?
Solved

Wrong IP in NLTest

Posted on 2014-01-10
6
Medium Priority
?
1,300 Views
1 Endorsement
Last Modified: 2016-01-27
Hi,

Hoping someone out there knows where a setting comes from...

Running the command 'nltest /dsgetdc: DOMAIN.com' on a DC:
DC: \\DC.DOMAIN.COM
 Address: \\169.254.242.118
 Dom Guid: <hidden GUID>
 Dom Name: DOMAIN.COM
 Forest Name: DOMAIN.COM
 Dc Site Name: London
 Our Site Name: London
        Flags: PDC GC DS LDAP KDC TIMESERV GTIMESERV WRITABLE DNS_DC DNS_DOMAIN
DNS_FOREST CLOSE_SITE FULL_SECRET WS DS_8
The command completed successfully

Open in new window


I've looked everywhere to locate where it's pulling this blatantly incorrect 169 IP address from and cannot locate it anywhere!

Anyone know where it gets this address from so I can get rid of it??

I have confirmed no NIC is active with an APIPA address, (but a disabled NIC could have picked that up way back when the server was first built.)
no DNS entries have been located with it
nslookup resolves the correct IP for the server when tested
DCDiag /test:dns comes back with no issues.

Already tried the suggestions in:
http://www.minasi.com/forum/topic.asp?TOPIC_ID=7356
http://www.winvistatips.com/wrong-ip-address-t772421.html

Windows 2012 Standard DC on 2003 Functional level domain/forest.
2 AD sites, 4 DCs in total.
1
Comment
Question by:Steve
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
6 Comments
 
LVL 15

Accepted Solution

by:
Rob Stone earned 2000 total points
ID: 39771830
The boxes I've ran this on uses the primary IP with highest priority metric value.

If you run the following does it show anything unusual:
netsh interface ipv4 show addresses

I presume it runs OK on the other DC's?
0
 
LVL 37

Expert Comment

by:Mahesh
ID: 39772042
Can you please post ipconfig /all output on DC here

Mahesh
0
 
LVL 27

Assisted Solution

by:Steve
Steve earned 0 total points
ID: 39772628
Thanks Stoner79. That pointed me in the right direction.

There was an old NIC that doesn't show up anywhere but in netsh. I couldn't remove it but I did manage to set a lower priority metric and that's solved the issue.

The IP is now correct.
0
Are your AD admin tools letting you down?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

 
LVL 15

Expert Comment

by:Rob Stone
ID: 39773825
Glad it helped :)
0
 
LVL 27

Author Closing Comment

by:Steve
ID: 39781841
Stoner79's comment was exactly what I was after as it helped me locate the issue and find a way to resolve it.
0
 

Expert Comment

by:Bruno Cordeiro
ID: 41435067
I had this problem yesterday, my AD replication stopped because I was APIPA address as principal, after detecting the network interface that was with this IP , deactivated the interface and had to restart the server and replication is restored.

Tks!!
0

Featured Post

Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Uncontrolled local administrators groups within any organization pose a huge security risk. Because these groups are locally managed it becomes difficult to audit and maintain them.
Let's recap what we learned from yesterday's Skyport Systems webinar.
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…

719 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question