Solved

Server 2012 DNS for non domain users

Posted on 2014-01-20
5
333 Views
Last Modified: 2014-06-23
I have a Server 2012 DC and DNS Server running, but when network devices and computers not on the network ping host names the server does not respond with the IP.  How do I allow this?
0
Comment
Question by:Jcook4130
5 Comments
 
LVL 17

Expert Comment

by:James Haywood
ID: 39796399
You will need to enter the full FQDN rather than just the server name.
0
 
LVL 18

Accepted Solution

by:
irweazelwallis earned 500 total points
ID: 39796520
there shouldn't be anything blocking that.

Start with the obvious or connectivity checks
can you ping the DNS server
can you NSlookup to the server


are you trying with just netbios name or full FQDN if you don't have the suffix search list configured it will only work on FQDN
0
 
LVL 71

Expert Comment

by:Chris Dent
ID: 39796535
You really only have a couple of options:

1. Name resolution

If "ping name" gives you an IP address then DNS (and anything to do with name resolution) can be ruled out immediately.

For example, this would be a good response, even if Ping itself times out:
C:\> ping servername

Pinging servername [10.0.0.1] with 32 bytes of data:
Request timed out.

Open in new window

While ping didn't reply, name resolution got us from servername to 10.0.0.1. You can tick that part off as working.

2. Host is down, or connection is subject to a Firewall

If the host is not on, then obviously it won't be able to reply. It hardly sounds like this is the case here :)

That leaves Firewalls. Something is preventing the host responding. If you're on the same LAN / VLAN as the device you're pinging you can rule out network-level firewalls. That leaves you with Host-based firewalls. Windows Firewall?

Perhaps start by turning it off to establish cause (assuming it is safe to do so), if it is the cause you will simply need to add a rule to allow ICMP traffic (Inbound rule set).

Chris
0
 
LVL 22

Expert Comment

by:dan_blagut
ID: 39796677
in fact what is not working is the DNS suffix for the non domain host. If you put the dnssufix on the non domain PC it will works better:
 
http://support.simpledns.com/KB/a137/how-to-configure-dns-suffixes-on-windows-2000xp2003.aspx

Dan
0
 
LVL 20

Expert Comment

by:Daniel McAllister
ID: 39796955
OK, so what I'm going to write essentially backs up what Dan says above, but hopefully in a more palatable way:

When your DC clients configure themselves (likely through DHCP) they not only are told to use the DC as the DNS server, but they are also given a "default" domain to search.

Thus, when a DC client looks up "desktop1", the AD domain name is added "by default" and the DNS server looks for "desktop1.yourADdomain.local".

Now when other clients connect, they are often not provided a "default domain" to search, so when these other clients go to lookup "desktop1", and there is no "default domain" to add on, the result is that there is no match.

NOTE: Clients can be configured with a "default domain" (aka: default suffix), but servers cannot... you cannot tell a DNS server that, failing a lookup for "deskto1", assume they meant "desktop1.domain.local" or "desktop1.domain.com", etc.

So, your non AD clients can be configured to add the domain (it's an "advanced" DNS connection setting in ncpa.cpl on Windows systems), or you can simply use FQDN's on your hostnames and all will be fine.

I hope this helps...

Dan
IT4SOHO
0

Featured Post

Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
DNS forwarder or DNS forwarder records missing. 1 24
Cause of ransomware attack 13 113
WIndows 2012 R2 Certificate Services 5 38
Windows 10 ISO build version 3 44
BIND is the most widely used Name Server. A Name Server is the one that translates a site name to it's IP address. There is a new bug in BIND (https://kb.isc.org/article/AA-01272), affecting all versions of BIND 9 from BIND 9.1.0 (inclusive) thro…
The reason that corporations and businesses use Windows servers is because it supports custom modifications to adapt to the business and what it needs. Most individual users won’t need such powerful options. Here I’ll explain how you can enable Wind…
In this Micro Tutorial viewers will learn how they can get their files copied out from their unbootable system without need to use recovery services. As an example non-bootable Windows 2012R2 installation is used which has boot problems.
In this Micro Tutorial viewers will learn how to restore single file or folder from Bare Metal backup image of their system. Tutorial shows how to restore files and folders from system backup. Often it is not needed to restore entire system when onl…

749 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question