Re: Windows 2003 external nslookup times out, internal works

---

• From: "Kevin D. Goodknecht Sr. [MVP]" <admin@xxxxxxxxxxxxxx>
• Date: Wed, 24 Aug 2005 12:49:43 -0500

---

Jason Carter <JasonCarter@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote:
> We have three Windows 2003 domain controllers, all running DNS for
> our entire network. One of these servers cannot successfully preform
> NSLOOKUP on external sites, but it works for internal sites. Even
> setting the server to another external public DNS server fails. I see
> the DNS queries going through my firewall to all the root hint
> servers, but nothing ever resolves. I have two more servers where
> this works just fine. All three servers are setup identical.
>
> Has anyone seen this before?

Is this a Pix or simular firewall that blocks UDP packets over 512 bytes?
DNS query responses do not travel through a firewall in Windows Server 2003:
http://support.microsoft.com/default.aspx?scid=kb;en-us;828263&sd=RMVP

--
Best regards,
Kevin D4 Dad Goodknecht Sr. [MVP]
Hope This Helps
===================================
When responding to posts, please "Reply to Group"
via your newsreader so that others may learn and
benefit from your issue, to respond directly to
me remove the nospam. from my email address.
===================================
http://www.lonestaramerica.com/
===================================
Use Outlook Express?... Get OE_Quotefix:
It will strip signature out and more
http://home.in.tum.de/~jain/software/oe-quotefix/
===================================
Keep a back up of your OE settings and folders
with OEBackup:
http://www.oehelp.com/OEBackup/Default.aspx
===================================


.

---

• Follow-Ups:
  • Re: Windows 2003 external nslookup times out, internal works
    • From: jackson_140
  • Re: Windows 2003 external nslookup times out, internal works
    • From: Jason Carter

• References:
  • Windows 2003 external nslookup times out, internal works
    • From: Jason Carter

• Prev by Date: Re: clearing DNS cache automatically
• Next by Date: Re: Windows 2003 external nslookup times out, internal works
• Previous by thread: Windows 2003 external nslookup times out, internal works
• Next by thread: Re: Windows 2003 external nslookup times out, internal works
• Index(es):
  • Date
  • Thread

---

Relevant Pages Re: DHCP assinged DNS servers dont work ... Although the WinXP firewall is enabled and configured via Group ... The first two DNS servers are AD controllers running ONLY core ... I have 75 WinXP machines on a Win2K3 domain using DHCP for address ... (microsoft.public.windows.server.networking) Re: Automatic primary zone to primary zone transfers??? ... [That is the ICF (firewall) even though ICF and ICS are on the same dialog.] ... They are AD Integrated DNS servers. ... (microsoft.public.windows.server.dns) Re: Weird DNS behavior ... All my DNS servers are behind a firewall and, ... you have to either fix the firewall to allow DNS to use ... Cisco PIX, block these UDP packets, because they exceed 512 bytes. ... (microsoft.public.windows.server.dns) Re: Internet Time Out ... the Names Servers for star-kcorp.com are found as below. ... star-kcorp.com nameserver = dns3.name-services.com ... Are all these your DNS servers?? ... Further are you using a third party firewall? ... (microsoft.public.windows.server.dns) Re: Weird DNS behavior ... I made the change on my PIX and surely, ... All my DNS servers are behind a firewall and, ... (microsoft.public.windows.server.dns)

---

• Windows
• Science
• Usenet

• Archive
• About
• Privacy
• Search
• Imprint

www.tech-archive.net  > Archive  > Windows  > microsoft.public.windows.server.dns  > 2005-08