We help IT Professionals succeed at work.

Help DNS or Routing or Both?

rambo15
rambo15 asked
on
288 Views
Last Modified: 2010-03-19
Hello Experts:
I have inherited a Windows 2000 server that has lost DNS functionality for it's dhcp clients. According to the boss the Server and clients were working fine until the building power went out last week. I can browse the internet to my hearts content and do nslookups on outside internet addresses as long as I am on the server. However, I cannot do an nslookup on the internal addresses, unless I set the server via the nslookup command to the internal server address, then it works internally but not externally.  

Rebooting the clients and running the ipconfig command confirms that the DHCP server is working and assigning the IP's, default route and dns information from the Scope options. However, if I go to a client and try IE it fails with a DNS error. If I try an nslookup from the client it fails with can't find name server non-existent host/domain.
From a DHCP client I can ping 10.0.0.1(internal interface), but I cannot ping 192.168.1.100 (outside interface). Routing problem? Or is this just normal funtionality.

Here is the configuration data:
Server: Windows 2000 with TWO NICs.
NIC -1 -Intenal Interface:
IP Address:10.0.0.1
Netmask 255.0.0.0
Default Gateway: None
Preferred DNS Servers:65.106.1.196, 65.106.7.106, 10.0.0.1

NIC -2 -External  Interface:
IP Address:Assigned via DHCP from the ISP router. (usually 192.168.1.100, 101 etc)
Netmask:255.255.255.0 (assigned by router)
Default Gateway: 192.168.1.1 (assigned by router)
Preferred DNS Servers:65.106.1.196, 65.106.7.106 (assigned by router)
Scope information
DHCP Address Range: 10.0.0.3-10.0.0.254
router/default gateway:10.0.0.1
DNS:10.0.0.1

As best as I can tell the genius who set this up before me, set it up as a DNS root server with integrated AD.
I have read that because the system was setup as a DNS root server all I need to do is go in and DELETE the root (.) file folder and then setup DNS forwarding. My concern with this, is that once I delete the root (.) folder file I can't go back if things start going down hill (or can I?).

I have tried adding static routes between the two networks using the static route GUI and manually as follows: route add 192.168.1.0 10.0.0.1, route add 10.0.0.0 192.168.1.100
neither worked.

I called the ISP provider and asked them if they could provide me a static route on their router that points back to the 10.0.0.0 internal network. They laughed and said NO, that they also use the 10 address space and that would conflict with their networking.

I tried to configure NATon the internal ineterface, but it wants to use a 192.168.something addresses for NATing and DHCP. So I bagged that.

So, here I am at 3:00am trying to figure out what the heck to do and hoping one of you learned experts can help focus me on where the problem is.

V/R - Mark
Comment
Watch Question

This one is on us!
(Get your first solution completely free - no credit card required)
UNLOCK SOLUTION

Commented:
rambo15,

Before going any further, I would check if you have Internet Accelleration Server or Proxy running on the machine. If it doesn't start, or if the license expires, you can get this problem.

What do the individual workstations show as their IP configuration (IPCONFIG at the comand prompt)?

- Bob Gezelter (aka RLGSC)

Author

Commented:
I received several comments and my responses listed below:
Comment from manishmestry:
Check this lnk from MS
To configure DNS for Internet access in Windows Server 2003
http://support.microsoft.com/default.aspx?scid=kb;en-us;323380
Date: 02/17/2006 12:29AM PST

Response: Does this link to Windows 2003 server apply to a Windows 2000 server as well?

Comment from RLGSC
Date: 02/17/2006 02:04AM PST
Before going any further, I would check if you have Internet Accelleration Server or Proxy running on the machine. If it doesn't start, or if the license expires, you can get this problem.

Response: I will check this out but I am pretty sure that it was not running.

What do the individual workstations show as their IP configuration (IPCONFIG at the comand prompt)?

Response: As stated in the posting "Rebooting the clients and running the ipconfig command confirms that the DHCP server is working and assigning the IP's, default route and dns information from the Scope options. However, if I go to a client and try IE it fails with a DNS error. If I try an nslookup from the client it fails with can't find name server non-existent host/domain.
From a DHCP client I can ping 10.0.0.1(internal interface), but I cannot ping 192.168.1.100 (outside interface). Routing problem? Or is this just normal funtionality."

Commented:
What is installed on the server ?? any type of firewall/gateway software?  Is IP forwarding enabled?  IP forwarding must be enabled for traffic to cross from internal to external.

Author

Commented:
Rambo15
Comments from Mazaraat:

"What is installed on the server ?? any type of firewall/gateway software?"
Response: No Gateway or firewall software is installed.


 "Is IP forwarding enabled?  IP forwarding must be enabled for traffic to cross from internal to external."

Response: Good question, how do you enable it? I have looked for a way or direction, but did not find any clear instructions. Please if you could, provide some with your next response.

Author

Commented:
Rambo15 to Mazaraat: If you mean did I use the registry editor to:
to view and modify the following registry key:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters  
and Set the following registry value to one:
Value Name: IPEnableRouter
Value type: REG_DWORD
Value Data: 1
 
Yes, I did do this on Wednesday. No help.

Author

Commented:
Rambo15 - Final comments:
Well I just returned from the customers site and the fix was to romove the dot (.) root DNS folder. That was all I did. I did not have to setup forwarding or the dns hints file. The nagging question that remains is what caused their system to stop funtioning after the power went out last week?

I received some addition information about Trinsic the customer's ISP. It seems that they sold all their lines and internet accesses last week. So my theory is that when control got passed to the new owners they probably reset the routers and if their was a manually added route back to the customers private network it went away. Just a theory.

In any case thanks to all who responded.

V/R - Mark

Gain unlimited access to on-demand training courses with an Experts Exchange subscription.

Get Access
Why Experts Exchange?

Experts Exchange always has the answer, or at the least points me in the correct direction! It is like having another employee that is extremely experienced.

Jim Murphy
Programmer at Smart IT Solutions

When asked, what has been your best career decision?

Deciding to stick with EE.

Mohamed Asif
Technical Department Head

Being involved with EE helped me to grow personally and professionally.

Carl Webster
CTP, Sr Infrastructure Consultant
Empower Your Career
Did You Know?

We've partnered with two important charities to provide clean water and computer science education to those who need it most. READ MORE

Ask ANY Question

Connect with Certified Experts to gain insight and support on specific technology challenges including:

  • Troubleshooting
  • Research
  • Professional Opinions
Unlock the solution to this question.
Join our community and discover your potential

Experts Exchange is the only place where you can interact directly with leading experts in the technology field. Become a member today and access the collective knowledge of thousands of technology experts.

*This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

OR

Please enter a first name

Please enter a last name

8+ characters (letters, numbers, and a symbol)

By clicking, you agree to the Terms of Use and Privacy Policy.