Windows Server Admins chime in
Thread Starter
Houses Won't Depreciate?
Joined: Feb 2003
Posts: 6,238
Likes: 0
From: Weston, FL
Windows Server Admins chime in
Ok, this issue brought down the acces to the server until i found out what was causing it.
SERVER has 2 IP addresses, one for LAN, and one for PPP (for VPN dial in):
The issue comes out when making a forward lookup:
it is choosing the ip assigned for PPP and not for LAN 1 (which it should be).
PPP is enabled via Routing and Remote Access and I do not see an option to STOP registering DNS for that IP.
all clients should only resolve to 192.168.1.2.
How can I fix that? I delete from the DNS server but it reapears.
Thanks
SERVER has 2 IP addresses, one for LAN, and one for PPP (for VPN dial in):
Code:
Z:\>ipconfig /all
Windows IP Configuration
Host Name . . . . . . . . . . . . : SERVER
Primary Dns Suffix . . . . . . . : domain.com
Node Type . . . . . . . . . . . . : Unknown
IP Routing Enabled. . . . . . . . : Yes
WINS Proxy Enabled. . . . . . . . : Yes
DNS Suffix Search List. . . . . . : domain.com
PPP adapter RAS Server (Dial In) Interface:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : WAN (PPP/SLIP) Interface
Physical Address. . . . . . . . . : 00-53-46-00-00-00
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 192.168.1.29
Subnet Mask . . . . . . . . . . . : 255.255.255.255
Default Gateway . . . . . . . . . :
Ethernet adapter LAN 1:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Broadcom NetXtreme Gigabit Ethernet
Physical Address. . . . . . . . . : 00-0F-1F-6F-19-4A
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 192.168.1.2
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.1.1
DNS Servers . . . . . . . . . . . : 192.168.1.2
192.168.1.1
Code:
Z:\>nslookup server Server: UnKnown Address: 192.168.1.2 Name: server.domain.com Addresses: 192.168.1.29, 192.168.1.2
PPP is enabled via Routing and Remote Access and I do not see an option to STOP registering DNS for that IP.
all clients should only resolve to 192.168.1.2.
How can I fix that? I delete from the DNS server but it reapears.
Thanks
Last edited by zamo; Aug 9, 2005 at 11:35 AM.
Team Owner
Joined: Jan 2001
Posts: 25,967
Likes: 2,685
From: Jersey
Open the properties of the PPP NIC. Then TCP/IP.
Hit the Advanced button, switch the the DNS tab. Turn off the option to automatically register in DNS.
Also,
What is up with this?
Default Gateway . . . . . . . . . : 192.168.1.1
DNS Servers . . . . . . . . . . . : 192.168.1.2
192.168.1.1
What type of device is 192.168.1.1? Is it a windows machine or a hardware router?
If you are running active directory only your domain controller should be listed as a DNS server.
So is if 192.168.1.2 is a domain controller and 192.168.1.1 is some kind of router, remove 192.168.1.1, from your list of DNS servers.
Hit the Advanced button, switch the the DNS tab. Turn off the option to automatically register in DNS.
Also,
What is up with this?
Default Gateway . . . . . . . . . : 192.168.1.1
DNS Servers . . . . . . . . . . . : 192.168.1.2
192.168.1.1
What type of device is 192.168.1.1? Is it a windows machine or a hardware router?
If you are running active directory only your domain controller should be listed as a DNS server.
So is if 192.168.1.2 is a domain controller and 192.168.1.1 is some kind of router, remove 192.168.1.1, from your list of DNS servers.
Last edited by doopstr; Aug 9, 2005 at 11:48 AM.
Thread Starter
Houses Won't Depreciate?
Joined: Feb 2003
Posts: 6,238
Likes: 0
From: Weston, FL
ok, 192.168.1.1 is the default gateway and secondary DNS server (for redundancy purposes). It is a router device.
192.168.1.2 is the primary domain controller (there is a mirror of it in another ip), and is the one resolving the 2 ips for "server".
Now the issue is; there is no PPP adapter on Network Connections. PPP is created by RAS and I cannot see the option to automatically register in DNS.
192.168.1.2 is the primary domain controller (there is a mirror of it in another ip), and is the one resolving the 2 ips for "server".
Now the issue is; there is no PPP adapter on Network Connections. PPP is created by RAS and I cannot see the option to automatically register in DNS.
Big Block go VROOOM!
Joined: Oct 2003
Posts: 8,578
Likes: 1
From: Chicago Burbs
Originally Posted by doopstr
If you are running active directory only your domain controller should be listed as a DNS server.
Team Owner
Joined: Jan 2001
Posts: 25,967
Likes: 2,685
From: Jersey
Scope this article, it appears to be your setup
http://support.microsoft.com/?kbid=289735
Oh, and thank you for giving me something to think about today. My brain is going stale.
http://support.microsoft.com/?kbid=289735
Oh, and thank you for giving me something to think about today. My brain is going stale.
Thread Starter
Houses Won't Depreciate?
Joined: Feb 2003
Posts: 6,238
Likes: 0
From: Weston, FL
Thanks doopstr, but it applies to
• Microsoft Windows 2000 Server
• Microsoft Windows 2000 Advanced Server
I also found this article
http://support.microsoft.com/default...b;en-us;832478
• Microsoft Windows 2000 Server
• Microsoft Windows 2000 Advanced Server
I also found this article
http://support.microsoft.com/default...b;en-us;832478
Trending Topics
Thread Starter
Houses Won't Depreciate?
Joined: Feb 2003
Posts: 6,238
Likes: 0
From: Weston, FL
SP1 did not help. As soon as a PPP connection is stablished, the A record is added to the DNS and fucks up the whole forward DNS lookup from the inside workstations. This has never happened tho.
I will need to disables RRAS and run it on another box.
I will need to disables RRAS and run it on another box.
Thread Starter
Houses Won't Depreciate?
Joined: Feb 2003
Posts: 6,238
Likes: 0
From: Weston, FL
Originally Posted by doopstr
In regards to the article I posted. Did you look to see if those settings exist in 2003?
Anyways this might do the trick:
1. Start DNS Manager.
2. Right-click the computer name, and then click Properties.
3. Click the Interfaces tab, and then click Only the following IP addresses.
4. Remove any Routing and Remote Access IP addresses that are listed.
2. Right-click the computer name, and then click Properties.
3. Click the Interfaces tab, and then click Only the following IP addresses.
4. Remove any Routing and Remote Access IP addresses that are listed.
Thread Starter
Houses Won't Depreciate?
Joined: Feb 2003
Posts: 6,238
Likes: 0
From: Weston, FL
nslookup server
nslookup server.domain.com
they both bring now 1 ip and that is the correct one
The problem now
When I try to access to shared folders from windows explorer
\\server - seems to resolve to the VPN IP although it is not in the DNS forward lookup. I CANT see anything.
\\server.domain.com - works fine
the specific dns suffix on the local machine is domain.com
there are no WINS server.
What can be happening?
nslookup server.domain.com
they both bring now 1 ip and that is the correct one
The problem now
When I try to access to shared folders from windows explorer
\\server - seems to resolve to the VPN IP although it is not in the DNS forward lookup. I CANT see anything.
\\server.domain.com - works fine
the specific dns suffix on the local machine is domain.com
there are no WINS server.
What can be happening?
Team Owner
Joined: Jan 2001
Posts: 25,967
Likes: 2,685
From: Jersey
There is probably some netbios issue.
Download NBTScan http://www.inetcat.org/software/nbtscan1_5_1.zip
Expand it into a folder on your harddrive.
From a commnd line run nbtscan -r 192.168.1.0/24
That will scan your subnet for netbios responses. See what IP your server is returning and see if it is returning more than one.
Download NBTScan http://www.inetcat.org/software/nbtscan1_5_1.zip
Expand it into a folder on your harddrive.
From a commnd line run nbtscan -r 192.168.1.0/24
That will scan your subnet for netbios responses. See what IP your server is returning and see if it is returning more than one.
Thread Starter
Houses Won't Depreciate?
Joined: Feb 2003
Posts: 6,238
Likes: 0
From: Weston, FL
Originally Posted by doopstr
There is probably some netbios issue.
Download NBTScan http://www.inetcat.org/software/nbtscan1_5_1.zip
Expand it into a folder on your harddrive.
From a commnd line run nbtscan -r 192.168.1.0/24
That will scan your subnet for netbios responses. See what IP your server is returning and see if it is returning more than one.
Download NBTScan http://www.inetcat.org/software/nbtscan1_5_1.zip
Expand it into a folder on your harddrive.
From a commnd line run nbtscan -r 192.168.1.0/24
That will scan your subnet for netbios responses. See what IP your server is returning and see if it is returning more than one.
How can I delete it?
Team Owner
Joined: Jan 2001
Posts: 25,967
Likes: 2,685
From: Jersey
I reread that article I posted. I think this is going to be a problem, mainly because that PPP adapter is created on the fly when the first user connects. The article really frowns upon multihomed domain controllers, probably because of this bug they don't feel like fixing.
How many users are we talking about?
You can either populate the LMHOST file on every workstation with the server/ip or put RAS on another machine. Putting up a second machine would technically be the cleaner solution.
You really don't need much horse power to run a dial-in ras. Any hunk of junk will do.
How many users are we talking about?
You can either populate the LMHOST file on every workstation with the server/ip or put RAS on another machine. Putting up a second machine would technically be the cleaner solution.
You really don't need much horse power to run a dial-in ras. Any hunk of junk will do.
Thread Starter
Houses Won't Depreciate?
Joined: Feb 2003
Posts: 6,238
Likes: 0
From: Weston, FL
Originally Posted by doopstr
I reread that article I posted. I think this is going to be a problem, mainly because that PPP adapter is created on the fly when the first user connects. The article really frowns upon multihomed domain controllers, probably because of this bug they don't feel like fixing.
How many users are we talking about?
You can either populate the LMHOST file on every workstation with the server/ip or put RAS on another machine. Putting up a second machine would technically be the cleaner solution.
You really don't need much horse power to run a dial-in ras. Any hunk of junk will do.
How many users are we talking about?
You can either populate the LMHOST file on every workstation with the server/ip or put RAS on another machine. Putting up a second machine would technically be the cleaner solution.
You really don't need much horse power to run a dial-in ras. Any hunk of junk will do.
The weird issue is that the solution has been running for a while and today started throwing the incorrect IP.
So to wrap it up, no way I can delete the WINS entry for PPP ?
Thread Starter
Houses Won't Depreciate?
Joined: Feb 2003
Posts: 6,238
Likes: 0
From: Weston, FL
Originally Posted by Whiskers
Isnt there a way to assign it another A record in DNS.
Oh and VPN does not hold more than 2 clients at most.
Team Owner
Joined: Jan 2001
Posts: 25,967
Likes: 2,685
From: Jersey
From the article...
RESOLUTION
NOTE: If you run Routing and Remote Access on a domain controller that owns the operations master role, a multi-homed master browser is created. It is recommended that you install Routing and Remote Access on another computer for full browsing capabilities. It is also recommended that the domain controller, which is the multi-homed master browser, has only one interface. For additional information, click the article number below to view the article in the Microsoft Knowledge Base:
In other words, "It's broke and we aren't fixing it"
RESOLUTION
NOTE: If you run Routing and Remote Access on a domain controller that owns the operations master role, a multi-homed master browser is created. It is recommended that you install Routing and Remote Access on another computer for full browsing capabilities. It is also recommended that the domain controller, which is the multi-homed master browser, has only one interface. For additional information, click the article number below to view the article in the Microsoft Knowledge Base:
In other words, "It's broke and we aren't fixing it"
Thread
Thread Starter
Forum
Replies
Last Post
xsilverhawkx
2G TL Problems & Fixes
5
Sep 28, 2015 06:51 PM
AcuraKidd
Non-Automotive & Motorcycle Sales
0
Sep 25, 2015 11:18 PM