Solved

dcdiag dns errors

Posted on 2009-04-08
7
2,917 Views
Last Modified: 2012-06-27
I recently upgraded my domain from 2k3 to 2k8 and my DC's are failing dcdiag /test:dns

I had no failures when I demoted the old domain controllers or errors when I brought them back up as 2k8's.  I had 5 DC's that were all named AD1-5 and I demoted them one at a time, reinstalled, and promoted back to DC's named AD1-5.  Attached is my dcdiag report.
Directory Server Diagnosis
 
 

Performing initial setup:
 

   Trying to find home server...
 

   Home Server = AD1
 

   * Identified AD Forest. 

   Done gathering initial info.
 
 

Doing initial required tests
 

   

   Testing server: SanDiego\AD1
 

      Starting test: Connectivity
 

         ......................... AD1 passed test Connectivity
 
 
 

Doing primary tests
 

   

   Testing server: SanDiego\AD1
 

   

      Starting test: DNS
 

         
 

         DNS Tests are running and not hung. Please wait a few minutes...
 

         ......................... AD1 passed test DNS
 

   

   Running partition tests on : DomainDnsZones
 

   

   Running partition tests on : ForestDnsZones
 

   

   Running partition tests on : Schema
 

   

   Running partition tests on : Configuration
 

   

   Running partition tests on : abacus-corp
 

   

   Running enterprise tests on : abacus-corp.com
 

      Starting test: DNS
 

         Test results for domain controllers:
 

            

            DC: AD1.abacus-corp.com
 

            Domain: abacus-corp.com
 

            
 

                  

               TEST: Authentication (Auth)

                  Error: Authentication failed with specified credentials

                  

               TEST: Basic (Basc)

                  Warning: The AAAA record for this DC was not found

                  

               TEST: Forwarders/Root hints (Forw)

                  Error: Root hints list has invalid root hint server:
 

                  a.root-servers.net. (2001:503:ba3e::2:30)
 

                  Error: Root hints list has invalid root hint server:
 

                  b.root-servers.net. (128.9.0.107)
 

                  Error: Root hints list has invalid root hint server:
 

                  f.root-servers.net. (2001:500:2f::f)
 

                  Error: Root hints list has invalid root hint server:
 

                  h.root-servers.net. (2001:500:1::803f:235)
 

                  Error: Root hints list has invalid root hint server:
 

                  l.root-servers.net. (198.32.64.12)
 

                  

               TEST: Records registration (RReg)

                  Network Adapter
 

                  [00000006] Broadcom NetXtreme Gigabit Ethernet:
 

                     Warning: 

                     Missing AAAA record at DNS server 216.55.150.241: 

                     AD1.abacus-corp.com

                     

                     Warning: 

                     Missing AAAA record at DNS server 216.55.150.241: 

                     gc._msdcs.abacus-corp.com

                     

                     Warning: 

                     Missing AAAA record at DNS server 216.55.150.242: 

                     AD1.abacus-corp.com

                     

                     Warning: 

                     Missing AAAA record at DNS server 216.55.150.242: 

                     gc._msdcs.abacus-corp.com

                     

               Warning: Record Registrations not found in some network adapters
 

         

         Summary of test results for DNS servers used by the above domain
 

         controllers:
 

         
 

            DNS server: 128.9.0.107 (b.root-servers.net.)
 

               1 test failure on this DNS server
 

               PTR record query for the 1.0.0.127.in-addr.arpa. failed on the DNS server 128.9.0.107               

            DNS server: 198.32.64.12 (l.root-servers.net.)
 

               1 test failure on this DNS server
 

               PTR record query for the 1.0.0.127.in-addr.arpa. failed on the DNS server 198.32.64.12               

            DNS server: 2001:500:1::803f:235 (h.root-servers.net.)
 

               1 test failure on this DNS server
 

               PTR record query for the 1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.ip6.arpa failed on the DNS server 2001:500:1::803f:235               

            DNS server: 2001:500:2f::f (f.root-servers.net.)
 

               1 test failure on this DNS server
 

               PTR record query for the 1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.ip6.arpa failed on the DNS server 2001:500:2f::f               

            DNS server: 2001:503:ba3e::2:30 (a.root-servers.net.)
 

               1 test failure on this DNS server
 

               PTR record query for the 1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.ip6.arpa failed on the DNS server 2001:503:ba3e::2:30               

         Summary of DNS test results:
 

         

                                            Auth Basc Forw Del  Dyn  RReg Ext

            _________________________________________________________________

            Domain: abacus-corp.com
 

               AD1                          FAIL WARN FAIL PASS PASS WARN n/a  

         

         ......................... abacus-corp.com failed test DNS

Open in new window

0
Comment
Question by:LrdKanien
  • 5
  • 2
7 Comments
 
LVL 49

Expert Comment

by:Akhater
ID: 24101334
what is the dns server of you DC ?

can you post ipconfig/all

it looks like you have configured the NIC of your dc with an external dns ip address
0
 

Author Comment

by:LrdKanien
ID: 24101348
Ethernet adapter Local Area Connection:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Broadcom NetXtreme Gigabit Ethernet
   Physical Address. . . . . . . . . : 00-E0-81-2E-C1-EE
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::38b4:d005:cfb9:fa4b%11(Preferred)
   IPv4 Address. . . . . . . . . . . : 216.55.150.241(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Default Gateway . . . . . . . . . : 216.55.150.1
   DNS Servers . . . . . . . . . . . : ::1
                                       127.0.0.1
                                       216.55.150.242
   NetBIOS over Tcpip. . . . . . . . : Disabled
0
 
LVL 49

Expert Comment

by:Akhater
ID: 24101398
do you have DNS installed on that specific DC ?

i guess that 216.55.150.242 is the ip of the second DC ?
0
How to run any project with ease

Manage projects of all sizes how you want. Great for personal to-do lists, project milestones, team priorities and launch plans.
- Combine task lists, docs, spreadsheets, and chat in one
- View and edit from mobile/offline
- Cut down on emails

 

Author Comment

by:LrdKanien
ID: 24101435
yes, and yes.
0
 

Author Comment

by:LrdKanien
ID: 24112271
How do I automatically generate the AAAA records for itself?  It is AD1.


Directory Server Diagnosis
 
 

Performing initial setup:
 

   Trying to find home server...
 

   Home Server = AD1
 

   * Identified AD Forest. 

   Done gathering initial info.
 
 

Doing initial required tests
 

   

   Testing server: SanDiego\AD1
 

      Starting test: Connectivity
 

         ......................... AD1 passed test Connectivity
 
 
 

Doing primary tests
 

   

   Testing server: SanDiego\AD1
 

   

      Starting test: DNS
 

         
 

         DNS Tests are running and not hung. Please wait a few minutes...
 

         ......................... AD1 passed test DNS
 

   

   Running partition tests on : DomainDnsZones
 

   

   Running partition tests on : ForestDnsZones
 

   

   Running partition tests on : Schema
 

   

   Running partition tests on : Configuration
 

   

   Running partition tests on : abacus-corp
 

   

   Running enterprise tests on : abacus-corp.com
 

      Starting test: DNS
 

         Test results for domain controllers:
 

            

            DC: AD1.abacus-corp.com
 

            Domain: abacus-corp.com
 

            
 

                  

               TEST: Basic (Basc)

                  Warning: The AAAA record for this DC was not found

                  

               TEST: Forwarders/Root hints (Forw)

                  Error: Root hints list has invalid root hint server:
 

                  a.root-servers.net. (2001:503:ba3e::2:30)
 

                  Error: Root hints list has invalid root hint server:
 

                  f.root-servers.net. (2001:500:2f::f)
 

                  Error: Root hints list has invalid root hint server:
 

                  h.root-servers.net. (2001:500:1::803f:235)
 

                  

               TEST: Records registration (RReg)

                  Network Adapter
 

                  [00000006] Broadcom NetXtreme Gigabit Ethernet:
 

                     Warning: 

                     Missing AAAA record at DNS server 216.55.150.241: 

                     AD1.abacus-corp.com

                     

                     Warning: 

                     Missing AAAA record at DNS server 216.55.150.241: 

                     gc._msdcs.abacus-corp.com

                     

                     Warning: 

                     Missing AAAA record at DNS server 216.55.150.242: 

                     AD1.abacus-corp.com

                     

                     Warning: 

                     Missing AAAA record at DNS server 216.55.150.242: 

                     gc._msdcs.abacus-corp.com

                     

                     Warning: 

                     Missing AAAA record at DNS server ::1: 

                     AD1.abacus-corp.com

                     

                     Warning: 

                     Missing AAAA record at DNS server ::1: 

                     gc._msdcs.abacus-corp.com

                     

               Warning: Record Registrations not found in some network adapters
 

         

         Summary of test results for DNS servers used by the above domain
 

         controllers:
 

         
 

            DNS server: 2001:500:1::803f:235 (h.root-servers.net.)
 

               1 test failure on this DNS server
 

               PTR record query for the 1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.ip6.arpa failed on the DNS server 2001:500:1::803f:235               

            DNS server: 2001:500:2f::f (f.root-servers.net.)
 

               1 test failure on this DNS server
 

               PTR record query for the 1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.ip6.arpa failed on the DNS server 2001:500:2f::f               

            DNS server: 2001:503:ba3e::2:30 (a.root-servers.net.)
 

               1 test failure on this DNS server
 

               PTR record query for the 1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.ip6.arpa failed on the DNS server 2001:503:ba3e::2:30               

         Summary of DNS test results:
 

         

                                            Auth Basc Forw Del  Dyn  RReg Ext

            _________________________________________________________________

            Domain: abacus-corp.com
 

               AD1                          PASS WARN FAIL PASS PASS WARN n/a  

         

         ......................... abacus-corp.com failed test DNS

Open in new window

0
 

Author Comment

by:LrdKanien
ID: 24112295
rather, since I'm not using IPv6, how do I get it so that it is disabled and DCDIAG doesn't report it as errors?
0
 

Accepted Solution

by:
LrdKanien earned 0 total points
ID: 24181636
my problem was that after I did the upgrade fro 2k3 to 2k8 I had to reconfigure my DNS forwarders on the server.  
0

Featured Post

Zoho SalesIQ

Hassle-free live chat software re-imagined for business growth. 2 users, always free.

Join & Write a Comment

The saying goes a bad carpenter blames his tools. In the Directory Services world a bad system administrator, well, even with the best tools they’re probably not going to become an all star.  However for the system admin who is willing to spend a li…
Installing a printer using group policy preferences is not that hard let’s take a look at it. First lets open up your group policy console and edit the policy you want to add it to. I recommend creating a new policy for each printer makes it a l…
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…

706 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

15 Experts available now in Live!

Get 1:1 Help Now