Re: AD Sites and Services Replication

From: Ace Fekay [MVP] (PleaseSubstituteMyActualFirstName&LastNameHere_at_hotmail.com)
Date: 08/21/04 

Date: Sat, 21 Aug 2004 00:26:21 -0400

In news:a55001c486fb$0f52bb90$a601280a@phx.gbl,
MDPILWL <anonymous@discussions.microsoft.com> made a post then I commented
below
> Does anyone know exactly what this is asking me to do?
>
> First I get this:
>
> The Directory Service consistency checker has determined
> that either (a) there is not enough physical connectivity
> published via the Active Directory Sites and Services
> Manager to create a spanning tree connecting all the sites
> containing the Partition
> CN=Configuration,DC=mfcetc,DC=pvt, or (b) replication
> cannot be performed with one or more critical servers in
> order for changes to propagate across all sites (most
> often due to the servers being unreachable).
>
> Then I get multiples of these for the various sites.
>
> Event ID 1401
> The following site connection edge is needed by the
> topology graph:
>
> Thanx

This can be either indicative of a DNS lookup problem (ISP's DNS server
adddresses in IP properties, SRV records missing or incomplete, etc), or it
can resolve it from DNS, is a rep partner, but can't directly communicate
with it (due to a chain network topology without routes configured between
each subnet?), or other AD errors.

We'll need info about your topology, sites configured, links, etc. Also
helpful if you can post an unedited ipconfig /all from the two DC partners
in question. Please also run and post a dcdiag /v and a netdiag /v /fix.
ALso please let us know the AD domain name to compare with the results.

I've seen this problem also come up between two partners in different sites
connected with VPNs. After evaluating DNS, re-configuring it and other
tests, I found out my client just upgraded the firmware on one of the
routers, and found the router MTU on one of them was altered from the
previous (TCP/IP default) settings and was preventing LDAP communication. So
I changed it to 1500 and the errors went away. 

-- 
Regards,
Ace
Please direct all replies ONLY to the Microsoft public newsgroups
so all can benefit.
This posting is provided "AS-IS" with no warranties or guarantees
and confers no rights.
Ace Fekay, MCSE 2003 & 2000, MCSA 2003 & 2000, MCSE+I, MCT, MVP
Microsoft Windows MVP - Windows Server - Directory Services
Security Is Like An Onion, It Has Layers
HAM AND EGGS: A day's work for a chicken;
A lifetime commitment for a pig.
-- 
=================================

Relevant Pages

  • Re: Event Viewer Anomoly
    ... controller DNS DHCP etc. and how they are located. ... The topology information in the Active Directory for this ... performed with one or more critical servers in order for changes to ... Publish sufficient site connectivity information such that the ...
    (microsoft.public.win2000.networking)
  • Re: DNS Resolution Problem
    ... I installed AD on one of the standard edition server with DNS. ... all the other servers to the new domain xxxx.local. ... a lot of problems with the connectivity between servers. ... The network path ...
    (microsoft.public.windows.server.dns)
  • Re: ISA 2004 + DNS
    ... connectivity to my other servers. ... Is this the best was to Setup DNS or would it be better to reconfigure ...
    (microsoft.public.isa)
  • ISA 2004 + DNS
    ... connectivity to my other servers. ... Is this the best was to Setup DNS or would it be better to reconfigure ...
    (microsoft.public.isa)
  • Re: Help SMPT Errors
    ... FAIL Reverse DNS entries for MX records ERROR: The IP of one or more of your ... it may mean that your DNS servers did not respond fast enough). ... INFO NS records at parent servers Your NS records at the parent servers ... PASS Parent nameservers have your nameservers listed OK. ...
    (microsoft.public.exchange.admin)