Members servers can't connect to web

Please see my related post at

My other members servers can't connect to the web. I don't see anything wrong. Here's the config on one of them. They aren't using DHCP.

I did add those servers to the dhcp reservation. I double-checked the mac address in the reservation. Would that have affected it?

   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv4 Address. . . . . . . . . . . :
   Subnet Mask . . . . . . . . . . . :
   Default Gateway . . . . . . . . . :
   DNS Servers . . . . . . . . . . . :
   NetBIOS over Tcpip. . . . . . . . : Enabled
LVL 27
NVITEnd-user supportAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Bryant SchaperCommented:
gateway is .5 not .1?  How about firewall.  Can you show one that works.
NVITEnd-user supportAuthor Commented:

.5 is Gateway is the firewall
I can ping .5 and .200.
Here's an xp client that works. It uses dhcp:
        Dhcp Enabled. . . . . . . . . . . : Yes
        Autoconfiguration Enabled . . . . : Yes
        IP Address. . . . . . . . . . . . :
        Subnet Mask . . . . . . . . . . . :
        Default Gateway . . . . . . . . . :
        DHCP Server . . . . . . . . . . . :
        DNS Servers . . . . . . . . . . . :
Hypercat (Deb)Commented:
It looks like a DNS issue, since the gateway address is correct.  What happens when you try to browse by IP address?  For example, can you browse to (one of Google's www IP addresses)?  If so, then browsing per se is not the problem.  If you open a command prompt and type "nslookup" do you get a list of IPs?  If not, then the problem is that your DNS server is not responding.  The workstation may be able to browse because it also has public DNS server addresses in its NIC properties.  You should not need these addresses; all of your workstations and servers should be able to browse public IP addresses by using your internal DNS server address(es) as the only DNS servers.

If the DNS server is the problem, then either (a) you have forwarders configured on your DNS server properties that are not working; or (b) you have no DNS forwarders and the root hints are also missing, which would cause your DNS server to be unable to resolve any external IP addresses.

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
10 Tips to Protect Your Business from Ransomware

Did you know that ransomware is the most widespread, destructive malware in the world today? It accounts for 39% of all security breaches, with ransomware gangsters projected to make $11.5B in profits from online extortion by 2019.

NVITEnd-user supportAuthor Commented:
Hello hypercat,

I much appreciate your quick and helpful response. I'm a part-time admin so I hope you don't mind walking me through.

As I mentioned in my other post, my dhcp server died. I added a new dhcp server yesterday, so I think that's a factor. That and or like you said, my dns server.

I did the browse and nslookup. Let me know if you need more info.

I can't browse via

Here's the nslookup response.


Non-authoritative answer:
Addresses:  2607:f8b0:4007:805::1014

What should I check next?
Hypercat (Deb)Commented:
Ok, so you are getting name resolution doing an nslookup, so that indicates that your DNS server is resolving external names.  Your servers aren't using DHCP, so the change in your DHCP server should not be causing any problems for the member servers.  Try browsing using the IP addresses that you got from the server.  For example, open your browser and try browsing and see what you get. When I browse from here using that IP, it brings up the Google search page, so if it doesn't work for you, then we're back to looking at something other than DNS causing the browsing issue.

Other things to check if it still doesn't work:  Is the Windows firewall on the server turned on, and if so, is it blocking port 80?  I'm assuming these servers aren't multi-homed, but if they are that could also be a cause of browsing issues if not configured properly.  Also check your perimeter firewall configuration.  Is it configured to block browsing traffic (port 80) for the server IP addresses?

As another test, change the configuration on one of your workstations to remove the external DNS server addresses so that the only DNS server address it has is the one.  Can that workstation browse after that or not?
NVITEnd-user supportAuthor Commented:
I browsed to, the Google search page. It worked.

This is bizarre... and frustrating.

The subject server can now (at least for now) browse via the domain names e.g.,

The ability to browse or not seems to be happening sporadically at various clients, including the member servers. Sometimes it works. Sometimes it doesn't.

I should add that the crashed dhcp server options had a voip server entry that I set when we installed the voip phone system a few years back. The phone installer had me reserve addresses for their voip server and voip switch. In addition, he had me enter some info into our dhcp server. I only have a picture of the entry (attached). The picture shows the following:

Server Options, General tab, Available options, the entry says: 156 VoIP FTP Server. Under Data entry, String value, it says: ftpservers= is their VoIP server, which is a desktop computer sitting in our rack.

I don't remember how I entered it. I may have created a registry entry for this because I don't see it when browsing the Server Options, General tab on the new dhcp server.

I don't know if it has any bearing on the problem but I mention the above because the phones are also on dhcp. The voip server and switch were both connected to the lan while I installed the new dhcp server. I think they are getting leases.

I didn't do your last test yet, i.e. change the configuration on one of your workstations to remove the external DNS server addresses so that the only DNS server address it has is the one.
Hypercat (Deb)Commented:
Not sure this will fit exactly your situation with the voice VLAN, but here's an example of how to set the DHCP options for VOIP:
NVITEnd-user supportAuthor Commented:
hello hypercat,

Thanks for the suggestion. This one pertains to our need:

Still, our phone installer is coming in to help resolve that.
Hypercat (Deb)Commented:
Sounds like it could even be an internet service provider issue, i.e., intermittent disconnects at the modem or perimeter router.  However, we probably should also check the DNS properties.  On the DNS server, open the DNS management console, expand so that you can see your server name, then click on the server name and right-click and select Properties. Please do a screen capture of the Forwarders tab and the Root Hints tab and post them.
NVITEnd-user supportAuthor Commented:
Hi hypercat,

The majority of issues seem to be resolved. Please see my last post on
Dead 2003 DHCP server
Hypercat (Deb)Commented:
Per your comment on that question, if you're going to use any external DNS servers, they should be entered into your DNS server properties as forwarders, as you said, not added to the list of DNS servers on your clients.  This makes queries more efficient, since your DNS server will resolve unknown (i.e., external) hosts by using the forwarder(s) and then will cache the information it receives. So, for frequently used websites, name resolution will be quicker because it is cached on the local server.
NVITEnd-user supportAuthor Commented:
I'd like to thanks everyone's help, particularly hypercat, for the detailed responses. In the end, I don't know which fixed it exactly but it seemed to be a combination of power cycling the ISP's modem, our firewall, reseating cables to same, and power cycling the switches.

It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Microsoft Server OS

From novice to tech pro — start learning today.