Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

arting test: SystemLog

Posted on 2016-08-03
4
Medium Priority
?
47 Views
Last Modified: 2016-08-18
Hi All
can anyone help
Thank you
Mark  

         During the past 4.25 hours there have been 503 connections to this D
omain Controller from client machines whose IP addresses don't map to any of the
 existing sites in the enterprise. Those clients, therefore, have undefined site
s and may connect to any Domain Controller including those that are in far dista
nt locations from the clients. A client's site is determined by the mapping of i
ts subnet to one of the existing sites. To move the above clients to one of the
sites, please consider creating subnet object(s) covering the above IP addresses
 with mapping to one of the existing sites.  The names and IP addresses of the c
lients in question have been logged on this computer in the following log file '
%SystemRoot%\debug\netlogon.log' and, potentially, in the log file '%SystemRoot%
\debug\netlogon.bak' created if the former log becomes full. The log(s) may cont
ain additional unrelated debugging information. To filter out the needed informa
tion, please search for lines which contain text 'NO_CLIENT_SITE:'. The first wo
rd after this string is the client name and the second word is the client IP add
ress. The maximum size of the log(s) is controlled by the following registry DWO
RD value 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Netlogon\Paramete
rs\LogFileMaxSize'; the default is 20000000 bytes.  The current maximum size is
20000000 bytes.  To set a different maximum size, create the above registry valu
e and set the desired maximum size in bytes.
         An error event occurred.  EventID: 0x40000004
            Time Generated: 08/03/2016   14:46:58
0
Comment
Question by:MarK PercY
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
4 Comments
 
LVL 83

Expert Comment

by:David Johnson, CD, MVP
ID: 41741045
change the DC's firewall to not allow packets from other than trusted ip addresses.
0
 

Author Comment

by:MarK PercY
ID: 41741805
Hi Dave,
Where would I find the DC firewall? I believe our ISP manages our F/W thank you in advance
0
 
LVL 83

Accepted Solution

by:
David Johnson, CD, MVP earned 2000 total points
ID: 41744705
first login to your domain controller.. ISP's don't manage your equipment which includes the firewall
0
 

Author Closing Comment

by:MarK PercY
ID: 41761059
Very helpful
0

Featured Post

Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A hard and fast method for reducing Active Directory Administrators members.
A bad practice commonly found during an account life cycle is to set its password to an initial, insecure password. The Password Reset Tool was developed to make the password reset process easier and more secure.
This tutorial will walk an individual through the process of installing the necessary services and then configuring a Windows Server 2012 system as an iSCSI target. To install the necessary roles, go to Server Manager, and select Add Roles and Featu…
This tutorial will walk an individual through the process of installing of Data Protection Manager on a server running Windows Server 2012 R2, including the prerequisites. Microsoft .Net 3.5 is required. To install this feature, go to Server Manager…

670 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question