ping dor doomain name not correct

Discussion in 'Server Networking' started by HAfandi, Feb 15, 2009.

  1. HAfandi

    HAfandi Guest

    Hi,

    if i try to ping the domain name ( e.g ping mydomain.net) it will return
    incorrect ip address. but if ping the dc (ping dc.amc-ksa.net) it will return
    the correct ip
    also if i use the nslookup it end with incorrect ip

    i checked the dns records and its correct. also i can join domain or
    explorer the domain shared folders without any problem (\\mydomain.net)

    so what is the problem?
     
    HAfandi, Feb 15, 2009
    #1
    1. Advertisements

  2. HAfandi

    HAfandi Guest

    sorry, but i mistyped the subject

    thanks
     
    HAfandi, Feb 15, 2009
    #2
    1. Advertisements

  3. Try posting an unedited ipconfig /all from your DC and from a workstation.
     
    Lanwench [MVP - Exchange], Feb 15, 2009
    #3
  4. Robert L. \(MS-MVP\), Feb 15, 2009
    #4
  5. Hello HAfandi,

    Don't know what you mean with wrong ip address. A domain name has not an
    ipaddress. The problem is in that case, that by pinging the domain name one
    available DC/DNS server will answer the request. This is a kind of broadcast
    you are initiating with ping domainname.

    "From Ace Fekay MCT:
    When pinging an Active Directory domain name, it will be resolving the "(same
    as parent)" host name. This is also called the LdapIpAddress. Every DC in
    a domain will register this name. It is used by numerous services, including
    when a client machine runs the GetGpoList function at boot and/or logon to
    query for GPOs that it must apply."

    How many DC's do you have in the domain?

    How is your DNS setup and configured?

    Additional as still requested post an unedited ipconfig /all from your DC/DNS
    servers.

    Best regards

    Meinolf Weber
     
    Meinolf Weber [MVP-DS], Feb 15, 2009
    #5
  6. HAfandi

    HAfandi Guest

    Hi,

    thanks for reply.

    i only have single DNS/DC
    there is foreword from dns to gateway router when requesting internet

    until now i don't have problems with my network dns or domain. but i was
    setting my moss 2k7 AD provider for forms auth. (having problem with this
    now) so i figured to see what the result of pinging the domain from the
    workstation ans saw this situation.

    there is a router (Default Gateway) between the workstation and the DC. if i
    ping the domain from the router itself it will give the right address.

    the problem is it is giving me an ip address of another subnet i don't have.
    the domain (DC) address should be 192.168.5.20 or 192.168.10.25
    but i got the ip 192.168.2.20

    ipconfig from workstation is:
    """
    Windows IP Configuration

    Host Name . . . . . . . . . . . . : HAFANDI
    Primary Dns Suffix . . . . . . . : MyDomain.Net
    Node Type . . . . . . . . . . . . : Hybrid
    IP Routing Enabled. . . . . . . . : No
    WINS Proxy Enabled. . . . . . . . : No
    DNS Suffix Search List. . . . . . : MyDomain.Net

    Ethernet adapter Local Area Connection:

    Connection-specific DNS Suffix . : MyDomain.Net
    Description . . . . . . . . . . . : Realtek RTL8168B/8111B Family PCI-E
    Gigab
    it Ethernet NIC (NDIS 6.0)
    Physical Address. . . . . . . . . : 00-1A-4D-46-DB-55
    DHCP Enabled. . . . . . . . . . . : Yes
    Autoconfiguration Enabled . . . . : Yes
    Link-local IPv6 Address . . . . . : fe80::6de7:a1d4:3b99:65f7%12(Preferred)
    IPv4 Address. . . . . . . . . . . : 192.168.0.100(Preferred)
    Subnet Mask . . . . . . . . . . . : 255.255.255.0
    Lease Obtained. . . . . . . . . . : Saturday, February 14, 2009 02:44:35 PM
    Lease Expires . . . . . . . . . . : Sunday, February 22, 2009 02:44:30 PM
    Default Gateway . . . . . . . . . : 192.168.0.10
    DHCP Server . . . . . . . . . . . : 192.168.0.10
    DHCPv6 IAID . . . . . . . . . . . : 251664973
    DHCPv6 Client DUID. . . . . . . . :
    00-01-00-01-10-FF-BE-90-00-1A-4D-46-DB-55

    DNS Servers . . . . . . . . . . . : 192.168.5.20
    Primary WINS Server . . . . . . . : 192.168.0.10
    NetBIOS over Tcpip. . . . . . . . : Enabled

    Ethernet adapter VMware Network Adapter VMnet1:

    Connection-specific DNS Suffix . :
    Description . . . . . . . . . . . : VMware Virtual Ethernet Adapter for
    VMnet
    1
    Physical Address. . . . . . . . . : 00-50-56-C0-00-01
    DHCP Enabled. . . . . . . . . . . : No
    Autoconfiguration Enabled . . . . : Yes
    Link-local IPv6 Address . . . . . : fe80::c498:2441:1ab:6934%16(Preferred)
    IPv4 Address. . . . . . . . . . . : 192.168.253.1(Preferred)
    Subnet Mask . . . . . . . . . . . : 255.255.255.0
    Default Gateway . . . . . . . . . :
    DHCPv6 IAID . . . . . . . . . . . : 352342102
    DHCPv6 Client DUID. . . . . . . . :
    00-01-00-01-10-FF-BE-90-00-1A-4D-46-DB-55

    DNS Servers . . . . . . . . . . . : fec0:0:0:ffff::1%1
    fec0:0:0:ffff::2%1
    fec0:0:0:ffff::3%1
    NetBIOS over Tcpip. . . . . . . . : Enabled

    Ethernet adapter VMware Network Adapter VMnet8:

    Connection-specific DNS Suffix . :
    Description . . . . . . . . . . . : VMware Virtual Ethernet Adapter for
    VMnet
    8
    Physical Address. . . . . . . . . : 00-50-56-C0-00-08
    DHCP Enabled. . . . . . . . . . . : No
    Autoconfiguration Enabled . . . . : Yes
    Link-local IPv6 Address . . . . . : fe80::4902:b973:ba3d:6b0c%17(Preferred)
    IPv4 Address. . . . . . . . . . . : 192.168.150.1(Preferred)
    Subnet Mask . . . . . . . . . . . : 255.255.255.0
    Default Gateway . . . . . . . . . :
    DHCPv6 IAID . . . . . . . . . . . : 369119318
    DHCPv6 Client DUID. . . . . . . . :
    00-01-00-01-10-FF-BE-90-00-1A-4D-46-DB-55

    DNS Servers . . . . . . . . . . . : fec0:0:0:ffff::1%1
    fec0:0:0:ffff::2%1
    fec0:0:0:ffff::3%1
    NetBIOS over Tcpip. . . . . . . . : Enabled

    Tunnel adapter Local Area Connection* 9:

    Media State . . . . . . . . . . . : Media disconnected
    Connection-specific DNS Suffix . :
    Description . . . . . . . . . . . : Microsoft ISATAP Adapter
    Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
    DHCP Enabled. . . . . . . . . . . : No
    Autoconfiguration Enabled . . . . : Yes

    Tunnel adapter isatap.mydomain.net:

    Media State . . . . . . . . . . . : Media disconnected
    Connection-specific DNS Suffix . : mydomain.net
    Description . . . . . . . . . . . : Microsoft ISATAP Adapter
    Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
    DHCP Enabled. . . . . . . . . . . : No
    Autoconfiguration Enabled . . . . : Yes

    Tunnel adapter isatap.{0EDFF11C-43AC-48EE-BC2A-826B5E3CE497}:

    Media State . . . . . . . . . . . : Media disconnected
    Connection-specific DNS Suffix . :
    Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
    Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
    DHCP Enabled. . . . . . . . . . . : No
    Autoconfiguration Enabled . . . . : Yes

    Tunnel adapter isatap.{8D597ABE-9DCB-4135-A1C0-F371605347DA}:

    Media State . . . . . . . . . . . : Media disconnected
    Connection-specific DNS Suffix . :
    Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
    Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
    DHCP Enabled. . . . . . . . . . . : No
    Autoconfiguration Enabled . . . . : Yes

    Tunnel adapter isatap.{F0A3D750-7794-4563-9048-1D5687E69F42}:

    Media State . . . . . . . . . . . : Media disconnected
    Connection-specific DNS Suffix . :
    Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
    Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
    DHCP Enabled. . . . . . . . . . . : No
    Autoconfiguration Enabled . . . . : Yes
    """

    and ipconfig /all from DC/DNS is:
    """
    Windows IP Configuration

    Host Name . . . . . . . . . . . . : DC
    Primary Dns Suffix . . . . . . . : MyDomain.Net
    Node Type . . . . . . . . . . . . : Hybrid
    IP Routing Enabled. . . . . . . . : No
    WINS Proxy Enabled. . . . . . . . : No
    DNS Suffix Search List. . . . . . : MyDomain.Net

    Ethernet adapter Lan:

    Connection-specific DNS Suffix . :
    Description . . . . . . . . . . . : Realtek RTL8168B/8111B Family PCI-E
    Gigab
    it Ethernet NIC (NDIS 6.0)
    Physical Address. . . . . . . . . : 00-1A-4D-5B-0F-85
    DHCP Enabled. . . . . . . . . . . : No
    Autoconfiguration Enabled . . . . : Yes
    Link-local IPv6 Address . . . . . : fe80::25dd:2db7:76ff:1d09%10(Preferred)
    IPv4 Address. . . . . . . . . . . : 192.168.5.20(Preferred)
    Subnet Mask . . . . . . . . . . . : 255.255.255.0
    Default Gateway . . . . . . . . . : 192.168.5.10
    DNS Servers . . . . . . . . . . . : ::1
    127.0.0.1
    NetBIOS over Tcpip. . . . . . . . : Enabled

    Ethernet adapter Branch:

    Connection-specific DNS Suffix . :
    Description . . . . . . . . . . . : Realtek RTL8168B/8111B Family PCI-E
    Gigab
    it Ethernet NIC (NDIS 6.0) #2
    Physical Address. . . . . . . . . : 00-1A-4D-5B-0F-35
    DHCP Enabled. . . . . . . . . . . : No
    Autoconfiguration Enabled . . . . : Yes
    Link-local IPv6 Address . . . . . : fe80::352e:a1c2:350a:1dc8%11(Preferred)
    IPv4 Address. . . . . . . . . . . : 192.168.10.25(Preferred)
    Subnet Mask . . . . . . . . . . . : 255.255.255.0
    Default Gateway . . . . . . . . . :
    DNS Servers . . . . . . . . . . . : ::1
    127.0.0.1
    NetBIOS over Tcpip. . . . . . . . : Enabled

    Tunnel adapter Local Area Connection* 8:

    Media State . . . . . . . . . . . : Media disconnected
    Connection-specific DNS Suffix . :
    Description . . . . . . . . . . . :
    isatap.{C55E76ED-AC6B-486B-85CE-D85361BB8
    284}
    Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
    DHCP Enabled. . . . . . . . . . . : No
    Autoconfiguration Enabled . . . . : Yes

    Tunnel adapter Local Area Connection* 9:

    Media State . . . . . . . . . . . : Media disconnected
    Connection-specific DNS Suffix . :
    Description . . . . . . . . . . . :
    isatap.{A4D43851-A192-4A14-8BF1-369838284
    01B}
    Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
    DHCP Enabled. . . . . . . . . . . : No
    Autoconfiguration Enabled . . . . : Yes
    """

    thanks for help
     
    HAfandi, Feb 15, 2009
    #6
  7. HAfandi

    HAfandi Guest

    Hi,

    thanks for reply.

    i only have single DNS/DC
    there is foreword from dns to gateway router when requesting internet

    until now i don't have problems with my network dns or domain. but i was
    setting my moss 2k7 AD provider for forms auth. (having problem with this
    now) so i figured to see what the result of pinging the domain from the
    workstation ans saw this situation.

    there is a router (Default Gateway) between the workstation and the DC. if i
    ping the domain from the router itself it will give the right address.

    the problem is it is giving me an ip address of another subnet i don't have.
    the domain (DC) address should be 192.168.5.20 or 192.168.10.25
    but i got the ip 192.168.2.20

    ipconfig from workstation is:
    """
    Windows IP Configuration

    Host Name . . . . . . . . . . . . : HAFANDI
    Primary Dns Suffix . . . . . . . : MyDomain.Net
    Node Type . . . . . . . . . . . . : Hybrid
    IP Routing Enabled. . . . . . . . : No
    WINS Proxy Enabled. . . . . . . . : No
    DNS Suffix Search List. . . . . . : MyDomain.Net

    Ethernet adapter Local Area Connection:

    Connection-specific DNS Suffix . : MyDomain.Net
    Description . . . . . . . . . . . : Realtek RTL8168B/8111B Family PCI-E
    Gigab
    it Ethernet NIC (NDIS 6.0)
    Physical Address. . . . . . . . . : 00-1A-4D-46-DB-55
    DHCP Enabled. . . . . . . . . . . : Yes
    Autoconfiguration Enabled . . . . : Yes
    Link-local IPv6 Address . . . . . : fe80::6de7:a1d4:3b99:65f7%12(Preferred)
    IPv4 Address. . . . . . . . . . . : 192.168.0.100(Preferred)
    Subnet Mask . . . . . . . . . . . : 255.255.255.0
    Lease Obtained. . . . . . . . . . : Saturday, February 14, 2009 02:44:35 PM
    Lease Expires . . . . . . . . . . : Sunday, February 22, 2009 02:44:30 PM
    Default Gateway . . . . . . . . . : 192.168.0.10
    DHCP Server . . . . . . . . . . . : 192.168.0.10
    DHCPv6 IAID . . . . . . . . . . . : 251664973
    DHCPv6 Client DUID. . . . . . . . :
    00-01-00-01-10-FF-BE-90-00-1A-4D-46-DB-55

    DNS Servers . . . . . . . . . . . : 192.168.5.20
    Primary WINS Server . . . . . . . : 192.168.0.10
    NetBIOS over Tcpip. . . . . . . . : Enabled

    Ethernet adapter VMware Network Adapter VMnet1:

    Connection-specific DNS Suffix . :
    Description . . . . . . . . . . . : VMware Virtual Ethernet Adapter for
    VMnet
    1
    Physical Address. . . . . . . . . : 00-50-56-C0-00-01
    DHCP Enabled. . . . . . . . . . . : No
    Autoconfiguration Enabled . . . . : Yes
    Link-local IPv6 Address . . . . . : fe80::c498:2441:1ab:6934%16(Preferred)
    IPv4 Address. . . . . . . . . . . : 192.168.253.1(Preferred)
    Subnet Mask . . . . . . . . . . . : 255.255.255.0
    Default Gateway . . . . . . . . . :
    DHCPv6 IAID . . . . . . . . . . . : 352342102
    DHCPv6 Client DUID. . . . . . . . :
    00-01-00-01-10-FF-BE-90-00-1A-4D-46-DB-55

    DNS Servers . . . . . . . . . . . : fec0:0:0:ffff::1%1
    fec0:0:0:ffff::2%1
    fec0:0:0:ffff::3%1
    NetBIOS over Tcpip. . . . . . . . : Enabled

    Ethernet adapter VMware Network Adapter VMnet8:

    Connection-specific DNS Suffix . :
    Description . . . . . . . . . . . : VMware Virtual Ethernet Adapter for
    VMnet
    8
    Physical Address. . . . . . . . . : 00-50-56-C0-00-08
    DHCP Enabled. . . . . . . . . . . : No
    Autoconfiguration Enabled . . . . : Yes
    Link-local IPv6 Address . . . . . : fe80::4902:b973:ba3d:6b0c%17(Preferred)
    IPv4 Address. . . . . . . . . . . : 192.168.150.1(Preferred)
    Subnet Mask . . . . . . . . . . . : 255.255.255.0
    Default Gateway . . . . . . . . . :
    DHCPv6 IAID . . . . . . . . . . . : 369119318
    DHCPv6 Client DUID. . . . . . . . :
    00-01-00-01-10-FF-BE-90-00-1A-4D-46-DB-55

    DNS Servers . . . . . . . . . . . : fec0:0:0:ffff::1%1
    fec0:0:0:ffff::2%1
    fec0:0:0:ffff::3%1
    NetBIOS over Tcpip. . . . . . . . : Enabled

    Tunnel adapter Local Area Connection* 9:

    Media State . . . . . . . . . . . : Media disconnected
    Connection-specific DNS Suffix . :
    Description . . . . . . . . . . . : Microsoft ISATAP Adapter
    Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
    DHCP Enabled. . . . . . . . . . . : No
    Autoconfiguration Enabled . . . . : Yes

    Tunnel adapter isatap.mydomain.net:

    Media State . . . . . . . . . . . : Media disconnected
    Connection-specific DNS Suffix . : mydomain.net
    Description . . . . . . . . . . . : Microsoft ISATAP Adapter
    Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
    DHCP Enabled. . . . . . . . . . . : No
    Autoconfiguration Enabled . . . . : Yes

    Tunnel adapter isatap.{0EDFF11C-43AC-48EE-BC2A-826B5E3CE497}:

    Media State . . . . . . . . . . . : Media disconnected
    Connection-specific DNS Suffix . :
    Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
    Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
    DHCP Enabled. . . . . . . . . . . : No
    Autoconfiguration Enabled . . . . : Yes

    Tunnel adapter isatap.{8D597ABE-9DCB-4135-A1C0-F371605347DA}:

    Media State . . . . . . . . . . . : Media disconnected
    Connection-specific DNS Suffix . :
    Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
    Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
    DHCP Enabled. . . . . . . . . . . : No
    Autoconfiguration Enabled . . . . : Yes

    Tunnel adapter isatap.{F0A3D750-7794-4563-9048-1D5687E69F42}:

    Media State . . . . . . . . . . . : Media disconnected
    Connection-specific DNS Suffix . :
    Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
    Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
    DHCP Enabled. . . . . . . . . . . : No
    Autoconfiguration Enabled . . . . : Yes
    """

    and ipconfig /all from DC/DNS is:
    """
    Windows IP Configuration

    Host Name . . . . . . . . . . . . : DC
    Primary Dns Suffix . . . . . . . : MyDomain.Net
    Node Type . . . . . . . . . . . . : Hybrid
    IP Routing Enabled. . . . . . . . : No
    WINS Proxy Enabled. . . . . . . . : No
    DNS Suffix Search List. . . . . . : MyDomain.Net

    Ethernet adapter Lan:

    Connection-specific DNS Suffix . :
    Description . . . . . . . . . . . : Realtek RTL8168B/8111B Family PCI-E
    Gigab
    it Ethernet NIC (NDIS 6.0)
    Physical Address. . . . . . . . . : 00-1A-4D-5B-0F-85
    DHCP Enabled. . . . . . . . . . . : No
    Autoconfiguration Enabled . . . . : Yes
    Link-local IPv6 Address . . . . . : fe80::25dd:2db7:76ff:1d09%10(Preferred)
    IPv4 Address. . . . . . . . . . . : 192.168.5.20(Preferred)
    Subnet Mask . . . . . . . . . . . : 255.255.255.0
    Default Gateway . . . . . . . . . : 192.168.5.10
    DNS Servers . . . . . . . . . . . : ::1
    127.0.0.1
    NetBIOS over Tcpip. . . . . . . . : Enabled

    Ethernet adapter Branch:

    Connection-specific DNS Suffix . :
    Description . . . . . . . . . . . : Realtek RTL8168B/8111B Family PCI-E
    Gigab
    it Ethernet NIC (NDIS 6.0) #2
    Physical Address. . . . . . . . . : 00-1A-4D-5B-0F-35
    DHCP Enabled. . . . . . . . . . . : No
    Autoconfiguration Enabled . . . . : Yes
    Link-local IPv6 Address . . . . . : fe80::352e:a1c2:350a:1dc8%11(Preferred)
    IPv4 Address. . . . . . . . . . . : 192.168.10.25(Preferred)
    Subnet Mask . . . . . . . . . . . : 255.255.255.0
    Default Gateway . . . . . . . . . :
    DNS Servers . . . . . . . . . . . : ::1
    127.0.0.1
    NetBIOS over Tcpip. . . . . . . . : Enabled

    Tunnel adapter Local Area Connection* 8:

    Media State . . . . . . . . . . . : Media disconnected
    Connection-specific DNS Suffix . :
    Description . . . . . . . . . . . :
    isatap.{C55E76ED-AC6B-486B-85CE-D85361BB8
    284}
    Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
    DHCP Enabled. . . . . . . . . . . : No
    Autoconfiguration Enabled . . . . : Yes

    Tunnel adapter Local Area Connection* 9:

    Media State . . . . . . . . . . . : Media disconnected
    Connection-specific DNS Suffix . :
    Description . . . . . . . . . . . :
    isatap.{A4D43851-A192-4A14-8BF1-369838284
    01B}
    Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
    DHCP Enabled. . . . . . . . . . . : No
    Autoconfiguration Enabled . . . . : Yes
    """

    thanks for help
     
    HAfandi, Feb 16, 2009
    #7
  8. Hello HAfandi,

    Prevent multihoming of a DC and also the clients. This create lot's of problems
    as you can see. What is the reason for multihoming all your machines and
    also havind virtual network adapters with ipconfiguration?

    Please describe in detail your network setup, where are server and clients,
    on the same switch or not, where is the router connected to etc. Also what
    about the VM's, for what are they used on the client?

    Best regards

    Meinolf Weber
     
    Meinolf Weber [MVP-DS], Feb 16, 2009
    #8
  9. HAfandi

    Joson Zhou Guest

    Hi HAfandi,

    Thank you for posing in newsgroup.

    I agree with Meinolf, we don't recommend using multihome domain controllers
    since it will cause some potential problem in Active Directory
    communication.

    For more information, please refer to:

    Active Directory communication fails on multihomed domain controllers
    http://support.microsoft.com/kb/272294

    In addition to Meinolf's question, please run the command ipconfig
    /flushdns to purge the DNS Resolver cache on the client machine, and then
    ping the domain again to check the result.

    If the issue persists, please perform the following steps to capture the
    network packets for further research:

    1. Download and install the Network Monitor 3.2 on a client workstation and
    the DC:

    Microsoft Network Monitor 3.2
    http://www.microsoft.com/downloads/details.aspx?FamilyID=f4db40af-1e08-4a21-
    a26b-ec2f4dc4190d&DisplayLang=en

    2. Log onto the machines, right-click the Netmon icon and select Run as
    Administrator to launch NetMon3.2.
    3. the Microsoft Network Monitor 3.2 window, click Create a new capture tab.
    4. In the new tab, select all the Network Adapters in the Select Networks
    window.
    5. Run ipconfig /flushdns again on the client machine, and then press F10
    to start NetMon on both machines.
    6. On the client machine, run command nslookup DomainName.
    7. After you get the result, go back to the NetMon window and press F11 to
    stop the NetMon.
    8. Press Ctrl+S to save the Netmon files and upload them to the following
    space:

    https://sftasia.one.microsoft.com/choosetransfer.aspx?key=31f17f6d-6c3a-4b87
    -b08e-dcfd575a2736
    Password: BX)OiCrEKq6^7]Et

    Please also paste the result of the nslookup command to me.

    I look forward to your response.

    Sincerely,
    Joson Zhou
    Microsoft Online Support
    Microsoft Global Technical Support Center

    Get Secure! - www.microsoft.com/security
    =====================================================
    When responding to posts, please "Reply to Group" via your newsreader so
    that others may learn and benefit from your issue.
    =====================================================
    This posting is provided "AS IS" with no warranties, and confers no rights.
     
    Joson Zhou, Feb 16, 2009
    #9
  10. Addition to other posts, the problem is DNS 127.0.0.1. The DNS IP should
    point to DC/DNS server.


    --
    Bob Lin, MS-MVP, MCSE & CNE
    Networking, Internet, Routing, VPN Troubleshooting on
    http://www.ChicagoTech.net
    How to Setup Windows, Network, VPN & Remote Access on
    http://www.HowToNetworking.com
     
    Robert L. \(MS-MVP\), Feb 16, 2009
    #10
  11. HAfandi

    HAfandi Guest

    Hi,

    thanks for reply.

    only my pc has virtual machine ( i am using it for testing)

    my network infrastructure is:

    - 3 private subnet network and connection to adsl internet
    1) network with 192.168.5.0 for our servers.
    2) network with 192.168.0.0 for local network clients.
    3) we have adsl with vpn connection between some branches. and the
    branches only recognize network with 192.168.10.0 addresses(configured from
    the provider). so i had to enabled 2nd nic on the dc with 192.168.10.25

    there is ISA server to internet that act also as router between networks.

    there is switch for servers, and one for local network. and the vpn adsl
    modem connected to a third switch.

    i tried flushdns and ping again before but the same.

    my nslookup result:
    """
    C:\>nslookup mydomain.net
    Server: dc.mydomain.net
    Address: 192.168.5.20

    Name: mydomain.net
    Addresses: 192.168.2.20
    192.168.10.25
    10.240.12.32
    192.168.5.20
    10.240.72.131
    """

    i also upload the result of Network Monitor 3.2

    may be these ips are for the vpn adsl provider, i don't know. but shouldn't
    the nslookup stop at my dns since its the default dns of the client and the
    one hosting the domain?

    is there any other info you want me to post?

    thanks for help
     
    HAfandi, Feb 16, 2009
    #11
  12. Hello HAfandi,

    So if i get you correct, you have one location with 3 switches, where on
    one of them are the server, on one the clients and on one the ADSL connection
    is?

    Also between the server and the clients you have the ISA server or is the
    ISA between the server and the remote clients?

    For a LAN in one physical location use one subnet instead of x.x.5.x and
    x.x.0.x. The DC and the workstations run in one physical network. Why did
    you separate them?

    The remote location configure with VPN to the network, but not with the DC.

    Best regards

    Meinolf Weber
     
    Meinolf Weber [MVP-DS], Feb 16, 2009
    #12
  13. HAfandi

    Joson Zhou Guest

    Hi HAfandi,

    According to the Netmon packet and the result of the nslookup command, it
    seems that the A record 192.168.2.20 does exist in the zone Domain.net.

    Please open the DNS Manger console and check if the following A records
    exist in the zone Domain.Net:

    Name Type Data
    (same as parent folder) Host (A) 192.168.2.20
    (same as parent folder) Host (A) 10.240.12.32
    (same as parent folder) Host (A) 10.240.72.131

    If they exist and are not needed, please remove them and check the result.

    If the zone does not have such records, please help collect the MPS Report
    on the DC and the client machine for further research:

    A . Please download MPS Reporting Tool (MPSRPT_PFE.EXE) from the following
    link:
    (http://www.microsoft.com/downloads/details.aspx?FamilyID=00ad0eac-720f-4441
    -9ef6-ea9f657b5c2f&DisplayLang=en)

    Please note: The link may be truncated when you read the E-mail. Be sure to
    include all text between '(' and ')' when navigating to the download
    location.

    B . Right click MPSRPT_PFE.EXE and select Run as Administrator to run this
    tool, and you will see a Command Window start up.

    C . Please type N with the message of <Include the MSINFO32 report?
    (defaults to Y in 15 seconds)[Y,N]?

    D . When the tool is done you will see an Explorer Window opening up the
    %systemroot%\MPSReports\Setup\Reports\cab folder and containing a
    <Computername>MPSReports.cab file. Please upload the file to the space.

    Sincerely,
    Joson Zhou
    Microsoft Online Support
    Microsoft Global Technical Support Center

    Get Secure! - www.microsoft.com/security
    =====================================================
    When responding to posts, please "Reply to Group" via your newsreader so
    that others may learn and benefit from your issue.
    =====================================================
    This posting is provided "AS IS" with no warranties, and confers no rights.
     
    Joson Zhou, Feb 17, 2009
    #13
  14. HAfandi

    HAfandi Guest

    Hi,
    thanks all for the help.

    Meinolf,
    yes there is 3 switch as described. the server is between the local client
    and (the servers or remote clients).
    the remote clients connected to servers network through the adsl.
    the dns server of remote clients is my DC/DNS

    when i build my network first i thought i will make the DMZ solution (i
    didn't knew what exactly the dmzat the time) but after i understand that dmz
    involve with just making special network for servers only acting as front end
    to remote/internet clients, and did not have the ability to build such extra
    servers.
    so here i was with 3 switches, so i thought if i make a special network only
    for servers may be it will be more secure than connected directly to LAN.
    do you suggest to rebuild the network and remove one the subnets? and what
    problem could i be into with scenario?


    Joson,
    that is strange, because yes there is 3 A records on dns for these ips. i
    don't know how they been created. after i removed, it seems it is ok now.
    here is the result:
    """
    C:\Users\Hasan>nslookup mydomain.net
    Server: dc.amc-ksa.net
    Address: 192.168.5.20

    Name: mydomain.net
    Addresses: 192.168.5.20
    192.168.10.25
    """
    do you know what could cause this to happen (no one access the dns console
    except me)? so i can prevent this in the future?


    thank you all
     
    HAfandi, Feb 18, 2009
    #14
  15. I think you've overly complicated your network with little benefit. I'd put
    all the servers and clients on the same flat network.
     
    Lanwench [MVP - Exchange], Feb 18, 2009
    #15
  16. HAfandi

    Joson Zhou Guest

    Hi HAfandi,

    I am glad that the issue has been resolved.

    As Meinolf mentioned, these A records, also called LdapIpAddress, are
    registered by DC for a non-SRV-aware client to locate any domain controller
    in the domain. For more information, please refer to the following article:

    How DNS Support for Active Directory Works
    http://technet.microsoft.com/en-us/library/cc759550.aspx

    Based on my experience, this issue may occur if an additional domain
    control was created in the domain, an additional network adapter (including
    virtual network adapter) was installed in domain controller, etc.

    Sincerely,
    Joson Zhou
    Microsoft Online Support
    Microsoft Global Technical Support Center

    Get Secure! - www.microsoft.com/security
    =====================================================
    When responding to posts, please "Reply to Group" via your newsreader so
    that others may learn and benefit from your issue.
    =====================================================
    This posting is provided "AS IS" with no warranties, and confers no rights.
     
    Joson Zhou, Feb 19, 2009
    #16
  17. HAfandi

    HAfandi Guest

    thanks all for help.

    i will try with my isp to route the remote clients vpn to domain subnet
    x.x.5.x
    also, i will check to see how to process to remove the lan network and make
    all lan+servers as one network

    thanks again for help

    with Regards
     
    HAfandi, Feb 21, 2009
    #17
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.