Re: Urgent Please

As Robert said in the original post, using a DC as a router is not a
good idea. Using it as the host of a site-to-site VPN link is an even worse
idea.

The main problem is that the server becomes mulihomed. This fouls up the
name resolution and browsing. This was a big problem in NT and you still
have the same problems with Netbios names in in W2k/W2k3 . In addition, the
use of dynamic registration in DNS means that you also have similar problems
with DNS names, since more than one interface (and therefore more than one
IP) registers the machine's name.

The fix for Netbios problems is still much the same as in NT. You need
to disable Netbios over TCP/IP on all interfaces except the private LAN NIC.
If you are using WINS, you need to then check for (and remove) any stored
references to the "wrong" IP addresses attached to the server's name.
Disabling Netbios over TCP/IP on the "internal" RRAS interface can have some
bad effects in particular cases. This is discussed in KB830063 .

The situation with DNS is similar. In some cases you can get around the
problem simply by setting your DNS server to listen only on its LAN
interface. If this doesn't work, you need to prevent the RAS interface from
registering in DNS as described in KB292822.

Network browsing uses broadcasts and the computer browser service. This
will not work across a WAN without WINS (just as it will not work in a
routed network without WINS). You can have all machines in both sites
registering with a single WINS server. If you have a WINS server in each
site, you will need to set them up to replicate for the browser service (and
Netbios name resolution)to work properly across the link.

Jmnts wrote:
yes it is a great article but didn't worked in my case....
any more ideas??

(just one thing that i couldn't change, at some point the article
says: if the domain is a gc create a record... under msdcs.gc folder,
is strange because this folder ( msdcs\GC) isn't available on one of
the servers (DC2) and this server is a gc!!! I only have the GC
folder on the 1st created dns domain that belong to the DC1?? the
ForestDnsZones are only visible also on the first domain!!! I believe
that is the normal behavior isn't it?? i checked in other different
domains and i saw the same thing - Only the first domain (root) is
the only that has the folder for _MSDCS.GC, _MSDCS.Domains and the
ForestDnsZones. The other domains only have under _msdcs, the pdc
folder and dc folder. another interesting thing is that only the root
domain has the Guids under _msdcs for all existent domains in the
forest).


.

Relevant Pages

  • Re: DNSDCPROMO FAILS
    ... I have a static IP assigned to my LAN and the DNS ... Add the PublishAddresses and RegisterDnsARecords registry values for the DNS ... In the DNS console, expand the server object, expand the Forward ... Lookup Zones folder, and then click the folder for the local domain. ...
    (microsoft.public.win2000.dns)
  • Re: Urgent Please
    ... The main problem is that the server becomes mulihomed. ... the use of dynamic registration in DNS means that you also have ... Disabling Netbios over TCP/IP on the "internal" RRAS interface can ... under msdcs.gc folder, ...
    (microsoft.public.win2000.ras_routing)
  • Re: Browser cannot find any server anymore after 5 minutes of normal activity (" The page canno
    ... and/or the DNS host addresses got changed out from ... On the client yes, but on the server everything is ... Scan folder: 'F:\', recursive ... Average files per second is 50, ...
    (comp.security.firewalls)
  • Re: Netdiag errors, again, [FATAL] Invalid DNS entries
    ... I removed the interface for the RAS ... server, restarted DNS, and NETDIAG reported passed. ... >I've seen this error with multihomed machines mainly. ...
    (microsoft.public.win2000.dns)
  • Re: Home network and DNS problems
    ... Cannot find a primary authoritative DNS server ... > Exchange server and no Internet will be available. ... > Per interface results: ...
    (microsoft.public.win2000.dns)