Re: unmanageable DNS

---

• From: "Ahmed H. Habashy" <Moody6178@xxxxxxxxxxx>
• Date: Thu, 18 Jan 2007 16:13:55 +0400

---

I have the same EventID: 140
everything is working perfectly 100% except i can't open the DNS from the
MMC due to RPC problems
tools i have used in troubleshooting:
- Replmon
- Netdiag
- DCDiag
- DNSLint
- DNSCMD
- rpcping
- Regedit
evrything is awesome except this :( i did exhaust all the ways but with no
luck any IDEAS?



"Ace Fekay [MVP]" <PleaseAskMe@xxxxxxxxxxxxxx> wrote in message
news:e5hWJ6NEHHA.1224@xxxxxxxxxxxxxxxxxxxxxxx

In news:8577F63D-6F98-4644-98B9-E9FD255A443C@xxxxxxxxxxxxx,
p.o <po@xxxxxxxxxxxxxxxxxxxxxxxxx> stated, which I commented on below:

Hi

My serves are standing in DMZ zone so I've got blocked many ports.
I've configured AD as Microsoft said and Directory Services works ok.
When I delete registry key
HKEY_LOCAL_MACHINE\Software\Microsoft\Rpc\Internet\ports the mmc snap
working ok (localy and remote) but when I got this reg key I can't
connect to DNS via MMC (localy and remote).

How shoudl I configure DNS to work with static rpc.

Thanks,

Honestly, I've never tried it with DNS, but I can tell you this much: MS
DNS will communicate with other Windows machines (whether thru DNS queries
or simply trying to conenct to the machine using an MMC console), with
dynamic ports. Connecting to a console is not really a DNS port, but
rather the RPC ports. I have not configured such as thing as for RPC
traffic, because those articles depict specific domain RPC traffic. What
you're looking for is standar network communication & authentication
between domain members which includes numerous ports. If you look at those
articles, they show what ports and their ranges are required. Maybe you
can create specific rules between specific machiens allowing those ports,
or create a VPN between the DMZ machine and the internal network, which
I've seen many admins have successfully configured in your type of
scenario.

Ace

.

---

• Follow-Ups:
  • Re: unmanageable DNS
    • From: Ahmed H. Habashy
  • Re: unmanageable DNS
    • From: Ace Fekay [MVP]

• Prev by Date: Re: How to resolve timestamp?
• Next by Date: Server resolves but cannot connect to shares
• Previous by thread: about host record!
• Next by thread: Re: unmanageable DNS
• Index(es):
  • Date
  • Thread

---

Relevant Pages Re: Win32 The RPC server is unavailable ... correct DNS servers and the port are unblocked. ... WMI errors the seem to be RPC related. ... All od the port are unblocked between the servers and the ... Usually RPC errors are due to name resolution or blocked ports. ... (microsoft.public.windows.server.networking) Re: unmanageable DNS ... the problem was due to RPC port limitation in the following registry key: ... My serves are standing in DMZ zone so I've got blocked many ports. ... connect to DNS via MMC. ... (microsoft.public.windows.server.dns) Re: unmanageable DNS ... My serves are standing in DMZ zone so I've got blocked many ports. ... connect to DNS via MMC. ... How shoudl I configure DNS to work with static rpc. ... (microsoft.public.windows.server.dns) Re: [iptables] udp blocken ... >> Zugriff auf die entsprechenden Ports zu unterbinden, ... DNS inbound sollte - wenn du keinen DNS server ... > Das NFS Protokoll verwendet ueblicherweise Port 2049, ... > wenn kein RPC dienst von aussen ansprechbar ist, ... (de.comp.security.firewall) RE: Intersite Replication seems to have problems - Event-ID: 1265 ... Just to be sure I have fixed the DNS as described by MS, ... The RPC server is unavailable.. ... siteDE which can not be accessed by RPC was once up as DC with a wrong IP ... (microsoft.public.windows.server.active_directory)

---

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(16)