Improve company productivity with a Business Account.Sign Up

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 447
  • Last Modified:

Server 2K /DNS/AD

I am cryng "Uncle!"  About 2 weeks ago our server quit serving.  When I dove into the problem the DNS and WINS were both missing from the server.  How they became MIA is still an unknown.  I thought I had successfully reinstalled the DNS and WINS but there have been pesky issues all along.  We have a Hardware Firewall - Watchguard  Firebox "Edge" that the server (pe600sc) connects to and the rest of the computers are suppose to be connected from the server to firewall.  After much tweaking and testing I thought I had it all configured correctly except that on the NIC card I had to list the Watchguard Firebox as the Primary DNS as well as it being the Gateway while the true primary DNS, (PE600SC) had to be listed as alternative DNS.  If I switched the order - no internet connection for any computer. (No DNS server found)

To complicate matters late last week I was trying to figure this out and must have replaced something in the DNS stuff so I no longer have access to Active Directory.

I tried to do Recovery Console but kept getting blue screen /fatal error (no, I didn't write the # down). But I also did not disconnect the ethernet cable from server to see if logging on w/o connections to firewall etc. would make the program run.

I have tried the nltest/SC_CHANGE_PWD:,domain name> and that portion was successful. Burt when I went to the second command:
netdom reset p3600sc /domain:ns1.acousticalresources
it failed saying that the specified domain could not be contacted or does not exist.

I cannot Bind to AD.

When I run dcdiag I get error 1323, then when I add user name & password to dcdiag I receive Error 31 "Filename, Directory name or Volume Label Syntax is incorrect.

For some reason I cannot attach a file to this request (Netdiag.log)            
 I don't know whether it is because the server is so old and the IE connection is IE 6.0 and it won't update IE because the server is too old

We have 6 client computers all running Windows XP Pro.

Thanks for your help - I am hoping it is something easier than reformatting the  harddrive/server and starting over.
0
ARservice
Asked:
ARservice
  • 4
  • 2
2 Solutions
 
ARserviceAuthor Commented:
Here is the netdiag.log file
I noticed it has some of our ISP provider's DNS stuff in it which I have NOT ever entered into the DNS.  On the Watchguard we have external function, but those DNS #'s are not what is showing up on this report.  
I thought I would go add the #'s found in the report (listed as Alpha.mybirch.net) under "Forwarders" but the check box to add forwarders is grayed out/non-functional.

The DNS NAMES listed are used for Outlook mail POP3 & SMPT authorization.

Hope this gives some better insight into the mess.
THANKYOU!!
0
 
mds-cosCommented:
Here is how you should be able to fix your problem:

1)  Connect server and all workstatoins directly to the Watchguard trusted side (e.g. ALL systems access Internet by using the Watchguard as the gateway)

2)  If I am understanding correctly, the server is a (the) domain controler.  If necessary, uninstall then reinstall DNS service to be sure it is solidly in place.  If you need WINS, so the same for it.

3)  Set IP on server so server points to itself *and only to itself* for DNS.

4)  Set DHCP so all workstations point to the server as primary DNS, to WINS if you are using it, and to Watchguard as gateway.  If you want to you can use another device for secondary DHCP provided DNS.

5)  Reboot all workstations or run ipconfig /refresh so new DHCP settings take affect.


All problems should go away.
0
 
KCTSCommented:
I'll just add that ALL machines - not just the server must point to the server as the one-and-only DNS server. You will need to set up a forwarder in DNS to point to the gateway or external DNS server to resolve external names

see http://support.microsoft.com/kb/323380
0
Easily Design & Build Your Next Website

Squarespace’s all-in-one platform gives you everything you need to express yourself creatively online, whether it is with a domain, website, or online store. Get started with your free trial today, and when ready, take 10% off your first purchase with offer code 'EXPERTS'.

 
ARserviceAuthor Commented:
We do not use DHCP - only Static IP addresses

Yes, server is the DC and only DC.

The watchguard has one port for the server to connect and one port for the router to connect .

Any trick to unistalling DNS?  Do I just open up the MMC and click on the server / Stop it, then delete it?
0
 
KCTSCommented:
Why do you use static IPs ?

One of the problems is that you'll manually have to check EACH and EVERY machine to make sure that the DNS server and default gateway are set correctly....

DHCP has a lot going for it....
0
 
ARserviceAuthor Commented:
Seveal years ago a couple Laptops & docking stations for them kept losing connections/trust whenever they were disconnected so I gave up and gave everyone a static IP.

I am reading article now and will follow steps as soon as I am able to take over the server from use by employees.  

Hopefully, this is all I need to do is uninstall/reinstall DNS / to only be the server.
0
 
ARserviceAuthor Commented:
OK, the DNS is now working with the solo DNS
HOWEVER - I still cannot get into Active Directory
Same Error 31 about not being able to bind  - no server.
All client computers have connectivity to internet and their email, so that helps alot, but can not get them joined to any domain until it can find or bind or whatever it wants to do to get back the access back to active directory.
Any suggestions on how to do this?
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Easily Design & Build Your Next Website

Squarespace’s all-in-one platform gives you everything you need to express yourself creatively online, whether it is with a domain, website, or online store. Get started with your free trial today, and when ready, take 10% off your first purchase with offer code 'EXPERTS'.

  • 4
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now