PHWinfo - Afficher un message - missing information from forestdnszones / domaindnszones

27/07/2006, 21h51

_msdcs, _sites, and _tcp are all correct. they each list all the sites
(which are also seen in ad sites and services).

sitea = primary dns
siteb = secondary (would it be better to have a primary dns site in
each location, even though they're all in the same domain?)
sitec = secondary (would it be better to have a primary dns site in
each location, even though they're all in the same domain?)

'siteb' is listed in domaindnszones, however sitea and sitec aren't.

sitea users = point to sitea dns.
siteb users = point to siteb dns, and a secondary of sitea
sitec users = point to sitec dns, and a secondary of sitea

another thing i noticed (i have several users who have "permissions" to
change things) -- which i'm about to cut off -- is:

in ad sites and services, under subnets:

xxx.xxx.129.0/26
xxx.xxx.129.128/25
xxx.xxx.169.64/27
xxx.xxx.129.64/27
xxx.xxx.129.96/27
xxx.xxx.131.0/27
xxx.xxx.131.112/28
xxx.xxx.131.144/28
xxx.xxx.255.160/28
*i also have quite a few entries that are the same as the above but
with a bunch of jibberish at the end of the bitmask (for instance
{A)#%@#()%UBN&)!@B&P!b24ybdlabgysdgy82gb7628ls76d8 slds}. i think these
are either bad, or just incorrect, and have to be removed.*

from what i understood it needed to be xxx.xxx.xxx.0/{bitmask}

all of the xxx.xxx are the same. i just omitted the other octets so i'm
not publishing my ip addresses / ranges on the www.

i tried 'netdiag /fix' but it's not available in windows 2003....
unless i was doing something wrong (like not running 'netdiag /fix'
from the dns server in question).

thanks for all your guys!

Ace Fekay [MVP] wrote:
> In news:1153928979.161595.313970@i42g2000cwa.googlegr oups.com,
> eric.olson@gmail.com <eric.olson@gmail.com> stated, which I commented on
> below:
> > i was looking in dns this morning, and noticed under
> >
> > - forestdnszones
> > - domaindnszones
> >
> > i had one site (siteb), but (sitea), and (sitec) were missing. (those
> > are the three sites in active directory sites and services.
> >
> > the symptom that had me look at this, is my users are not going to
> > their correct domain controllers. (i've checked ad sites & services),
> > and this is the only thing that i see that's incorrect.
> >
> > a hand ...someone?
> >
> > thanks a lot!
> >
> > eric
>
> Sites under the ForestDnsZones and DomainDnsZones application containers? Do
> you mean domains? ForestDnsZones should show all domains, however the
> DomainDnsZones should only show what domains it's configured with zones that
> are DomainDnsZones integrated.
>
> As Jorge asked, do you have "Sites" configured with a respective IP subnet
> object that is associated with their respective Sites?
>
> For Site domain controller information and services they offer, do not look
> in the application containers but rather in the SRV records. They are the
> ones with the underscores in them: _msdcs, _sites, _tcp, and _udp. Look
> under the _sites folder for services running port 389 (LDAP or the domain
> controllers themselves, and 3268 GCs (Global Catalogs).
>
> Under the _msdcs folder you will see a "gc" folder. That will indicate all
> of your GCs in the forest. Is there a GC for each Site?
>
> As long as Sites are configured properly with their respecitive IP subnet
> object, and the querying client's IP matches one of them, and there's a GC
> in the Site, it will use the services in that site. If not, or
> misconfigured, it will use a random lookup.
>
> If I misunderstood, can you be more specific as to *exactly* what you are
> seeing under which folder in DNS and possibly any errors in the Event logs
> of the DCs and of the clients? Also, let use know what DNS servers the
> clients are using.
>
> --
> Ace
> Innovative IT Concepts, Inc
> Willow Grove, PA
>
> This posting is provided "AS-IS" with no warranties or guarantees and
> confers no rights.
>
> Ace Fekay, MCSE 2003 & 2000, MCSA 2003 & 2000, MCSE+I, MCT, MVP
> Microsoft MVP - Directory Services
> Microsoft Certified Trainer
>
> Having difficulty reading or finding responses to your post?
> Instead of the website you're using, I suggest to use OEx (Outlook Express
> or any other newsreader), and configure a news account, pointing to
> news.microsoft.com. This is a direct link to the Microsoft Public
> Newsgroups. It is FREE and requires NO ISP's Usenet account. OEx allows you
> to easily find, track threads, cross-post, sort by date, poster's name,
> watched threads or subject.
> It's easy:
>
> How to Configure OEx for Internet News
> http://support.microsoft.com/?id=171164
>
> Infinite Diversities in Infinite Combinations
> Assimilation Imminent. Resistance is Futile
> "Very funny Scotty. Now, beam down my clothes."
>
> The only constant in life is change...

27/07/2006, 21h51	#4
eric.olson@gmail.com Messages: n/a Hébergeur:	Re: missing information from forestdnszones / domaindnszones _msdcs, _sites, and _tcp are all correct. they each list all the sites (which are also seen in ad sites and services). sitea = primary dns siteb = secondary (would it be better to have a primary dns site in each location, even though they're all in the same domain?) sitec = secondary (would it be better to have a primary dns site in each location, even though they're all in the same domain?) 'siteb' is listed in domaindnszones, however sitea and sitec aren't. sitea users = point to sitea dns. siteb users = point to siteb dns, and a secondary of sitea sitec users = point to sitec dns, and a secondary of sitea another thing i noticed (i have several users who have "permissions" to change things) -- which i'm about to cut off -- is: in ad sites and services, under subnets: xxx.xxx.129.0/26 xxx.xxx.129.128/25 xxx.xxx.169.64/27 xxx.xxx.129.64/27 xxx.xxx.129.96/27 xxx.xxx.131.0/27 xxx.xxx.131.112/28 xxx.xxx.131.144/28 xxx.xxx.255.160/28 i also have quite a few entries that are the same as the above but with a bunch of jibberish at the end of the bitmask (for instance {A)#%@#()%UBN&)!@B&P!b24ybdlabgysdgy82gb7628ls76d8 slds}. i think these are either bad, or just incorrect, and have to be removed. from what i understood it needed to be xxx.xxx.xxx.0/{bitmask} all of the xxx.xxx are the same. i just omitted the other octets so i'm not publishing my ip addresses / ranges on the www. i tried 'netdiag /fix' but it's not available in windows 2003.... unless i was doing something wrong (like not running 'netdiag /fix' from the dns server in question). thanks for all your guys! Ace Fekay [MVP] wrote: > In news:1153928979.161595.313970@i42g2000cwa.googlegr oups.com, > eric.olson@gmail.com <eric.olson@gmail.com> stated, which I commented on > below: > > i was looking in dns this morning, and noticed under > > > > - forestdnszones > > - domaindnszones > > > > i had one site (siteb), but (sitea), and (sitec) were missing. (those > > are the three sites in active directory sites and services. > > > > the symptom that had me look at this, is my users are not going to > > their correct domain controllers. (i've checked ad sites & services), > > and this is the only thing that i see that's incorrect. > > > > a hand ...someone? > > > > thanks a lot! > > > > eric > > Sites under the ForestDnsZones and DomainDnsZones application containers? Do > you mean domains? ForestDnsZones should show all domains, however the > DomainDnsZones should only show what domains it's configured with zones that > are DomainDnsZones integrated. > > As Jorge asked, do you have "Sites" configured with a respective IP subnet > object that is associated with their respective Sites? > > For Site domain controller information and services they offer, do not look > in the application containers but rather in the SRV records. They are the > ones with the underscores in them: _msdcs, _sites, _tcp, and _udp. Look > under the _sites folder for services running port 389 (LDAP or the domain > controllers themselves, and 3268 GCs (Global Catalogs). > > Under the _msdcs folder you will see a "gc" folder. That will indicate all > of your GCs in the forest. Is there a GC for each Site? > > As long as Sites are configured properly with their respecitive IP subnet > object, and the querying client's IP matches one of them, and there's a GC > in the Site, it will use the services in that site. If not, or > misconfigured, it will use a random lookup. > > If I misunderstood, can you be more specific as to exactly what you are > seeing under which folder in DNS and possibly any errors in the Event logs > of the DCs and of the clients? Also, let use know what DNS servers the > clients are using. > > -- > Ace > Innovative IT Concepts, Inc > Willow Grove, PA > > This posting is provided "AS-IS" with no warranties or guarantees and > confers no rights. > > Ace Fekay, MCSE 2003 & 2000, MCSA 2003 & 2000, MCSE+I, MCT, MVP > Microsoft MVP - Directory Services > Microsoft Certified Trainer > > Having difficulty reading or finding responses to your post? > Instead of the website you're using, I suggest to use OEx (Outlook Express > or any other newsreader), and configure a news account, pointing to > news.microsoft.com. This is a direct link to the Microsoft Public > Newsgroups. It is FREE and requires NO ISP's Usenet account. OEx allows you > to easily find, track threads, cross-post, sort by date, poster's name, > watched threads or subject. > It's easy: > > How to Configure OEx for Internet News > http://support.microsoft.com/?id=171164 > > Infinite Diversities in Infinite Combinations > Assimilation Imminent. Resistance is Futile > "Very funny Scotty. Now, beam down my clothes." > > The only constant in life is change...