troubleshooting Question

Event ID 5807 - NO_CLIENT_SITE errors on Win2003 Domain Controller

Avatar of WEG_IS
WEG_ISFlag for United States of America asked on
Windows Server 2003Active Directory
11 Comments1 Solution1592 ViewsLast Modified:
Hello,

We are getting the following error in the System log on one of our domain controllers about every 4 hours:

Event Type:      Warning
Event Source:      NETLOGON
Event Category:      None
Event ID:      5807
Date:            10/28/2009
Time:            1:15:44 AM
User:            N/A
Computer:      WEGDC2
Description:
During the past 4.24 hours there have been 33 connections to this Domain Controller from client machines whose IP addresses don't map to any of the existing sites in the enterprise. Those clients, therefore, have undefined sites and may connect to any Domain Controller including those that are in far distant locations from the clients. A client's site is determined by the mapping of its subnet to one of the existing sites. To move the above clients to one of the sites, please consider creating subnet object(s) covering the above IP addresses with mapping to one of the existing sites.  The names and IP addresses of the clients in question have been logged on this computer in the following log file '%SystemRoot%\debug\netlogon.log' and, potentially, in the log file '%SystemRoot%\debug\netlogon.bak' created if the former log becomes full. The log(s) may contain additional unrelated debugging information. To filter out the needed information, please search for lines which contain text 'NO_CLIENT_SITE:'. The first word after this string is the client name and the second word is the client IP address. The maximum size of the log(s) is controlled by the following registry DWORD value 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Netlogon\Parameters\LogFileMaxSize'; the default is 20000000 bytes.  The current maximum size is 20000000 bytes.  To set a different maximum size, create the above registry value and set the desired maximum size in bytes.

The client machines listed in the log file are from across all of our physical locations.  I have double checked ADS&S, and all subnets are defined and linked to a site.  Each site has a domain controller defined.

I've also looked at http://support.microsoft.com/default.aspx?scid=kb;en-us;889031, which recommends doing what we've already done (define sites and subnets in ADS&S).  Please help.  Thanks!  
 

ASKER CERTIFIED SOLUTION
WEG_IS

Our community of experts have been thoroughly vetted for their expertise and industry experience.

Join our community to see this answer!
Unlock 1 Answer and 11 Comments.
Start Free Trial
Learn from the best

Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.

Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 1 Answer and 11 Comments.
Try for 7 days

”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.

-Mike Kapnisakis, Warner Bros