nicolausj
asked on
DNS issue Server 2008 Dell box
I though everything was running perfectly then my DNS seemed to just stop on my now i'm getting errors on the best practice analyzer.
Error 1 : The network adapter Local Area Connection does not list the loopback IP address as a DNS server, or it is configured as the first entry.
The server ip address is the primary dns on it's nic, so I'm not sure why this one is appearing.
Error 2 : DNS: Zone _msdcs.spl.local is an Active Directory integrated DNS Zone and must be available.
I though this would have transferred when I moved all of the FSMO Roles
I still have my old 2003 server DC still running on the network....
Error 1 : The network adapter Local Area Connection does not list the loopback IP address as a DNS server, or it is configured as the first entry.
The server ip address is the primary dns on it's nic, so I'm not sure why this one is appearing.
Error 2 : DNS: Zone _msdcs.spl.local is an Active Directory integrated DNS Zone and must be available.
I though this would have transferred when I moved all of the FSMO Roles
I still have my old 2003 server DC still running on the network....
Last Comment
ShareefHuddle
Use 127.0.0.1 as your primary DNS on your NIC
ASKER
Alright.... i did that... now i get the following error, and a whole bunch more
Title:
DNS: The DNS server 172.0.0.1 on Local Area Connection must resolve names in the primary DNS domain zone
Severity:
Error
Date:
17/05/2011 2:46:22 PM
Category:
Configuration
Issue:
The DNS server 172.0.0.1 on Local Area Connection did not successfully resolve the name for the start of authority (SOA) record of the zone hosting the computer's primary DNS domain name.
Impact:
Active Directory Domain Services (AD DS) operations that depend on locating domain controllers will fail.
Resolution:
Click Start, click Network, click Network and Sharing Center, and then click Change adapter settings to remove or replace all invalid or unresponsive DNS servers.
More information about this best practice and detailed resolution procedures: http://go.microsoft.com/fwlink/?LinkId=121973
127.0.0.1 not 172.0.0.1
ASKER
... still a no go.
ASKER
The network adapter Local Area Connection does not list the loopback IP address as a DNS server, or it is configured as the first entry.
Having the IP of the server as its primary DNS is what it's asking for.... I might need a reboot?
Having the IP of the server as its primary DNS is what it's asking for.... I might need a reboot?
Look in your DNS console check to see if you have a msdcs.domain.com zone and\or you msdcs folder is grayed out under your domain.com zone.
The loopback address message can be ignored you do NOT want to have loopback address here at all.
The loopback address message can be ignored you do NOT want to have loopback address here at all.
ASKER
The msdcs folder is not greyed out
Take a screenshot and post results.
Run dcdiag /fix post results
Run dcdiag /fix post results
ASKER
I'll post the results this afternoon...
ASKER
Here it is..
Microsoft Windows [Version 6.1.7601]
Copyright (c) 2009 Microsoft Corporation. All rights reserved.
C:\Users\Administrator.SPL
Directory Server Diagnosis
Performing initial setup:
Trying to find home server...
Home Server = SPL-DC
* Identified AD Forest.
Done gathering initial info.
Doing initial required tests
Testing server: Default-First-Site-Name\SP
Starting test: Connectivity
......................... SPL-DC passed test Connectivity
Doing primary tests
Testing server: Default-First-Site-Name\SP
Starting test: Advertising
......................... SPL-DC passed test Advertising
Starting test: FrsEvent
......................... SPL-DC passed test FrsEvent
Starting test: DFSREvent
......................... SPL-DC passed test DFSREvent
Starting test: SysVolCheck
......................... SPL-DC passed test SysVolCheck
Starting test: KccEvent
......................... SPL-DC passed test KccEvent
Starting test: KnowsOfRoleHolders
......................... SPL-DC passed test KnowsOfRoleHolders
Starting test: MachineAccount
......................... SPL-DC passed test MachineAccount
Starting test: NCSecDesc
Error NT AUTHORITY\ENTERPRISE DOMAIN CONTROLLERS doesn't have
Replicating Directory Changes In Filtered Set
access rights for the naming context:
DC=ForestDnsZones,DC=spl,D
Error NT AUTHORITY\ENTERPRISE DOMAIN CONTROLLERS doesn't have
Replicating Directory Changes In Filtered Set
access rights for the naming context:
DC=DomainDnsZones,DC=spl,D
......................... SPL-DC failed test NCSecDesc
Starting test: NetLogons
......................... SPL-DC passed test NetLogons
Starting test: ObjectsReplicated
......................... SPL-DC passed test ObjectsReplicated
Starting test: Replications
......................... SPL-DC passed test Replications
Starting test: RidManager
......................... SPL-DC passed test RidManager
Starting test: Services
......................... SPL-DC passed test Services
Starting test: SystemLog
An error event occurred. EventID: 0x00000457
Time Generated: 05/18/2011 11:22:02
Event String:
Driver PrimoPDF required for printer PrimoPDF is unknown. Contact th
e administrator to install the driver before you log in again.
......................... SPL-DC failed test SystemLog
Starting test: VerifyReferences
......................... SPL-DC passed test VerifyReferences
Running partition tests on : ForestDnsZones
Starting test: CheckSDRefDom
......................... ForestDnsZones passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... ForestDnsZones passed test
CrossRefValidation
Running partition tests on : DomainDnsZones
Starting test: CheckSDRefDom
......................... DomainDnsZones passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... DomainDnsZones passed test
CrossRefValidation
Running partition tests on : Schema
Starting test: CheckSDRefDom
......................... Schema passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... Schema passed test CrossRefValidation
Running partition tests on : Configuration
Starting test: CheckSDRefDom
......................... Configuration passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... Configuration passed test CrossRefValidation
Running partition tests on : spl
Starting test: CheckSDRefDom
......................... spl passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... spl passed test CrossRefValidation
Running enterprise tests on : spl.local
Starting test: LocatorCheck
......................... spl.local passed test LocatorCheck
Starting test: Intersite
......................... spl.local passed test Intersite
C:\Users\Administrator.SPL
Microsoft Windows [Version 6.1.7601]
Copyright (c) 2009 Microsoft Corporation. All rights reserved.
C:\Users\Administrator.SPL
Directory Server Diagnosis
Performing initial setup:
Trying to find home server...
Home Server = SPL-DC
* Identified AD Forest.
Done gathering initial info.
Doing initial required tests
Testing server: Default-First-Site-Name\SP
Starting test: Connectivity
......................... SPL-DC passed test Connectivity
Doing primary tests
Testing server: Default-First-Site-Name\SP
Starting test: Advertising
......................... SPL-DC passed test Advertising
Starting test: FrsEvent
......................... SPL-DC passed test FrsEvent
Starting test: DFSREvent
......................... SPL-DC passed test DFSREvent
Starting test: SysVolCheck
......................... SPL-DC passed test SysVolCheck
Starting test: KccEvent
......................... SPL-DC passed test KccEvent
Starting test: KnowsOfRoleHolders
......................... SPL-DC passed test KnowsOfRoleHolders
Starting test: MachineAccount
......................... SPL-DC passed test MachineAccount
Starting test: NCSecDesc
Error NT AUTHORITY\ENTERPRISE DOMAIN CONTROLLERS doesn't have
Replicating Directory Changes In Filtered Set
access rights for the naming context:
DC=ForestDnsZones,DC=spl,D
Error NT AUTHORITY\ENTERPRISE DOMAIN CONTROLLERS doesn't have
Replicating Directory Changes In Filtered Set
access rights for the naming context:
DC=DomainDnsZones,DC=spl,D
......................... SPL-DC failed test NCSecDesc
Starting test: NetLogons
......................... SPL-DC passed test NetLogons
Starting test: ObjectsReplicated
......................... SPL-DC passed test ObjectsReplicated
Starting test: Replications
......................... SPL-DC passed test Replications
Starting test: RidManager
......................... SPL-DC passed test RidManager
Starting test: Services
......................... SPL-DC passed test Services
Starting test: SystemLog
An error event occurred. EventID: 0x00000457
Time Generated: 05/18/2011 11:22:02
Event String:
Driver PrimoPDF required for printer PrimoPDF is unknown. Contact th
e administrator to install the driver before you log in again.
......................... SPL-DC failed test SystemLog
Starting test: VerifyReferences
......................... SPL-DC passed test VerifyReferences
Running partition tests on : ForestDnsZones
Starting test: CheckSDRefDom
......................... ForestDnsZones passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... ForestDnsZones passed test
CrossRefValidation
Running partition tests on : DomainDnsZones
Starting test: CheckSDRefDom
......................... DomainDnsZones passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... DomainDnsZones passed test
CrossRefValidation
Running partition tests on : Schema
Starting test: CheckSDRefDom
......................... Schema passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... Schema passed test CrossRefValidation
Running partition tests on : Configuration
Starting test: CheckSDRefDom
......................... Configuration passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... Configuration passed test CrossRefValidation
Running partition tests on : spl
Starting test: CheckSDRefDom
......................... spl passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... spl passed test CrossRefValidation
Running enterprise tests on : spl.local
Starting test: LocatorCheck
......................... spl.local passed test LocatorCheck
Starting test: Intersite
......................... spl.local passed test Intersite
C:\Users\Administrator.SPL
ASKER
I'm not sure if this is related but saving files to the server is really really slow.
ASKER CERTIFIED SOLUTION
THIS SOLUTION IS ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
ASKER
Microsoft Windows [Version 6.1.7601]
Copyright (c) 2009 Microsoft Corporation. All rights reserved.
C:\Users\Administrator.SPL
Windows IP Configuration
Host Name . . . . . . . . . . . . : SPL-DC
Primary Dns Suffix . . . . . . . : spl.local
Node Type . . . . . . . . . . . . : Unknown
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : spl.local
Ethernet adapter Local Area Connection:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel(R) Gigabit ET Dual Port Server Adap
ter
Physical Address. . . . . . . . . : 00-1B-21-74-6E-D4
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv4 Address. . . . . . . . . . . : 192.xxx.xxx.200(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.xxx.xxx.100
DNS Servers . . . . . . . . . . . : 127.0.0.1
192.xxx.xxx.201
NetBIOS over Tcpip. . . . . . . . : Enabled
Tunnel adapter isatap.{5CF94EEC-92C7-4100
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Tunnel adapter Local Area Connection* 11:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
C:\Users\Administrator.SPL
Copyright (c) 2009 Microsoft Corporation. All rights reserved.
C:\Users\Administrator.SPL
Windows IP Configuration
Host Name . . . . . . . . . . . . : SPL-DC
Primary Dns Suffix . . . . . . . : spl.local
Node Type . . . . . . . . . . . . : Unknown
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : spl.local
Ethernet adapter Local Area Connection:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel(R) Gigabit ET Dual Port Server Adap
ter
Physical Address. . . . . . . . . : 00-1B-21-74-6E-D4
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv4 Address. . . . . . . . . . . : 192.xxx.xxx.200(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.xxx.xxx.100
DNS Servers . . . . . . . . . . . : 127.0.0.1
192.xxx.xxx.201
NetBIOS over Tcpip. . . . . . . . : Enabled
Tunnel adapter isatap.{5CF94EEC-92C7-4100
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Tunnel adapter Local Area Connection* 11:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
C:\Users\Administrator.SPL
Remove 127.0.0.1 IP address it needs to have the actual IP address.
ASKER
thats what i had....ShareefHuddle told me to put 127.0.0.1 in
I have changed it back
I have changed it back
ASKER
and I clearly missed your comment to remove it.... my apologies
ASKER
Starting test: NCSecDesc
Error NT AUTHORITY\ENTERPRISE DOMAIN CONTROLLERS doesn't have
Replicating Directory Changes In Filtered Set
access rights for the naming context:
DC=ForestDnsZones,DC=spl,D
Error NT AUTHORITY\ENTERPRISE DOMAIN CONTROLLERS doesn't have
Replicating Directory Changes In Filtered Set
access rights for the naming context:
DC=DomainDnsZones,DC=spl,D
......................... SPL-DC failed test NCSecDesc
is this going to be an issue if I shut down my old DC? Im guessing not since this isn't a RODC, but i though i would double check before closing this.
Thanks
Error NT AUTHORITY\ENTERPRISE DOMAIN CONTROLLERS doesn't have
Replicating Directory Changes In Filtered Set
access rights for the naming context:
DC=ForestDnsZones,DC=spl,D
Error NT AUTHORITY\ENTERPRISE DOMAIN CONTROLLERS doesn't have
Replicating Directory Changes In Filtered Set
access rights for the naming context:
DC=DomainDnsZones,DC=spl,D
......................... SPL-DC failed test NCSecDesc
is this going to be an issue if I shut down my old DC? Im guessing not since this isn't a RODC, but i though i would double check before closing this.
Thanks
No issues
ASKER
Thanks
ASKER
Please award points to dariusg.... I was in a hurry and selected my own responce
You can now select the correct solution
Windows Server 2008
Windows Server 2008 and Windows Server 2008 R2, based on the Microsoft Vista codebase, is the last 32-bit server operating system released by Microsoft. It has a number of versions, including including Foundation, Standard, Enterprise, Datacenter, Web, HPC Server, Itanium and Storage; new features included server core installation and Hyper-V.
86K
Questions
--
Followers
--
Top Experts
Get a personalized solution from industry experts
TRUSTED BY
