Re: W2k3 server and DNS

Hello Ace,
I do not have a Firewall on any of the machines, this is a stand alone
network.
i do not even have Internet as of this moment.

1. A sampleUNEDITED ipconfig /all from a client and from your DC(s)
Windows IP Configuration
Host Name . . . . . . . . . . . . : carestatserver
Primary Dns Suffix . . . . . . . : carestatet.org
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : Yes
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : carestatet.org

Ethernet adapter Local Area Connection 2:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : HP NC3163 Fast Ethernet NIC
Physical Address. . . . . . . . . : 00-0B-CD-C5-5A-0F
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 10.1.2.1
Subnet Mask . . . . . . . . . . . : 255.255.0.0
Default Gateway . . . . . . . . . :
DNS Servers . . . . . . . . . . . : 10.1.2.1
Primary WINS Server . . . . . . . : 10.1.2.1
> 2. The DNS domain name of AD (found in ADUC)
ADUC = carestatserver.carestatet.org
> 3. The zonename in your Forward Lookup Zones in DNS
Forward lookup zone =
Name Type Status
_msdcs.carestatet.org Active Directory-Integrated Primary Running
carestatet.org Active Directory-Integrated Primary Running
> 4. If updates are set to allow under zone properties
Dynamic updates = Secure Only
> 5. If this machine has more than one NIC
Two nics but one is disabled
> 6. Do you have a firewall? If so, what brand?
No firewall
> 7. Is/are forwarder(s) configured?
No forwarders
> 8. Do the SRV records exist under your zone name?
Yes I do have multiple SRV records
I'm not sure which ones you would be most concerned with though.

Just a reminder I have no Problem taking the Windows XP machine and
connecting to another domain i have here.
however This new domain will NOT be apart of that Domain.
Thank you
--
Duane


"Ace Fekay [MVP]" wrote:

> In news:8B48A600-B808-4459-BE1F-0545529A2BE7@xxxxxxxxxxxxx,
> Duane <Duane@xxxxxxxxxxxxxxxxxxxxxxxx> made this post, which I then
> commented about below:
> > Hi Danny and Kevin,
> > I wrote a message to this issue yesterday but it never posted...
> > I did have an error in the event log for 414 but this morning I
> > notice the records I was looking for somehow appeared. The NSLookup
> > is now running all passed. during all this trying to get the right
> > records in the DNS I now two Zones: _msdcs.carestet.org and
> > carestatet.org under the name of the server. However I'm still
> > getting the Error at my W/XP "The error was:"a socket operation was
> > attempted to an unreachable host" error code 0x00002751
> > WSAEHOSTUNREACH"
> > The query was for the SRV record for _ldap._tcp.dc._msdcs.carestatet
>
> The WSAEHOSTUNREACH error usually indicates there is no route to the target
> system. Basically saying, it doen't know how to connect via the network to
> get to it. Check these links out to understand what is happening.
> http://www.anzio.com/support/troubleshooting/winsockerrors.htm
> http://soporte.dd.com.ar/faq/winsock_errors.htm
> http://www.pctechnicians.ca/help/Winsock.html
>
> Are there any services shut down or is there a firewall such as Zone Alarm
> on the XP machine?
>
> Also, what truly concerns me MOST is the SRV record you provided. It appears
> your domain name is a single label name. That is not good because DNS is
> hierarchal based and a single label name has no 'hierarchy' to it. XP does
> not play well with single label names. Many issues *will* occur due to this.
>
> At this point it maybe very helpful for us to help you better if you can
> provide more specific information about your infrastructure configuration,
> such as:
>
> 1. A sampleUNEDITED ipconfig /all from a client and from your DC(s)
> 2. The DNS domain name of AD (found in ADUC)
> 3. The zonename in your Forward Lookup Zones in DNS
> 4. If updates are set to allow under zone properties
> 5. If this machine has more than one NIC
> 6. Do you have a firewall? If so, what brand?
> 7. Is/are forwarder(s) configured?
> 8. Do the SRV records exist under your zone name?
>
> Thanks.
>
> --
> Regards,
> Ace
>
> Please direct all replies ONLY to the Microsoft public newsgroups
> so all can benefit.
>
> This posting is provided "AS-IS" with no warranties or guarantees
> and confers no rights.
>
> Ace Fekay, MCSE 2003 & 2000, MCSA 2003 & 2000, MCSE+I, MCT, MVP
> Microsoft Windows MVP - Windows Server - Directory Services
> Infinite Diversities in Infinite Combinations.
> =================================
>
>
>
.

Relevant Pages

  • Re: Need help to clean up srv records
    ... > The srv records under a AD integrated zone are due for some clean up. ... > the updates should be replicated to those srv records in DNS zones. ... Rules of engagement for dynamic updates to automatically work (which is ... The AD DNS name MUST match the name of the zone in DNS ...
    (microsoft.public.win2000.dns)
  • Re: AD SRV records not shown in delegated child domain
    ... All but one of the child domains have srv records, ... ::: The child DNS is configured as follows. ... :: Check the zone on the child DC to see if "Allow dynamic updates" is ...
    (microsoft.public.win2000.dns)
  • Re: Resolving internal and external DNS records
    ... > Our firewall will not allow our internal computers to resolve our external ... > So if my internal users type in www.aaa.com, ... If you don't actually have a Shadow DNS setup then ... you need to add a NEW version of your zone externally. ...
    (microsoft.public.win2000.dns)
  • Re: Update KB951748 causes no connect to internet, anyone have thi
    ... a major snafu from MS to not let firewall makers in on the plan. ... Make sure your DNS and DHCP server IP's are in your Firewall's Trusted zone. ...
    (microsoft.public.windowsxp.network_web)
  • Re: Passing DNS Through DMZ
    ... No, we're using AD DNS. ... Because the firewall is using NAT, ... inside cannot access web site www.company.com. ... >> sites instead of cteating a new zone in DC. ...
    (microsoft.public.win2000.dns)
Loading