We help IT Professionals succeed at work.

Check out our new AWS podcast with Certified Expert, Phil Phillips! Listen to "How to Execute a Seamless AWS Migration" on EE or on your favorite podcast platform. Listen Now

x

DNS Server Error

Medium Priority
606 Views
Last Modified: 2012-05-11
Hello,

i am having 2 DC (one 2003 R2 and other 2008 Domain Controllers) in my network,

My both DC are working fine but wehe ever i shutdown secondry DC and reasart my primary DC i am getting eror on DNS server, that include 6702, 4015, 4004 (Source DNS).
for your reference pelase find below error
-------------------------------------------------------------------
Event ID 6702

DNS server has updated its own host (A) records.  In order to ensure that its DS-integrated peer DNS servers are able to replicate with this server, an attempt was made to update them with the new records through dynamic update.  An error was encountered during this update, the record data is the error code.
 
If this DNS server does not have any DS-integrated peers, then this error
should be ignored.
 
If this DNS server's Active Directory replication partners do not have the correct IP address(es) for this server, they will be unable to replicate with it.
 
To ensure proper replication:
1) Find this server's Active Directory replication partners that run the DNS server.
2) Open DnsManager and connect in turn to each of the replication partners.
3) On each server, check the host (A record) registration for THIS server.
4) Delete any A records that do NOT correspond to IP addresses of this server.
5) If there are no A records for this server, add at least one A record corresponding to an address on this server, that the replication partner can contact.  (In other words, if there multiple IP addresses for this DNS server, add at least one that is on the same network as the Active Directory DNS server you are updating.)
6) Note, that is not necessary to update EVERY replication partner.  It is only necessary that the records are fixed up on enough replication partners so that every server that replicates with this server will receive (through replication) the new data.
------------------------------------------------------------------------
Event ID 4015

The DNS server has encountered a critical error from the Active Directory. Check that the Active Directory is functioning properly. The extended error debug information (which may be empty) is "". The event data contains the error.
------------------------------------------------------------------------
Event ID 4004

The DNS server was unable to complete directory service enumeration of zone ..  This DNS server is configured to use information obtained from Active Directory for this zone and is unable to load the zone without it.  Check that the Active Directory is functioning properly and repeat enumeration of the zone. The extended error debug information (which may be empty) is "". The event data contains the error.
--------------------------------------------------------------------------------------------------

for troubleshooting purpose i run Dcdiage, please find attach outputs

NOTE : DNS forwarding is not enable.
Dns-test.txt
Comment
Watch Question

Commented:
If I understood right, you are shutting down another dns server and restarting another one? I think these error messages are quite normal when another dns server is not available for replication.

Author

Commented:
Thank you for your reply.

1) before i was not getting this error message.
2) now if secondry dc is not abaible primary takes long time to boot.

Author

Commented:
a part from above, before i was not getting any error while running Dcdiage, but now when ever i run i got this error
-----------------
Running enterprise tests on : TEST.local
      Starting test: DNS
         Test results for domain controllers:

            DC: TESTdc-01.TEST.local
            Domain: TEST.local


               TEST: Forwarders/Root hints (Forw)
                  Error: Root hints list has invalid root hint server: b.root-se
rvers.net. (128.9.0.107)
                  Error: Root hints list has invalid root hint server: l.root-se
rvers.net. (198.32.64.12)

         Summary of test results for DNS servers used by the above domain contro
llers:

            DNS server: 198.32.64.12 (l.root-servers.net.)
               1 test failure on this DNS server
               This is not a valid DNS server. PTR record query for the 1.0.0.12
7.in-addr.arpa. failed on the DNS server 198.32.64.12

            DNS server: 128.9.0.107 (b.root-servers.net.)
               1 test failure on this DNS server
               This is not a valid DNS server. PTR record query for the 1.0.0.12
7.in-addr.arpa. failed on the DNS server 128.9.0.107

         ......................... TEST.local passed test DNS
-----------------------------------------------------------
for deatil please check previously atatched file.
Chris DentPowerShell Developer
CERTIFIED EXPERT
Top Expert 2010
Commented:
Unlock this solution with a free trial preview.
(No credit card required)
Get Preview

Author

Commented:
Dear Chris,

thank you for your post, infact i was trying to reach you, as i came to know you are one of the enst DNS expert here. thank you for your post.

my DC is booting very slow, booting time is approximatly 15-20min. at the same time in absence of secondry DC i got error mesage that domain doest not exisit, while logon to any serevr including Primary DC but if i remove my primary DC cables and start Secondry DC and connect primary dc cables back everything works fine.



 
Most Valuable Expert 2011
Commented:
Unlock this solution with a free trial preview.
(No credit card required)
Get Preview
Chris DentPowerShell Developer
CERTIFIED EXPERT
Top Expert 2010
Commented:
Unlock this solution with a free trial preview.
(No credit card required)
Get Preview
Most Valuable Expert 2011

Commented:
Chris,...didn't we used to be in some of the Usenet Groups (Public News Groups) together?  I've been doing this about 11-12 years and your name seems really familiar?   Were/Are you and MVP?  Maybe we met at one of the MVP Summits?
Chris DentPowerShell Developer
CERTIFIED EXPERT
Top Expert 2010

Commented:
Quite possibly the MS news groups, I hung around in the DNS / AD type areas there before I started getting busy :)

I did have an MVP back in 2007, but unfortunately I never made it to the summit.

Cheers,

Chris
Most Valuable Expert 2011

Commented:
I was in the DNS/AD groups too with another guy you might know,...Ace Fekay.  I haven't been in them since MS dropped their NNTP Servers
Unlock the solution to this question.
Thanks for using Experts Exchange.

Please provide your email to receive a free trial preview!

*This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

OR

Please enter a first name

Please enter a last name

8+ characters (letters, numbers, and a symbol)

By clicking, you agree to the Terms of Use and Privacy Policy.