Solved

When pinging my domain it is randomly picking remote domain controllers to ping to not my local domain controller

Posted on 2010-08-13
7
1,400 Views
Last Modified: 2012-05-10
I have around 24 domain controllers in our domain.  When I ping the domain it will ping any of the remote domain controllers not the local one.  If I do an ipconfig /flushdns and ping the domain again I will hit a different remote domain controller.  What could be causing the issue when pinging the domain it not pinging the local server?
0
Comment
Question by:ntccps
7 Comments
 
LVL 4

Expert Comment

by:ebooyens
ID: 33429767
Odd, what DNS server is the client set to?  I would start by making sure the local DHCP server is configured to set the preferred local DC as the primary DNS server
0
 
LVL 29

Expert Comment

by:Rich Weissler
ID: 33429795
Try this:  Open a command prompt, and start 'nslookup'
type in your full domain name, and hit return.  NSLookup should do a DNS query and return all the domain controllers for your top level domain.  It isn't site aware, and when you do a 'ping <domain>' -- DNS returns an entry in a round-robin (more or less random) way... you receive the IP address for a random server.
0
 
LVL 11

Expert Comment

by:MichaelVH
ID: 33429800
How is your DNS configured? (have you got an outprint from your ipconfig /all)?

Michael
0
Why You Should Analyze Threat Actor TTPs

After years of analyzing threat actor behavior, it’s become clear that at any given time there are specific tactics, techniques, and procedures (TTPs) that are particularly prevalent. By analyzing and understanding these TTPs, you can dramatically enhance your security program.

 
LVL 29

Expert Comment

by:Rich Weissler
ID: 33429837
If you want to see what domain controller your machine is really trying to authenticate to, run another command prompt, and run:
'nltest /dsgetdc:<domain>'

For more information on how domain controllers are found, look here: http://support.microsoft.com/kb/247811
In brief, the workstation makes a query looking for LDAP SRV entries, and queries all of them via LDAP.  THEN it tries to optimize to find the local one...

But just pinging the domain will return a random IP address for any server in a round-robin fashion.
0
 
LVL 29

Expert Comment

by:Rich Weissler
ID: 33429916
Oops... change that last line from:
"But just pinging the domain will return a random IP address for any server in a round-robin fashion."
to
"But just pinging the domain will return a random IP address for any DC in a round-robin fashion."
sorry
0
 

Author Comment

by:ntccps
ID: 33432034
OK so it should come back with a random sites IP?
I did the 'nltest /dsgetdc:<domain>' and it shows DC: as the local server.
0
 
LVL 29

Accepted Solution

by:
Rich Weissler earned 500 total points
ID: 33432209
Yes, ping only queries DNS for a single entry, so DNS perform a round-robin lookup against all the address possible.  All the possible addresses would be returned by nslookup <domain.name>.
0

Featured Post

How to run any project with ease

Manage projects of all sizes how you want. Great for personal to-do lists, project milestones, team priorities and launch plans.
- Combine task lists, docs, spreadsheets, and chat in one
- View and edit from mobile/offline
- Cut down on emails

Join & Write a Comment

On July 14th 2015, Windows Server 2003 will become End of Support, leaving hundreds of thousands of servers around the world that still run this 12 year old operating system vulnerable and potentially out of compliance in many organisations around t…
Restoring deleted objects in Active Directory has been a standard feature in Active Directory for many years, yet some admins may not know what is available.
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
This video shows how to remove a single email address from the Outlook 2010 Auto Suggestion memory. NOTE: For Outlook 2016 and 2013 perform the exact same steps. Open a new email: Click the New email button in Outlook. Start typing the address: …

760 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

19 Experts available now in Live!

Get 1:1 Help Now