Solved

NSlookup from NT to 2003

Posted on 2004-09-08
4
250 Views
Last Modified: 2010-04-19
Hey guys, I am a bit confused about my dns problem with two domains and seek your expert advice for the following situation:

Two pristine networks: Nt4 and 20003 Active Directory. two domain controllers on AD are dns servers 128.0.2.5 and 128.0.2.6 respectively. No dns servers on NT4 environment. DC's and member servers on AD environment can resolve each other via dns just fine.

Problem: Any workstation in the nt4 environment cannot succesfully resolve AD servers via DNS, this also includes my Windows XP workstation which has static DNS entries of 128.0.2.5 and 128.0.2.6. Here is the outpout of the nslookup both forward and reverse from my workstation:

C:\>nslookup corpwk3sdc01
Server:  corpwk3sdc01.domain.local
Address:  128.0.2.5

*** corpwk3sdc01.domain.local can't find corpwk3sdc01: Server failed



C:\>nslookup 128.0.2.6
Server:  corpwk3sdc01.domain.local
Address:  128.0.2.5

Name:    corpwk3sdc02.domain.local
Address:  128.0.2.6

I get the same results on NT4 servers, any thoughts? Since my workstation is not set to DHCP, does this mean i have to manualy register my DNS? If so then how come the reverse DNS comes up fine? Note: nothing about my workstation, name or IP is listed in the DNS forward and lookup zones. Do I need to add the dns suffix of domain.local on my local area connection DNS properties?
0
Comment
Question by:SANG501
4 Comments
 
LVL 51

Expert Comment

by:Netman66
ID: 12012422
Try installing the Directory Services client on one of the NT workstations.
0
 
LVL 12

Expert Comment

by:ColinRoyds
ID: 12018939
sounds like you are having a security issue, dns in win2k/3 by default only allows secure communication, in other words if you want to query the server you must be on the same domain or have a working trust relationship, for a quick fix change the security option in dns to allow for unsecure communication, then try nslook from a nt domain based workstation, if this works then look at the trust relationship between the two if you have one, or leave it as it is using the unsecure option.
0
 
LVL 1

Author Comment

by:SANG501
ID: 12026706

My trusts are not completely working, I didnt know I trust had to be setup before you can use other domain dns servers. I'll try that and post the results.
0
 
LVL 83

Accepted Solution

by:
oBdA earned 500 total points
ID: 12096488
This is not a permissions issue; your DNS server is answering your requests just fine, as you can see by the response for the reverse lookup query.
The problem with the forward lookup is that you are querying just the host name. A query with the server's FQDN like
nslookup corpwk3sdc01.domain.local
should work just fine.
On your NT4 clients, you'll have to either enter domain.local in the domain field of the DNS tab, or (if for whatever reason you need another domain name there) add the domain.local (as well as the domain name from the "Domain" field!) in the dns suffix search list.
If you want to lookup your NT4 machines in DNS as well, you'll have to enter their names and addresses manually into your DNS. NT4 doesn't know about such modern things as Dynamic DNS; if you were using a W2k DHCP server for your NT4 machines, you could tell the DHCP to register the DNS addresses handed out on behalf of the clients, but for the moment, there's no way around entering the information manually.
0

Featured Post

Zoho SalesIQ

Hassle-free live chat software re-imagined for business growth. 2 users, always free.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Excel file on a DFS share in use although it is not 3 43
Windows 2003 new patches 11 62
Auslogics BoostSpeed 9 software 5 60
What is this Task? 4 80
by Batuhan Cetin In this article I will be guiding through the process of removing a failed DC metadata from Active Directory (hereafter, AD) using the ntdsutil tool in a Windows Server 2003 environment. These steps are not necessary in a Win…
Setting up a Microsoft WSUS update system is free relatively speaking if you have hard disk space and processor capacity.   However, WSUS can be a blessing and a curse. For example, there is nothing worse than approving updates and they just have…
A short film showing how OnPage and Connectwise integration works.
Concerto provides fully managed cloud services and the expertise to provide an easy and reliable route to the cloud. Our best-in-class solutions help you address the toughest IT challenges, find new efficiencies and deliver the best application expe…

929 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

15 Experts available now in Live!

Get 1:1 Help Now