Re: DCDIAG DNS Failure

Ok

so the sddcsrv03 is a DC and DNS server right?
and the errors are accouring in this server correct?
the NIC properties looks ok.
Make sure that under TCP/IP properties you have the option "Register this
connection's address in DNS" selected.
check if the Shiprepair.com dns zone allows dynamic updates if the zone is
AD integrated select secure updates only.
instead of having 1 Reverse lookupzone for each subnet:
192.168.0.x,192.168.1.x, etc, create ONLY 1 reverse lookup zone only but
like: 192.168.x.x.
- rightclick the DNS server and clear the cache.
- run from cmd: ipconfig /flushdns
- run from cmd: ipconfig /registerdns
- restart the netlogon service.
- run netdiag /fix

Then check if the records were created for the reverse and Forwarding zones.
Run the tests again and check if the problem remains, if yes you might try
to recreate the zone for Shiprepair, check these articles that migh help you
to acomplish these tasks:
How to enable or disable DNS updates in Windows 2000 and in Windows Server
2003

http://support.microsoft.com/default.aspx?scid=kb;EN-US;246804&sd=RMVP

How to Verify the Creation of SRV Records for a Domain Controller

http://support.microsoft.com/?id=241515

Verify DNS registration for domain controllers using the nslookup command

http://technet2.microsoft.com/WindowsServer/en/library/b6879c0b-cff7-438d-a7f3-0715456dcefb1033.mspx?mfr=true

Verify DNS server responsiveness using the nslookup command

http://technet2.microsoft.com/WindowsServer/en/Library/f8761f04-d665-4507-9509-ebb92bbb66ef1033.mspx

How to reinstall a dynamic DNS Active Directory-integrated zone

http://support.microsoft.com/default.aspx?scid=kb;en-us;Q294328&sd=RMVP



--
I hope that the information above helps you

Good Luck
Jorge Silva
MCSA
Systems Administrator

"dlove106" <dlove106@xxxxxxxxxxxxxxxxxxx> wrote in message
news:36522D31-C7AB-4A4B-A34A-001DB21B6CF6@xxxxxxxxxxxxxxxx

--
DLove


"Jorge Silva" wrote:

Ok

- can you post here the results for ipconfig /all of your DNS server.
- also can you check if the DNS server is responding to all its IPAddress
(DNS Console->right click->interfaces tab.
also describe (can be other different names) your actual reverse lookup
zone
and forward zones.


DNS Server ---
Windows IP Configuration

Host Name . . . . . . . . . . . . : sddcsrv03
Primary Dns Suffix . . . . . . . : Shiprepair.com
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : Shiprepair.com

Ethernet adapter Local Area Connection:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : 3Com 3C920 Integrated Fast Ethernet
Controller (3C905C-TX Compatible)
Physical Address. . . . . . . . . : 00-B0-D0-B2-3E-A9
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 172.20.100.10
Subnet Mask . . . . . . . . . . . : 255.255.0.0
Default Gateway . . . . . . . . . : 172.20.0.2
DNS Servers . . . . . . . . . . . : 172.20.100.10
Primary WINS Server . . . . . . . : 172.20.0.30

My Forward zones are as follows:
shiprepair.com
sdsr (child)
Hawaii.com (remote site with their own dns)
Web Site (on a different subnet)

Reverse zones:
I have one for each subnet.



--
I hope that the information above helps you

Good Luck
Jorge Silva
MCSA
Systems Administrator

"dlove106" <dlove106@xxxxxxxxxxxxxxxxxxx> wrote in message
news:4B78A324-7D75-4CFB-AFA7-2C709F631A69@xxxxxxxxxxxxxxxx

--
DLove


"Jorge Silva" wrote:

Inline
0.in-addr.arpa
127.in-addr.arpa
255.in-addr.arpa
- these are loopback related, don't worry.

So, with advance view I have 4 forward lookup zones and 10 reverse
lookup
zones. Without advance view I have 4 forward lookup zones and 7
reverse
lookup zones.

- are you hosting 4 different domains?
domain01.com, domain02.com,etc?
did you created MX records for the exchange domains that you're
hosting?

The domains are valid. I have created an MX record for the exchange
domain.

- 7 reverse lookup zones?
do you need all these reverse zones or your DNS server is multihomed
(multiple NICs)

My DNS server is not multihomed. Everything certainly worked better
after
the reverse zones were created. They are all valid reverse zones.

-Your exchange server that is giving you problems, can it send Mail
outside,
or the problem is only to receive Mails?
if the problem is only to receive mails, check that your FW/ROUTER
have
the
correct ports (SMTP 25TCP) pointing to the exchange server, also make
sure
that the FW/ROUTER for your domain has the correct public address.

The router has the correct info. The problem is mainly slow delivery,
not
so much non-delivery of incoming mail.

-If the problem is between the Exchange 5.5 and 2003 you should check
the
connectors between them, goto exchange ng they can help you out
better.

I am in mixed mode right now with both ek55 and ek2003. I will post in
the
exchange group, although I would like to correct the DNS error found in
dcdiag.
--
I hope that the information above helps you

Good Luck
Jorge Silva
MCSA
Systems Administrator

"dlove106" <dlove106@xxxxxxxxxxxxxxxxxxx> wrote in message
news:A6E2C987-4829-469B-9DD7-4F70A01D3AC6@xxxxxxxxxxxxxxxx

--
DLove


"Jorge Silva" wrote:

Ok, disable the advance view on DNS console, what do you see now?
No zones?
If yes then you can configure one zone, make AD integrated (If the
server
is
a DC), run ipconfig /registerdns

I still see zones after disabling the advance view (Expected?). The
only
change is I no longer see 3 of the reverse lookup zones. They are
as
follows:
0.in-addr.arpa
127.in-addr.arpa
255.in-addr.arpa

So, with advance view I have 4 forward lookup zones and 10 reverse
lookup
zones. Without advance view I have 4 forward lookup zones and 7
reverse
lookup zones.



--
I hope that the information above helps you

Good Luck
Jorge Silva
MCSA
Systems Administrator

"dlove106" <dlove106@xxxxxxxxxxxxxxxxxxx> wrote in message
news:90E860AB-1EE7-48EA-8FB9-4D9B729AA41D@xxxxxxxxxxxxxxxx
Jorge,

I have looked at most of the articles you sited and I have
configured
DNS
accordingly sometime ago. My clients are pointing to my internal
DNS
server
only. The DNS server lists only itself as the preferred server
with
no
alternate. I am not certain about the reverse lookup zone setup
as
I
have
3
entries that seem to refer to the loopback address. I'm not sure
which
one
is the correct one. They list as follows:

0.0.127.in-addr.arpa (Has NS & SOA records pointing the lone DNS
server)

0.in-addr.arpa (Has NS & SOA records pointing the lone DNS
server)

127.in-addr.arpa (Has NS & SOA records pointing the lone DNS
server)
This
one also has a child entry as follows:
0 (Yellow folder with 1 record listed below)
0 (NS record)

I hope this sheds a little more light on what I am seeing and
can
help
in
how to proceed.

Thanks.

--
DLove


"Jorge Silva" wrote:

This sounds more like a Exchange missconfiguration.
to check DNS config:
- Make sure that you configure the Preferred DNS server in
TCP/IP
properties
on each Domain Controller to use itself as Primary DNS Server
(If
DC
IP
Address is 10.0.0.1 then Dns should be 10.0.0.1).When adding an
additional
DC to an existent Domain, do not configure the domain controller
to
utilize
its own DNS service for name resolution until you have verified
that
both
inbound and outbound Active Directory replication is functioning
and
up
to
date. During the DCPromo process, you must configure additional
domain
controllers to point to another domain controller that is
running
DNS
in
their domain and site, and that hosts the namespace of the
domain
in
which
the new domain controller is installed. More Info here:

Best practices for DNS client settings in Windows 2000 Server
and
in
Windows
Server 2003

http://support.microsoft.com/kb/825036/en-us

- Make sure that every DNS server can resolve all existent
domains
in
the
forest. (You can use Forwarding, Stub Zones or Secondary Zones).

DNS Conditional Forwarding in Windows Server 2003

http://www.windowsnetworking.com/articles_tutorials/DNS_Conditional_Forwarding_in_Windows_Server_2003.html

DNS Stub Zones in Windows Server 2003

http://www.windowsnetworking.com/articles_tutorials/DNS_Stub_Zones.html

How To Create a Child Domain in Active Directory and Delegate
the
DNS
Namespace to the Child Domain

http://support.microsoft.com/kb/255248/

- Make sure that all clients only use their local(s) Dns Server.
Note
That
DNS client does not utilize each of the DNS servers listed in
TCP/IP
configuration for each query. By default, on startup the DNS
client
will
attempt to utilize the server in the Preferred DNS server entry.
If
this
server fails to respond for any reason, the DNS client will
switch
to
the
server listed in the alternate DNS server entry. The DNS client
will
continue to use this alternate DNS server until: fails to
respond
to a
DNS
query, or The ServerPriorityTimeLimit value is reached (15
minutes
by
default). For more information:

How To Install and Configure DNS Server in Windows Server 2003

http://support.microsoft.com/kb/814591/en-us

Best practices for DNS client settings in Windows 2000 Server
and
in
Windows
Server 2003

http://support.microsoft.com/kb/825036/en-us

How to configure DNS for Internet access in Windows Server 2003

http://support.microsoft.com/kb/323380/en-us

How to configure TCP/IP to use DNS in Windows XP

http://support.microsoft.com/default.aspx?scid=kb;en-us;305553




--
I hope that the information above helps you

Good Luck
Jorge Silva
MCSA
Systems Administrator

"dlove106" <dlove106@xxxxxxxxxxxxxxxxxxx> wrote in message
news:50EDC2F6-F02B-4C06-8CB2-22F2207B8E8F@xxxxxxxxxxxxxxxx
1 AD domain - Parent DC is located in Shiprepair, which is also
the
sole
DNS
server, which has forwarders to our ISP. Child DC has has all
member
servers
including 2003 exchange. Exchange points to parent dc as
preferred
dns
server (no alternate). Exchange 2003 is co-existing with
Exchange5.5,
with
2003 handling both inbound and outbound traffic. Presently,
95%
of
the
mailboxes still reside in 5.5, which is located in a NT4
domain.

We actually have 2 email addresses, 1 from corporate with DNS
handled
by
them (Mail working fine), the other handled locally by me
(does
not
route
thru corporate). Incoming mail is forwarded from 2003
Exchange
to
5.5
exchange after going thru spam filter.


.

Relevant Pages

  • Re: Usage Report show IP addr instead of computer names
    ... The reverse DNS look-up is only query DNS server, ... | the reverse lookups at 4:30, will that cause the Usage Report to identify ...
    (microsoft.public.windows.server.sbs)
  • Re: DCDIAG DNS Failure
    ... Without advance view I have 4 forward lookup zones and 7 reverse ... do you need all these reverse zones or your DNS server is multihomed ... -Your exchange server that is giving you problems, can it send Mail outside, ...
    (microsoft.public.windows.server.dns)
  • Re: DCDIAG DNS Failure
    ... also can you check if the DNS server is responding to all its IPAddress ... zone and forward zones. ... did you created MX records for the exchange domains that you're hosting? ...
    (microsoft.public.windows.server.dns)
  • RE: SBS2003: Intermitent Connectivity from Clients to Public websi
    ... I already had two zones set up under the Forward Zones. ... names along with their respective IP addresses per DNS name. ... Originally, I did install ISA Server, but uninstalled it. ... you can access them normally on SBS. ...
    (microsoft.public.windows.server.sbs)
  • Re: DCDIAG DNS Failure
    ... Without advance view I have 4 forward lookup zones and 7 reverse ... My DNS server is not multihomed. ...
    (microsoft.public.windows.server.dns)