• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 256
  • Last Modified:

Clients unable to resolve (a) website

I have 4 client computers on my SBS Network and NONE of them can resolve a particular website. HOWEVER, if i use IE from the server, and can get to the website that i can't display from ANY of the workstations. Any ideas? I have flushed the DNS, changed the forwarder to OpenDNS and still have the same issues as before. It's got to be something "local" with my setup.
0
bbrainis
Asked:
bbrainis
  • 10
  • 8
1 Solution
 
Jeffrey Kane - TechSoEasyPrincipal ConsultantCommented:
This is most often caused by inconsistent or incorrect MTU settings.  Router's generally default to 1500.  So, you might try dropping the MTU to 1452 and see if that solves the problem.  On the router that's fairly simple.  To change it on the server you should use DrTCP found here:  http://www.dslreports.com/drtcp

More info about MTU is here:  http://www.jsifaq.com/SF/Tips/Tip.aspx?id=9683

Jeff
TechSoEasy
0
 
bbrainisAuthor Commented:
Hi Jeff,

I went into the router and changed it to 1452, and rebooted. Changed on Server and Workstations using Dr TCP changing only the MTU and have the same problem. Works great from server, but clients won't resolve.
0
 
Jeffrey Kane - TechSoEasyPrincipal ConsultantCommented:
Okay, please post a COMPLETE ipconfig /all from both the server and a sample workstation.

Also please advise what URL will not resolve.

Jeff
TechSoEasy
0
SMB Security Just Got a Layer Stronger

WatchGuard acquires Percipient Networks to extend protection to the DNS layer, further increasing the value of Total Security Suite.  Learn more about what this means for you and how you can improve your security with WatchGuard today!

 
bbrainisAuthor Commented:
Jeff, here's the server and workstation, i edited the domainname.local  to name.local for privacy.
IE @ the server can reach christianbook.com, but workstations are unable.


Host Name . . . . . . . . . . . . : SERVER
   Primary Dns Suffix  . . . . . . . : name.local
   Node Type . . . . . . . . . . . . : Unknown
   IP Routing Enabled. . . . . . . . : Yes
   WINS Proxy Enabled. . . . . . . . : Yes
   DNS Suffix Search List. . . . . . : name.local

Ethernet adapter Server Local Area Connection:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Broadcom NetXtreme Gigabit Ethernet #2
   Physical Address. . . . . . . . . : 00-1A-A0-2B-28-CD
   DHCP Enabled. . . . . . . . . . . : No
   IP Address. . . . . . . . . . . . : 192.168.2.1
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Default Gateway . . . . . . . . . :
   DNS Servers . . . . . . . . . . . : 192.168.2.1
   Primary WINS Server . . . . . . . : 192.168.2.1

Ethernet adapter Network Connection:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Broadcom NetXtreme Gigabit Ethernet
   Physical Address. . . . . . . . . : 00-10-18-2E-91-CF
   DHCP Enabled. . . . . . . . . . . : No
   IP Address. . . . . . . . . . . . : 192.168.1.201
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Default Gateway . . . . . . . . . : 192.168.1.254
   DNS Servers . . . . . . . . . . . : 192.168.2.1
   Primary WINS Server . . . . . . . : 192.168.1.201


Workstation:
Windows IP Configuration

        Host Name . . . . . . . . . . . . : paula
        Primary Dns Suffix  . . . . . . . : name.local
        Node Type . . . . . . . . . . . . : Hybrid
        IP Routing Enabled. . . . . . . . : No
        WINS Proxy Enabled. . . . . . . . : No
        DNS Suffix Search List. . . . . . : name.local
                                            name.local

Ethernet adapter Local Area Connection:

        Connection-specific DNS Suffix  . : name.local
        Description . . . . . . . . . . . : NVIDIA nForce Networking Controller
        Physical Address. . . . . . . . . : 00-40-CA-87-F3-55
        Dhcp Enabled. . . . . . . . . . . : Yes
        Autoconfiguration Enabled . . . . : Yes
        IP Address. . . . . . . . . . . . : 192.168.2.11
        Subnet Mask . . . . . . . . . . . : 255.0.0.0
        Default Gateway . . . . . . . . . : 192.168.2.1
        DHCP Server . . . . . . . . . . . : 192.168.2.1
        DNS Servers . . . . . . . . . . . : 192.168.2.1
        Primary WINS Server . . . . . . . : 192.168.2.1
        Lease Obtained. . . . . . . . . . : Sunday, December 02, 2007 3:37:05 PM

        Lease Expires . . . . . . . . . . : Monday, December 10, 2007 3:37:05 PM

 
0
 
Jeffrey Kane - TechSoEasyPrincipal ConsultantCommented:
You need to make two changes to your EXTERNAL NIC which should resolve your problem.

Remove the WINS Server IP Address, leaving it blank, and set NetBIOS over TCP/IP to DISABLED.

Then, rerun the Configure Email and Internet Connection Wizard (CEICW -- which is linked as Connect to the Internet in the Server Management Console > Internet and Email) to set everything where it needs to be set.

A visual how-to is here:  http://sbsurl.com/ceicw

Jeff
TechSoEasy
0
 
bbrainisAuthor Commented:
OK. I didn't know.I'm new
0
 
Jeffrey Kane - TechSoEasyPrincipal ConsultantCommented:
No worries... did that fix the problem?

Jeff
TechSoEasy
0
 
bbrainisAuthor Commented:
No sir, it brought me to OpenDNS, might DNS provider.    Won't go that website from workstation
0
 
Jeffrey Kane - TechSoEasyPrincipal ConsultantCommented:
What do you mean your DNS provider? and what do you mean that it brought you to OpenDNS?  

When you are entering http://christianbook.com in IE from a workstation, what are the EXACT results given?

Also, if you open a CMD prompt on a workstation and enter:  NSLOOKUP christianbook.com  
What is the result?  (Please post it here).

OpenDNS is only for providing DNS services for your Public, INTERNET Domain name (ie domainname.com), not your INTERNAL Active Directory domainname.local.  

When you run the CEICW, you need to be putting your Internet Access Provider's DNS Server IP Addresses for the Forwarders.  Don't use OpenDNS's DNS Servers for this.

Did you configure any DNS Zones manually in your DNS Server settings on the SBS?

Jeff
TechSoEasy

0
 
bbrainisAuthor Commented:
1. OpenDNS.COM is the DNS Server that I changed to today, Bellsouth DNS is poor.
2.Internet Explorer cannot display the webpage
   
   Most likely causes:
You are not connected to the Internet.
The website is encountering problems.
There might be a typing error in the address.
 
   What you can try:
     Check your Internet connection. Try visiting another website to make sure you are connected.  
 
     Retype the address.  
 
     Go back to the previous page.
 
     More information

This problem can be caused by a variety of issues, including:

Internet connectivity has been lost.
The website is temporarily unavailable.
The Domain Name Server (DNS) is not reachable.
The Domain Name Server (DNS) does not have a listing for the website's domain.
If this is an HTTPS (secure) address, click tools, click Internet Options, click Advanced, and check to be sure the SSL and TLS protocols are enabled under the security section.

For offline users

You can still view subscribed feeds and some recently viewed webpages.
To view subscribed feeds

Click the Favorites Center button , click Feeds, and then click the feed you want to view.

To view recently visited webpages (might not work on all pages)

Click Tools , and then click Work Offline.
Click the Favorites Center button , click History, and then click the page you want to view.

 
3.NS LOOKUP
C:\Documents and Settings\administrator>nslookup christianbook.com
*** Can't find server name for address 192.168.2.1: Non-existent domain
*** Default servers are not available
Server:  UnKnown
Address:  192.168.2.1

Non-authoritative answer:
Name:    christianbook.com
Address:  192.216.76.50

4. Yes, I am aware that OpenDNS is only for public domain.
5. I will change the DNS back to Bellsouth
6. When I first got the SBS, I had DNS and DHCP problems, and Microsoft came thru the Internet and did it.



 
0
 
Jeffrey Kane - TechSoEasyPrincipal ConsultantCommented:
I don't know why I didn't see this right away from your IPCONFIG of the workstation, but for some reason it's subnet mask is 255.0.0.0.

Since christianbook.com's IP address starts with 192. the same as the workstation's, it cannot resolve the address because the subnet mask is telling it to only look at the first octet in the address.

If you went to http://192.216.76.50 on one of the workstations it would go to the site just fine.

So... it looks as though your initial DNS and DHCP problems weren't truly resolved.  The fact that you say BellSouth's DNS is poor indicates that you have a conflict somewhere because their DNS really isn't poor.

Since you are getting a subnet mask of 255.0.0.0, that indicates that something else is sending out DHCP assignments, or at least thinks it is.

Please review this question and it's overview of what to look for: http:Q_21058374.html

Be sure to at least reinstall TCP/IP on the workstations, which can actually be done by following this KB:
http://support.microsoft.com/kb/299357 instead of what's described in that question.

Jeff
TechSoEasy
0
 
bbrainisAuthor Commented:
Thank you, I will investigate. Since I can get to it just fine from the Server, and dhcp is turned off in the router, how can all of the pc's be setup incorrectly. in other words, do you think it's still a problem on the network, or just the remains of a bad install when i first got started?
Appreciate the help, at least this gets me going in the right direction.
0
 
bbrainisAuthor Commented:
JEFF, WAS NICE AND WAS WILLING TO SEE THE PROBLEM THRU.
0
 
Jeffrey Kane - TechSoEasyPrincipal ConsultantCommented:
If doing a ipconfig /release and ipconfig /renew on a workstation gives you the correct subnet mask (255.255.255.0) and it stays that way, then everything should be fine.  But if the 255.0.0.0 returns, you have something wrong somewhere.  The question I linked above has a lot of places that you can check for this.

Jeff
TechSoEasy
0
 
bbrainisAuthor Commented:
OK.
0
 
bbrainisAuthor Commented:
Jeff,

I think I came across the problem, but need some help. When Microsoft connected to my server, they setup/fixed the DNS/DHCP and I went into DHCP and the Scope says 192.0.0.0, right click properties, and bingo subnet is 255.0.0.0 instead of 255.255.255.0

What is the correct way to fix this?
0
 
Jeffrey Kane - TechSoEasyPrincipal ConsultantCommented:
I would just delete the scope and recreate it.  You'll find instructions at the bottom of http://sbsurl.com/dhcp (titled, "Moving the DHCP Server Service to the Computer Running Windows Small Business Server 2003") which are a bit more than you need, but just start from step 7.

Jeff
TechSoEasy
0
 
bbrainisAuthor Commented:
Cool!
0

Featured Post

Evaluating UTMs? Here's what you need to know!

Evaluating a UTM appliance and vendor can prove to be an overwhelming exercise.  How can you make sure that you're getting the security that your organization needs without breaking the bank? Check out our UTM Buyer's Guide for more information on what you should be looking for!

  • 10
  • 8
Tackle projects and never again get stuck behind a technical roadblock.
Join Now