On one server, a Windows Server 2012 R2, I cannot seem to ping outside of the Forward Lookup Zone that it's DNS record exists. I have two FLZs: domain.local and domaininc.com. If I try to ping a FQDN I have created a record for in domain.com FLZ, I get no response. The record is setup to point to a host in the other FLZ domain.local. Additionally, if I try to ping something like google.com, I get the same result of it saying, "Ping request could not find host google.com. Please check the name and try again."

All my other servers in the same cluster work just fine. I've changed out the vNIC in VMware host and set to DHCP and assigned static IP; same result. Thoughts on what could be causing this?

Hey there Experts!

I'm running into a frustrating issues with being unable to update DHCP DNS server on CISCO ASA via SSH.
Logging into the ASA we're processing the following CLI CMDS:

ASA-Hostname: Enable
(successful authentication)
ASA-Hostname# dhcpd dns (dns server needed here)

Unfortuantely we're getting an error thrown at the d in the dhcpd command.
I apologize if this is too simple of a question. I tend to avoid Cisco like the plague and maybe I'm missing a step here.
Researching online the DHCPD CMD seems to be the one that I'm needing.

Your help is appreciated!

Our company website is working fine and is accessible externally however all internal clients cannot access the site through our Smoothwall filter.

Our website is on the same domain as our internal domain and we have a www record in DNS pointing to the external web server’s IP address.

None of our clients can navigate to or ping the website. I logged into the Smoothwall and under the IP Tools section ran a ping to the company website and got 100% packet loss yet pings to all other and obvious blocked sites get through fine so it’s not filtering.

Also if I run the ping tests from the 4 internal Ethernet port interfaces we have setup in Smoothwall I get a 100% failure yet if I use the external Ethernet port it gets a working ping.

It seems to be a DNS issue and the Smoothwall doesn’t seem to know how to either get to our website or deal with the response back from our internal DNS server, or possibly isn’t getting a response back.

The strange issue that has really stumped me is both my IP address and one other in our internal range can access the site fine internally. My IP and the second one that works are both added as Exceptions in the Smoothwall but so are my colleagues and they are all getting site unavailable.

This has been working fine. Any ideas/pointers?

I've added this line to my hosts file to allow me to simulate being on a client's network:

127.0.0.1  abc-server

But when I try to open \\abc-server, Windows asks me for credentials and rejects my account credentials.

After some research, I added HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa\DisableLoopbackCheck to the registry with value 1. This resolved my problem but created another one.

My print spooler keeps locking up. And then any program that is attempting to access a printer also freezes up. If I stop the print spooler service, the programs come back to life but, of course, I can't print.

The print spooler problem goes away when I remove the above registry entry but then the credentials problem returns.

Any help would be greatly appreciated.

I'm using Windows 10.

Hi,

Recently here in Expert-Exchange an expert mention Four Ones (1.1.1.1) as an alternative for DNS for a VPN question I had.   Did some google and found that it's from CloudfFare/APNIC, works somewhat as VPN, further their site says they are audited annually by KPMG - so it seems ok or legit.  I am thinking of changing my DNS in all my devices to Four Ones, so I wanted to know the expert thoughts on this.  Is it really faster? Does it work like a VPN? What EE take?

Thank u!

We recently acquired another company with it's own domain and on prem exchange environment (just like the ours).  We established a forest trust and that is working well however we are having some email issues.  At this point I am not sure this issue is a result of joining the domains through the forest trust but it is a recent change.

Here's the scenario.

company.a.com
company.b.com

Mail from company.a.com can get to company.b.com without issue.
Mail from company.b.com to company.a.com does not go through.

In the queue viewer for company.b I can see the que for company.a.com with this error message .

If company.b.com pings mail.company.a.com it returns the internal address of the exchange server.
If company.a.com pings mail.company.b.com it returns the company.b.com spam host (as it should).

Here is information from one of the emails that is stuck in the que on company.b exchange server.
Identity: mail.company.b.com\32793\108813
Subject: test 2
Internet Message ID: <FBBAA7F55C821243B5B4F54AF90BE4319E0C68DC@mail.company.b.com>
From Address: Administrator@company.b.com
Status: Ready
Size (KB): 3
Message Source Name: FromLocal
Source IP: 255.255.255.255
SCL: -1
Date Received: 10/7/2019 3:58:08 PM
Expiration Time: 10/9/2019 3:58:08 PM
Last Error:
Queue ID: company.b\32793
Recipients:  administrator@company.a.com;2;2;;0;CN=SMTP Default,CN=Connections,CN=Exchange Routing Group (DWBGZMFD01QNBJR),CN=Routing Groups,CN=Exchange …

I have an older exchange server which is working without a problem on my current ISP.  I had to switch ISP's recently and my old ISP will be disconnected shortly.

Unfortunately, even though I WAS told my new ISP can provide rDNS for my on-premises email server, I am now being told they cannot.

I have a "persistent-IP" which is ALMOST a static public IP, but it must be from a block of public IP's they have in which I am probably being natted.

So, is there a way to setup a third-party rDNS so my emails from my on-premises server do not end up in spam or bounce?

Thanks.

We recently acquired another company with it's own domain and on prem exchange environment.  The current project in front of me is to migrate their ERP database into ours and stand up a new terminal server for them to access the ERP once the migration is complete.  We now have a VPLS connection established between the two networks and we can pass traffic just fine but the domains are not yet talking to each other.

Long term I'd like to join them into our domain directly and decommission the one they are currently using (and likely move both on prem exchanges to the cloud).  With exchange operating where it is and the aggressive timeline on the ERP project to consider.  I'd like to minimize the amount changes happening all at once to lower the risks to the project success.

What I would like to do now is to get the domains talking to each other so that authentication can happen across them.  When the users at the other domain log into the new terminal server on our domain I don't want them to have another account to log in with.  Additionally, we need DNS to be talking to each other so remote apps will work properly because I can't stick a cname or static a-record into their DNS for our domain.

From the research I have done this seems possible through a forest trust and adding a new secondary zone on the DNS for each side.  Their secondary zone would be our domain and our secondary zone would be their domain.  I have never done either of these things in the past so I …

My work laptop works fine on my home wireless and even my hotspot. When I try to bring it to a hotel , it connects to the hotel wireless but will not open the redirect screen to agree to conditions then put in the wireless key.

I checked DNS to make sure no other dns servers listed, set to dhcp, no proxys. Security is low in IE, TLS 1.0 2.0 etc..enabled

Any suggestions on anything else I can check?

Someone accidentally deleted our Windows Server 2016 AD-Integrated forward lookup zones using a third party tool. What would be the easiest way to recover the DNS zones? We do have the ability to restore the any of the domain controllers in its entirety, but we will have to accommodate for an Authoritative restore which it doesn't seems to be a straight forward process.

Hi EEs,

My client has purchased a secondary domain name which is supposed to capture more traffic based on the very name of the domain. I know how to do both Domain Forwarding and changing the DNS to point to the primary hosting servers. However, my quandary is what is best for the search engines and the users to ensure they don't think the site has been hijacked.

So, is it better to enable domain forwarding or point DNS servers to primary hosting servers?

I'd really appreciate some expert insight on the best method forward to capture as much leads as possible for my client.

Regards,
Mandy

Guys,
I have a client with a Ricoh MP C5503 that I am trying to set up with scan-to-email. Because the Ricoh only provides SSL encryption, I set up a free Juno email account dedicated to the printer.  So we are on the same page, here's where I put what:
Device Management > Configuration
Under 'Device Settings' section
Click: Email
-Administrator E-mail address: (email@juno.com)
-SMTP Server Name: smtp.juno.com
-SMTP Port Number: 465
-SMTP Authentication: On
  -SMTP Email Address: (email)@juno.com
  -SMTP User Name: (email)@juno.com
  -SMTP Password: (password)
  -SMTP Authentication: Auto-select

I also tried:
Under 'Device Settings' section
Click: Email
-Administrator E-mail address: (email@juno.com)
-SMTP Server Name: smtp.juno.com
-SMTP Port Number: 25
-SMTP Authentication: Off
  -SMTP Email Address: (email)@juno.com
  -SMTP User Name: (email)@juno.com
  -SMTP Password: (password)
  -SMTP Authentication: Auto-select

My client is using Google Fibre as their ISP. One of my tech friends who works a Ricoh service says the issue is Google Fibre blocks access to any DNS other than the local IP pointing to the Google Fibre Gateway. I confirmed this as I set up the Ricoh with:
DNS 1: 192.168.1.1 (the Google Fibre Gateway) - Test Successful
DNS 2: 8.8.8.8 - Test Unsuccessful
Or DNS 2: 1.1.1.1 (Cloud Flare) - Test Unsuccessful
Or DNS 2: 1.0.0.1 (Cloud Flare) - Test Unsuccessful
He says that if I can figure out what DNS server Google Fibre is …

Hi There,
We are testing our new website on Test environment , Couple pages on it uses angular 8  and the images on it is not displaying  when we go to our test website from within our organization, when we check from outside our network it works fine.

We do use OpenDNS to block certain category of web, so if we change our dns to use google public dns 8.8.8.8 the test website displays the images correctly. We did try to disable OpenDNS still the web site doesn't display the images. So something internal when we use our DNS is blocking it.
Till we figure this completely,  is there a way inside our network where we can adjust the host file  or something so only for this particular website which we know is safe we can default it to use the dns server 8.8.8.8 and all other request go through our DNS server which basically gets forwarded to OpenDns.

so for example anybody inside our networks look for www.example.com  8.8.8.8 should be the dns server that should resolve it, any other website should go through our DNS.
I will appreciate anybody has any idea if we could do that and if so how..
Thanks