Solved

Silly DNS results!

Posted on 2004-08-25
2
221 Views
Last Modified: 2010-04-14
Hi there!

On a Windows 2000 server Domain Controller, I have set the DNS in LAN properties to this machine's IP address (192.168.100.59), as it is advised elsewhere (in Microsoft Support web site.)
This computer is behind a proxy. Internet explorer works fine, but when I try to nslookup yahoo.com, I get nothing but a DNS request timeout 2 seconds.... If I add the IP address of the proxy server which is also a DNS server, as a secondaty DNS in LAN properties, it will work fine.
Meanwhile, many other computers use my server as the primary and only DNS to connect to internet, and they are working! I can ping them from other computers behind the proxy, and vice versa, they have access to internet, but there is a related problem: If I try to access a FTP address (outside the proxy LAN) from a computer in our LAN (the server or the clients), it is unable to login to FTP, so shows the contents some way that you can download them but can not delete upload them (i.e. it is not like Explorer view, it is like when you access the account anonymously) Well it is not totally anonymous, since anonymous login is disabled on that FTP site, but it does not have writing permission.
But If I add the IP of the proxy server to DNSs in the LAN properties (server or client), it will work fine! Seems that my DNS is not working fine.

All I have on this DNS server:

Two forward lookup zones: one named || and the other named ssrc.local
One reverse lookup zone: named 192.168.100.x subnet

One other expert told me that the || forward lookup zone is not normal, and it's name is illegal, and I can safely delete it. I deleted it and my server was TOTALLY damaged. (http:Q_21078387.html) so I will never do it again!

Any answer is highly appreciated.

Huji
0
Comment
Question by:huji
2 Comments
 
LVL 25

Accepted Solution

by:
mikeleebrla earned 500 total points
ID: 11891533
"I get nothing but a DNS request timeout 2 seconds"....   this is caused by you not forwarding the DNS lookups to a "real" external dns server.  this is done from the DNS MMC on the forwarders tab of the properties of your DNS server... point it to any external dns server and it will work fine.  

 
0
 
LVL 14

Author Comment

by:huji
ID: 11894562
You are right. And I am asking myself why should I forget to correct the settings, each time?!
You see, I have encountered several problems with this DNS and DC server, and I may open another question in a moment about one of the other problems! I have restored this server to a Drive Image of some weeks ago, for some reason and I have encountered several problems, many of them relating to bad settings of the server, previously done by some other guy...
Thanks a lot
Huji
0

Featured Post

Enterprise Mobility and BYOD For Dummies

Like “For Dummies” books, you can read this in whatever order you choose and learn about mobility and BYOD; and how to put a competitive mobile infrastructure in place. Developed for SMBs and large enterprises alike, you will find helpful use cases, planning, and implementation.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Server 2008 Server 2003 Server 2000 12 644
IP Addresses List On Network 8 290
Restoring a deleted user from Windows 2000?! 2 161
Windows startup/shutdown date/time log 7 155
NTFS file system has been developed by Microsoft that is widely used by Windows NT operating system and its advanced versions. It is the mostly used over FAT file system as it provides superior features like reliability, security, storage, efficienc…
Building a cohesive image for your brand is vital to making an impression on consumers. When the economy is tough, brands do better than unbranded  products. This can have a huge impact on your long-term profits, as the economy goes up and down.
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …

685 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question