuration,DC=<insert
domain name>,DC=com
1 -
CN=DATA0,CN=Servers,CN=DS,CN=Sites,CN=Configuration,DC=digitalsitesy
stems,DC=com
2 -
CN=MAILSERVER,CN=Servers,CN=DS,CN=Sites,CN=Configuration,DC=<insert
domain name>,DC=com
3 - CN=TEST0,CN=Servers,CN=DS,CN=Sites,CN=Configuration,DC=<insert
domain name>
,DC=com
4 - CN=SERVER66,CN=Servers,CN=DS,CN=Sites,CN=Configuration,DC=<insert
domain name>,DC=com
select operation target:
Server11 is not among the listed servers. I don't know where to go. >> Stay informed about: ARP DNS Problems? |
|
| Back to top |
|
| |
External
Since: Dec 24, 2007
Posts: 6
|
(Msg. 15) Posted: Wed Jan 02, 2008 12:58 pm
Post subject: Re: ARP DNS Problems? [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
|
|
|
On Dec 28 2007, 8:54 pm, "Ace Fekay [MVP]"
wrote:
> Innews:cd2955d7-dd14-4b1d-819e-d8f6c81d8042@t1g2000pra.googlegroups.com,
> typed:
>
>
>
> > Ok this is what I have done. The instructions for the one link for
> > "How to view and transfer FSMO roles in Windows Server 2003" did not
> > do much good because Server66 (Uses Win 2003 and replaced Server11
> > that died) was already pointing to Sever22 (uses Win 2000). I followed
> > the instructions for the "How to remove data in Active Directory after
> > an unsuccessful domain controller demotion". With those instructions I
> > was able to use adsiedit.msc to remove the Server11 references from
> > Server22 and there was no references of Server11 on Server66.
>
> > The problem has not gone away.
>
> > We have found doing an ipconfig /flushdns and ipconfig /registerdns
> > seems to work well to allow the workstations to connect past the
> > network gateway to the internet.
>
> When you attempted to seize the roles, were you on the 2003 server? You want
> to be on the server that you want the role to go to. I
>
> A Metadata Cleanup is performed using ntdsutil, not ADSI Edit. ADSI Edit is
> limited in this area. So it sounds like the Metadata Cleanup procedure was
> not performed properly. Please follow this link again. Also, when you do the
> procedure, copy and paste the data from the CMD prompt to notepad and post
> it so we can see what was actually performed and what you are actually
> seeing. You may have to change the CMD prompt properties to allow to view
> more than the default 300 lines just in case. I usually change my CMD
> properties to view 3000 lines as well as check the QuickEdit checkbox to
> allow me to drag select everything in the CMD prompt.
>
> Metadata cleanup:http://support.microsoft.com/kb/216498
>
> Also, post any Event log errors please on any of the DCs. Post the EventID#
> and the Source name.
>
> Thanks,
> Ace
Ok this was done on Sever22 to eliminate Server11 (which was
ultimately lost).
C:\Documents and Settings\Administrator.DS>ntdsutil
ntdsutil: metadata cleanup
metadata cleanup: connections
server connections: connect to server server22
Binding to server22 ...
Connected to server22 using credentials of locally logged on user
server connections: quit
metadata cleanup: select operation target
select operation target: list domains
Found 1 domain(s)
0 - DC=<insert domain name>,DC=com
select operation target: select domain 0
No current site
Domain - DC=<insert domain name>,DC=com
No current server
No current Naming Context
select operation target: list sites
Found 1 site(s)
0 - CN=DS,CN=Sites,CN=Configuration,DC=<insert domain name>,DC=com
select operation target: select site 0
Site - CN=DS,CN=Sites,CN=Configuration,DC=<insert domain name>,DC=com
Domain - DC=<insert domain name>,DC=com
No current server
No current Naming Context
select operation target: list servers in site
Found 5 server(s)
0 - CN=server22,CN=Servers,CN=DS,CN=Sites,CN=Configuration,DC=<insert
domain name>,DC=com
1 -
CN=DATA0,CN=Servers,CN=DS,CN=Sites,CN=Configuration,DC=digitalsitesy
stems,DC=com
2 -
CN=MAILSERVER,CN=Servers,CN=DS,CN=Sites,CN=Configuration,DC=<insert
domain name>,DC=com
3 - CN=TEST0,CN=Servers,CN=DS,CN=Sites,CN=Configuration,DC=<insert
domain name>
,DC=com
4 - CN=SERVER66,CN=Servers,CN=DS,CN=Sites,CN=Configuration,DC=<insert
domain name>,DC=com
select operation target:
Server11 is not among the listed servers. I don't know where to go. >> Stay informed about: ARP DNS Problems? |
|
| Back to top |
|
| |
| Related Topics: | Windows 2000 DNS problems - I hope someone in this group can help me with a DNS problem. The symptom of the problem is that my Windows 2000 machine seems to have lost the ability to resolve DNS names. I can ping any IP address successfully, but Windows returns the message..
Problems with Event ID 5504 - Does anyone know how to solve the following error message? The DNS server encountered an invalid domain name in a packet from 192.33.4.12. The packet is rejected. -- Chris Holden
DNS Problems - Hello all, I have just taken over a network with the following issues: 1. DNS W2K reading event ID: 3000 2. Doing an NSLOOKUP IP-ADDRESS gives me the name of a server "wrong-server-name" neither in use nor on my network! Doing the NSLOOKUP ...
DNS problems - Greetings: I have a single WIN2000 server running DNS. All has been well but I noticed on all of my clients errors in the event viewer. Userenv - (windows cannot determine the user or computer name. The RPC server is unavailable) and Autoenrollment...
Diferent domains dns problems - Hello, i have a problem with the dns in our network, i have a domain with a domain controller with windows 2003 server and active directory with a database server with windows 2003 server and sql server, this server is running iis and two network.. |
|
You can post new topics in this forum
You can reply to topics in this forum
You can edit your posts in this forum
You can delete your posts in this forum
You can vote in polls in this forum
|
|
|
|
|
|
|
FAQ
Search
Profile
Private Messages
Log in
Win 2000/NT/98/ME