DC DIAG

Hi Guys,

When I run Dcdiag /test:dns i get errors:

PS C:\Users\u_admin> dcdiag /test:dns

Directory Server Diagnosis

Performing initial setup:
   Trying to find home server...
   Home Server = PP01DCV01
   * Identified AD Forest.
   Done gathering initial info.

Doing initial required tests

   Testing server: estinvest-GR\PD01DCV01
      Starting test: Connectivity
         ......................... PD01DCV01 passed test Connectivity

Doing primary tests

   Testing server: estinvest-GR\PP01DCV01

      Starting test: DNS

         DNS Tests are running and not hung. Please wait a few minutes...
         ......................... PP01DCV01 passed test DNS

   Running partition tests on : DomainDnsZones

   Running partition tests on : ForestDnsZones

   Running partition tests on : Schema

   Running partition tests on : Configuration

   Running partition tests on : BESTLIVE

   Running enterprise tests on : ESTLIVE.ESTINVEST.CO.UK
      Starting test: DNS
         Test results for domain controllers:

            DC: PD01DCV01.ESTLIVE.ESTINVEST.CO.UK
            Domain: ESTLIVE.ESTINVEST.CO.UK


               TEST: Forwarders/Root hints (Forw)
                  Error: All forwarders in the forwarder list are invalid.
                  Error: Both root hints and forwarders are not configured or broken. Please make sure at least one of
                  them works.

         Summary of test results for DNS servers used by the above domain controllers:

            DNS server: 128.63.2.53 (h.root-servers.net.)
               1 test failure on this DNS server
               PTR record query for the 1.0.0.127.in-addr.arpa. failed on the DNS server 128.63.2.53
            DNS server: 128.8.10.90 (d.root-servers.net.)
               1 test failure on this DNS server
               PTR record query for the 1.0.0.127.in-addr.arpa. failed on the DNS server 128.8.10.90
            DNS server: 192.112.36.4 (g.root-servers.net.)
               1 test failure on this DNS server
               PTR record query for the 1.0.0.127.in-addr.arpa. failed on the DNS server 192.112.36.4
            DNS server: 192.203.230.10 (e.root-servers.net.)
               1 test failure on this DNS server
               PTR record query for the 1.0.0.127.in-addr.arpa. failed on the DNS server 192.203.230.10
            DNS server: 192.228.79.201 (b.root-servers.net.)
               1 test failure on this DNS server
               PTR record query for the 1.0.0.127.in-addr.arpa. failed on the DNS server 192.228.79.201
            DNS server: 192.33.4.12 (c.root-servers.net.)
               1 test failure on this DNS server
               PTR record query for the 1.0.0.127.in-addr.arpa. failed on the DNS server 192.33.4.12
            DNS server: 192.36.148.17 (i.root-servers.net.)
               1 test failure on this DNS server
               PTR record query for the 1.0.0.127.in-addr.arpa. failed on the DNS server 192.36.148.17
            DNS server: 192.5.5.241 (f.root-servers.net.)
               1 test failure on this DNS server
               PTR record query for the 1.0.0.127.in-addr.arpa. failed on the DNS server 192.5.5.241
            DNS server: 192.58.128.30 (j.root-servers.net.)
               1 test failure on this DNS server
               PTR record query for the 1.0.0.127.in-addr.arpa. failed on the DNS server 192.58.128.30
            DNS server: 193.0.14.129 (k.root-servers.net.)
               1 test failure on this DNS server
               PTR record query for the 1.0.0.127.in-addr.arpa. failed on the DNS server 193.0.14.129
            DNS server: 195.216.16.129 (<name unavailable>)
               1 test failure on this DNS server
               PTR record query for the 1.0.0.127.in-addr.arpa. failed on the DNS server 195.216.16.129
            DNS server: 195.216.16.65 (<name unavailable>)
               1 test failure on this DNS server
               PTR record query for the 1.0.0.127.in-addr.arpa. failed on the DNS server 195.216.16.65
            DNS server: 198.41.0.4 (a.root-servers.net.)
               1 test failure on this DNS server
               PTR record query for the 1.0.0.127.in-addr.arpa. failed on the DNS server 198.41.0.4
            DNS server: 199.7.83.42 (l.root-servers.net.)
               1 test failure on this DNS server
               PTR record query for the 1.0.0.127.in-addr.arpa. failed on the DNS server 199.7.83.42
            DNS server: 202.12.27.33 (m.root-servers.net.)
               1 test failure on this DNS server
               PTR record query for the 1.0.0.127.in-addr.arpa. failed on the DNS server 202.12.27.33
            DNS server: 8.8.4.4 (<name unavailable>)
               1 test failure on this DNS server
               PTR record query for the 1.0.0.127.in-addr.arpa. failed on the DNS server 8.8.4.4
            DNS server: 8.8.8.8 (<name unavailable>)
               1 test failure on this DNS server
               PTR record query for the 1.0.0.127.in-addr.arpa. failed on the DNS server 8.8.8.8
         Summary of DNS test results:

                                            Auth Basc Forw Del  Dyn  RReg Ext
            _________________________________________________________________
            Domain: ESTLIVE.ESTINVEST.CO.UK
               PP01DCV01                    PASS PASS FAIL PASS PASS PASS n/a

         ......................... ESTLIVE.ESTINVEST.CO.UK failed test DNS
PS C:\Users\u_admin>

Open in new window


How do I solve this problem? This test was run on a windows 2008 server.

Thank you in advance,

Regards,
kay
Kelly GarciaSenior Systems AdministratorAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Thomas GrassiSystems AdministratorCommented:
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Kelly GarciaSenior Systems AdministratorAuthor Commented:
when i do an ip config i get this information and i dont get anything related to wins:

  Connection-specific DNS Suffix  . :
  Description . . . . . . . . . . . : vmxnet3 Ethernet Adapter
  Physical Address. . . . . . . . . : 00-50-56-8B-6B-CA
  DHCP Enabled. . . . . . . . . . . : No
  Autoconfiguration Enabled . . . . : Yes
  IPv4 Address. . . . . . . . . . . : 10.1.40.60(Preferred)
  Subnet Mask . . . . . . . . . . . : 255.255.255.0
  Default Gateway . . . . . . . . . : 10.1.40.254
  DNS Servers . . . . . . . . . . . : 192.168.12.1
                                      10.1.40.60
                                      127.0.0.1
  NetBIOS over Tcpip. . . . . . . . : Enabled

Open in new window


the server address is 10.1.40.254, the dns be configured to 10.1.40.254 instead of 192.168.12.1?

Regards,
Kay
0
Thomas GrassiSystems AdministratorCommented:
If this server is running DNS then yes
0
Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

David Johnson, CD, MVPOwnerCommented:
uncheck use root hints if no forwarders and setup 2 forwarders..
i.e. 8.8.8.8/8.8.4.4 (google public dns) or 208.67.222.222/208.67.220.220 (opendns)
0
Will SzymkowskiSenior Solution ArchitectCommented:
I have seen this issue when DNS Dynamic Updates are set to Secure and Non-Secure. The best practice would set this to Secure and then run the test again.

This is a error/warning message is pretty common and in most cases can be ignored.
- Open the DNS Management Console
- Right click on your zone, select properties
zonedata.JPGChange the Dynamic Updates to Secure Only
zonedata1.JPG
Will.
0
Kelly GarciaSenior Systems AdministratorAuthor Commented:
on one of the dns servers when i do an ipconfig it says ::1, what does that mean - the ::1?

thank you in advance,

Kay
0
Will SzymkowskiSenior Solution ArchitectCommented:
That is the loopback address for IPv6.

Will.
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
DNS

From novice to tech pro — start learning today.