PHWinfo - Afficher un message

12/03/2006, 23h45

I appreciate your assistance. Here is the ipconfig /all information as well
as DNS Zones.

Microsoft Windows 2000 [Version 5.00.2195]
(C) Copyright 1985-2000 Microsoft Corp.

ipconfig /all

Windows 2000 IP Configuration

Host Name . . . . . . . . . . . . : lha4ucsdc1
Primary DNS Suffix . . . . . . . : lha4.navy.mil
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : lha4.navy.mil
navy.mil

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . : lha4.navy.mil
Description . . . . . . . . . . . : HP Network Team #1
Physical Address. . . . . . . . . : xx-xx-xx-xx-xx-xx
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 205.69.129.20
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 205.69.129.1
DNS Servers . . . . . . . . . . . : 205.69.129.20
205.69.129.21
Primary WINS Server . . . . . . . : 205.69.129.20

Here is the DC1 FWD DNS Zones

Name Type Status
blockeddomains.com Standard Primary Running
lha4.navy.mil Active Directory-integrated Running
lha4m.usmc.mil Secondary Running
nassau.usmc.mil Secondary Running

Here is the lha4 fwd lookup sample from DC1.

Name Type Data
(same as parent folder) A 205.69.129.20
(same as parent folder) NS lha4ucsdc1.lha4.navy.mil.
(same as parent folder) NS lha4ucsdc2.lha4.navy.mil.
(same as parent folder) SOA [7473], lha4ucsdc1.lha4.navy.mil.,
admin.lha4.navy.mil.
_msdcs
_sites
_tcp
_udp
distroserver CNAME lha4ucsdc1.lha4.navy.mil.
gw A 205.69.129.1
isaserver CNAME lha4ucsdc2.lha4.navy.mil.
lha4ucsdc1 A 205.69.129.20
lha4ucsdc2 A 205.69.129.21
proxy CNAME lha4ucsdc2.lha4.navy.mil.

Here is the Reverse DNS Zones for DC1

Name Type Status
0.in-addr.arpa Standard Primary Running
127.in-addr.arpa Standard Primary Running
129.69.205.in-addr.arpa Active Directory-integrated Running
255.in-addr.arpa Standard Primary Running

Here is the reverse lookup for lha4

Name Type Data
1 PTR gw.lha4.navy.mil.
20 PTR lha4ucsdc1.lha4.navy.mil.
21 PTR lha4ucsdc2.lha4.navy.mil.
(same as parent folder) NS lha4ucsdc1.lha4.navy.mil.
(same as parent folder) NS lha4ucsdc2.lha4.navy.mil.
(same as parent folder) SOA [2703], lha4ucsdc1.lha4.navy.mil.,
admin.lha4.navy.mil.

Here is the DC2 FWD DNS Zones

Name Type Status
lha4.navy.mil Active Directory-integrated Running
lha4m.usmc.mil Standard Primary Running
nassau.usmc.mil Standard Primary Running

Here is the lha4 fwd lookup sample from DC2. I kept most of it out for
security reason.

Name Type Data
(same as parent folder) A 205.69.129.20
(same as parent folder) NS lha4ucsdc1.lha4.navy.mil.
(same as parent folder) NS lha4ucsdc2.lha4.navy.mil.
(same as parent folder) SOA [7469], lha4ucsdc2.lha4.navy.mil.,
admin.lha4.navy.mil.
_msdcs
_sites
_tcp
_udp
distroserver CNAME lha4ucsdc1.lha4.navy.mil.
gw A 205.69.129.1
isaserver CNAME lha4ucsdc2.lha4.navy.mil.
lha4ucsdc1 A 205.69.129.20
lha4ucsdc2 A 205.69.129.21
proxy CNAME lha4ucsdc2.lha4.navy.mil.

Here is the reverse DNS Zones for lha4 on DC2

Name Type Status
0.in-addr.arpa Standard Primary Running
127.in-addr.arpa Standard Primary Running
129.69.205.in-addr.arpa Active Directory-integrated Running
255.in-addr.arpa Standard Primary Running

Here is the reverse lookup

Name Type Data
1 PTR gw.lha4.navy.mil.
20 PTR lha4ucsdc1.lha4.navy.mil.
21 PTR lha4ucsdc2.lha4.navy.mil.
(same as parent folder) NS lha4ucsdc1.lha4.navy.mil.
(same as parent folder) NS lha4ucsdc2.lha4.navy.mil.
(same as parent folder) SOA [2701], lha4ucsdc2.lha4.navy.mil.,
admin.lha4.navy.mil.

___

Allen

"Kevin D. Goodknecht Sr. [MVP]" wrote:

> Allen wrote:
> > When I go into AD Sites and Services to manually replicate DC1 and
> > DC2, I get an error on one server and another error on the other.
> >
> > DC1 Reads:
> > The following error occurred during the attempt to synchronize the
> > domain controllers: The DSA operation is unable to proceed because of
> > a DNS lookup failure.
> >
> > DC2 Reads:
> > The following error occured during the attempt to contact the domain
> > controllers: The RPC server is unavailable.
> >
> > I am getting a couple of errors showing in Event Viewer. Some of
> > which are the following:
> >
> > Event ID 5773
> > The DNS server for this DC does not support dynamic DNS. Add the DNS
> > records from the file '%SystemRoot%\System32\Config\netlogon.dns' to
> > the DNS server serving the domain referenced in that file.
> >
> > Event ID 409
> > The DNS server list of restricted interfaces contains IP addresses
> > that are not configured for use at the server computer.
> >
> >
> > Use the DNS manager server properties, interfaces dialog, to verify
> > and
> > reset the IP addresses the DNS server should listen on. For more
> > information, see "To restrict a DNS server to listen only on selected
> > addresses" in the online .
> >
> > I have pinged DC1 from DC2 and vice versa with no problem. I did so
> > by both IP and by server name. Both of which were successful. I
> > checked the SVR records and both servers were in DNS properly.
> > However, when I did the DCDIAG it gave me some errors as well.
> >
> > DC2's server GUID DNS name could not be resolved to an IP address. The
> > server name resolved to an IP address and was pingable.
> >
> > It also stated during primary tests for "Testing server" that DC2 is
> > skipping all tests because it is not responding to directory service
> > requests. The rest of the tests pass.
> >
> > When running the NTDSUTIL command I also get the following:
> >
> > ldap_modify_sW error 0x34(52 (unavailable)
> > extended error 000020AF
> > svcErr DSID-032101CF
> > Problem 5002 (unavailable) data 8524
> >
> > win32 error 0x20af
> > couldn't be contacted.
> >
> >
> > I am not sure where to go from here. Any recommendations would be
> > appreciated.
>
> Errors like this typically mean you are using your ISP's DNS (or router's)
> IP address in TCP/IP properties.
> Use only the local AD DNS server's IP address for DNS in TCP/IP properties.
> (Usually the DC's address)
>
> You could also have other problems, but posting you ipconfig /all, your AD
> Domain name, and the list of zones you have in DNS can verify this.
>
>
> --
> Best regards,
> Kevin D. Goodknecht Sr. [MVP]
> Hope This s
> ===================================
> When responding to posts, please "Reply to Group"
> via your newsreader so that others may learn and
> benefit from your issue, to respond directly to
> me remove the nospam. from my email address.
> ===================================
> http://www.lonestaramerica.com/
> http://support.wftx.us/
> https://secure.lsaol.com/
> ===================================
> Use Outlook Express?... Get OE_Quotefix:
> It will strip signature out and more
> http://home.in.tum.de/~jain/software/oe-quotefix/
> ===================================
> Keep a back up of your OE settings and folders
> with OEBackup:
> http://www.oe.com/OEBackup/Default.aspx
> ===================================
>
>
>

12/03/2006, 23h45	#3
Allen Messages: n/a Hébergeur:	Re: DNS Replication between DC1 & DC1 I appreciate your assistance. Here is the ipconfig /all information as well as DNS Zones. Microsoft Windows 2000 [Version 5.00.2195] (C) Copyright 1985-2000 Microsoft Corp. ipconfig /all Windows 2000 IP Configuration Host Name . . . . . . . . . . . . : lha4ucsdc1 Primary DNS Suffix . . . . . . . : lha4.navy.mil Node Type . . . . . . . . . . . . : Hybrid IP Routing Enabled. . . . . . . . : No WINS Proxy Enabled. . . . . . . . : No DNS Suffix Search List. . . . . . : lha4.navy.mil navy.mil Ethernet adapter Local Area Connection: Connection-specific DNS Suffix . : lha4.navy.mil Description . . . . . . . . . . . : HP Network Team #1 Physical Address. . . . . . . . . : xx-xx-xx-xx-xx-xx DHCP Enabled. . . . . . . . . . . : No IP Address. . . . . . . . . . . . : 205.69.129.20 Subnet Mask . . . . . . . . . . . : 255.255.255.0 Default Gateway . . . . . . . . . : 205.69.129.1 DNS Servers . . . . . . . . . . . : 205.69.129.20 205.69.129.21 Primary WINS Server . . . . . . . : 205.69.129.20 Here is the DC1 FWD DNS Zones Name Type Status blockeddomains.com Standard Primary Running lha4.navy.mil Active Directory-integrated Running lha4m.usmc.mil Secondary Running nassau.usmc.mil Secondary Running Here is the lha4 fwd lookup sample from DC1. Name Type Data (same as parent folder) A 205.69.129.20 (same as parent folder) NS lha4ucsdc1.lha4.navy.mil. (same as parent folder) NS lha4ucsdc2.lha4.navy.mil. (same as parent folder) SOA [7473], lha4ucsdc1.lha4.navy.mil., admin.lha4.navy.mil. _msdcs _sites _tcp _udp distroserver CNAME lha4ucsdc1.lha4.navy.mil. gw A 205.69.129.1 isaserver CNAME lha4ucsdc2.lha4.navy.mil. lha4ucsdc1 A 205.69.129.20 lha4ucsdc2 A 205.69.129.21 proxy CNAME lha4ucsdc2.lha4.navy.mil. Here is the Reverse DNS Zones for DC1 Name Type Status 0.in-addr.arpa Standard Primary Running 127.in-addr.arpa Standard Primary Running 129.69.205.in-addr.arpa Active Directory-integrated Running 255.in-addr.arpa Standard Primary Running Here is the reverse lookup for lha4 Name Type Data 1 PTR gw.lha4.navy.mil. 20 PTR lha4ucsdc1.lha4.navy.mil. 21 PTR lha4ucsdc2.lha4.navy.mil. (same as parent folder) NS lha4ucsdc1.lha4.navy.mil. (same as parent folder) NS lha4ucsdc2.lha4.navy.mil. (same as parent folder) SOA [2703], lha4ucsdc1.lha4.navy.mil., admin.lha4.navy.mil. Here is the DC2 FWD DNS Zones Name Type Status lha4.navy.mil Active Directory-integrated Running lha4m.usmc.mil Standard Primary Running nassau.usmc.mil Standard Primary Running Here is the lha4 fwd lookup sample from DC2. I kept most of it out for security reason. Name Type Data (same as parent folder) A 205.69.129.20 (same as parent folder) NS lha4ucsdc1.lha4.navy.mil. (same as parent folder) NS lha4ucsdc2.lha4.navy.mil. (same as parent folder) SOA [7469], lha4ucsdc2.lha4.navy.mil., admin.lha4.navy.mil. _msdcs _sites _tcp _udp distroserver CNAME lha4ucsdc1.lha4.navy.mil. gw A 205.69.129.1 isaserver CNAME lha4ucsdc2.lha4.navy.mil. lha4ucsdc1 A 205.69.129.20 lha4ucsdc2 A 205.69.129.21 proxy CNAME lha4ucsdc2.lha4.navy.mil. Here is the reverse DNS Zones for lha4 on DC2 Name Type Status 0.in-addr.arpa Standard Primary Running 127.in-addr.arpa Standard Primary Running 129.69.205.in-addr.arpa Active Directory-integrated Running 255.in-addr.arpa Standard Primary Running Here is the reverse lookup Name Type Data 1 PTR gw.lha4.navy.mil. 20 PTR lha4ucsdc1.lha4.navy.mil. 21 PTR lha4ucsdc2.lha4.navy.mil. (same as parent folder) NS lha4ucsdc1.lha4.navy.mil. (same as parent folder) NS lha4ucsdc2.lha4.navy.mil. (same as parent folder) SOA [2701], lha4ucsdc2.lha4.navy.mil., admin.lha4.navy.mil. ___ Allen "Kevin D. Goodknecht Sr. [MVP]" wrote: > Allen wrote: > > When I go into AD Sites and Services to manually replicate DC1 and > > DC2, I get an error on one server and another error on the other. > > > > DC1 Reads: > > The following error occurred during the attempt to synchronize the > > domain controllers: The DSA operation is unable to proceed because of > > a DNS lookup failure. > > > > DC2 Reads: > > The following error occured during the attempt to contact the domain > > controllers: The RPC server is unavailable. > > > > I am getting a couple of errors showing in Event Viewer. Some of > > which are the following: > > > > Event ID 5773 > > The DNS server for this DC does not support dynamic DNS. Add the DNS > > records from the file '%SystemRoot%\System32\Config\netlogon.dns' to > > the DNS server serving the domain referenced in that file. > > > > Event ID 409 > > The DNS server list of restricted interfaces contains IP addresses > > that are not configured for use at the server computer. > > > > > > Use the DNS manager server properties, interfaces dialog, to verify > > and > > reset the IP addresses the DNS server should listen on. For more > > information, see "To restrict a DNS server to listen only on selected > > addresses" in the online . > > > > I have pinged DC1 from DC2 and vice versa with no problem. I did so > > by both IP and by server name. Both of which were successful. I > > checked the SVR records and both servers were in DNS properly. > > However, when I did the DCDIAG it gave me some errors as well. > > > > DC2's server GUID DNS name could not be resolved to an IP address. The > > server name resolved to an IP address and was pingable. > > > > It also stated during primary tests for "Testing server" that DC2 is > > skipping all tests because it is not responding to directory service > > requests. The rest of the tests pass. > > > > When running the NTDSUTIL command I also get the following: > > > > ldap_modify_sW error 0x34(52 (unavailable) > > extended error 000020AF > > svcErr DSID-032101CF > > Problem 5002 (unavailable) data 8524 > > > > win32 error 0x20af > > couldn't be contacted. > > > > > > I am not sure where to go from here. Any recommendations would be > > appreciated. > > Errors like this typically mean you are using your ISP's DNS (or router's) > IP address in TCP/IP properties. > Use only the local AD DNS server's IP address for DNS in TCP/IP properties. > (Usually the DC's address) > > You could also have other problems, but posting you ipconfig /all, your AD > Domain name, and the list of zones you have in DNS can verify this. > > > -- > Best regards, > Kevin D. Goodknecht Sr. [MVP] > Hope This s > =================================== > When responding to posts, please "Reply to Group" > via your newsreader so that others may learn and > benefit from your issue, to respond directly to > me remove the nospam. from my email address. > =================================== > http://www.lonestaramerica.com/ > http://support.wftx.us/ > https://secure.lsaol.com/ > =================================== > Use Outlook Express?... Get OE_Quotefix: > It will strip signature out and more > http://home.in.tum.de/~jain/software/oe-quotefix/ > =================================== > Keep a back up of your OE settings and folders > with OEBackup: > http://www.oe.com/OEBackup/Default.aspx > =================================== > > >