Re: Strange DNS problem

From: C Hall (someone_at_microsoft.com)
Date: 04/19/05 

Date: Tue, 19 Apr 2005 11:03:47 -0400

Thanks for the info, Herb. And the input RE: Subject in the DNS forum...I
hit panic mode;->

"Herb Martin" <news@LearnQuick.com> wrote in message
news:eoLxyPGRFHA.3288@TK2MSFTNGP14.phx.gbl...
> "C Hall" <someone@microsoft.com> wrote in message
> news:uxOaLXFRFHA.3788@tk2msftngp13.phx.gbl...
> > Steven,
> >
> > Thanks for the post. It's looking like a rebuild of one DC (not a FSMO
> role
> > holder). I didn't allow enough disk space and that's causing problems.
>
> It is nearly impossible to do that with a small domain.
>
> The installation (DCPromo) claims it needs 1 Gig for
> AD but only needs (less than) 100 MBytes.
>
> This default size will handle thousands of users easily.
>
> > Aside
> > from that, there are a bunch of errors in the logs, I can't open ADU&C
to
> > follow the guidance of the the dns group (Kevin). Armed with new info, I
> > don't think this is a security problem at this point. I will look at the
> > links below. Thanks again.
>
> As Steve has said, you likely have DNS problems.
>
> DNS servers do NOT "advertise" nor do they set themselves
> up so either you or some other admin must have done this.
>
> Check your DNS first -- it is the KEY to making AD work:
>
>
> --
> DNS for AD
> 1) Dynamic for the zone supporting AD
> 2) All internal DNS clients NIC\IP properties must specify SOLELY
> that internal, dynamic DNS server (set.)
> 3) DCs and even DNS servers are DNS clients too -- see #2
> 4) If you have more than one Domain, every DNS server must
> be able to resolve ALL domains (either directly or indirectly)
>
> netdiag /fix
>
> ...or maybe:
>
> dcdiag /fix
>
> (Win2003 can do this from Support tools):
> nltest /dsregdns /server:DC-ServerNameGoesHere
> http://support.microsoft.com/kb/q260371/
>
> Ensure that DNS zones/domains are fully replicated to all DNS
> servers for that (internal) zone/domain.
>
> Also useful may be running DCDiag on each DC, sending the
> output to a text file, and searching for FAIL, ERROR, WARN.
>
> Single Label domain zone names are a problem Google:
> [ "SINGLE LABEL" domain names DNS 2000 | 2003 microsoft: ]
>
>

Relevant Pages

  • Re: Replication issues
    ... I wanted to say Zone Transfers not Zone Forwarding. ... AD-Integrated DNS does not do zone transfers between the ... your DNS server will bypass ...
    (microsoft.public.windows.server.active_directory)
  • Re: Servers hang on boot
    ... The last DC at that site (not a DNS server). ... EventID: 0x00000457 ... (Event String could not be retrieved) ...
    (microsoft.public.windows.server.networking)
  • Re: DNS Redesign Issue
    ... set the new child domain DNS server as primary for the domain controllers? ... -If you are going to create a new AD Integrated Zone in each child domain, ...
    (microsoft.public.windows.server.dns)
  • Re: Internet connection wizard
    ... turn on DHCP on the workstation. ... Connection-specific DNS Suffix. ... calling CNetCommit::ValidateRouterConnectionProperties. ... Call to Reading preferred DNS server IP returned ok. ...
    (microsoft.public.windows.server.sbs)
  • Re: DCDIAG DNS Failure
    ... I have looked at most of the articles you sited and I have configured DNS ... The DNS server lists only itself as the preferred server with no ... Best practices for DNS client settings in Windows 2000 Server and in Windows ... -Exchange configuration. ...
    (microsoft.public.windows.server.dns)