Branch Office Networking

Discussion in 'Server Networking' started by Robert, Jun 7, 2008.

  1. Robert

    Robert Guest

    I have a branch office that is connected to the main office via VPN routers.
    Everything works fine (able to access network, email, dns, etc.). But for
    some reason my error logs on the branch office computers keep filling up with
    error (1054 Windows cannot obtain the domain controller name for your
    computer network. (An unexpected network error occurred. ). Group Policy
    processing aborted.). Yet, when I do a manual gpupdate /force from the
    command prompt, the error log says Successful. I've tried various network
    diagnostics tools and haven't been able to find any problems. Anyone have
    any ideas?
    Server 2003 - DNS - Two subnets
    Using hardware router for entire network (NOT USING RRAS)

    Robert
     
    Robert, Jun 7, 2008
    #1
    1. Advertisements

  2. Hello robert,

    Make sure that no external DNS servers are configured on any NIC on the machines,
    use only the domain internal DNS servers. Please post an unedited ipconfig
    /all from the problem machine and the DC/DNS servers you use.

    Best regards

    Meinolf Weber
     
    Meinolf Weber, Jun 7, 2008
    #2
    1. Advertisements

  3. Robert

    Robert Guest

    Everything you suggested is configured that way. Here is the information you
    requested.

    BRANCH OFFICE CLIENT

    WINDOWS IP CONFIGURATION
    HOST NAME................TSHOP1
    PRIMARY DNS SUFFIX.......ATW.LOCAL
    NODE TYPE................HYBRID
    IP ROUTING ENABLED.......NO
    WINS PROXY ENABLED.......NO
    DNS SUFFIC SEARCH LIST...ATW.LOCAL

    ETHERNET NIC
    PHYSICAL ADDRESS.......BLAHBLAHBLAHBLAHBLAH
    DHCP ENABLED...........NO
    IP ADDRESS.............192.168.16.12
    SUBNET MASK............255.255.255.0
    DEFAULT GATEWAY........192.168.16.1 <<<-----THIS IS THE ROUTER ON THE
    BRANCH OFFICE SIDE
    DNS SERVERS............192.168.15.3 <<<-----DNS SERVER AT MAIN OFFICE

    SERVER AT MAIN OFFICE

    wINDOWS IP CONFIGURATION
    HOST NAME................ATWDC1
    PRIMARY DNS SUFFIX.......ATW.LOCAL
    NODE TYPE................UNKNOWN
    IP ROUTING ENABLED.......NO
    WINS PROXY ENABLED.......NO
    DNS SUFFIC SEARCH LIST...ATW.LOCAL

    ETHERNET NIC
    PHYSICAL ADDRESS.......BLAHBLAHBLAHBLAHBLAH
    DHCP ENABLED...........NO
    IP ADDRESS.............192.168.15.3
    SUBNET MASK............255.255.255.0
    DEFAULT GATEWAY........192.168.15.1 <<<-----THIS IS THE ROUTER ON THE MAIN
    OFFICE SIDE
    DNS SERVERS............127.0.0.1
     
    Robert, Jun 7, 2008
    #3
  4. Event ID 1054 is DNS issue. The internal DNS should point to itself not
    127.0.0.1. This search result may help too.
    Troubleshooting Windows Event ID
    Event ID 1054 - Windows cannot obtain the domain controller name for
    your computer ..... You also receive the Event ID 1054 in the application
    event log: ...
    www.chicagotech.net/wineventid.htm


    --
    Bob Lin, MS-MVP, MCSE & CNE
    Networking, Internet, Routing, VPN Troubleshooting on
    http://www.ChicagoTech.net
    How to Setup Windows, Network, VPN & Remote Access on
    http://www.HowToNetworking.com
     
    Robert L. \(MS-MVP\), Jun 7, 2008
    #4
  5. Robert

    Robert Craig Guest

    Ahh, thank you. I just changed it. I'll give it a day or so and see if the
    errors come back. Thanks for your help!

    Robert
     
    Robert Craig, Jun 8, 2008
    #5
  6. Hello robert,

    Change the DNS ip from the DNS server to the real ip address, loopback ip
    127.0.0.1 sometimes creates unwanted problems although it should work.

    Best regards

    Meinolf Weber
     
    Meinolf Weber, Jun 8, 2008
    #6
  7. Robert

    Robert Craig Guest

    OK guys, I changed the IP Address and gave it a day. I just checked the
    error logs of my branch office computers and they are still generating the
    same error code. This is just a hunch, but is there any way a VPN tunnel
    can cause this?

    Robert
     
    Robert Craig, Jun 9, 2008
    #7
  8. Robert

    Bill Grant Guest

    No, there is not much chance of this being a VPN tunnel problem.

    A VPN link is simply a point-to-point link. What goes in on end comes out
    the other. It isn't even affected by firewalls because the tunnel traffic is
    encrypted end encapsulated as it goes through the firewall, so the firewall
    only sees the "wrapper" of the packet.

    Once the VPN link is set up, the two sites work just like any two subnets
    joined by an IP router.
     
    Bill Grant, Jun 9, 2008
    #8
  9. Robert

    Robert Craig Guest

    Yeah, that's what I thought. I know it has to be something with DNS, but I
    can't lay my finger on it. I rebuilt this domain about a month ago and
    built it the exact same way I did in the original. I never had this problem
    with the original domain. What really boggs my brain is this problem is
    only affecting the branch office computers. Everyone else in the main
    office doesn't have this problem.

    Rob
     
    Robert Craig, Jun 9, 2008
    #9
  10. Robert

    Robert Craig Guest

    Another thought. Should I install and start using Wins? I read an article
    somewhere that if you had multiple subnets, you needed Wins.

    Robert
     
    Robert Craig, Jun 9, 2008
    #10
  11. Hi Robert,
    Not unless your workstations are Win95/NT.

    If your GPUpdate works fine then I suspect your network isn't starting fast
    enough. Look at http://support.microsoft.com/kb/840669 for a hotfix and
    adjustments to accomodate.

    Hope this helps.

    Pete
     
    Peter Dickason, Jun 10, 2008
    #11
  12. Robert

    Robert Craig Guest

    I had to use that article just to the get the group policies to first apply
    to the client machines. I can get a gpupdate to work most of the time
    (obviously manually). But, it's just annoying where the error log fills up
    after a day or two of this error. It is random on what time the error
    occurred. I have my refresh rate at 15min. So, I might increase that time
    to every half hour or even 45 minutes and see what happens.

    Robert
     
    Robert Craig, Jun 12, 2008
    #12
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.