Solved

NetDiag DNS Test : 2 DCs

Posted on 2009-05-20
1
742 Views
Last Modified: 2012-05-07
Added a 2nd DC (windows server 2003) to a domain with the first DC being SBS 2003.
Ran NetDiag on each.
The new DC is clean as a whistle.
The original DC (SBS 2003) has these issues:
     DNS Test . . . . . passed
     PASS - all the DNS enteries for DC are registered on the DNS server '192.xx (original DC) and other DCs also have some of the names registered.
     [WARNING] The DNS entries for this DC cannot be verified right now on DNS server 192.xx (new DC), ERROR_TIMEOUT

     LDAP test . . . . passed
     [FATAL] Cannot open an LDAP session to 'remus (new DC) at 192.xx
     [WARNING] Failed to query SPN registration on DC 'remus. (new DC)

Note: I don't get these messages when running this test on the new DC.

AD replicates ok, after verifying this each DC has its own IP as pref. DNS and each other as second DNS.

Other points to note:
1) ReplMon: FAILURE: 1753 There are no more end points available from the endpoint mapper.
2) GPOTool: ERROR: Version mismatch on Argus (original DC), DS=13, SysVol=11
3) Users are having no issues
4) New DC was DCPromoed last week.
5) Things I've done since:   "dnscmd /clearcache", "ipconfig /flushdns and /registerdns", renamed netlogon.dns and netlogon.db, net stopped and started netlogo, recrated netlogon files, ran "netdiag /fix", and rebooted both servers.
checked replication.

I've researched this to death.  How can I clean up my NetDiag test? Why I'm I getting "passed" on the LDAP test followed by "Fatal" and "Warning"?    

appreciate any thoughts.
0
Comment
Question by:ShawnGray
1 Comment
 

Accepted Solution

by:
ShawnGray earned 0 total points
ID: 24434438
This appears to be a Firewall issue.
I disabled the firewall on the new DC and reran NetDiag on the original DC.
It was clean.  I suppose the question now is what settings should be allowed so I can run the firewall?
0

Featured Post

Ransomware-A Revenue Bonanza for Service Providers

Ransomware – malware that gets on your customers’ computers, encrypts their data, and extorts a hefty ransom for the decryption keys – is a surging new threat.  The purpose of this eBook is to educate the reader about ransomware attacks.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Scenerio: You have a server running Server 2003 and have applied a retail pack of Terminal Server Licenses.  You want to change servers or your server has crashed and you need to reapply the Terminal Server Licenses. When you enter the 16-digit lic…
I've always wanted to allow a user to have a printer no matter where they login. The steps below will show you how to achieve just that. In this Article I'll show how to deploy printers automatically with group policy and then using security fil…
This video shows how to use Hyena, from SystemTools Software, to bulk import 100 user accounts from an external text file. View in 1080p for best video quality.

820 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question