Re: slow login problems at branch office
- From: "Charles Hunt" <Charles(trying to reduce spam)huntrad.net>
- Date: Wed, 7 Jun 2006 14:31:38 +0100
Hello,
Thanks for your reply. I downloaded the PortQueryUI amd ran it against the
domain controller and it appeared to report no problems with return codes of
00000000x0.
I tried all the ports you mentioned below and they all seemed to pass.
I suppose that means the problem isn't a network connectivity problem - do
you have any ideas what else could be the problem?
Kind regards
Charles
"Paul Bergson" <pbergson@xxxxxxxxxxxxxxxxx> wrote in message
news:u1MqEIjiGHA.3320@xxxxxxxxxxxxxxxxxxxxxxx
My first thought is there a Firewall between the two?
Download PortQryUI and from the client side check to see if the ports are
open
http://www.microsoft.com/downloads/details.aspx?FamilyID=8355e537-1ea6-4569-aabb-f248f4bd91d0&DisplayLang=en
Ports I believe needed are:
135/TCP RPC *
389/TCP/UDP LDAP
636/TCP LDAP SSL
3268/TCP LDAP GC
3269/TCP LDAP GC SSL
53/TCP/UDP DNS
88/TCP/UDP Kerberos
445/TCP SMB
High Ports
See
http://support.microsoft.com/kb/179442/en-us
--
Paul Bergson MCT, MCSE, MCSA, Security+, CNE, CNA, CCA
http://www.pbbergs.com
Please no e-mails, any questions should be posted in the NewsGroup
This posting is provided "AS IS" with no warranties, and confers no
rights.
"Charles Hunt" <Charles(trying to reduce spam)huntrad.net> wrote in
message news:erUutpiiGHA.4040@xxxxxxxxxxxxxxxxxxxxxxx
Hi,
I have two sites linked by a VPN connection which works fine. I can ping
machines from both sides and DNS seems to be happily resolving FQDNs etc
as well as machine names. I can also access the DCs by using the
\\mydomain.com\sysvol so (with a bit of trickery).. All my DCs are 2000
SP4 machines and based in the main site.
The branch office is new and i have moved across some existing
workstations to that office.
BUT all machines in the branch office, are not logging in properly. The
XP/2000 machines take an age to log in (20mins+) and things are not
really working correctly. I have a 2003 member server which i put in to
perform DHCP which I managed to authorize remotely. (after a bit of
effort and it took about 15 mins to finally authorize)
When I try to login to the 2003 server remotely using RDP it won't let
me, the error message is "access denied" and the event log shows a 40960
error which is "domain controller unavailable". What really perplexes me
is that I can ping and access the machines, the DNS seems to be OK, but
obviously there is some kind of problem with the AD. I am wondering if
there is a TCP/UDP port which is being blocked or some other
communication problem which isn't apparent with ping and DNS look ups. (i
have checked the reverse zone on the DNS which seems to be updating and
working fine)
I have the RESKIT2000 but not entirely sure which tool can help me in
this particular problem.
any ideas or tools that could help me get a fix on this problem would be
VERY VERY welcome.
kind regards
Charles
.
- References:
- slow login problems at branch office
- From: Charles Hunt
- Re: slow login problems at branch office
- From: Paul Bergson
- slow login problems at branch office
- Prev by Date: Re: slow login problems at branch office
- Next by Date: Re: slow login problems at branch office
- Previous by thread: Re: slow login problems at branch office
- Next by thread: Re: slow login problems at branch office
- Index(es):
Relevant Pages
|
