AD & DNS Hell - HELP!!!!

Ok - here is what's going on:

1) Single Forest & Domain (KCG.local), running on single W2k3 (SP2) - NOT RUNNING ON R2

2) LAN connects to WAN / Internet via Broadband Cablemodem.

3) No other DC or DNS Services. WINS provided by other Server.

I am missing something here, or I am utterly clueless as to AD & DNS Integration.

AD & DNS box: LOGOS.kcg.local

Question: Shouldn't LOGOS be listed in the AD Computers list? It is in DNS (192.168.2.100)

Moving on...

I am regularly receiving this error in EventViewer:

Computer: LOGOS
Description:
Dynamic registration or deletion of one or more DNS records associated with DNS domain 'ForestDnsZones.KCG.LOCAL.' failed. These records are used by other computers to locate this server as a domain controller (if the specified domain is an Active Directory domain) or as an LDAP server (if the specified domain is an application partition).

Possible causes of failure include:
- TCP/IP properties of the network connections of this computer contain wrong IP address(es) of the preferred and alternate DNS servers
- Specified preferred and alternate DNS servers are not running
- DNS server(s) primary for the records to be registered is not running
- Preferred or alternate DNS servers are configured with wrong root hints
- Parent DNS zone contains incorrect delegation to the child zone authoritative for the DNS records that failed registration

USER ACTION
Fix possible misconfiguration(s) specified above and initiate registration or deletion of the DNS records by running 'nltest.exe /dsregdns' from the command prompt or by restarting Net Logon service. Nltest.exe is available in the Microsoft Windows Server Resource Kit CD.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 2a 23 00 00 *#..

"nltest.exe /dsregdns" passes every time with 0x0 NERR_Success

Now, for the DNS settings for this system, I am using the following:

208.67.222.222 (OpenDNS)
208.67.220.220 (OpenDNS)
192.168.2.1 (Cablemodem Gateway)

Here are dumps from netdiag (no /fix):




Computer Name: LOGOS
DNS Host Name: LOGOS.KCG.LOCAL
System info : Windows 2000 Server (Build 3790)
Processor : x86 Family 6 Model 8 Stepping 6, GenuineIntel
List of installed hotfixes :
KB2079403
KB2115168
KB2121546
KB2141007
KB2158563
KB2160329
KB2183461-IE8
KB2207559
KB2229593
KB2259922
KB2279986
KB2286198
KB2296011
KB2296199
KB2345886
KB2347290
KB2360131-IE8
KB2360937
KB2378111
KB2387149
KB2393802
KB2412687
KB2416400-IE8
KB2416451
KB2419635
KB2423089
KB2436673
KB2440591
KB2443105
KB2443685
KB2467659
KB2476490
KB2476687
KB2478953
KB2478960
KB2478971
KB2479628
KB2482017-IE8
KB2483185
KB2485376
KB2485663
KB2497640-IE8
KB2503658
KB2503665
KB2506212
KB2506223
KB2507618
KB2507938
KB2508272
KB2508429
KB2509553
KB2510531-IE8
KB2511455
KB2524375
KB2530548-IE8
KB2535512
KB2536276
KB2536276-v2
KB2544521-IE8
KB2544893
KB2544893-v2
KB2555917
KB2559049-IE8
KB2562485
KB2562937
KB2564958
KB2566454
KB2567053
KB2567680
KB2570222
KB2570791
KB2570947
KB2572069
KB2584146
KB2585542
KB2586448-IE8
KB2592799
KB2598479
KB2601626
KB2603381
KB2607712
KB2616676-v2
KB2618444-IE8
KB2618451
KB2620712
KB2621146
KB2624667
KB2631813
KB2633171
KB2633952-v2
KB2638806
KB2639417
KB2641690-v2
KB2644615
KB2645640
KB2646524
KB2647516-IE8
KB2656358
KB2660465
KB923561
KB924667-v2
KB925398_WMP64
KB925902-v2
KB926122
KB927891
KB929123
KB930178
KB931784
KB932168
KB933854
KB936357
KB941569
KB942831
KB943055
KB943460
KB944653
KB945553
KB946026
KB948496
KB950762
KB950974
KB951066
KB951748
KB952004
KB952069
KB952954
KB953298
KB954155
KB954550-v5
KB955069
KB955759
KB956572
KB956802
KB956803
KB956844
KB957097
KB958469
KB958644
KB958687
KB958869
KB959426
KB960225
KB960803
KB960859
KB961063
KB961118
KB961371-v2
KB961501
KB967715
KB967723
KB968389
KB968537
KB968816
KB969059
KB969883
KB969947
KB970238
KB970430
KB970653-v3
KB971029
KB971032
KB971468
KB971486
KB971557
KB971633
KB971657
KB971737
KB971961-IE8
KB972270
KB973037
KB973354
KB973507
KB973525
KB973540
KB973687
KB973815
KB973869
KB973904
KB974112
KB974318
KB974392
KB974455-IE8
KB974571
KB975025
KB975364-IE8
KB975467
KB975558_WM8
KB975560
KB975562
KB975713
KB976098-v2
KB976323
KB976325-IE8
KB976662-IE8
KB976749-IE8
KB977165-v2
KB977290
KB977816
KB977914
KB978037
KB978207-IE8
KB978251
KB978262
KB978338
KB978542
KB978601
KB978695
KB978706
KB979306
KB979309
KB979482
KB979559
KB979683
KB979687
KB979907
KB980182-IE8
KB980195
KB980218
KB980232
KB980436
KB981322
KB981332-IE8
KB981550
KB981793
KB981957
KB982132
KB982214
KB982381-IE8
KB982802
Q147222


Netcard queries test . . . . . . . : Passed



Per interface results:

Adapter : Local Area Connection

Netcard queries test . . . : Passed

Host Name. . . . . . . . . : LOGOS
IP Address . . . . . . . . : 192.168.2.100
Subnet Mask. . . . . . . . : 255.255.255.0
Default Gateway. . . . . . : 192.168.2.1
Primary WINS Server. . . . : 192.168.2.101
Dns Servers. . . . . . . . : 208.67.222.222
208.67.220.220
192.168.2.1


AutoConfiguration results. . . . . . : Passed

Default gateway test . . . : Passed

NetBT name test. . . . . . : Passed
[WARNING] At least one of the <00> 'WorkStation Service', <03> 'Messenger Service', <20> 'WINS' names is missing.
No remote names have been found.

WINS service test. . . . . : Passed


Global results:


Domain membership test . . . . . . : Passed


NetBT transports test. . . . . . . : Passed
List of NetBt transports currently configured:
NetBT_Tcpip_{8A2997E9-CD11-47D4-A0E0-A43A9A43F7A7}
1 NetBt transport currently configured.


Autonet address test . . . . . . . : Passed


IP loopback ping test. . . . . . . : Passed


Default gateway test . . . . . . . : Passed


NetBT name test. . . . . . . . . . : Passed
[WARNING] You don't have a single interface with the <00> 'WorkStation Service', <03> 'Messenger Service', <20> 'WINS' names defined.


Winsock test . . . . . . . . . . . : Passed


DNS test . . . . . . . . . . . . . : Failed
[WARNING] Cannot find a primary authoritative DNS server for the name
'LOGOS.KCG.LOCAL.'. [RCODE_SERVER_FAILURE]
The name 'LOGOS.KCG.LOCAL.' may not be registered in DNS.
[WARNING] The DNS entries for this DC are not registered correctly on DNS server '208.67.222.222'. Please wait for 30 minutes for DNS server replication.
[WARNING] The DNS entries for this DC are not registered correctly on DNS server '208.67.220.220'. Please wait for 30 minutes for DNS server replication.
[WARNING] The DNS entries for this DC cannot be verified right now on DNS server 192.168.2.1, ERROR_TIMEOUT.
[FATAL] No DNS servers have the DNS records for this DC registered.


Redir and Browser test . . . . . . : Passed
List of NetBt transports currently bound to the Redir
NetBT_Tcpip_{8A2997E9-CD11-47D4-A0E0-A43A9A43F7A7}
The redir is bound to 1 NetBt transport.

List of NetBt transports currently bound to the browser
NetBT_Tcpip_{8A2997E9-CD11-47D4-A0E0-A43A9A43F7A7}
The browser is bound to 1 NetBt transport.


DC discovery test. . . . . . . . . : Passed


DC list test . . . . . . . . . . . : Passed


Trust relationship test. . . . . . : Skipped


Kerberos test. . . . . . . . . . . : Passed


LDAP test. . . . . . . . . . . . . : Passed


Bindings test. . . . . . . . . . . : Passed


WAN configuration test . . . . . . : Skipped
No active remote access connections.


Modem diagnostics test . . . . . . : Passed

IP Security test . . . . . . . . . : Skipped

Note: run "netsh ipsec dynamic show /?" for more detailed information


The command completed successfully

---------------------------------------------------------

This is the netdiag /fix output:


........................................

Computer Name: LOGOS
DNS Host Name: LOGOS.KCG.LOCAL
System info : Windows 2000 Server (Build 3790)
Processor : x86 Family 6 Model 8 Stepping 6, GenuineIntel
List of installed hotfixes :
KB2079403
KB2115168
KB2121546
KB2141007
KB2158563
KB2160329
KB2183461-IE8
KB2207559
KB2229593
KB2259922
KB2279986
KB2286198
KB2296011
KB2296199
KB2345886
KB2347290
KB2360131-IE8
KB2360937
KB2378111
KB2387149
KB2393802
KB2412687
KB2416400-IE8
KB2416451
KB2419635
KB2423089
KB2436673
KB2440591
KB2443105
KB2443685
KB2467659
KB2476490
KB2476687
KB2478953
KB2478960
KB2478971
KB2479628
KB2482017-IE8
KB2483185
KB2485376
KB2485663
KB2497640-IE8
KB2503658
KB2503665
KB2506212
KB2506223
KB2507618
KB2507938
KB2508272
KB2508429
KB2509553
KB2510531-IE8
KB2511455
KB2524375
KB2530548-IE8
KB2535512
KB2536276
KB2536276-v2
KB2544521-IE8
KB2544893
KB2544893-v2
KB2555917
KB2559049-IE8
KB2562485
KB2562937
KB2564958
KB2566454
KB2567053
KB2567680
KB2570222
KB2570791
KB2570947
KB2572069
KB2584146
KB2585542
KB2586448-IE8
KB2592799
KB2598479
KB2601626
KB2603381
KB2607712
KB2616676-v2
KB2618444-IE8
KB2618451
KB2620712
KB2621146
KB2624667
KB2631813
KB2633171
KB2633952-v2
KB2638806
KB2639417
KB2641690-v2
KB2644615
KB2645640
KB2646524
KB2647516-IE8
KB2656358
KB2660465
KB923561
KB924667-v2
KB925398_WMP64
KB925902-v2
KB926122
KB927891
KB929123
KB930178
KB931784
KB932168
KB933854
KB936357
KB941569
KB942831
KB943055
KB943460
KB944653
KB945553
KB946026
KB948496
KB950762
KB950974
KB951066
KB951748
KB952004
KB952069
KB952954
KB953298
KB954155
KB954550-v5
KB955069
KB955759
KB956572
KB956802
KB956803
KB956844
KB957097
KB958469
KB958644
KB958687
KB958869
KB959426
KB960225
KB960803
KB960859
KB961063
KB961118
KB961371-v2
KB961501
KB967715
KB967723
KB968389
KB968537
KB968816
KB969059
KB969883
KB969947
KB970238
KB970430
KB970653-v3
KB971029
KB971032
KB971468
KB971486
KB971557
KB971633
KB971657
KB971737
KB971961-IE8
KB972270
KB973037
KB973354
KB973507
KB973525
KB973540
KB973687
KB973815
KB973869
KB973904
KB974112
KB974318
KB974392
KB974455-IE8
KB974571
KB975025
KB975364-IE8
KB975467
KB975558_WM8
KB975560
KB975562
KB975713
KB976098-v2
KB976323
KB976325-IE8
KB976662-IE8
KB976749-IE8
KB977165-v2
KB977290
KB977816
KB977914
KB978037
KB978207-IE8
KB978251
KB978262
KB978338
KB978542
KB978601
KB978695
KB978706
KB979306
KB979309
KB979482
KB979559
KB979683
KB979687
KB979907
KB980182-IE8
KB980195
KB980218
KB980232
KB980436
KB981322
KB981332-IE8
KB981550
KB981793
KB981957
KB982132
KB982214
KB982381-IE8
KB982802
Q147222


Netcard queries test . . . . . . . : Passed



Per interface results:

Adapter : Local Area Connection

Netcard queries test . . . : Passed

Host Name. . . . . . . . . : LOGOS
IP Address . . . . . . . . : 192.168.2.100
Subnet Mask. . . . . . . . : 255.255.255.0
Default Gateway. . . . . . : 192.168.2.1
Primary WINS Server. . . . : 192.168.2.101
Dns Servers. . . . . . . . : 208.67.222.222
208.67.220.220
192.168.2.1


AutoConfiguration results. . . . . . : Passed

Default gateway test . . . : Passed

NetBT name test. . . . . . : Passed
[WARNING] At least one of the <00> 'WorkStation Service', <03> 'Messenger Service', <20> 'WINS' names is missing.

WINS service test. . . . . : Passed


Global results:


Domain membership test . . . . . . : Passed


NetBT transports test. . . . . . . : Passed
List of NetBt transports currently configured:
NetBT_Tcpip_{8A2997E9-CD11-47D4-A0E0-A43A9A43F7A7}
1 NetBt transport currently configured.


Autonet address test . . . . . . . : Passed


IP loopback ping test. . . . . . . : Passed


Default gateway test . . . . . . . : Passed


NetBT name test. . . . . . . . . . : Passed
[WARNING] You don't have a single interface with the <00> 'WorkStation Service', <03> 'Messenger Service', <20> 'WINS' names defined.


Winsock test . . . . . . . . . . . : Passed


DNS test . . . . . . . . . . . . . : Failed
[WARNING] Cannot find a primary authoritative DNS server for the name
'LOGOS.KCG.LOCAL.'. [RCODE_SERVER_FAILURE]
The name 'LOGOS.KCG.LOCAL.' may not be registered in DNS.
[FATAL] Failed to fix: DC DNS entry KCG.LOCAL. re-registeration on DNS server '208.67.222.222' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _ldap._tcp.KCG.LOCAL. re-registeration on DNS server '208.67.222.222' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _ldap._tcp.Default-First-Site-Name._sites.KCG.LOCAL. re-registeration on DNS server '208.67.222.222' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _ldap._tcp.pdc._msdcs.KCG.LOCAL. re-registeration on DNS server '208.67.222.222' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _ldap._tcp.gc._msdcs.KCG.LOCAL. re-registeration on DNS server '208.67.222.222' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _ldap._tcp.Default-First-Site-Name._sites.gc._msdcs.KCG.LOCAL. re-registeration on DNS server '208.67.222.222' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _ldap._tcp.6f5acbdb-19aa-4d29-8e2c-5890248cecbe.domains._msdcs.KCG.LOCAL. re-registeration on DNS server '208.67.222.222' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry gc._msdcs.KCG.LOCAL. re-registeration on DNS server '208.67.222.222' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry f0857118-0ec2-4e36-b955-078b3a56b9cc._msdcs.KCG.LOCAL. re-registeration on DNS server '208.67.222.222' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _kerberos._tcp.dc._msdcs.KCG.LOCAL. re-registeration on DNS server '208.67.222.222' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _kerberos._tcp.Default-First-Site-Name._sites.dc._msdcs.KCG.LOCAL. re-registeration on DNS server '208.67.222.222' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _ldap._tcp.dc._msdcs.KCG.LOCAL. re-registeration on DNS server '208.67.222.222' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _ldap._tcp.Default-First-Site-Name._sites.dc._msdcs.KCG.LOCAL. re-registeration on DNS server '208.67.222.222' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _kerberos._tcp.KCG.LOCAL. re-registeration on DNS server '208.67.222.222' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _kerberos._tcp.Default-First-Site-Name._sites.KCG.LOCAL. re-registeration on DNS server '208.67.222.222' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _gc._tcp.KCG.LOCAL. re-registeration on DNS server '208.67.222.222' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _gc._tcp.Default-First-Site-Name._sites.KCG.LOCAL. re-registeration on DNS server '208.67.222.222' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _kerberos._udp.KCG.LOCAL. re-registeration on DNS server '208.67.222.222' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _kpasswd._tcp.KCG.LOCAL. re-registeration on DNS server '208.67.222.222' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _kpasswd._udp.KCG.LOCAL. re-registeration on DNS server '208.67.222.222' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry DomainDnsZones.KCG.LOCAL. re-registeration on DNS server '208.67.222.222' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _ldap._tcp.DomainDnsZones.KCG.LOCAL. re-registeration on DNS server '208.67.222.222' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _ldap._tcp.Default-First-Site-Name._sites.DomainDnsZones.KCG.LOCAL. re-registeration on DNS server '208.67.222.222' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry ForestDnsZones.KCG.LOCAL. re-registeration on DNS server '208.67.222.222' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _ldap._tcp.ForestDnsZones.KCG.LOCAL. re-registeration on DNS server '208.67.222.222' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _ldap._tcp.Default-First-Site-Name._sites.ForestDnsZones.KCG.LOCAL. re-registeration on DNS server '208.67.222.222' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Fix Failed: netdiag failed to re-register missing DNS entries for this DC on DNS server '208.67.222.222'.
[FATAL] No DNS servers have the DNS records for this DC registered.


Redir and Browser test . . . . . . : Passed
List of NetBt transports currently bound to the Redir
NetBT_Tcpip_{8A2997E9-CD11-47D4-A0E0-A43A9A43F7A7}
The redir is bound to 1 NetBt transport.

List of NetBt transports currently bound to the browser
NetBT_Tcpip_{8A2997E9-CD11-47D4-A0E0-A43A9A43F7A7}
The browser is bound to 1 NetBt transport.


DC discovery test. . . . . . . . . : Passed


DC list test . . . . . . . . . . . : Passed


Trust relationship test. . . . . . : Skipped


Kerberos test. . . . . . . . . . . : Passed


LDAP test. . . . . . . . . . . . . : Passed


Bindings test. . . . . . . . . . . : Passed


WAN configuration test . . . . . . : Skipped
No active remote access connections.


Modem diagnostics test . . . . . . : Passed

IP Security test . . . . . . . . . : Skipped

Note: run "netsh ipsec dynamic show /?" for more detailed information


The command completed successfully

_________________________________________________________

Now, I'm pretty sure that if I remove the 208.* DNS entries for the Network Adapter's TCP/IP Settings that this should fix it. The next question is this: how do I add EXTERNAL DNS Resolution for the DNS Server so that my clients only need to use 1 DNS Server for their own TCP/IP settings? Is that going to be additional lookup zones?

All of these issues are keeping me from getting Exchange 2003 running on a separate box. *ANY* input ot guidance would be helpfull.

Thanks!

--Scott