Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 3290
  • Last Modified:

dcdiag dns errors

I recently upgraded my domain from 2k3 to 2k8 and my DC's are failing dcdiag /test:dns

I had no failures when I demoted the old domain controllers or errors when I brought them back up as 2k8's.  I had 5 DC's that were all named AD1-5 and I demoted them one at a time, reinstalled, and promoted back to DC's named AD1-5.  Attached is my dcdiag report.
Directory Server Diagnosis
 
 
Performing initial setup:
 
   Trying to find home server...
 
   Home Server = AD1
 
   * Identified AD Forest. 
   Done gathering initial info.
 
 
Doing initial required tests
 
   
   Testing server: SanDiego\AD1
 
      Starting test: Connectivity
 
         ......................... AD1 passed test Connectivity
 
 
 
Doing primary tests
 
   
   Testing server: SanDiego\AD1
 
   
      Starting test: DNS
 
         
 
         DNS Tests are running and not hung. Please wait a few minutes...
 
         ......................... AD1 passed test DNS
 
   
   Running partition tests on : DomainDnsZones
 
   
   Running partition tests on : ForestDnsZones
 
   
   Running partition tests on : Schema
 
   
   Running partition tests on : Configuration
 
   
   Running partition tests on : abacus-corp
 
   
   Running enterprise tests on : abacus-corp.com
 
      Starting test: DNS
 
         Test results for domain controllers:
 
            
            DC: AD1.abacus-corp.com
 
            Domain: abacus-corp.com
 
            
 
                  
               TEST: Authentication (Auth)
                  Error: Authentication failed with specified credentials
                  
               TEST: Basic (Basc)
                  Warning: The AAAA record for this DC was not found
                  
               TEST: Forwarders/Root hints (Forw)
                  Error: Root hints list has invalid root hint server:
 
                  a.root-servers.net. (2001:503:ba3e::2:30)
 
                  Error: Root hints list has invalid root hint server:
 
                  b.root-servers.net. (128.9.0.107)
 
                  Error: Root hints list has invalid root hint server:
 
                  f.root-servers.net. (2001:500:2f::f)
 
                  Error: Root hints list has invalid root hint server:
 
                  h.root-servers.net. (2001:500:1::803f:235)
 
                  Error: Root hints list has invalid root hint server:
 
                  l.root-servers.net. (198.32.64.12)
 
                  
               TEST: Records registration (RReg)
                  Network Adapter
 
                  [00000006] Broadcom NetXtreme Gigabit Ethernet:
 
                     Warning: 
                     Missing AAAA record at DNS server 216.55.150.241: 
                     AD1.abacus-corp.com
                     
                     Warning: 
                     Missing AAAA record at DNS server 216.55.150.241: 
                     gc._msdcs.abacus-corp.com
                     
                     Warning: 
                     Missing AAAA record at DNS server 216.55.150.242: 
                     AD1.abacus-corp.com
                     
                     Warning: 
                     Missing AAAA record at DNS server 216.55.150.242: 
                     gc._msdcs.abacus-corp.com
                     
               Warning: Record Registrations not found in some network adapters
 
         
         Summary of test results for DNS servers used by the above domain
 
         controllers:
 
         
 
            DNS server: 128.9.0.107 (b.root-servers.net.)
 
               1 test failure on this DNS server
 
               PTR record query for the 1.0.0.127.in-addr.arpa. failed on the DNS server 128.9.0.107               
            DNS server: 198.32.64.12 (l.root-servers.net.)
 
               1 test failure on this DNS server
 
               PTR record query for the 1.0.0.127.in-addr.arpa. failed on the DNS server 198.32.64.12               
            DNS server: 2001:500:1::803f:235 (h.root-servers.net.)
 
               1 test failure on this DNS server
 
               PTR record query for the 1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.ip6.arpa failed on the DNS server 2001:500:1::803f:235               
            DNS server: 2001:500:2f::f (f.root-servers.net.)
 
               1 test failure on this DNS server
 
               PTR record query for the 1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.ip6.arpa failed on the DNS server 2001:500:2f::f               
            DNS server: 2001:503:ba3e::2:30 (a.root-servers.net.)
 
               1 test failure on this DNS server
 
               PTR record query for the 1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.ip6.arpa failed on the DNS server 2001:503:ba3e::2:30               
         Summary of DNS test results:
 
         
                                            Auth Basc Forw Del  Dyn  RReg Ext
            _________________________________________________________________
            Domain: abacus-corp.com
 
               AD1                          FAIL WARN FAIL PASS PASS WARN n/a  
         
         ......................... abacus-corp.com failed test DNS

Open in new window

0
LrdKanien
Asked:
LrdKanien
  • 5
  • 2
1 Solution
 
AkhaterCommented:
what is the dns server of you DC ?

can you post ipconfig/all

it looks like you have configured the NIC of your dc with an external dns ip address
0
 
LrdKanienAuthor Commented:
Ethernet adapter Local Area Connection:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Broadcom NetXtreme Gigabit Ethernet
   Physical Address. . . . . . . . . : 00-E0-81-2E-C1-EE
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::38b4:d005:cfb9:fa4b%11(Preferred)
   IPv4 Address. . . . . . . . . . . : 216.55.150.241(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Default Gateway . . . . . . . . . : 216.55.150.1
   DNS Servers . . . . . . . . . . . : ::1
                                       127.0.0.1
                                       216.55.150.242
   NetBIOS over Tcpip. . . . . . . . : Disabled
0
 
AkhaterCommented:
do you have DNS installed on that specific DC ?

i guess that 216.55.150.242 is the ip of the second DC ?
0
VIDEO: THE CONCERTO CLOUD FOR HEALTHCARE

Modern healthcare requires a modern cloud. View this brief video to understand how the Concerto Cloud for Healthcare can help your organization.

 
LrdKanienAuthor Commented:
yes, and yes.
0
 
LrdKanienAuthor Commented:
How do I automatically generate the AAAA records for itself?  It is AD1.

Directory Server Diagnosis
 
 
Performing initial setup:
 
   Trying to find home server...
 
   Home Server = AD1
 
   * Identified AD Forest. 
   Done gathering initial info.
 
 
Doing initial required tests
 
   
   Testing server: SanDiego\AD1
 
      Starting test: Connectivity
 
         ......................... AD1 passed test Connectivity
 
 
 
Doing primary tests
 
   
   Testing server: SanDiego\AD1
 
   
      Starting test: DNS
 
         
 
         DNS Tests are running and not hung. Please wait a few minutes...
 
         ......................... AD1 passed test DNS
 
   
   Running partition tests on : DomainDnsZones
 
   
   Running partition tests on : ForestDnsZones
 
   
   Running partition tests on : Schema
 
   
   Running partition tests on : Configuration
 
   
   Running partition tests on : abacus-corp
 
   
   Running enterprise tests on : abacus-corp.com
 
      Starting test: DNS
 
         Test results for domain controllers:
 
            
            DC: AD1.abacus-corp.com
 
            Domain: abacus-corp.com
 
            
 
                  
               TEST: Basic (Basc)
                  Warning: The AAAA record for this DC was not found
                  
               TEST: Forwarders/Root hints (Forw)
                  Error: Root hints list has invalid root hint server:
 
                  a.root-servers.net. (2001:503:ba3e::2:30)
 
                  Error: Root hints list has invalid root hint server:
 
                  f.root-servers.net. (2001:500:2f::f)
 
                  Error: Root hints list has invalid root hint server:
 
                  h.root-servers.net. (2001:500:1::803f:235)
 
                  
               TEST: Records registration (RReg)
                  Network Adapter
 
                  [00000006] Broadcom NetXtreme Gigabit Ethernet:
 
                     Warning: 
                     Missing AAAA record at DNS server 216.55.150.241: 
                     AD1.abacus-corp.com
                     
                     Warning: 
                     Missing AAAA record at DNS server 216.55.150.241: 
                     gc._msdcs.abacus-corp.com
                     
                     Warning: 
                     Missing AAAA record at DNS server 216.55.150.242: 
                     AD1.abacus-corp.com
                     
                     Warning: 
                     Missing AAAA record at DNS server 216.55.150.242: 
                     gc._msdcs.abacus-corp.com
                     
                     Warning: 
                     Missing AAAA record at DNS server ::1: 
                     AD1.abacus-corp.com
                     
                     Warning: 
                     Missing AAAA record at DNS server ::1: 
                     gc._msdcs.abacus-corp.com
                     
               Warning: Record Registrations not found in some network adapters
 
         
         Summary of test results for DNS servers used by the above domain
 
         controllers:
 
         
 
            DNS server: 2001:500:1::803f:235 (h.root-servers.net.)
 
               1 test failure on this DNS server
 
               PTR record query for the 1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.ip6.arpa failed on the DNS server 2001:500:1::803f:235               
            DNS server: 2001:500:2f::f (f.root-servers.net.)
 
               1 test failure on this DNS server
 
               PTR record query for the 1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.ip6.arpa failed on the DNS server 2001:500:2f::f               
            DNS server: 2001:503:ba3e::2:30 (a.root-servers.net.)
 
               1 test failure on this DNS server
 
               PTR record query for the 1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.ip6.arpa failed on the DNS server 2001:503:ba3e::2:30               
         Summary of DNS test results:
 
         
                                            Auth Basc Forw Del  Dyn  RReg Ext
            _________________________________________________________________
            Domain: abacus-corp.com
 
               AD1                          PASS WARN FAIL PASS PASS WARN n/a  
         
         ......................... abacus-corp.com failed test DNS

Open in new window

0
 
LrdKanienAuthor Commented:
rather, since I'm not using IPv6, how do I get it so that it is disabled and DCDIAG doesn't report it as errors?
0
 
LrdKanienAuthor Commented:
my problem was that after I did the upgrade fro 2k3 to 2k8 I had to reconfigure my DNS forwarders on the server.  
0

Featured Post

Concerto Cloud for Software Providers & ISVs

Can Concerto Cloud Services help you focus on evolving your application offerings, while delivering the best cloud experience to your customers? From DevOps to revenue models and customer support, the answer is yes!

Learn how Concerto can help you.

  • 5
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now