Re: Internet access problem caused by DNS failure

---

• From: Stuart <Stuart@xxxxxxxxxxxxxxxxxxxxxxxxx>
• Date: Mon, 1 Oct 2007 08:23:04 -0700

---

Some more info. Browsers spark into life when the CIECW finishes the Network
part of the wizard, i.e. before the Firewall part. I'm using the firewall on
the router (a draytek) so there's nothing special about the firewall config
on the SBS box. The event viewer for 'Application' is a blood bath as other
apps try to resolve address using DNS (exchange, popbeamer, activesync, etc).
Nothing stands out for the dns server.

The DNS event viewer has some errors from 24th Sep which is a couple of days
before I da the problem. Error as follows and I don't really understand what
the Help link tells me:
---------------------
The DNS server was unable to complete directory service enumeration of zone
Stonac.local. This DNS server is configured to use information obtained from
Active Directory for this zone and is unable to load the zone without it.
Check that the Active Directory is functioning properly and repeat
enumeration of the zone. The extended error debug information (which may be
empty) is "". The event data contains the error.

For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.
--------------------------
"Claus" wrote:

After these test it seems most likely that there is a problem with either
the SBS firewall or the SBS DNS. I have not come across this before. Do you
see anything in the event logs?

--
Claus
"Stuart" <Stuart@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:3E4E71FD-8F5B-46C7-8274-09F605B63CD6@xxxxxxxxxxxxxxxx

Thanks Claus

I have changed a client dns setting to 4.2.2.1 (still using dhcp for the
ip
address). The client can now resolve internet web addresses. However,
understandably, it can't resolve names on the network (e.g. companyweb).

I have also used a BT dns server address (194.72.9.34) and this works too.

I have also rechecked something else. When the dns server is not working,
I
can enter an ip address into IE and get the website. I was testing an
incorrect ip address earlier!

Looks like an SBS issue then. As for the firewall comment, it has always
worked for a period of time after running the CIECW. This might seem a bit
mad, but it seems to stop working through use, i.e. I ran CIECW last night
and it held up all night until I logged on this morning. Could just be a
coincidence but thought it might help.


"Claus" wrote:

Stuart,

I would do a test to find out if it is the router or you SBS that is
causing
this issue. Reconfigure one of your workstations for testing. Change the
DNS
on that workstation to an outside DNS (i.e. 4.2.2.1) and see if you can
recreate the issue. If you can't recreate it, we know that the problem is
your SBS box.

--
Claus
"Stuart" <Stuart@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:2133693F-85DE-4736-98C0-A447477FBF7E@xxxxxxxxxxxxxxxx

Just checked. When dns stops working, I can still ping outside ip
addresses.

"Stuart" wrote:

Thanks Claus

I've done as you suggest and still problems. nslookup works fpor a
short
while then queries get timed out. I can't successfully use ip
addresses
in a
browser. I can vpn in to the router from outside. I think i can ping
to
the
outside world but I will check again

"Claus" wrote:

Yes they do get replaced when you run the CEICW. Go into the DNS
Management
after you run the CEICW, add the 4.2.2.1 (or something other than
your
BT
ones) and move it up to the top. Do you still have a problem
afterwards?

Another question: When the problem starts, can you still ping by IP
to
the
outside?

--
Claus
"Stuart" <Stuart@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:3C71DACA-8BF1-4951-8DD7-7F5639F23CEB@xxxxxxxxxxxxxxxx

Thanks Claus. The forwarders seemm to get cleared out by CEICW and
replaced
by the entries you make during the wizard. So yes they are fine.
Stil
having
probems though.

"Claus" wrote:

Your configuration looks fine. Did you check the Forwarders? How
about
adding a DNS that isn't part of BT? See if you can reach 4.2.2.1
and
try
that as the first in the forwarders.

--
Claus
"Stuart" <Stuart@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:F8E9230B-AC2B-443E-93B6-63960D07E2E2@xxxxxxxxxxxxxxxx

Thanks Claus - ipconfig for a client below. Internet access
very
poor
now -
have to run CEICW to reinstate. Never loose the router
connection.

Windows IP Configuration
Host Name . . . . . . . . . . . . : Notebook3
Primary Dns Suffix . . . . . . . : XXXX.local
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : XXXX.local
XXXX.local


Ethernet adapter Wireless Network Connection:
Connection-specific DNS Suffix . : Stonac.local
Description . . . . . . . . . . . : Intel(R)
PRO/Wireless
3945ABG
Networ
k Connection
Physical Address. . . . . . . . . : XX-XX-XX
Dhcp Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
IP Address. . . . . . . . . . . . : 192.168.0.21
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.0.1
DHCP Server . . . . . . . . . . . : 192.168.0.10
DNS Servers . . . . . . . . . . . : 192.168.0.10
Primary WINS Server . . . . . . . : 192.168.0.10
Lease Obtained. . . . . . . . . . : Sat 29 September
2007
20:34:11
Lease Expires . . . . . . . . . . : Sun 07 October 2007
20:34:11


"Claus" wrote:

At the moment I do not see a reason for reinstalling the DNS.
Post an
ipconfig from one of the workstations and make sure that your
ISP
DNS
servers are entered in the Forwarders.

If symptoms still show up, rerun the CEICW.

--
Claus
"Stuart" <Stuart@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:4B1379DA-8116-4347-A9A2-3A265FD350A4@xxxxxxxxxxxxxxxx

Thanks for your reply. I think I have that already and I
have
made
no
changes. IPconfig server results below. Router automatically
picks
up
its
DNS
servers and DHCP is switched off.

Do I need to uninstall and reinstall the dns server in SBS?

Windows IP Configuration
Host Name . . . . . . . . . . . . : XXXXXX
Primary Dns Suffix . . . . . . . : XXXXXX.local
Node Type . . . . . . . . . . . . : Unknown
IP Routing Enabled. . . . . . . . : Yes
WINS Proxy Enabled. . . . . . . . : Yes
DNS Suffix Search List. . . . . . : XXXXXX.local
Ethernet adapter Local Area Connection:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel(R) PRO/1000 MT
Server
Adapter
Physical Address. . . . . . . . . : XX-XX-XX-XX-XX
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 192.168.0.10
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.0.1
DNS Servers . . . . . . . . . . . : 192.168.0.10
Primary WINS Server . . . . . . . : 192.168.0.10

C:\>

"Claus" wrote:

Your SBS should be the only DNS in your LAN and all
workstations
should
point to that. On your SBS DNS you enter your ISP DNS
servers
under
the
forwarder tab.

Also, if your router is doing the DHCP, turn it off and let
your
SBS
handle
that.

See if that resolves your issues

--
Claus
"Stuart" <Stuart@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in
message
news:BD290E7C-C1F2-49BE-B832-DF675BFD1D0E@xxxxxxxxxxxxxxxx

SBS2003R2 with a number of WinXPSP2 clients. Draytek
router
with
firewall.
One NIC set up. Router is connected to ADSL & ISP's WAN
quite
happily
and
uses ISP's DNS servers. SBS server set up correctly and
no
recent
changes.
I
keep losing web access even though router remains
connected.
If I
run
Configure Email and Internet Connections wizard, I get
access
back
for
a
period of time, then I lose it again. Rerun Configure
Email
and
Internet
Connections wizard and back in business. This works if I
chose
the
same
dns
servers sometimes, but always works if I swap them from
the
choice I
have
(BT
Broadband). Any ideas most welcome.

.

---

• Follow-Ups:
  • Re: Internet access problem caused by DNS failure
    • From: Claus

• References:
  • Re: Internet access problem caused by DNS failure
    • From: Stuart
  • Re: Internet access problem caused by DNS failure
    • From: Claus

• Prev by Date: RAID on server
• Next by Date: Re: Allocated Memory Alert?
• Previous by thread: Re: Internet access problem caused by DNS failure
• Next by thread: Re: Internet access problem caused by DNS failure
• Index(es):
  • Date
  • Thread

---

Relevant Pages Re: Added router, lost web site ... Did your ISP create a DNS record for your FQDN? ... > really have a direct connection. ... > Internet connection information: ... > Preferred DNS server: someisp DNS server address ... (microsoft.public.windows.server.sbs) Re: CEICW & software updates... ... calling pdispPPPBag->QueryInterface. ... DNS returned ok. ... Call to Clearing DNS server entries on the LAN NIC returned ok. ... Ethernet adapter Server Local Area Connection: ... (microsoft.public.windows.server.sbs) Re: DNS Server set to forwarder randomly going out to root servers ... We implemented the EDNS0 change to no avail. ... The firewall is actually acting as a caching DNS server. ... (microsoft.public.windows.server.dns) Re: Can Not Ping By Name ... >>> Make sure there's no firewall packaged with the VPN client. ... >>DNS server is the same physical server as the Exchange, ... > Network problem solving - general advice: ... (microsoft.public.windowsxp.network_web) Re: Internet connection wizard ... Ethernet adapter Local Area Connection: ... Connection-specific DNS Suffix. ... calling CNetCommit::ValidateRouterConnectionProperties. ... Call to Reading preferred DNS server IP returned ok. ... (microsoft.public.windows.server.sbs)

---

• Windows
• Science
• Usenet

• Archive
• About
• Privacy
• Search
• Imprint

www.tech-archive.net  > Archive  > Windows  > microsoft.public.windows.server.sbs  > 2007-10