Every day, more and more legacy backup customers switch to Veeam. Technologies designed for the client-server era cannot restore any IT service running in the hybrid cloud within seconds. Learn top Veeam advantages over legacy backup and get Veeam for the price of your renewal
Solved
Weird 2008 to 2008 Issues
Posted on 2014-03-14
This is weird, i am looking at a network i have been asked to clean up after the person responsible for it walked.
There were DNS issues amongst other things, but now this has me a little stumped...
The site has:
2x 2008 AD Server
1x 2003 AD Server
1x 2000 AD Server (Yeah I know)
Alongside multiple 2003 & 2008 Member servers.
I have a weird issues were a 2008 AD Server running Backup Exec cannot talk to another 2008 Member server running SQL for backups.
Neither server can, UNC or Ping each other, yet all other servers and PCs can access both of them. It seems like there is a wall between these two server, but I cant work out why.
There are no errors in the event logs and the Firewall has been disabled by my predecessor.
Can anyone offer any clues?
There were DNS issues amongst other things, but now this has me a little stumped...
The site has:
2x 2008 AD Server
1x 2003 AD Server
1x 2000 AD Server (Yeah I know)
Alongside multiple 2003 & 2008 Member servers.
I have a weird issues were a 2008 AD Server running Backup Exec cannot talk to another 2008 Member server running SQL for backups.
Neither server can, UNC or Ping each other, yet all other servers and PCs can access both of them. It seems like there is a wall between these two server, but I cant work out why.
There are no errors in the event logs and the Firewall has been disabled by my predecessor.
Can anyone offer any clues?
[X]
Welcome to Experts Exchange
Add your voice to the tech community where 5M+ people just like you are talking about what matters.
- Help others & share knowledge
- Earn cash & points
- Learn & ask questions
10-
10
2
22 Comments
They should be they are both on the same IP range of 10.0.0.0/24 along with the other servers.
For some reason the SQL server has a second IPv4 assigned to a single LAN adapter.
For some reason the SQL server has a second IPv4 assigned to a single LAN adapter.
Active 6 days ago
I'd also check to see if there are any access lists or some other rules preventing them from talking with each other. My first theory on the Vlan is probably incorrect as all other pcs can ping both.
jocasio
jocasio
Active 6 days ago
Is that second NIC plugged in? If so, is it plugged into the same switch? What kind of switch are they using?
The second nic had a 169 address so its now disabled.
for some reason there is an alt ip on the first nic it responds to both 10.0.0.30 and 201.
Not sure on the switches yet but I think you might be right.
for some reason there is an alt ip on the first nic it responds to both 10.0.0.30 and 201.
Not sure on the switches yet but I think you might be right.
Active 6 days ago
Did you disable the second one? a 169 address doesn't mean it's disabled, just means it can't reach a DHCP server. Are the servers pointing to the same DNS Server?
lan 2 disabled.
there are 3 dns servers .6 .104 & .105
sql looks to 6 & 104
the ad server looks to itself (105) and 104
there are 3 dns servers .6 .104 & .105
sql looks to 6 & 104
the ad server looks to itself (105) and 104
Active 6 days ago
Do you know why do they have 3 DNS servers? Did you try to do a NSLookup on each box to see what host name they have associated with each IP address? There must be something goofy going on where the packets can't be delivered because either the destination is unknown and they're being dropped, or because they're being refused. Seems weird to have 3 DNS Servers for such a small company (I'm assuming small because of the IP range size)
hi,
1. are you able to ping with IP ?
2. pls share the ping and nslookup result.
3. run "arp -a ipofanyserver" and share the result.
4. are they connected to same switch, if you are using managed switch then pls check the switch configuration.
1. are you able to ping with IP ?
2. pls share the ping and nslookup result.
3. run "arp -a ipofanyserver" and share the result.
4. are they connected to same switch, if you are using managed switch then pls check the switch configuration.
looking at the switch now. its a dell device setup but what seems to be a moron as there and so many vlans. found out that vms on 1 server are on 1 vlan and vms on another server are on another vlan.
its s mess im now thinking about tell them to start again
its s mess im now thinking about tell them to start again
Active 6 days ago
There's your problem. You have to get the ports on the same VLAN. what you can do to test it is plug the server into another port on the same vlan as the other server and then try to ping it. They were probably trying to separate access based on needs, but somehow screwed it all up.
Let give these some names
AD1 cannot talk to SQL1
AD1 can talk to AD2
AD2 can talk to SQL
AD1 can talk to member1
Member 1 can talk to SQL1
AD1 is on an unknown Vlan
AD2 is on Vlan7
SQL1 is on Vlan7
Member1 is on Vlan2
All servers can talk to each other no matter which Vlan they are on, its just AD1 & SQL1 that cant talk to each other.
Its rather bizarre and a very messy setup especially since all the servers are on 1 site. Unfortunately I am not at that site and have no way to get hands on with the switch.
I can tell you that the Core switch is a Dell PowerConnect 6248P
AD1 cannot talk to SQL1
AD1 can talk to AD2
AD2 can talk to SQL
AD1 can talk to member1
Member 1 can talk to SQL1
AD1 is on an unknown Vlan
AD2 is on Vlan7
SQL1 is on Vlan7
Member1 is on Vlan2
All servers can talk to each other no matter which Vlan they are on, its just AD1 & SQL1 that cant talk to each other.
Its rather bizarre and a very messy setup especially since all the servers are on 1 site. Unfortunately I am not at that site and have no way to get hands on with the switch.
I can tell you that the Core switch is a Dell PowerConnect 6248P
Active 6 days ago
I would strip away the vlans (or get an unmanaged switch and plug everything in) to see if that resolves the problem. You never mentioned what the response was for the ping from AD1 to SQL1. Does it timeout or is the host unreachable?
Sorry its destination host unreachable.
Yeah i think its more infrastructure than windows too, so i think ill call it a day on this until i can get hands on with the core switch.
Yeah i think its more infrastructure than windows too, so i think ill call it a day on this until i can get hands on with the core switch.
Active 6 days ago
There may be an issue with the default gateway on AD1. Host Unreachable means the packets aren't being routed to the proper destination and being dropped. Is the default gateway the same as the other servers?
Yeah the default gateway on all devices is 10.0.0.10. The core Switch.
I have looked over the switch and cannot find any entries to say why 10.0.0.105 cannot talk to 10.0.0.30.
The Data Vlan is 7 and i can access devices on that Vlan from AD1, just no the SQL server on it.
I have looked over the switch and cannot find any entries to say why 10.0.0.105 cannot talk to 10.0.0.30.
The Data Vlan is 7 and i can access devices on that Vlan from AD1, just no the SQL server on it.
Featured Post
Learn how to provision tenants, synchronize on-premise Active Directory, implement Single Sign-On, customize Office deployment, and protect your organization with eDiscovery and DLP policies. Only from Platform Scholar.
Question has a verified solution.
If you are experiencing a similar issue, please ask a related question
The recent Microsoft changes on update philosophy for Windows pre-10 and their impact on existing WSUS implementations.
Restoring deleted objects in Active Directory has been a standard feature in Active Directory for many years, yet some admins may not know what is available.
This tutorial will walk an individual through locating and launching the BEUtility application to properly change the service account username and\or password in situation where it may be necessary or where the password has been inadvertently change…
This tutorial will walk an individual through the steps necessary to enable the VMware\Hyper-V licensed feature of Backup Exec 2012. In addition, how to add a VMware server and configure a backup job.
The first step is to acquire the necessary licen…
Suggested Courses
Course of the Month9 days, 1 hour left to enroll
721 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.