Tek-Tips is the largest IT community on the Internet today!
Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!
-
Congratulations Chriss Miller on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!
MS DNS - Need clients to be forwarded to the internet
- Thread starter drphat
- Start date
- Thread starter
- #3
- Thread starter
- #5
- Thread starter
- #6
- Thread starter
- #7
brontosaurus
MIS
was your domain's forward lookup zone under the root zone? Do you see your domain under your forward lookup zone now? If not, you'll need to manually recreate it, and have the DC re-register all of it's records.
- Thread starter
- #9
well, i have reconfig'd some things and got my 2kbox workin find....but my 2nd dc (in another site is totally f'd up...i can't even get dhcp to work because it can't talk to ad, i get ldap errors from dcdiag "ldap connection failed with error 1231" im lost....i need some serious help
brontosaurus
MIS
try running a NETDIAG /FIX from the DC to repair simple DNS errors. (From Win2K Support Tools).
- Thread starter
- #11
brontosaurus
MIS
yep, it could. it sounds like your DC hasn't re-registered all of it's records. Have you rebooted it?
- Thread starter
- #13
yes i have rebooted, here is the output:
..........................................
Computer Name: MERRITT_ISLAND
DNS Host Name: merritt_island.bhwal
System info : Windows 2000 Server (Build 2195)
Processor : x86 Family 6 Model 7 Stepping 3, GenuineIntel
List of installed hotfixes :
Q147222
Netcard queries test . . . . . . . : Passed
Per interface results:
Adapter : Local Area Connection
Netcard queries test . . . : Passed
Host Name. . . . . . . . . : merritt_island
IP Address . . . . . . . . : 192.168.0.1
Subnet Mask. . . . . . . . : 255.255.255.0
Default Gateway. . . . . . : 192.168.0.3
Primary WINS Server. . . . : 192.168.0.1
Secondary WINS Server. . . : 192.168.1.2
Dns Servers. . . . . . . . : 192.168.0.1
192.168.1.2
AutoConfiguration results. . . . . . : Passed
Default gateway test . . . : Passed
NetBT name test. . . . . . : Passed
WINS service test. . . . . : Failed
The test failed. We were unable to query the WINS servers.
Global results:
Domain membership test . . . . . . : Failed
[WARNING] Ths system volume has not been completely replicated to the local machine. This machine is not working properly as a DC.
NetBT transports test. . . . . . . : Passed
List of NetBt transports currently configured:
NetBT_Tcpip_{56667DD1-F210-4C1C-AF8B-78C776634C7F}
1 NetBt transport currently configured.
Autonet address test . . . . . . . : Passed
IP loopback ping test. . . . . . . : Passed
Default gateway test . . . . . . . : Passed
NetBT name test. . . . . . . . . . : Passed
Winsock test . . . . . . . . . . . : Passed
DNS test . . . . . . . . . . . . . : Failed
[WARNING] The DNS host name 'merritt_island.bhwal' valid only on Windows 2000 DNS Servers. [DNS_ERROR_NON_RFC_NAME]
[WARNING] Cannot find a primary authoritative DNS server for the name
'merritt_island.bhwal.'. [RCODE_SERVER_FAILURE]
The name 'merritt_island.bhwal.' may not be registered in DNS.
[FATAL] Failed to fix: DC DNS entry bhwal.local. re-registeration on DNS server '192.168.0.1' failed.
DNS Error code: ERROR_TIMEOUT (Dns server may be down.)
[FATAL] Failed to fix: DC DNS entry _ldap._tcp.bhwal.local. re-registeration on DNS server '192.168.0.1' failed.
DNS Error code: ERROR_TIMEOUT (Dns server may be down.)
[FATAL] Failed to fix: DC DNS entry _ldap._tcp.f0b3bfbb-66e8-40e6-a95f-1385deff1d7f.domains._msdcs.bhwal.local. re-registeration on DNS server '192.168.0.1' failed.
DNS Error code: ERROR_TIMEOUT (Dns server may be down.)
[FATAL] Failed to fix: DC DNS entry 0bff794f-e5ab-4bfa-92c6-60240a204d0e._msdcs.bhwal.local. re-registeration on DNS server '192.168.0.1' failed.
DNS Error code: ERROR_TIMEOUT (Dns server may be down.)
[FATAL] Failed to fix: DC DNS entry _kerberos._tcp.dc._msdcs.bhwal.local. re-registeration on DNS server '192.168.0.1' failed.
DNS Error code: ERROR_TIMEOUT (Dns server may be down.)
[FATAL] Failed to fix: DC DNS entry _ldap._tcp.dc._msdcs.bhwal.local. re-registeration on DNS server '192.168.0.1' failed.
DNS Error code: ERROR_TIMEOUT (Dns server may be down.)
[FATAL] Failed to fix: DC DNS entry _kerberos._tcp.bhwal.local. re-registeration on DNS server '192.168.0.1' failed.
DNS Error code: ERROR_TIMEOUT (Dns server may be down.)
[FATAL] Failed to fix: DC DNS entry _kerberos._udp.bhwal.local. re-registeration on DNS server '192.168.0.1' failed.
DNS Error code: ERROR_TIMEOUT (Dns server may be down.)
[FATAL] Failed to fix: DC DNS entry _kpasswd._tcp.bhwal.local. re-registeration on DNS server '192.168.0.1' failed.
DNS Error code: ERROR_TIMEOUT (Dns server may be down.)
[FATAL] Failed to fix: DC DNS entry _kpasswd._udp.bhwal.local. re-registeration on DNS server '192.168.0.1' failed.
DNS Error code: ERROR_TIMEOUT (Dns server may be down.)
[FATAL] Failed to fix: DC DNS entry . : Skipped
No active remote access connections.
Modem diagnostics test . . . . . . : Passed
IP Security test . . . . . . . . . : Passed
IPSec policy service is active, but no policy is assigned.
The command completed successfully
..........................................
Computer Name: MERRITT_ISLAND
DNS Host Name: merritt_island.bhwal
System info : Windows 2000 Server (Build 2195)
Processor : x86 Family 6 Model 7 Stepping 3, GenuineIntel
List of installed hotfixes :
Q147222
Netcard queries test . . . . . . . : Passed
Per interface results:
Adapter : Local Area Connection
Netcard queries test . . . : Passed
Host Name. . . . . . . . . : merritt_island
IP Address . . . . . . . . : 192.168.0.1
Subnet Mask. . . . . . . . : 255.255.255.0
Default Gateway. . . . . . : 192.168.0.3
Primary WINS Server. . . . : 192.168.0.1
Secondary WINS Server. . . : 192.168.1.2
Dns Servers. . . . . . . . : 192.168.0.1
192.168.1.2
AutoConfiguration results. . . . . . : Passed
Default gateway test . . . : Passed
NetBT name test. . . . . . : Passed
WINS service test. . . . . : Failed
The test failed. We were unable to query the WINS servers.
Global results:
Domain membership test . . . . . . : Failed
[WARNING] Ths system volume has not been completely replicated to the local machine. This machine is not working properly as a DC.
NetBT transports test. . . . . . . : Passed
List of NetBt transports currently configured:
NetBT_Tcpip_{56667DD1-F210-4C1C-AF8B-78C776634C7F}
1 NetBt transport currently configured.
Autonet address test . . . . . . . : Passed
IP loopback ping test. . . . . . . : Passed
Default gateway test . . . . . . . : Passed
NetBT name test. . . . . . . . . . : Passed
Winsock test . . . . . . . . . . . : Passed
DNS test . . . . . . . . . . . . . : Failed
[WARNING] The DNS host name 'merritt_island.bhwal' valid only on Windows 2000 DNS Servers. [DNS_ERROR_NON_RFC_NAME]
[WARNING] Cannot find a primary authoritative DNS server for the name
'merritt_island.bhwal.'. [RCODE_SERVER_FAILURE]
The name 'merritt_island.bhwal.' may not be registered in DNS.
[FATAL] Failed to fix: DC DNS entry bhwal.local. re-registeration on DNS server '192.168.0.1' failed.
DNS Error code: ERROR_TIMEOUT (Dns server may be down.)
[FATAL] Failed to fix: DC DNS entry _ldap._tcp.bhwal.local. re-registeration on DNS server '192.168.0.1' failed.
DNS Error code: ERROR_TIMEOUT (Dns server may be down.)
[FATAL] Failed to fix: DC DNS entry _ldap._tcp.f0b3bfbb-66e8-40e6-a95f-1385deff1d7f.domains._msdcs.bhwal.local. re-registeration on DNS server '192.168.0.1' failed.
DNS Error code: ERROR_TIMEOUT (Dns server may be down.)
[FATAL] Failed to fix: DC DNS entry 0bff794f-e5ab-4bfa-92c6-60240a204d0e._msdcs.bhwal.local. re-registeration on DNS server '192.168.0.1' failed.
DNS Error code: ERROR_TIMEOUT (Dns server may be down.)
[FATAL] Failed to fix: DC DNS entry _kerberos._tcp.dc._msdcs.bhwal.local. re-registeration on DNS server '192.168.0.1' failed.
DNS Error code: ERROR_TIMEOUT (Dns server may be down.)
[FATAL] Failed to fix: DC DNS entry _ldap._tcp.dc._msdcs.bhwal.local. re-registeration on DNS server '192.168.0.1' failed.
DNS Error code: ERROR_TIMEOUT (Dns server may be down.)
[FATAL] Failed to fix: DC DNS entry _kerberos._tcp.bhwal.local. re-registeration on DNS server '192.168.0.1' failed.
DNS Error code: ERROR_TIMEOUT (Dns server may be down.)
[FATAL] Failed to fix: DC DNS entry _kerberos._udp.bhwal.local. re-registeration on DNS server '192.168.0.1' failed.
DNS Error code: ERROR_TIMEOUT (Dns server may be down.)
[FATAL] Failed to fix: DC DNS entry _kpasswd._tcp.bhwal.local. re-registeration on DNS server '192.168.0.1' failed.
DNS Error code: ERROR_TIMEOUT (Dns server may be down.)
[FATAL] Failed to fix: DC DNS entry _kpasswd._udp.bhwal.local. re-registeration on DNS server '192.168.0.1' failed.
DNS Error code: ERROR_TIMEOUT (Dns server may be down.)
[FATAL] Failed to fix: DC DNS entry . : Skipped
No active remote access connections.
Modem diagnostics test . . . . . . : Passed
IP Security test . . . . . . . . . : Passed
IPSec policy service is active, but no policy is assigned.
The command completed successfully
GlenJohnson
MIS
Maybe dcpromo, remove it as a dc, then dcpromo again to promote it, then replicate? Just a thought. Bronto's better at this stuff than I am. Glen A. Johnson
Microsoft Certified Professional
glen@nellsgiftbox.com
![[americanflag]](/data/assets/smilies/americanflag.gif "[americanflag] [americanflag]")
"The characteristic of scientific progress is our knowing that we did not know."
Gaston Bachelard (1884-1962); French philosopher.
Microsoft Certified Professional
glen@nellsgiftbox.com
"The characteristic of scientific progress is our knowing that we did not know."
Gaston Bachelard (1884-1962); French philosopher.
brontosaurus
MIS
what type of zones are you using? AD integrated? Do you see SOA and NS records in your Forward lookup zone? Before, when you said you reconfigured some things...what did you do?
brontosaurus
MIS
if those zones are AD integrated, they can be tricky to repair, so if you feel like you're digging yourself into a hole, check out this article:
you can rebuild your DNS without dcpromo....
you can rebuild your DNS without dcpromo....
- Thread starter
- #17
- Thread starter
- #18
ok, im back and im going to give a recap on what is happening now.
last week i upgraded my servers to win2k, had some issues with DNS but got it straight when i made one of my servers a root server for "bhwal.local" and then set them both to active directory integrated....boom everything works fine...but i have one prob, i can't forward the dns requests to my external BIND server (because the servers are root) so...i post this thread...from the information in it i go ahead and delete the root directory and wait....after waiting i try to get on to admin some stuph from my win2k box and nothing works (AD) i go to the server locall and it works...so i terminal in to my remote server and find that it does not see anything working at all....so thats where im at now...i desparatly need help, i have gone through MANY knowledgebase articles...is there ANYone who has seen this...i think its DNS, but im setting it all up correctly...it just doesn't seem to take...
last week i upgraded my servers to win2k, had some issues with DNS but got it straight when i made one of my servers a root server for "bhwal.local" and then set them both to active directory integrated....boom everything works fine...but i have one prob, i can't forward the dns requests to my external BIND server (because the servers are root) so...i post this thread...from the information in it i go ahead and delete the root directory and wait....after waiting i try to get on to admin some stuph from my win2k box and nothing works (AD) i go to the server locall and it works...so i terminal in to my remote server and find that it does not see anything working at all....so thats where im at now...i desparatly need help, i have gone through MANY knowledgebase articles...is there ANYone who has seen this...i think its DNS, but im setting it all up correctly...it just doesn't seem to take...
- Thread starter
- #19
well, i have gotten it somewhat resolved for now...i re-added a root zone and but did not integrate it into AD....so at least ONE of my servers is still able to forward to the internet....do any of you know ANY way around this? besides adding another server and making it the root...(hmmm..well.....i guess thats my only option...)
- Status
Similar threads
- Question
- Locked
- Question
