Re: DNS Replication between DC1 & DC1
- From: Allen <AlAmWeBe@xxxxxxxxxxxxxx>
- Date: Sun, 12 Mar 2006 15:45:27 -0800
I appreciate your assistance. Here is the ipconfig /all information as well
as DNS Zones.
Microsoft Windows 2000 [Version 5.00.2195]
(C) Copyright 1985-2000 Microsoft Corp.
ipconfig /all
Windows 2000 IP Configuration
Host Name . . . . . . . . . . . . : lha4ucsdc1
Primary DNS Suffix . . . . . . . : lha4.navy.mil
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : lha4.navy.mil
navy.mil
Ethernet adapter Local Area Connection:
Connection-specific DNS Suffix . : lha4.navy.mil
Description . . . . . . . . . . . : HP Network Team #1
Physical Address. . . . . . . . . : xx-xx-xx-xx-xx-xx
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 205.69.129.20
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 205.69.129.1
DNS Servers . . . . . . . . . . . : 205.69.129.20
205.69.129.21
Primary WINS Server . . . . . . . : 205.69.129.20
Here is the DC1 FWD DNS Zones
Name Type Status
blockeddomains.com Standard Primary Running
lha4.navy.mil Active Directory-integrated Running
lha4m.usmc.mil Secondary Running
nassau.usmc.mil Secondary Running
Here is the lha4 fwd lookup sample from DC1.
Name Type Data
(same as parent folder) A 205.69.129.20
(same as parent folder) NS lha4ucsdc1.lha4.navy.mil.
(same as parent folder) NS lha4ucsdc2.lha4.navy.mil.
(same as parent folder) SOA [7473], lha4ucsdc1.lha4.navy.mil.,
admin.lha4.navy.mil.
_msdcs
_sites
_tcp
_udp
distroserver CNAME lha4ucsdc1.lha4.navy.mil.
gw A 205.69.129.1
isaserver CNAME lha4ucsdc2.lha4.navy.mil.
lha4ucsdc1 A 205.69.129.20
lha4ucsdc2 A 205.69.129.21
proxy CNAME lha4ucsdc2.lha4.navy.mil.
Here is the Reverse DNS Zones for DC1
Name Type Status
0.in-addr.arpa Standard Primary Running
127.in-addr.arpa Standard Primary Running
129.69.205.in-addr.arpa Active Directory-integrated Running
255.in-addr.arpa Standard Primary Running
Here is the reverse lookup for lha4
Name Type Data
1 PTR gw.lha4.navy.mil.
20 PTR lha4ucsdc1.lha4.navy.mil.
21 PTR lha4ucsdc2.lha4.navy.mil.
(same as parent folder) NS lha4ucsdc1.lha4.navy.mil.
(same as parent folder) NS lha4ucsdc2.lha4.navy.mil.
(same as parent folder) SOA [2703], lha4ucsdc1.lha4.navy.mil.,
admin.lha4.navy.mil.
Here is the DC2 FWD DNS Zones
Name Type Status
lha4.navy.mil Active Directory-integrated Running
lha4m.usmc.mil Standard Primary Running
nassau.usmc.mil Standard Primary Running
Here is the lha4 fwd lookup sample from DC2. I kept most of it out for
security reason.
Name Type Data
(same as parent folder) A 205.69.129.20
(same as parent folder) NS lha4ucsdc1.lha4.navy.mil.
(same as parent folder) NS lha4ucsdc2.lha4.navy.mil.
(same as parent folder) SOA [7469], lha4ucsdc2.lha4.navy.mil.,
admin.lha4.navy.mil.
_msdcs
_sites
_tcp
_udp
distroserver CNAME lha4ucsdc1.lha4.navy.mil.
gw A 205.69.129.1
isaserver CNAME lha4ucsdc2.lha4.navy.mil.
lha4ucsdc1 A 205.69.129.20
lha4ucsdc2 A 205.69.129.21
proxy CNAME lha4ucsdc2.lha4.navy.mil.
Here is the reverse DNS Zones for lha4 on DC2
Name Type Status
0.in-addr.arpa Standard Primary Running
127.in-addr.arpa Standard Primary Running
129.69.205.in-addr.arpa Active Directory-integrated Running
255.in-addr.arpa Standard Primary Running
Here is the reverse lookup
Name Type Data
1 PTR gw.lha4.navy.mil.
20 PTR lha4ucsdc1.lha4.navy.mil.
21 PTR lha4ucsdc2.lha4.navy.mil.
(same as parent folder) NS lha4ucsdc1.lha4.navy.mil.
(same as parent folder) NS lha4ucsdc2.lha4.navy.mil.
(same as parent folder) SOA [2701], lha4ucsdc2.lha4.navy.mil.,
admin.lha4.navy.mil.
___
Allen
"Kevin D. Goodknecht Sr. [MVP]" wrote:
Allen wrote:.
When I go into AD Sites and Services to manually replicate DC1 and
DC2, I get an error on one server and another error on the other.
DC1 Reads:
The following error occurred during the attempt to synchronize the
domain controllers: The DSA operation is unable to proceed because of
a DNS lookup failure.
DC2 Reads:
The following error occured during the attempt to contact the domain
controllers: The RPC server is unavailable.
I am getting a couple of errors showing in Event Viewer. Some of
which are the following:
Event ID 5773
The DNS server for this DC does not support dynamic DNS. Add the DNS
records from the file '%SystemRoot%\System32\Config\netlogon.dns' to
the DNS server serving the domain referenced in that file.
Event ID 409
The DNS server list of restricted interfaces contains IP addresses
that are not configured for use at the server computer.
Use the DNS manager server properties, interfaces dialog, to verify
and
reset the IP addresses the DNS server should listen on. For more
information, see "To restrict a DNS server to listen only on selected
addresses" in the online Help.
I have pinged DC1 from DC2 and vice versa with no problem. I did so
by both IP and by server name. Both of which were successful. I
checked the SVR records and both servers were in DNS properly.
However, when I did the DCDIAG it gave me some errors as well.
DC2's server GUID DNS name could not be resolved to an IP address. The
server name resolved to an IP address and was pingable.
It also stated during primary tests for "Testing server" that DC2 is
skipping all tests because it is not responding to directory service
requests. The rest of the tests pass.
When running the NTDSUTIL command I also get the following:
ldap_modify_sW error 0x34(52 (unavailable)
extended error 000020AF
svcErr DSID-032101CF
Problem 5002 (unavailable) data 8524
win32 error 0x20af
couldn't be contacted.
I am not sure where to go from here. Any recommendations would be
appreciated.
Errors like this typically mean you are using your ISP's DNS (or router's)
IP address in TCP/IP properties.
Use only the local AD DNS server's IP address for DNS in TCP/IP properties.
(Usually the DC's address)
You could also have other problems, but posting you ipconfig /all, your AD
Domain name, and the list of zones you have in DNS can verify this.
--
Best regards,
Kevin D. Goodknecht Sr. [MVP]
Hope This Helps
===================================
When responding to posts, please "Reply to Group"
via your newsreader so that others may learn and
benefit from your issue, to respond directly to
me remove the nospam. from my email address.
===================================
http://www.lonestaramerica.com/
http://support.wftx.us/
https://secure.lsaol.com/
===================================
Use Outlook Express?... Get OE_Quotefix:
It will strip signature out and more
http://home.in.tum.de/~jain/software/oe-quotefix/
===================================
Keep a back up of your OE settings and folders
with OEBackup:
http://www.oehelp.com/OEBackup/Default.aspx
===================================
- Follow-Ups:
- Re: DNS Replication between DC1 & DC1
- From: Kevin D. Goodknecht Sr. [MVP]
- Re: DNS Replication between DC1 & DC1
- References:
- Re: DNS Replication between DC1 & DC1
- From: Kevin D. Goodknecht Sr. [MVP]
- Re: DNS Replication between DC1 & DC1
- Prev by Date: changing domain name, whats the effect??
- Next by Date: Re: changing domain name, whats the effect??
- Previous by thread: Re: DNS Replication between DC1 & DC1
- Next by thread: Re: DNS Replication between DC1 & DC1
- Index(es):
Relevant Pages
|
