Damal_cmc
asked on
DNS Problem
Hi,
I have 2 DC in my network, primary server is giving problems accessing internet. I am not using Proxy, for internet I am directly connected to my firewall (Cisco PIX 515) n through switch it is distributed to my workstations.
Now from our whole network we are not able to access internet, we can access yahoo messanger but not any other things.
I tried using IP address and I found that I can access but not through URL. I came to know its DNS Problem.
DCDiag , Netdiag results are here.
C:\SUPPORT>dcdiag/v
DC Diagnosis
Performing initial setup:
* Verifing that the local machine dtt-bar-dc-01, is a DC.
* Connecting to directory service on server dtt-bar-dc-01.
* Collecting site info.
* Identifying all servers.
* Found 4 DC(s). Testing 1 of them.
Done gathering initial info.
Doing initial non skippeable tests
Testing server: Default-First-Site\DTT-BAR -DC-01
Starting test: Connectivity
* Active Directory LDAP Services Check
DTT-BAR-DC-01's server GUID DNS name could not be resolved to an
IP address. Check the DNS server, DHCP, server name, etc
Although the Guid DNS name
(fd26e331-3348-4990-8496-5 3cd401e0f9 f._msdcs.d ttindia.lo cal) couldn't
be resolved, the server name (dtt-bar-dc-01.dttindia.lo cal) resolved
to the IP address (10.169.116.10) and was pingable. Check that the IP
address is registered correctly with the DNS server.
......................... DTT-BAR-DC-01 failed test Connectivity
Doing primary tests
Testing server: Default-First-Site\DTT-BAR -DC-01
Skipping all tests, because server DTT-BAR-DC-01 is
not responding to directory service requests
Test omitted by user request: Topology
Test omitted by user request: CutoffServers
Test omitted by user request: OutboundSecureChannels
Running enterprise tests on : dttindia.local
Starting test: Intersite
Skipping site Default-First-Site, this site is outside the scope
provided by the command line arguments provided.
......................... dttindia.local passed test Intersite
Starting test: FsmoCheck
GC Name: \\dtt-bar-dc-01.dttindia.l ocal
Locator Flags: 0xe00001fd
PDC Name: \\dtt-bar-dc-01.dttindia.l ocal
Locator Flags: 0xe00001fd
Time Server Name: \\dtt-bar-dc-01.dttindia.l ocal
Locator Flags: 0xe00001fd
Preferred Time Server Name: \\dtt-bar-dc-01.dttindia.l ocal
Locator Flags: 0xe00001fd
KDC Name: \\dtt-bar-dc-01.dttindia.l ocal
Locator Flags: 0xe00001fd
......................... dttindia.local passed test FsmoCheck
C:\SUPPORT>cd\
C:\>net view \\dtt-bar-dc-01
Shared resources at \\dtt-bar-dc-01
Share name Type Used as Comment
-------------------------- ---------- ---------- ---------- ---------- ---------- ---
Address Disk "Access to address objects"
BACKUP Disk
clients Disk
DTRS Disk
DTRS_BE Disk
DTT-BAR-DC-01.log
Disk "Exchange message tracking logs"
E Disk
H Disk
HP5550 Print hp deskjet 5550 series
KB Disk
KM Disk
LJ2200-PCL6 Print HP LaserJet 2200-PCL6
LJ2200-PS Print HP LaserJet 2200-PS
NETLOGON Disk Logon server share
Office Music Disk Office Music
Opportunities
Disk
pdffiles Disk
PDFPRESS Print PDF Writer (Prepress)
PDFSCRN Print PDF Writer (Screen)
PUBLIC Disk
Software Disk
SYSVOL Disk Logon server share
UserData Disk
The command completed successfully.
----
NetDiag:
.......................... .......... ....
Computer Name: DTT-BAR-DC-01
DNS Host Name: dtt-bar-dc-01.dttindia.loc al
System info : Windows 2000 Server (Build 2195)
Processor : x86 Family 15 Model 2 Stepping 4, GenuineIntel
List of installed hotfixes :
KB329115
KB820888
KB822831
KB823182
KB823559
KB823980
KB824105
KB824141
KB824146
KB824151
KB825119
KB826232
KB828028
KB828035
KB828741
KB828749
KB829558
KB833407
KB835732
KB837001
KB839645
KB840315
KB840987
KB841356
KB841533
KB841872
KB841873
KB842526
KB842773
KB871250
KB873333
KB873339
KB883935
KB885250
KB885834
KB885835
KB885836
KB887797-OE6SP1-20041112.1 31144
KB888113
KB890047
KB890175
KB890859
KB890923-IE6SP1-20050225.1 03456
KB891711
KB891781
KB893066
KB893086
KB893803
Q147222
Q828026
Netcard queries test . . . . . . . : Passed
Per interface results:
Adapter : Local Area Connection
Netcard queries test . . . : Passed
Host Name. . . . . . . . . : dtt-bar-dc-01
IP Address . . . . . . . . : 10.169.116.10
Subnet Mask. . . . . . . . : 255.255.255.0
Default Gateway. . . . . . : 10.169.116.1
Primary WINS Server. . . . : 10.169.4.40
Dns Servers. . . . . . . . : 10.169.116.10
10.169.4.40
AutoConfiguration results. . . . . . : Passed
Default gateway test . . . : Passed
NetBT name test. . . . . . : Passed
WINS service test. . . . . : Passed
Global results:
Domain membership test . . . . . . : Passed
NetBT transports test. . . . . . . : Passed
List of NetBt transports currently configured:
NetBT_Tcpip_{DCFBA2D4-E2C1 -4781-87DF -99C5D0DB4 8DF}
1 NetBt transport currently configured.
Autonet address test . . . . . . . : Passed
IP loopback ping test. . . . . . . : Passed
Default gateway test . . . . . . . : Passed
NetBT name test. . . . . . . . . . : Passed
Winsock test . . . . . . . . . . . : Passed
DNS test . . . . . . . . . . . . . : Passed
PASS - All the DNS entries for DC are registered on DNS server '10.169.116.10' and other DCs also have some of the names registered.
[WARNING] The DNS entries for this DC cannot be verified right now on DNS server 10.169.4.40, ERROR_TIMEOUT.
Redir and Browser test . . . . . . : Passed
List of NetBt transports currently bound to the Redir
NetBT_Tcpip_{DCFBA2D4-E2C1 -4781-87DF -99C5D0DB4 8DF}
The redir is bound to 1 NetBt transport.
List of NetBt transports currently bound to the browser
NetBT_Tcpip_{DCFBA2D4-E2C1 -4781-87DF -99C5D0DB4 8DF}
The browser is bound to 1 NetBt transport.
DC discovery test. . . . . . . . . : Passed
DC list test . . . . . . . . . . . : Passed
Trust relationship test. . . . . . : Skipped
Kerberos test. . . . . . . . . . . : Passed
LDAP test. . . . . . . . . . . . . : Passed
[WARNING] Failed to query SPN registration on DC 'dtt-bar-dc-02.dttindia.lo cal'.
[WARNING] Failed to query SPN registration on DC 'DHS-BAR-DC-02.dttindia.lo cal'.
Bindings test. . . . . . . . . . . : Passed
WAN configuration test . . . . . . : Skipped
No active remote access connections.
Modem diagnostics test . . . . . . : Passed
IP Security test . . . . . . . . . : Passed
IPSec policy service is active, but no policy is assigned.
The command completed successfully
In Event Viewer I am getting Error 4000, 4001.
Can you please suggest me the solution.
Its really urgent for me
Thanks & regards,
Damal Raval
I have 2 DC in my network, primary server is giving problems accessing internet. I am not using Proxy, for internet I am directly connected to my firewall (Cisco PIX 515) n through switch it is distributed to my workstations.
Now from our whole network we are not able to access internet, we can access yahoo messanger but not any other things.
I tried using IP address and I found that I can access but not through URL. I came to know its DNS Problem.
DCDiag , Netdiag results are here.
C:\SUPPORT>dcdiag/v
DC Diagnosis
Performing initial setup:
* Verifing that the local machine dtt-bar-dc-01, is a DC.
* Connecting to directory service on server dtt-bar-dc-01.
* Collecting site info.
* Identifying all servers.
* Found 4 DC(s). Testing 1 of them.
Done gathering initial info.
Doing initial non skippeable tests
Testing server: Default-First-Site\DTT-BAR
Starting test: Connectivity
* Active Directory LDAP Services Check
DTT-BAR-DC-01's server GUID DNS name could not be resolved to an
IP address. Check the DNS server, DHCP, server name, etc
Although the Guid DNS name
(fd26e331-3348-4990-8496-5
be resolved, the server name (dtt-bar-dc-01.dttindia.lo
to the IP address (10.169.116.10) and was pingable. Check that the IP
address is registered correctly with the DNS server.
......................... DTT-BAR-DC-01 failed test Connectivity
Doing primary tests
Testing server: Default-First-Site\DTT-BAR
Skipping all tests, because server DTT-BAR-DC-01 is
not responding to directory service requests
Test omitted by user request: Topology
Test omitted by user request: CutoffServers
Test omitted by user request: OutboundSecureChannels
Running enterprise tests on : dttindia.local
Starting test: Intersite
Skipping site Default-First-Site, this site is outside the scope
provided by the command line arguments provided.
......................... dttindia.local passed test Intersite
Starting test: FsmoCheck
GC Name: \\dtt-bar-dc-01.dttindia.l
Locator Flags: 0xe00001fd
PDC Name: \\dtt-bar-dc-01.dttindia.l
Locator Flags: 0xe00001fd
Time Server Name: \\dtt-bar-dc-01.dttindia.l
Locator Flags: 0xe00001fd
Preferred Time Server Name: \\dtt-bar-dc-01.dttindia.l
Locator Flags: 0xe00001fd
KDC Name: \\dtt-bar-dc-01.dttindia.l
Locator Flags: 0xe00001fd
......................... dttindia.local passed test FsmoCheck
C:\SUPPORT>cd\
C:\>net view \\dtt-bar-dc-01
Shared resources at \\dtt-bar-dc-01
Share name Type Used as Comment
--------------------------
Address Disk "Access to address objects"
BACKUP Disk
clients Disk
DTRS Disk
DTRS_BE Disk
DTT-BAR-DC-01.log
Disk "Exchange message tracking logs"
E Disk
H Disk
HP5550 Print hp deskjet 5550 series
KB Disk
KM Disk
LJ2200-PCL6 Print HP LaserJet 2200-PCL6
LJ2200-PS Print HP LaserJet 2200-PS
NETLOGON Disk Logon server share
Office Music Disk Office Music
Opportunities
Disk
pdffiles Disk
PDFPRESS Print PDF Writer (Prepress)
PDFSCRN Print PDF Writer (Screen)
PUBLIC Disk
Software Disk
SYSVOL Disk Logon server share
UserData Disk
The command completed successfully.
----
NetDiag:
..........................
Computer Name: DTT-BAR-DC-01
DNS Host Name: dtt-bar-dc-01.dttindia.loc
System info : Windows 2000 Server (Build 2195)
Processor : x86 Family 15 Model 2 Stepping 4, GenuineIntel
List of installed hotfixes :
KB329115
KB820888
KB822831
KB823182
KB823559
KB823980
KB824105
KB824141
KB824146
KB824151
KB825119
KB826232
KB828028
KB828035
KB828741
KB828749
KB829558
KB833407
KB835732
KB837001
KB839645
KB840315
KB840987
KB841356
KB841533
KB841872
KB841873
KB842526
KB842773
KB871250
KB873333
KB873339
KB883935
KB885250
KB885834
KB885835
KB885836
KB887797-OE6SP1-20041112.1
KB888113
KB890047
KB890175
KB890859
KB890923-IE6SP1-20050225.1
KB891711
KB891781
KB893066
KB893086
KB893803
Q147222
Q828026
Netcard queries test . . . . . . . : Passed
Per interface results:
Adapter : Local Area Connection
Netcard queries test . . . : Passed
Host Name. . . . . . . . . : dtt-bar-dc-01
IP Address . . . . . . . . : 10.169.116.10
Subnet Mask. . . . . . . . : 255.255.255.0
Default Gateway. . . . . . : 10.169.116.1
Primary WINS Server. . . . : 10.169.4.40
Dns Servers. . . . . . . . : 10.169.116.10
10.169.4.40
AutoConfiguration results. . . . . . : Passed
Default gateway test . . . : Passed
NetBT name test. . . . . . : Passed
WINS service test. . . . . : Passed
Global results:
Domain membership test . . . . . . : Passed
NetBT transports test. . . . . . . : Passed
List of NetBt transports currently configured:
NetBT_Tcpip_{DCFBA2D4-E2C1
1 NetBt transport currently configured.
Autonet address test . . . . . . . : Passed
IP loopback ping test. . . . . . . : Passed
Default gateway test . . . . . . . : Passed
NetBT name test. . . . . . . . . . : Passed
Winsock test . . . . . . . . . . . : Passed
DNS test . . . . . . . . . . . . . : Passed
PASS - All the DNS entries for DC are registered on DNS server '10.169.116.10' and other DCs also have some of the names registered.
[WARNING] The DNS entries for this DC cannot be verified right now on DNS server 10.169.4.40, ERROR_TIMEOUT.
Redir and Browser test . . . . . . : Passed
List of NetBt transports currently bound to the Redir
NetBT_Tcpip_{DCFBA2D4-E2C1
The redir is bound to 1 NetBt transport.
List of NetBt transports currently bound to the browser
NetBT_Tcpip_{DCFBA2D4-E2C1
The browser is bound to 1 NetBt transport.
DC discovery test. . . . . . . . . : Passed
DC list test . . . . . . . . . . . : Passed
Trust relationship test. . . . . . : Skipped
Kerberos test. . . . . . . . . . . : Passed
LDAP test. . . . . . . . . . . . . : Passed
[WARNING] Failed to query SPN registration on DC 'dtt-bar-dc-02.dttindia.lo
[WARNING] Failed to query SPN registration on DC 'DHS-BAR-DC-02.dttindia.lo
Bindings test. . . . . . . . . . . : Passed
WAN configuration test . . . . . . : Skipped
No active remote access connections.
Modem diagnostics test . . . . . . : Passed
IP Security test . . . . . . . . . : Passed
IPSec policy service is active, but no policy is assigned.
The command completed successfully
In Event Viewer I am getting Error 4000, 4001.
Can you please suggest me the solution.
Its really urgent for me
Thanks & regards,
Damal Raval
ASKER
Dear Exchange_Admin
Ofcourse its added...till now it was working perfectly all right and suddenly in the evening at around 6:00 it stopped working....n now only yahoo and msn chat works. and few sites like google opens nothing else. But if i give IP address it works but not with URL.
So any idea dear???
Ofcourse its added...till now it was working perfectly all right and suddenly in the evening at around 6:00 it stopped working....n now only yahoo and msn chat works. and few sites like google opens nothing else. But if i give IP address it works but not with URL.
So any idea dear???
ASKER
hello friends,
I m back with solution of my own question.
The alternate DNS name was creating problems for the preferred DNS server so i removed it from the DNS Config. and now the problem is solved.
Thanks for the support.
Best regards,
Damal Raval
I m back with solution of my own question.
The alternate DNS name was creating problems for the preferred DNS server so i removed it from the DNS Config. and now the problem is solved.
Thanks for the support.
Best regards,
Damal Raval
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Point the forwarder to your ISP's DNS servers.