Let's see exactly what you are looking at on your screen. Copy and paste
everything you see on the command line. Or, describe all the steps you took
before you got that error. For example, did that error come up as soon as you
type nslookup and press enter?
Sincerely,
Dèjì Akómöláfé, MCSE+M
Can you provide more info like when the error occurs? Right after starting
NSLOOKUP or after to query for some FQDN?
Jorge
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of [EMAIL PROTECTED]
Sent: Tuesday, February 15, 2005 14:45
To:
: dinsdag 15 februari 2005 18:09
To: [EMAIL PROTECTED]
Subject: Re: RE: [ActiveDir] DNS issues
Jorge,
I killed both servers and am now starting fresh. I'm going to install
W2k3 on them, get AD/DNS on one server and DNS on the other. Do you have
any suggestions for steps I should take?
Rob
in Virginia.
Thanks for your help Jorge.
Rob
From: Jorge de Almeida Pinto [EMAIL PROTECTED]
Date: 2005/02/15 Tue PM 12:27:10 EST
To: ActiveDir@mail.activedir.org
Subject: RE: RE: [ActiveDir] DNS issues
Hi Rob,
Why not install AD/DNS on both servers?
Steps you could take:
* Install
: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of [EMAIL PROTECTED]
Sent: 15 February 2005 17:42
To: ActiveDir@mail.activedir.org
Subject: RE: RE: [ActiveDir] DNS issues
Thanks so much Jorge.
I am finishing the last server now. I the IP structure in place.
I will get DNS running on both
wanted to go from
scratch.
Any advice?
Rob
From: Ruston, Neil [EMAIL PROTECTED]
Date: 2005/02/15 Tue PM 12:50:08 EST
To: 'ActiveDir@mail.activedir.org' ActiveDir@mail.activedir.org
Subject: RE: RE: [ActiveDir] DNS issues
Sorry to barge in here, but wasn't the original issue simply due
to go from
scratch.
Any advice?
Rob
From: Ruston, Neil [EMAIL PROTECTED]
Date: 2005/02/15 Tue PM 12:50:08 EST
To: 'ActiveDir@mail.activedir.org' ActiveDir@mail.activedir.org
Subject: RE: RE: [ActiveDir] DNS issues
Sorry to barge in here, but wasn't the original issue simply due
PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of [EMAIL PROTECTED]
Sent: dinsdag 15 februari 2005 18:42
To: ActiveDir@mail.activedir.org
Subject: RE: RE: [ActiveDir] DNS issues
Thanks so much Jorge.
I am finishing the last server now. I the IP structure in place.
I will get DNS running on both
to accomplish
that
Greetz,
Jorge
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Ruston, Neil
Sent: dinsdag 15 februari 2005 18:50
To: 'ActiveDir@mail.activedir.org'
Subject: RE: RE: [ActiveDir] DNS issues
Sorry to barge in here, but wasn't the original issue
]
Subject: RE: [ActiveDir] DNS Issues
By default, DNS queries are done over UDP. UDP is stateless - and therefore
there is no automatic reverse allow created by firewalls. So what's
happening is that you're probably failing the UDP request because the
response can't come back in to the DNS server
Are you using Cisco PIX's?
Windows 2000 DNS uses abnormal sized dns packets (too big), and the
PIX's block them. There is a patch for the pix ISO, or there is a a
patch from MS to change the size. This is not a problem with 2K3 DNS.
Jordan
On Tue, 16 Nov 2004 07:47:43 -0600, Rimmerman, Russ
No, Juniper Netscreens
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Jordan Arendt
Sent: Thursday, November 18, 2004 10:49 AM
To: [EMAIL PROTECTED]
Subject: Re: [ActiveDir] DNS Issues
Are you using Cisco PIX's?
Windows 2000 DNS uses abnormal sized
]
Subject: Re: [ActiveDir] DNS Issues
Are you using Cisco PIX's?
Windows 2000 DNS uses abnormal sized dns packets (too big), and the
PIX's block them. There is a patch for the pix ISO, or there is a a
patch from MS to change the size. This is not a problem with 2K3 DNS.
Jordan
On Tue, 16 Nov
PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of
Perdue David J Contr InDyne/Enterprise IT
Sent: Thursday, November 18, 2004 8:38 AM
To: '[EMAIL PROTECTED]'
Subject: RE: [ActiveDir] DNS Issues
Win2k DNS used a random port in addition to port 53 for DNS
resolution. I don't know if Win2k3
to
our DNS servers from the outside?
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Roger Seielstad
Sent: Tuesday, November 16, 2004 11:32 PM
To: [EMAIL PROTECTED]
Subject: RE: [ActiveDir] DNS Issues
TCP shouldn't be an issue - since most firewalls
Title: RE: [ActiveDir] DNS Issues
I saw something similar with checkpoint firewalls. In
particular the NG Versions
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Kim Kruse
HansenSent: Wednesday, November 17, 2004 1:09 AMTo:
'[EMAIL PROTECTED]'Subject: RE: [ActiveDir] DNS
:[EMAIL PROTECTED] On Behalf Of Mulnick, Al
Sent: Tuesday, November 16, 2004 9:41 AM
To: [EMAIL PROTECTED]
Subject: RE: [ActiveDir] DNS Issues
TCP or UDP through the firewall?
What have you done to troubleshoot? Logs? ??
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED
-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of
Rimmerman, Russ
Sent: Wednesday, November 17, 2004 5:53 AM
To: [EMAIL PROTECTED]
Subject: RE: [ActiveDir] DNS Issues
Our Win2k DNS servers are on our internal network. I have a
rule allowing
53 tcp and 53 udp outbound
Id advise using forwarding for the
functions you require.
It may seem stupid but I take it
the DNS server/s have appropriate rules in your firewall/s?
From:
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Rimmerman, Russ
Sent: 16 November 2004 13:48
To: [EMAIL
What have you done to date for troubleshooting?
For example, have you used NSLOOKUP with the debug options before?
How is your DNS setup in relation to your internet connection?
Al
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Rimmerman, Russ
-hints, and the
firewall allows them out port 53.
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Robert
RutherfordSent: Tuesday, November 16, 2004 7:53 AMTo:
[EMAIL PROTECTED]Subject: RE: [ActiveDir] DNS
Issues
Id advise using
forwarding for the functions you require.
It may
PROTECTED]
Subject: RE: [ActiveDir] DNS
Issues
Yes, all DNS is working fine except for
some rare instances of hostnames we've run into. Last week we couldn't
get to ftp.nai.com but now we can. All
our workstations are pointed to our child DCs for DNS. They are set to
forward to our empty root DCs
TCP or UDP through the firewall?
What have you done to troubleshoot? Logs? ??
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Rimmerman, Russ
Sent: Tuesday, November 16, 2004 8:58 AM
To: [EMAIL PROTECTED]
Subject: RE: [ActiveDir] DNS Issues
Yes, all
I've seen something similar to this and it was because of
corrupt cache on the server. Try clearing out the cache and see if that
works.
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Rimmerman,
RussSent: Tuesday, November 16, 2004 7:48 AMTo:
[EMAIL PROTECTED]Subject:
Russ,
At the forest root DNS servers, enable
forwarding and point these forwarders to your ISP DNS. The root hints are
really not that reliable in the case that you are currently using them. Making
use of an established DNS system is much more robust than using the root hints
at your
Sounds like your firewall isn't configured to allow inbound
UDP/53 to your empty root DNS serves.
Now - if you're running a non-contiguous empty root (ie
domain.com and domain.net for instance), I'd reverse your design. Have the main
domain DNS servers resolve to the net and have th empty
Issues
TCP or UDP through the firewall?
What have you done to troubleshoot? Logs? ??
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of
Rimmerman, Russ
Sent: Tuesday, November 16, 2004 8:58 AM
To: [EMAIL PROTECTED]
Subject: RE: [ActiveDir] DNS
Title: RE: [ActiveDir] DNS Issues
We experienced the same exact problem , when we upgraded to W3K DNS. Check out kb828731. It deals with Extension Mechanisms for DNS (EDNS0) .
-Original Message-
From: Mulnick, Al [mailto:[EMAIL PROTECTED]]
Sent: 16. november 2004 16:41
To: [EMAIL
Title: DNS Issues - ipconfig /flushdns
When you do a ipconfig /displaydns what is
the TTL for the incorrect values?
From: Tashildar,
Dinesh (Cognizant) [mailto:[EMAIL PROTECTED]
Sent: Thursday, June 24, 2004 9:40
PM
To: [EMAIL PROTECTED]
Subject: RE: [ActiveDir] DNS
Issues
Title: DNS Issues - ipconfig /flushdns
When you say it always shows old ip
address how long are you waiting? If you try to resolve the hostname
immediately after the box gets a new ip, it is perfectly normal for the other
boxes to have the old address cached. It can take up to 10 minutes
Title: DNS Issues - ipconfig /flushdns
It takes 2-3 days..
From: Passo, Larry
[mailto:[EMAIL PROTECTED] Sent: Thursday, June 24, 2004 8:57
PMTo: [EMAIL PROTECTED]Subject: RE: [ActiveDir]
DNS Issues - ipconfig /flushdns
When you say it always
shows old ip address how long are you waiting
ow realize that Today is the Tomorrow you were worried about Yesterday? -anon
From: Mulnick, AlSent: Tue 5/18/2004 2:30 PMTo: [EMAIL PROTECTED]Subject: RE: [ActiveDir] dns issues
WINS?
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Kern, Tom
Sent: Tuesday, Ma
Message-
From: deji Agba [mailto:[EMAIL PROTECTED]
Sent: Wed 5/19/2004 3:04 AM
To: [EMAIL PROTECTED]
Cc:
Subject: RE: [ActiveDir] dns issues
More likely DNS than WINS. Trying bouncing the new Server, then restart
netlogon
between client and
dc (same subnet, across a wan, etc.)
Hope this is a helpful start!
~Eric
From:
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Kern, Tom
Sent: Wednesday, May 19, 2004 5:20
AM
To: [EMAIL PROTECTED]
Subject: RE: [ActiveDir] dns
issues
i bounced the server
WINS?
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Kern, Tom
Sent: Tuesday, May 18, 2004 5:17 PM
To: ActiveDir (E-mail)
Subject: [ActiveDir] dns issues
I had my primary fsmo role holder(pdc,infra,rid) go down. It was also a dns
server(ad
: [ActiveDir] dns issues
WINS?
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Kern, Tom
Sent: Tuesday, May 18, 2004 5:17 PM
To: ActiveDir (E-mail)
Subject: [ActiveDir] dns
We do our dhcp in our PIXen, a sample config for a small
remote location is below.
The one thing I would want you to test is to see whether
you have the DNS UDP and TCP ports open across the VPN. It sounds as if you do
not.
dhcpd address 192.168.100.100-192.168.100.149
insidedhcpd dns
Do a network trace and actually look to see if your machine
is doing the right thing and if requests being sent out are being responded to.
joe
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Todd L.
GrahamSent: Thursday, May 13, 2004 8:30 AMTo:
[EMAIL
Title: Message
Sounds
like you are allowing DNS above your encrypt rule on your firewall... check it.
May also be worth setting up no NAT between your local lans.
BR,
Rob
-Original Message-From: Todd L. Graham
[mailto:[EMAIL PROTECTED] Sent: 13 May 2004 13:30To:
[EMAIL
Title: Message
What happens when you run NSLookup? Can you resolve names from your
listed DNS Servers?
How about NetDiag?
Sounds like perhaps DNS traffic might be being
blocked?
**Charlie KaiserMCSE, CCNASystems
EngineerEssex Credit / Brickwalk510 595
When you say you're getting the "correct" DNS servers, what
do you mean?
Also, are you replicating DNS zones for the child domains
between sites? It strikes me like what's really happening is that your child
domains don't hold each other's DNS zones, so you can only see the local
info.
To: [EMAIL PROTECTED]
Subject: RE: [ActiveDir] DNS
issues?
When
you say you're getting the correct DNS servers, what do you mean?
Also,
are you replicating DNS zones for the child domains between sites? It strikes
me like what's really happening is that your child domains don't hold each
replicating zones, are your
transferring them both directions?
Lots of questions, but need more answers to figure this out
better.
Al
From: Todd L. Graham [mailto:[EMAIL PROTECTED]
Sent: Thursday, May 13, 2004 12:51 PMTo:
[EMAIL PROTECTED]Subject: RE: [ActiveDir] DNS issues?
When I do an IP
Administrator Inovis Inc.
From: Todd L. Graham
[mailto:[EMAIL PROTECTED] Sent: Thursday, May 13, 2004 12:51
PMTo: [EMAIL PROTECTED]Subject: RE:
[ActiveDir] DNS issues?
When I do an IP config
Im getting the correct IP addresses listed for the DNS servers. DNS is
set to have
44 matches
Mail list logo
