Re: dns issue with browser (OS X)
sophos or ClamX, fwiw for a malware scan. and it should not be a problem as you are not allowing them to run as admin right? after that, internal DNS server or an external one? -- unlikely as you are getting DHCP internally, but worth verifing repair permissions on the drive. - Oh, by the way, which one's Pink? On Mon, Feb 20, 2012 at 22:22, Jimmy Tran jt...@teachtci.com wrote: I will find out tomorrow morning if she has issues. I highly doubt its malware but I cannot confirm. Not sure if there is even a malware scan for Snow Leopard. The proxy settings look good on the browser. Just not sure how a reboot would temporarily fix it. If I see this problem tomorrow, I will just wipe and reinstall. -Original Message- From: James Hill [mailto:falc...@gmail.com] Sent: Sunday, February 19, 2012 5:46 PM To: NT System Admin Issues Subject: RE: dns issue with browser (OS X) This sounds like the most likely cause. Or even some type of Malware. *gasp... did he just say that!? -Original Message- From: Matthew W. Ross [mailto:mr...@ephrataschools.org] Sent: Saturday, 18 February 2012 3:09 AM To: NT System Admin Issues Subject: Re: dns issue with browser (OS X) Doublecheck the browser/OS proxy settings. --Matt Ross Ephrata School District - Original Message - From: Jimmy Tran [mailto:jt...@teachtci.com] To: NT System Admin Issues [mailto:ntsysadmin@lyris.sunbelt-software.com] Sent: Fri, 17 Feb 2012 08:52:56 -0800 Subject: dns issue with browser (OS X) Hi All, I have one specific user using a Mac who cannot resolve DNS properly in Firefox or Safari on OS X 10.6.8. They can ping by hostnames just fine. They can get to any website by IP just fine but not by hostname. Any ideas? I'm stumped and Google hasn't been very helpful this morning. Thanks, Jimmy ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: dns issue with browser (OS X)
I doubt it's malware to but it did come to mind as there is DNS related malware out there http://blog.trendmicro.com/mac-os-x-dns-changing-trojan-in-the-wild/ Having said that you'd expect it to effect name resolution when pinging etc. -Original Message- From: Jimmy Tran [mailto:jt...@teachtci.com] Sent: Tuesday, 21 February 2012 4:22 PM To: NT System Admin Issues Subject: RE: dns issue with browser (OS X) I will find out tomorrow morning if she has issues. I highly doubt its malware but I cannot confirm. Not sure if there is even a malware scan for Snow Leopard. The proxy settings look good on the browser. Just not sure how a reboot would temporarily fix it. If I see this problem tomorrow, I will just wipe and reinstall. -Original Message- From: James Hill [mailto:falc...@gmail.com] Sent: Sunday, February 19, 2012 5:46 PM To: NT System Admin Issues Subject: RE: dns issue with browser (OS X) This sounds like the most likely cause. Or even some type of Malware. *gasp... did he just say that!? -Original Message- From: Matthew W. Ross [mailto:mr...@ephrataschools.org] Sent: Saturday, 18 February 2012 3:09 AM To: NT System Admin Issues Subject: Re: dns issue with browser (OS X) Doublecheck the browser/OS proxy settings. --Matt Ross Ephrata School District - Original Message - From: Jimmy Tran [mailto:jt...@teachtci.com] To: NT System Admin Issues [mailto:ntsysadmin@lyris.sunbelt-software.com] Sent: Fri, 17 Feb 2012 08:52:56 -0800 Subject: dns issue with browser (OS X) Hi All, I have one specific user using a Mac who cannot resolve DNS properly in Firefox or Safari on OS X 10.6.8. They can ping by hostnames just fine. They can get to any website by IP just fine but not by hostname. Any ideas? I'm stumped and Google hasn't been very helpful this morning. Thanks, Jimmy ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: dns issue with browser (OS X)
I will find out tomorrow morning if she has issues. I highly doubt its malware but I cannot confirm. Not sure if there is even a malware scan for Snow Leopard. The proxy settings look good on the browser. Just not sure how a reboot would temporarily fix it. If I see this problem tomorrow, I will just wipe and reinstall. -Original Message- From: James Hill [mailto:falc...@gmail.com] Sent: Sunday, February 19, 2012 5:46 PM To: NT System Admin Issues Subject: RE: dns issue with browser (OS X) This sounds like the most likely cause. Or even some type of Malware. *gasp... did he just say that!? -Original Message- From: Matthew W. Ross [mailto:mr...@ephrataschools.org] Sent: Saturday, 18 February 2012 3:09 AM To: NT System Admin Issues Subject: Re: dns issue with browser (OS X) Doublecheck the browser/OS proxy settings. --Matt Ross Ephrata School District - Original Message - From: Jimmy Tran [mailto:jt...@teachtci.com] To: NT System Admin Issues [mailto:ntsysadmin@lyris.sunbelt-software.com] Sent: Fri, 17 Feb 2012 08:52:56 -0800 Subject: dns issue with browser (OS X) Hi All, I have one specific user using a Mac who cannot resolve DNS properly in Firefox or Safari on OS X 10.6.8. They can ping by hostnames just fine. They can get to any website by IP just fine but not by hostname. Any ideas? I'm stumped and Google hasn't been very helpful this morning. Thanks, Jimmy ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: dns issue with browser (OS X)
This sounds like the most likely cause. Or even some type of Malware. *gasp... did he just say that!? -Original Message- From: Matthew W. Ross [mailto:mr...@ephrataschools.org] Sent: Saturday, 18 February 2012 3:09 AM To: NT System Admin Issues Subject: Re: dns issue with browser (OS X) Doublecheck the browser/OS proxy settings. --Matt Ross Ephrata School District - Original Message - From: Jimmy Tran [mailto:jt...@teachtci.com] To: NT System Admin Issues [mailto:ntsysadmin@lyris.sunbelt-software.com] Sent: Fri, 17 Feb 2012 08:52:56 -0800 Subject: dns issue with browser (OS X) Hi All, I have one specific user using a Mac who cannot resolve DNS properly in Firefox or Safari on OS X 10.6.8. They can ping by hostnames just fine. They can get to any website by IP just fine but not by hostname. Any ideas? I'm stumped and Google hasn't been very helpful this morning. Thanks, Jimmy ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
dns issue with browser (OS X)
Hi All, I have one specific user using a Mac who cannot resolve DNS properly in Firefox or Safari on OS X 10.6.8. They can ping by hostnames just fine. They can get to any website by IP just fine but not by hostname. Any ideas? I'm stumped and Google hasn't been very helpful this morning. Thanks, Jimmy ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: dns issue with browser (OS X)
Has he restarted the computer? Carl Webster Consultant and Citrix Technology Professional http://www.CarlWebster.comhttp://www.carlwebster.com/ From: Jimmy Tran [jt...@teachtci.com] Sent: Friday, February 17, 2012 10:52 AM To: NT System Admin Issues Subject: dns issue with browser (OS X) Hi All, I have one specific user using a Mac who cannot resolve DNS properly in Firefox or Safari on OS X 10.6.8. They can ping by hostnames just fine. They can get to any website by IP just fine but not by hostname. Any ideas? I’m stumped and Google hasn’t been very helpful this morning. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: dns issue with browser (OS X)
HAHAHAHAHAHAHAHAHAHA From: Webster [mailto:webs...@carlwebster.com] Sent: Friday, February 17, 2012 12:00 PM To: NT System Admin Issues Subject: RE: dns issue with browser (OS X) Has he restarted the computer? Carl Webster Consultant and Citrix Technology Professional http://www.CarlWebster.comhttp://www.carlwebster.com/ From: Jimmy Tran [jt...@teachtci.com] Sent: Friday, February 17, 2012 10:52 AM To: NT System Admin Issues Subject: dns issue with browser (OS X) Hi All, I have one specific user using a Mac who cannot resolve DNS properly in Firefox or Safari on OS X 10.6.8. They can ping by hostnames just fine. They can get to any website by IP just fine but not by hostname. Any ideas? I'm stumped and Google hasn't been very helpful this morning. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: dns issue with browser (OS X)
DHCP or static IP addressing? On Fri, Feb 17, 2012 at 10:52 AM, Jimmy Tran jt...@teachtci.com wrote: Hi All, ** ** I have one specific user using a Mac who cannot resolve DNS properly in Firefox or Safari on OS X 10.6.8. They can ping by hostnames just fine. They can get to any website by IP just fine but not by hostname. Any ideas? I’m stumped and Google hasn’t been very helpful this morning. ** ** Thanks, ** ** Jimmy ** ** ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: dns issue with browser (OS X)
Yes, when the problem originally occurred yesterday, I had her reboot the computer. Worked fine until this morning. Had her reboot again and it worked. Seems like there is something going on at night but what could it be? From: Webster [mailto:webs...@carlwebster.com] Sent: Friday, February 17, 2012 9:00 AM To: NT System Admin Issues Subject: RE: dns issue with browser (OS X) Has he restarted the computer? Carl Webster Consultant and Citrix Technology Professional http://www.CarlWebster.com http://www.carlwebster.com/ From: Jimmy Tran [jt...@teachtci.com] Sent: Friday, February 17, 2012 10:52 AM To: NT System Admin Issues Subject: dns issue with browser (OS X) Hi All, I have one specific user using a Mac who cannot resolve DNS properly in Firefox or Safari on OS X 10.6.8. They can ping by hostnames just fine. They can get to any website by IP just fine but not by hostname. Any ideas? I'm stumped and Google hasn't been very helpful this morning. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: dns issue with browser (OS X)
Doublecheck the browser/OS proxy settings. --Matt Ross Ephrata School District - Original Message - From: Jimmy Tran [mailto:jt...@teachtci.com] To: NT System Admin Issues [mailto:ntsysadmin@lyris.sunbelt-software.com] Sent: Fri, 17 Feb 2012 08:52:56 -0800 Subject: dns issue with browser (OS X) Hi All, I have one specific user using a Mac who cannot resolve DNS properly in Firefox or Safari on OS X 10.6.8. They can ping by hostnames just fine. They can get to any website by IP just fine but not by hostname. Any ideas? I'm stumped and Google hasn't been very helpful this morning. Thanks, Jimmy ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: dns issue with browser (OS X)
DHCP. When it wasn't working, I changed to static info and still nothing. The reboot does fix it temporarily but it just seems to come back in 24 hours. From: Steve Ens [mailto:stevey...@gmail.com] Sent: Friday, February 17, 2012 9:04 AM To: NT System Admin Issues Subject: Re: dns issue with browser (OS X) DHCP or static IP addressing? On Fri, Feb 17, 2012 at 10:52 AM, Jimmy Tran jt...@teachtci.com wrote: Hi All, I have one specific user using a Mac who cannot resolve DNS properly in Firefox or Safari on OS X 10.6.8. They can ping by hostnames just fine. They can get to any website by IP just fine but not by hostname. Any ideas? I'm stumped and Google hasn't been very helpful this morning. Thanks, Jimmy ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: dns issue with browser (OS X)
Group policy? On Fri, Feb 17, 2012 at 11:04 AM, Jimmy Tran jt...@teachtci.com wrote: Yes, when the problem originally occurred yesterday, I had her reboot the computer. Worked fine until this morning. Had her reboot again and it worked. Seems like there is something going on at night but what could it be? ** ** *From:* Webster [mailto:webs...@carlwebster.com] *Sent:* Friday, February 17, 2012 9:00 AM *To:* NT System Admin Issues *Subject:* RE: dns issue with browser (OS X) ** ** Has he restarted the computer? Carl Webster Consultant and Citrix Technology Professional http://www.CarlWebster.com http://www.carlwebster.com/ -- *From:* Jimmy Tran [jt...@teachtci.com] *Sent:* Friday, February 17, 2012 10:52 AM *To:* NT System Admin Issues *Subject:* dns issue with browser (OS X) Hi All, I have one specific user using a Mac who cannot resolve DNS properly in Firefox or Safari on OS X 10.6.8. They can ping by hostnames just fine. They can get to any website by IP just fine but not by hostname. Any ideas? I’m stumped and Google hasn’t been very helpful this morning. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: dns issue with browser (OS X)
No proxy settings in Firefox or Safari. -Original Message- From: Matthew W. Ross [mailto:mr...@ephrataschools.org] Sent: Friday, February 17, 2012 9:09 AM To: NT System Admin Issues Subject: Re: dns issue with browser (OS X) Doublecheck the browser/OS proxy settings. --Matt Ross Ephrata School District - Original Message - From: Jimmy Tran [mailto:jt...@teachtci.com] To: NT System Admin Issues [mailto:ntsysadmin@lyris.sunbelt-software.com] Sent: Fri, 17 Feb 2012 08:52:56 -0800 Subject: dns issue with browser (OS X) Hi All, I have one specific user using a Mac who cannot resolve DNS properly in Firefox or Safari on OS X 10.6.8. They can ping by hostnames just fine. They can get to any website by IP just fine but not by hostname. Any ideas? I'm stumped and Google hasn't been very helpful this morning. Thanks, Jimmy ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: dns issue with browser (OS X)
Maybe it's just 'artistic sensibilities'. Someone should just spend more time with it. On Fri, Feb 17, 2012 at 9:04 AM, Jimmy Tran jt...@teachtci.com wrote: Yes, when the problem originally occurred yesterday, I had her reboot the computer. Worked fine until this morning. Had her reboot again and it worked. Seems like there is something going on at night but what could it be? ** ** *From:* Webster [mailto:webs...@carlwebster.com] *Sent:* Friday, February 17, 2012 9:00 AM *To:* NT System Admin Issues *Subject:* RE: dns issue with browser (OS X) ** ** Has he restarted the computer? Carl Webster Consultant and Citrix Technology Professional http://www.CarlWebster.com http://www.carlwebster.com/ -- *From:* Jimmy Tran [jt...@teachtci.com] *Sent:* Friday, February 17, 2012 10:52 AM *To:* NT System Admin Issues *Subject:* dns issue with browser (OS X) Hi All, I have one specific user using a Mac who cannot resolve DNS properly in Firefox or Safari on OS X 10.6.8. They can ping by hostnames just fine. They can get to any website by IP just fine but not by hostname. Any ideas? I’m stumped and Google hasn’t been very helpful this morning. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: dns issue with browser (OS X)
Can you resolve any external hosts from a terminal window using nslookup? When you said that you could ping by hostname, were you pinging internal hosts with the same DNS suffix? (I think Macs call this search domain or something similar.) On Fri, Feb 17, 2012 at 12:17 PM, Jimmy Tran jt...@teachtci.com wrote: DHCP. When it wasn’t working, I changed to static info and still nothing. The reboot does fix it temporarily but it just seems to come back in 24 hours. ** ** *From:* Steve Ens [mailto:stevey...@gmail.com] *Sent:* Friday, February 17, 2012 9:04 AM *To:* NT System Admin Issues *Subject:* Re: dns issue with browser (OS X) ** ** DHCP or static IP addressing? On Fri, Feb 17, 2012 at 10:52 AM, Jimmy Tran jt...@teachtci.com wrote:** ** Hi All, I have one specific user using a Mac who cannot resolve DNS properly in Firefox or Safari on OS X 10.6.8. They can ping by hostnames just fine. They can get to any website by IP just fine but not by hostname. Any ideas? I’m stumped and Google hasn’t been very helpful this morning. Thanks, Jimmy ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ** ** ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: dns issue with browser (OS X)
Is there a way to flush the DNS cache on a Mac? -Original Message- From: Jimmy Tran [mailto:jt...@teachtci.com] Sent: Friday, February 17, 2012 11:30 AM To: NT System Admin Issues Subject: RE: dns issue with browser (OS X) No proxy settings in Firefox or Safari. -Original Message- From: Matthew W. Ross [mailto:mr...@ephrataschools.org] Sent: Friday, February 17, 2012 9:09 AM To: NT System Admin Issues Subject: Re: dns issue with browser (OS X) Doublecheck the browser/OS proxy settings. --Matt Ross Ephrata School District - Original Message - From: Jimmy Tran [mailto:jt...@teachtci.com] To: NT System Admin Issues [mailto:ntsysadmin@lyris.sunbelt-software.com] Sent: Fri, 17 Feb 2012 08:52:56 -0800 Subject: dns issue with browser (OS X) Hi All, I have one specific user using a Mac who cannot resolve DNS properly in Firefox or Safari on OS X 10.6.8. They can ping by hostnames just fine. They can get to any website by IP just fine but not by hostname. Any ideas? I'm stumped and Google hasn't been very helpful this morning. Thanks, Jimmy ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: dns issue with browser (OS X)
I was pinging external hosts, not internal. Google resolved fine from terminal but cannot resolve in the browser. This has been temporarily fixed by rebooting the machine but I’m sure it will happen again on Tuesday. From: Richard Stovall [mailto:rich...@gmail.com] Sent: Friday, February 17, 2012 9:44 AM To: NT System Admin Issues Subject: Re: dns issue with browser (OS X) Can you resolve any external hosts from a terminal window using nslookup? When you said that you could ping by hostname, were you pinging internal hosts with the same DNS suffix? (I think Macs call this search domain or something similar.) On Fri, Feb 17, 2012 at 12:17 PM, Jimmy Tran jt...@teachtci.com wrote: DHCP. When it wasn’t working, I changed to static info and still nothing. The reboot does fix it temporarily but it just seems to come back in 24 hours. From: Steve Ens [mailto:stevey...@gmail.com] Sent: Friday, February 17, 2012 9:04 AM To: NT System Admin Issues Subject: Re: dns issue with browser (OS X) DHCP or static IP addressing? On Fri, Feb 17, 2012 at 10:52 AM, Jimmy Tran jt...@teachtci.com wrote: Hi All, I have one specific user using a Mac who cannot resolve DNS properly in Firefox or Safari on OS X 10.6.8. They can ping by hostnames just fine. They can get to any website by IP just fine but not by hostname. Any ideas? I’m stumped and Google hasn’t been very helpful this morning. Thanks, Jimmy ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: dns issue with browser (OS X)
Yes, instinctively I tried that but it didn't work (dscacheutil -flushcache). Since external hostnames were resolving with terminal, DNS cache wasn't the issue in this case. -Original Message- From: Maglinger, Paul [mailto:pmaglin...@scvl.com] Sent: Friday, February 17, 2012 10:02 AM To: NT System Admin Issues Subject: RE: dns issue with browser (OS X) Is there a way to flush the DNS cache on a Mac? -Original Message- From: Jimmy Tran [mailto:jt...@teachtci.com] Sent: Friday, February 17, 2012 11:30 AM To: NT System Admin Issues Subject: RE: dns issue with browser (OS X) No proxy settings in Firefox or Safari. -Original Message- From: Matthew W. Ross [mailto:mr...@ephrataschools.org] Sent: Friday, February 17, 2012 9:09 AM To: NT System Admin Issues Subject: Re: dns issue with browser (OS X) Doublecheck the browser/OS proxy settings. --Matt Ross Ephrata School District - Original Message - From: Jimmy Tran [mailto:jt...@teachtci.com] To: NT System Admin Issues [mailto:ntsysadmin@lyris.sunbelt-software.com] Sent: Fri, 17 Feb 2012 08:52:56 -0800 Subject: dns issue with browser (OS X) Hi All, I have one specific user using a Mac who cannot resolve DNS properly in Firefox or Safari on OS X 10.6.8. They can ping by hostnames just fine. They can get to any website by IP just fine but not by hostname. Any ideas? I'm stumped and Google hasn't been very helpful this morning. Thanks, Jimmy ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: dns issue with browser (OS X)
Check cache settings in the browsers From: Jimmy Tran [mailto:jt...@teachtci.com] Sent: Friday, February 17, 2012 12:10 PM To: NT System Admin Issues Subject: RE: dns issue with browser (OS X) I was pinging external hosts, not internal. Google resolved fine from terminal but cannot resolve in the browser. This has been temporarily fixed by rebooting the machine but I’m sure it will happen again on Tuesday. From: Richard Stovall [mailto:rich...@gmail.com] Sent: Friday, February 17, 2012 9:44 AM To: NT System Admin Issues Subject: Re: dns issue with browser (OS X) Can you resolve any external hosts from a terminal window using nslookup? When you said that you could ping by hostname, were you pinging internal hosts with the same DNS suffix? (I think Macs call this search domain or something similar.) On Fri, Feb 17, 2012 at 12:17 PM, Jimmy Tran jt...@teachtci.commailto:jt...@teachtci.com wrote: DHCP. When it wasn’t working, I changed to static info and still nothing. The reboot does fix it temporarily but it just seems to come back in 24 hours. From: Steve Ens [mailto:stevey...@gmail.commailto:stevey...@gmail.com] Sent: Friday, February 17, 2012 9:04 AM To: NT System Admin Issues Subject: Re: dns issue with browser (OS X) DHCP or static IP addressing? On Fri, Feb 17, 2012 at 10:52 AM, Jimmy Tran jt...@teachtci.commailto:jt...@teachtci.com wrote: Hi All, I have one specific user using a Mac who cannot resolve DNS properly in Firefox or Safari on OS X 10.6.8. They can ping by hostnames just fine. They can get to any website by IP just fine but not by hostname. Any ideas? I’m stumped and Google hasn’t been very helpful this morning. Thanks, Jimmy ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin The information contained in this e-mail, and any attachments hereto, is from The American Society for the Prevention of Cruelty to Animals® (ASPCA®) and is intended only for use by the addressee(s) named herein and may contain legally privileged and/or confidential information. If you are not the intended recipient of this e-mail, you are hereby notified that any dissemination, distribution, copying or use of the contents of this e-mail, and any attachments hereto, is strictly prohibited. If you have received this e-mail in error, please immediately notify me by reply email and permanently delete the original and any copy of this e-mail and any printout thereof. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: dns issue with browser (OS X)
Is there any VPN stuff going on by chance that overwrites some DNS or other settings which the reboot clears until the VPN client is started again? From: Richard Stovall rich...@gmail.com To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com Sent: Friday, February 17, 2012 11:43 AM Subject: Re: dns issue with browser (OS X) Can you resolve any external hosts from a terminal window using nslookup? When you said that you could ping by hostname, were you pinging internal hosts with the same DNS suffix? (I think Macs call this search domain or something similar.) On Fri, Feb 17, 2012 at 12:17 PM, Jimmy Tran jt...@teachtci.com wrote: DHCP. When it wasn’t working, I changed to static info and still nothing. The reboot does fix it temporarily but it just seems to come back in 24 hours. From:Steve Ens [mailto:stevey...@gmail.com] Sent: Friday, February 17, 2012 9:04 AM To: NT System Admin Issues Subject: Re: dns issue with browser (OS X) DHCP or static IP addressing? On Fri, Feb 17, 2012 at 10:52 AM, Jimmy Tran jt...@teachtci.com wrote: Hi All, I have one specific user using a Mac who cannot resolve DNS properly in Firefox or Safari on OS X 10.6.8. They can ping by hostnames just fine. They can get to any website by IP just fine but not by hostname. Any ideas? I’m stumped and Google hasn’t been very helpful this morning. Thanks, Jimmy ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Annoying DNS issue
Hi All Our current AD domain is running under Windows Server 2008 R2 and our workstation clients are Windows XP Pro. At times (2/3 times a day) I am having to clear the DNS cache of our domain server because certain users would be unable to access certain websites such as for example HSBCNET.com. They can access other websites without any problems whatsover but somehow certain websites require the DNS cache to be cleared. Weird. Any idea what could be causing this to happen? TIA Pierre ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: Annoying DNS issue
On Mon, Dec 5, 2011 at 9:27 AM, pierre.camill...@fosterclark.com wrote: At times (2/3 times a day) I am having to clear the DNS cache of our domain server because certain users would be unable to access certain websites such as for example HSBCNET.com. Explain unable to access. What happens if you do nslookup HSBCNET.com. %IP_address_of_your_server% during the failure? -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Annoying DNS issue
This is happened to me recently. Same setup as yours but the specific DNS entry would fail from all workstations (XP/7/OS10.6). I never really got it resolved except for clearing the DNS cache as well. I hope a solutions arises... Jimmy From: pierre.camill...@fosterclark.com [mailto:pierre.camill...@fosterclark.com] Sent: Monday, December 05, 2011 6:27 AM To: NT System Admin Issues Subject: Annoying DNS issue Hi All Our current AD domain is running under Windows Server 2008 R2 and our workstation clients are Windows XP Pro. At times (2/3 times a day) I am having to clear the DNS cache of our domain server because certain users would be unable to access certain websites such as for example HSBCNET.com. They can access other websites without any problems whatsover but somehow certain websites require the DNS cache to be cleared. Weird. Any idea what could be causing this to happen? TIA Pierre ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Annoying DNS issue
1 0.00MYIPDNSSERVER DNS 71 Standard query A HSBCNET.com 2 0.103140DNSSERVER MYIPDNS 103 Standard query response A 63.95.36.110 A 63.111.163.110 Its happening in about .1s for me, on a recursive lookup. Although I do find that if you look from 4.2.2.1 ( one of Level 3 DNS servers) you do see timeouts. hsbcnet.com. Server: vnsc-pri.sys.gtei.net Address: 4.2.2.1 DNS request timed out. timeout was 2 seconds. DNS request timed out. timeout was 2 seconds. *** Request to vnsc-pri.sys.gtei.net timed-out Z Edward E. Ziots, CISSP, Security +, Network + Security Engineer Lifespan Organization email:ezi...@lifespan.org phone:401-639-3505 -Original Message- From: Ben Scott [mailto:mailvor...@gmail.com] Sent: Monday, December 05, 2011 11:29 AM To: NT System Admin Issues Subject: Re: Annoying DNS issue On Mon, Dec 5, 2011 at 9:27 AM, pierre.camill...@fosterclark.com wrote: At times (2/3 times a day) I am having to clear the DNS cache of our domain server because certain users would be unable to access certain websites such as for example HSBCNET.com. Explain unable to access. What happens if you do nslookup HSBCNET.com. %IP_address_of_your_server% during the failure? -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Annoying DNS issue
Does KB2508835 fix the issue? DNS Server service does not resolve some external DNS names after it works for a while in Windows Server 2008 R2 Cheers, Phil -- Phil Randal Infrastructure Engineer Hoople Ltd | Thorn Office Centre | Hereford HR2 6JT Tel: 01432 260415 | Email: pran...@herefordshire.gov.uk From: Jimmy Tran [mailto:jt...@teachtci.com] Sent: 05 December 2011 16:54 To: NT System Admin Issues Subject: RE: Annoying DNS issue This is happened to me recently. Same setup as yours but the specific DNS entry would fail from all workstations (XP/7/OS10.6). I never really got it resolved except for clearing the DNS cache as well. I hope a solutions arises... Jimmy From: pierre.camill...@fosterclark.commailto:pierre.camill...@fosterclark.com [mailto:pierre.camill...@fosterclark.com]mailto:[mailto:pierre.camill...@fosterclark.com] Sent: Monday, December 05, 2011 6:27 AM To: NT System Admin Issues Subject: Annoying DNS issue Hi All Our current AD domain is running under Windows Server 2008 R2 and our workstation clients are Windows XP Pro. At times (2/3 times a day) I am having to clear the DNS cache of our domain server because certain users would be unable to access certain websites such as for example HSBCNET.com. They can access other websites without any problems whatsover but somehow certain websites require the DNS cache to be cleared. Weird. Any idea what could be causing this to happen? TIA Pierre ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin Any opinion expressed in this e-mail or any attached files are those of the individual and not necessarily those of Hoople Ltd, Herefordshire Council, Herefordshire Primary Care Trust, Wye Valley NHS Trust or 2gether NHS Foundation Trust. You should be aware that Hoople Ltd, Herefordshire Council, Herefordshire Primary Care Trust, Wye Valley NHS Trust 2gether NHS Foundation Trust monitors its email service. This e-mail and any attached files are confidential and intended solely for the use of the addressee. This communication may contain material protected by law from being passed on. If you are not the intended recipient and have received this e-mail in error, you are advised that any use, dissemination, forwarding, printing or copying of this e-mail is strictly prohibited. If you have received this e-mail in error please contact the sender immediately and destroy all copies of it. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: R: DNS Issue
Is you want to see if port 80/433 is open on the end-point device a simple NMAP command will tell you this ( If there is an acl on the router/VPN) it will show ( Filtered) Nmap –sS –P0 –p 80,443 IP_ADDRESS_OF_Server Z Edward E. Ziots CISSP, Network +, Security + Network Engineer Lifespan Organization Email:ezi...@lifespan.org Cell:401-639-3505 From: Kim Longenbaugh [mailto:k...@colonialsavings.com] Sent: Tuesday, March 15, 2011 11:43 AM To: NT System Admin Issues Subject: RE: R: DNS Issue That verifies routing is good. Check the logs for your VPN device to see what’s happening to the http traffic. It’s likely being dropped or blocked. From: Bob Hartung [mailto:bhart...@wiscoind.com] Sent: Tuesday, March 15, 2011 10:39 AM To: NT System Admin Issues Subject: RE: R: DNS Issue Here's a sample trace... C:\tracert win2k8-1 Tracing route to win2k8-1.wiscoind.local [172.16.1.6] over a maximum of 30 hops: 11 ms1 ms1 ms InstagateAL.wiscoind.local [172.17.1.2] 2 *** Request timed out. 3 *** Request timed out. 471 ms65 ms65 ms win2k8-1.wiscoind.local [172.16.1.6] -- Bob Hartung Wisco Industries, Inc. 736 Janesville St. Oregon, WI 53575 Tel: (608) 835-3106 x215 Fax: (608) 835-7399 e-mail: bhartung(at)wiscoind.com From: Cameron Cooper [mailto:ccoo...@aurico.com] To: NT System Admin Issues [mailto:ntsysadmin@lyris.sunbelt-software.com] Sent: Tue, 15 Mar 2011 10:37:01 -0500 Subject: RE: R: DNS Issue Tracert the IP and see where it’s routed. We have a separate LAN that connects via VPN and in order for the PCs to access exchange we placed a persistent route in the route tables that point all email traffic through the VPN. Thank you, _ Cameron Cooper System Administrator | CompTIA A+ Certified Description: aurico_logo-quality-email - big Phone: 847-890-4021 | Fax: 847-255-1896 ccoo...@aurico.com | www.aurico.com From: Bob Hartung [mailto:bhart...@wiscoind.com] Sent: Tuesday, March 15, 2011 10:30 AM To: NT System Admin Issues Subject: Re: R: DNS Issue I answered to quick. When you say the routing, I'm not sure what you mean. The webserver's address is resolved through AD. And the individual subnets are sites in AD. -- Bob Hartung Wisco Industries, Inc. 736 Janesville St. Oregon, WI 53575 Tel: (608) 835-3106 x215 Fax: (608) 835-7399 e-mail: bhartung(at)wiscoind.com From: HELP_PC [mailto:g...@enter.it] To: NT System Admin Issues [mailto:ntsysadmin@lyris.sunbelt-software.com] Sent: Tue, 15 Mar 2011 10:26:11 -0500 Subject: R: DNS Issue Is the routing distributed by the DHCP server ? GuidoElia HELPPC Da: Bob Hartung [mailto:bhart...@wiscoind.com] Inviato: martedì 15 marzo 2011 16.19 A: NT System Admin Issues Oggetto: DNS Issue I have two locations connected via VPN. The main location LAN is 172.16.x.x and the remote location is 172.17.x.x. I'd like users on the 172.17.x.x end to access a webserver on the 172.16.x.x end but it doesn't work and I'm not sure why. The users at the 172.17.x.x end have their Win2003 server as their DNS server. I can ping both the webserver's name and IP address from the 172.17.x.x PCs without problem. The webserver's name resolves to the IP address. All our servers and users are members of a single domain, just on different subnets. What am I missing? -- Bob Hartung Wisco Industries, Inc. 736 Janesville St. Oregon, WI 53575 Tel: (608) 835-3106 x215 Fax: (608) 835-7399 e-mail: bhartung(at)wiscoind.com ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com
RE: R: DNS Issue
Do you know if port 80/443 is open on the web-server first before you try and start and make sure the http port is open on the end-point device before trying to find out why the page cant be displayed. ( IE 404 error) Z Edward E. Ziots CISSP, Network +, Security + Network Engineer Lifespan Organization Email:ezi...@lifespan.org Cell:401-639-3505 From: Bob Hartung [mailto:bhart...@wiscoind.com] Sent: Tuesday, March 15, 2011 11:59 AM To: NT System Admin Issues Subject: RE: R: DNS Issue I added the webserver to the hosts file and get Internet Explorerr cannot display the webpage. -- Bob Hartung Wisco Industries, Inc. 736 Janesville St. Oregon, WI 53575 Tel: (608) 835-3106 x215 Fax: (608) 835-7399 e-mail: bhartung(at)wiscoind.com From: Cameron Cooper [mailto:ccoo...@aurico.com] To: NT System Admin Issues [mailto:ntsysadmin@lyris.sunbelt-software.com] Sent: Tue, 15 Mar 2011 10:54:39 -0500 Subject: RE: R: DNS Issue Try adding the IP of the webserver to the Hosts file. Thank you, _ Cameron Cooper System Administrator | CompTIA A+ Certified Description: aurico_logo-quality-email - big Phone: 847-890-4021 | Fax: 847-255-1896 ccoo...@aurico.com | www.aurico.com From: HELP_PC [mailto:g...@enter.it] Sent: Tuesday, March 15, 2011 10:46 AM To: NT System Admin Issues Subject: R: R: DNS Issue Trace through IP and see the difference GuidoElia HELPPC Da: Bob Hartung [mailto:bhart...@wiscoind.com] Inviato: martedì 15 marzo 2011 16.39 A: NT System Admin Issues Oggetto: RE: R: DNS Issue Here's a sample trace... C:\tracert win2k8-1 Tracing route to win2k8-1.wiscoind.local [172.16.1.6] over a maximum of 30 hops: 11 ms1 ms1 ms InstagateAL.wiscoind.local [172.17.1.2] 2 *** Request timed out. 3 *** Request timed out. 471 ms65 ms65 ms win2k8-1.wiscoind.local [172.16.1.6] -- Bob Hartung Wisco Industries, Inc. 736 Janesville St. Oregon, WI 53575 Tel: (608) 835-3106 x215 Fax: (608) 835-7399 e-mail: bhartung(at)wiscoind.com From: Cameron Cooper [mailto:ccoo...@aurico.com] To: NT System Admin Issues [mailto:ntsysadmin@lyris.sunbelt-software.com] Sent: Tue, 15 Mar 2011 10:37:01 -0500 Subject: RE: R: DNS Issue Tracert the IP and see where it’s routed. We have a separate LAN that connects via VPN and in order for the PCs to access exchange we placed a persistent route in the route tables that point all email traffic through the VPN. Thank you, _ Cameron Cooper System Administrator | CompTIA A+ Certified Description: aurico_logo-quality-email - big Phone: 847-890-4021 | Fax: 847-255-1896 ccoo...@aurico.com | www.aurico.com From: Bob Hartung [mailto:bhart...@wiscoind.com] Sent: Tuesday, March 15, 2011 10:30 AM To: NT System Admin Issues Subject: Re: R: DNS Issue I answered to quick. When you say the routing, I'm not sure what you mean. The webserver's address is resolved through AD. And the individual subnets are sites in AD. -- Bob Hartung Wisco Industries, Inc. 736 Janesville St. Oregon, WI 53575 Tel: (608) 835-3106 x215 Fax: (608) 835-7399 e-mail: bhartung(at)wiscoind.com From: HELP_PC [mailto:g...@enter.it] To: NT System Admin Issues [mailto:ntsysadmin@lyris.sunbelt-software.com] Sent: Tue, 15 Mar 2011 10:26:11 -0500 Subject: R: DNS Issue Is the routing distributed by the DHCP server ? GuidoElia HELPPC Da: Bob Hartung [mailto:bhart...@wiscoind.com] Inviato: martedì 15 marzo 2011 16.19 A: NT System Admin Issues Oggetto: DNS Issue I have two locations connected via VPN. The main location LAN is 172.16.x.x and the remote location is 172.17.x.x. I'd like users on the 172.17.x.x end to access a webserver on the 172.16.x.x end but it doesn't work and I'm not sure why. The users at the 172.17.x.x end have their Win2003 server as their DNS server. I can ping both the webserver's name and IP address from the 172.17.x.x PCs without problem. The webserver's name resolves to the IP address. All our servers and users are members of a single domain, just on different subnets. What am I missing? -- Bob Hartung Wisco Industries, Inc. 736 Janesville St. Oregon, WI 53575 Tel: (608) 835-3106 x215 Fax: (608) 835-7399 e-mail: bhartung(at)wiscoind.com ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http
RE: R: DNS Issue
Thanks. Handy utility. I used NMAP, both on the local LAN and on the remote site. Local PORT STATE SERVICE VERSION 80/tcpopen http Microsoft IIS httpd 7.0 Remote PORT STATE SERVICE VERSION 80/tcpfiltered http The help file shows... filtered Nmap cannot determine whether the port is openbecause packet filtering prevents its probes from reaching the port.This is indeterminate but suggests that the firewall may be interfering. Still waiting for the firewall tech support to get back to me. -- Bob Hartung Wisco Industries, Inc. 736 Janesville St. Oregon, WI 53575 Tel: (608) 835-3106 x215 Fax: (608) 835-7399 e-mail: bhartung(at)wiscoind.com _ From: Ziots, Edward [mailto:ezi...@lifespan.org] To: NT System Admin Issues [mailto:ntsysadmin@lyris.sunbelt-software.com] Sent: Wed, 16 Mar 2011 07:43:10 -0500 Subject: RE: R: DNS Issue Is you want to see if port 80/433 is open on the end-point device a simple NMAP command will tell you this ( If there is an acl on the router/VPN) it will show ( Filtered) Nmap –sS –P0 –p 80,443 IP_ADDRESS_OF_Server Z Edward E. Ziots CISSP, Network +, Security + Network Engineer Lifespan Organization Email:ezi...@lifespan.org Cell:401-639-3505 From: Kim Longenbaugh [mailto:k...@colonialsavings.com] Sent: Tuesday, March 15, 2011 11:43 AM To: NT System Admin Issues Subject: RE: R: DNS Issue That verifies routing is good. Check the logs for your VPN device to see what’s happening to the http traffic. It’s likely being dropped or blocked. From: Bob Hartung [mailto:bhart...@wiscoind.com] Sent: Tuesday, March 15, 2011 10:39 AM To: NT System Admin Issues Subject: RE: R: DNS Issue Here's a sample trace... C:\tracert win2k8-1 Tracing route to win2k8-1.wiscoind.local [172.16.1.6] over a maximum of 30 hops: 11 ms1 ms1 ms InstagateAL.wiscoind.local [172.17.1.2] 2 * ** Request timed out. 3 * ** Request timed out. 471 ms65 ms65 ms win2k8-1.wiscoind.local [172.16.1.6] -- Bob Hartung Wisco Industries, Inc. 736 Janesville St. Oregon, WI 53575 Tel: (608) 835-3106 x215 Fax: (608) 835-7399 e-mail: bhartung(at)wiscoind.com _ From: Cameron Cooper [mailto:ccoo...@aurico.com] To: NT System Admin Issues [mailto:ntsysadmin@lyris.sunbelt-software.com] Sent: Tue, 15 Mar 2011 10:37:01 -0500 Subject: RE: R: DNS Issue Tracert the IP and see where it’s routed. We have a separate LAN that connects via VPN and in order for the PCs to access exchange we placed a persistent route in the route tables that point all email traffic through the VPN. Thank you, _ Cameron Cooper System Administrator | CompTIA A+ Certified Phone: 847-890-4021 | Fax: 847-255-1896 ccoo...@aurico.com | www.aurico.com From: Bob Hartung [mailto:bhart...@wiscoind.com] Sent: Tuesday, March 15, 2011 10:30 AM To: NT System Admin Issues Subject: Re: R: DNS Issue I answered to quick. When you say the routing, I'm not sure what you mean. The webserver's address is resolved through AD. And the individual subnets are sites in AD. -- Bob Hartung Wisco Industries, Inc. 736 Janesville St. Oregon, WI 53575 Tel: (608) 835-3106 x215 Fax: (608) 835-7399 e-mail: bhartung(at)wiscoind.com _ From: HELP_PC [mailto:g...@enter.it] To: NT System Admin Issues [mailto:ntsysadmin@lyris.sunbelt-software.com] Sent: Tue, 15 Mar 2011 10:26:11 -0500 Subject: R: DNS Issue Is the routing distributed by the DHCP server ? GuidoElia HELPPC _ Da: Bob Hartung [mailto:bhart...@wiscoind.com] Inviato: martedì 15 marzo 2011 16.19 A: NT System Admin Issues Oggetto: DNS Issue I have two locations connected via VPN. The main location LAN is 172.16.x.x and the remote location is 172.17.x.x. I'd like users on the 172.17.x.x end to access a webserver on the 172.16.x.x end but it doesn't work and I'm not sure why. The users at the 172.17.x.x end have their Win2003 server as their DNS server. I can ping both the webserver's name and IP address from the 172.17.x.x PCs without problem. The webserver's name resolves to the IP address. All our servers and users are members of a single domain, just on different subnets. What am I missing? -- Bob Hartung Wisco Industries, Inc. 736 Janesville St. Oregon, WI
Re: R: DNS Issue
Local firewall on the machine itself? Do newer versions of the Windows Firewall block accesses from outside their own subnet? Jack Kramer Computer Systems Specialist University Relations, Michigan State University w: 517-884-1231 / c: 248-635-4955 From: Bob Hartung bhart...@wiscoind.commailto:bhart...@wiscoind.com Reply-To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.commailto:ntsysadmin@lyris.sunbelt-software.com Date: Wed, 16 Mar 2011 10:02:38 -0400 To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.commailto:ntsysadmin@lyris.sunbelt-software.com Subject: RE: R: DNS Issue Thanks. Handy utility. I used NMAP, both on the local LAN and on the remote site. Local PORT STATE SERVICE VERSION 80/tcpopen http Microsoft IIS httpd 7.0 Remote PORT STATE SERVICE VERSION 80/tcpfiltered http The help file shows... filtered Nmap cannot determine whether the port is open because packet filtering prevents its probes from reaching the port. This is indeterminate but suggests that the firewall may be interfering. Still waiting for the firewall tech support to get back to me. -- Bob Hartung Wisco Industries, Inc. 736 Janesville St. Oregon, WI 53575 Tel: (608) 835-3106 x215 Fax: (608) 835-7399 e-mail: bhartung(at)wiscoind.com From: Ziots, Edward [mailto:ezi...@lifespan.org] To: NT System Admin Issues [mailto:ntsysadmin@lyris.sunbelt-software.com] Sent: Wed, 16 Mar 2011 07:43:10 -0500 Subject: RE: R: DNS Issue Is you want to see if port 80/433 is open on the end-point device a simple NMAP command will tell you this ( If there is an acl on therouter/VPN) it will show ( Filtered) Nmap –sS –P0 –p 80,443 IP_ADDRESS_OF_Server Z Edward E. Ziots CISSP, Network +, Security + Network Engineer Lifespan Organization Email:ezi...@lifespan.orgmailto:ezi...@lifespan.org Cell:401-639-3505 From: Kim Longenbaugh [mailto:k...@colonialsavings.commailto:k...@colonialsavings.com] Sent: Tuesday, March 15, 2011 11:43 AM To: NT System Admin Issues Subject: RE: R: DNS Issue That verifies routing is good. Check the logs for your VPN device to see what’s happening to the http traffic. It’s likely being dropped or blocked. From: Bob Hartung [mailto:bhart...@wiscoind.commailto:bhart...@wiscoind.com] Sent: Tuesday, March 15, 2011 10:39 AM To: NT System Admin Issues Subject: RE: R: DNS Issue Here's a sample trace... C:\tracert win2k8-1 Tracing route to win2k8-1.wiscoind.local [172.16.1.6] over a maximum of 30 hops: 11 ms1 ms1 ms InstagateAL.wiscoind.local [172.17.1.2] 2 *** Request timed out. 3 *** Request timed out. 471 ms65 ms65 ms win2k8-1.wiscoind.local [172.16.1.6] -- Bob Hartung Wisco Industries, Inc. 736 Janesville St. Oregon, WI 53575 Tel: (608) 835-3106 x215 Fax: (608) 835-7399 e-mail: bhartung(at)wiscoind.com From: Cameron Cooper [mailto:ccoo...@aurico.commailto:ccoo...@aurico.com] To: NT System Admin Issues [mailto:ntsysadmin@lyris.sunbelt-software.commailto:ntsysadmin@lyris.sunbelt-software.com] Sent: Tue, 15 Mar 2011 10:37:01 -0500 Subject: RE: R: DNS Issue Tracert the IP and see where it’s routed. We have a separate LAN that connects via VPN and in order for the PCs to access exchange we placed a persistent route in the route tables that point all email traffic through the VPN. Thank you, _ Cameron Cooper System Administrator | CompTIA A+ Certified [/webmail/mailAttach/image.cid?folder=uid=cid=image001.jpg@01CBE2FC.EB283D70] Phone: 847-890-4021 | Fax: 847-255-1896 ccoo...@aurico.commailto:ccoo...@aurico.com | www.aurico.com From: Bob Hartung [mailto:bhart...@wiscoind.commailto:bhart...@wiscoind.com] Sent: Tuesday, March 15, 2011 10:30 AM To: NT System Admin Issues Subject: Re: R: DNS Issue I answered to quick. When you say the routing, I'm not sure what you mean. The webserver's address is resolved through AD. And the individual subnets are sites in AD. -- Bob Hartung Wisco Industries, Inc. 736 Janesville St. Oregon, WI 53575 Tel: (608) 835-3106 x215 Fax: (608) 835-7399 e-mail: bhartung(at)wiscoind.com From: HELP_PC [mailto:g...@enter.itmailto:g...@enter.it] To: NT System Admin Issues [mailto:ntsysadmin@lyris.sunbelt-software.commailto:ntsysadmin@lyris.sunbelt-software.com] Sent: Tue, 15 Mar 2011 10:26:11 -0500 Subject: R: DNS Issue Is the routing distributed by the DHCP server ? GuidoElia HELPPC Da: Bob Hartung [mailto:bhart...@wiscoind.commailto:bhart...@wiscoind.com] Inviato: martedì 15 marzo 2011 16.19 A: NT System Admin Issues Oggetto: DNS Issue I have two locations connected via VPN. The main location LAN is 172.16.x.x and the remote location is 172.17.x.x. I'd like users on the 172.17.x.x end to access a webserver
RE: R: DNS Issue
Finally got a call back from eSoft tech support (firewall vendor). Their firewall rules are hierarchical so where a rule falls in the pecking order matters. Turns out the webaccess rule came before the VPN rule. As such, the internal webserver address was passed to the web proxy and failed because external DNS servers don't have our internal addresses. Once the webaccess rule was placed below the VPN rule, everything started working. On an interesting related matter, the internal webserver in question was our WSUS 3.0 server. Sure enough when the rules were re-ordered, I could get the informational webpage from the WSUS server to come up on the remote PC but windows update still wasn't working. Checking the %windows%\windowsupdate.log file showed that the PC was successfully contacting the WSUS server and identifying the appropriate udpates to install but the PC failed to download the updates. A DnldMgr Error 0x80072efd occurred while downloading update error was at the end of the log. An error with numerous possible causes. Here's what I had to do on the remote PCs to get it working... * Stop the automatic updates service. * Stop the Background and Intelligent Transfer (BIT) service. * Delete the contents of the %windows%\SoftwareDistribution directory * Flush the DNS cache (ipconfig /flushdns) * Re-start the BIT service * Re-initialize windows update (wuauclt /resetauthorization /detectnow) I had to do a lot of searching to stumble on this procedure to re-initialize the PC's windows update state so I'm noting it here in the hopes it saves someone else a lot of grief trying to setup remote PCs to update from a local WSUS server. -- Bob Hartung Wisco Industries, Inc. 736 Janesville St. Oregon, WI 53575 Tel: (608) 835-3106 x215 Fax: (608) 835-7399 e-mail: bhartung(at)wiscoind.com _ From: Ziots, Edward [mailto:ezi...@lifespan.org] To: NT System Admin Issues [mailto:ntsysadmin@lyris.sunbelt-software.com] Sent: Wed, 16 Mar 2011 09:21:04 -0500 Subject: RE: R: DNS Issue Ok, therefore from the local site you don’t have an issue getting to the server on the local site. From the Remote-Site it is filtered, which means you either have a routing issue or an ACL which is dropping traffic to web server ( why you are seeing the port 80 filtered) I would review the ACL’s on the VPN ( Source/Dest IP’s/Ports) on traffic coming from the remote-site to the local site. Are there other remote sites that can access this web-server? ( If so look at the ACL’s for that site to ascertain what is different accordingly) Also do you know a port that is open from the remote site to the local site to that server, that could be used as a test for source port. ( like port 25, 22,23, 445, 139) Basically the syntax would be the following form the “remote site” Nmap –sS –P0 –g Source_port –p 80 Local_web_Server_ip If you want to look at a debugged output the command would be the following: Nmap –sS –P0 –g Source_port –p 80 -d Local_web_Server_ip If you get a good connection to the server you should see the following come back: Scanned at 2011-03-16 10:19:11 Eastern Daylight Time for 1s PORT STATE SERVICE REASON 80/tcp open httpsyn-ack Final times for host: srtt: 0 rttvar: 5000 to: 10 HTH Z Edward E. Ziots CISSP, Network +, Security + Network Engineer Lifespan Organization Email:ezi...@lifespan.org Cell:401-639-3505 From: Bob Hartung [mailto:bhart...@wiscoind.com] Sent: Wednesday, March 16, 2011 10:03 AM To: NT System Admin Issues Subject: RE: R: DNS Issue Thanks. Handy utility. I used NMAP, both on the local LAN and on the remote site. Local PORT STATE SERVICE VERSION 80/tcpopen http Microsoft IIS httpd 7.0 Remote PORT STATE SERVICE VERSION 80/tcpfiltered http The help file shows... filtered Nmap cannot determine whether the port is open because packet filtering prevents its probes from reaching the port. This is indeterminate but suggests that the firewall may be interfering. Still waiting for the firewall tech support to get back to me. -- Bob Hartung Wisco Industries, Inc. 736 Janesville St. Oregon, WI 53575 Tel: (608) 835-3106 x215 Fax: (608) 835-7399 e-mail: bhartung(at)wiscoind.com _ From: Ziots, Edward [mailto:ezi...@lifespan.org] To: NT System Admin Issues [mailto:ntsysadmin@lyris.sunbelt-software.com] Sent: Wed, 16 Mar 2011 07:43:10 -0500 Subject: RE: R: DNS Issue Is you want to see if port 80/433 is open on the end-point device a simple NMAP
DNS Issue
I have two locations connected via VPN. The main location LAN is 172.16.x.x and the remote location is 172.17.x.x. I'd like users on the 172.17.x.x end to access a webserver on the 172.16.x.x end but it doesn't work and I'm not sure why. The users at the 172.17.x.x end have their Win2003 server as their DNS server. I can ping both the webserver's name and IP address from the 172.17.x.x PCs without problem. The webserver's name resolves to the IP address. All our servers and users are members of a single domain, just on different subnets. What am I missing? -- Bob Hartung Wisco Industries, Inc. 736 Janesville St. Oregon, WI 53575 Tel: (608) 835-3106 x215 Fax: (608) 835-7399 e-mail: bhartung(at)wiscoind.com ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
R: DNS Issue
Is the routing distributed by the DHCP server ? GuidoElia HELPPC _ Da: Bob Hartung [mailto:bhart...@wiscoind.com] Inviato: martedì 15 marzo 2011 16.19 A: NT System Admin Issues Oggetto: DNS Issue I have two locations connected via VPN. The main location LAN is 172.16.x.x and the remote location is 172.17.x.x. I'd like users on the 172.17.x.x end to access a webserver on the 172.16.x.x end but it doesn't work and I'm not sure why. The users at the 172.17.x.x end have their Win2003 server as their DNS server. I can ping both the webserver's name and IP address from the 172.17.x.x PCs without problem. The webserver's name resolves to the IP address. All our servers and users are members of a single domain, just on different subnets. What am I missing? -- Bob Hartung Wisco Industries, Inc. 736 Janesville St. Oregon, WI 53575 Tel: (608) 835-3106 x215 Fax: (608) 835-7399 e-mail: bhartung(at)wiscoind.com ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: R: DNS Issue
Yes. -- Bob Hartung Wisco Industries, Inc. 736 Janesville St. Oregon, WI 53575 Tel: (608) 835-3106 x215 Fax: (608) 835-7399 e-mail: bhartung(at)wiscoind.com _ From: HELP_PC [mailto:g...@enter.it] To: NT System Admin Issues [mailto:ntsysadmin@lyris.sunbelt-software.com] Sent: Tue, 15 Mar 2011 10:26:11 -0500 Subject: R: DNS Issue Is the routing distributed by the DHCP server ? GuidoElia HELPPC _ Da: Bob Hartung [mailto:bhart...@wiscoind.com] Inviato: martedì 15 marzo 2011 16.19 A: NT System Admin Issues Oggetto: DNS Issue I have two locations connected via VPN. The main location LAN is 172.16.x.x and the remote location is 172.17.x.x. I'd like users on the 172.17.x.x end to access a webserver on the 172.16.x.x end but it doesn't work and I'm not sure why. The users at the 172.17.x.x end have their Win2003 server as their DNS server. I can ping both the webserver's name and IP address from the 172.17.x.x PCs without problem. The webserver's name resolves to the IP address. All our servers and users are members of a single domain, just on different subnets. What am I missing? -- Bob Hartung Wisco Industries, Inc. 736 Janesville St. Oregon, WI 53575 Tel: (608) 835-3106 x215 Fax: (608) 835-7399 e-mail: bhartung(at)wiscoind.com ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: R: DNS Issue
I answered to quick. When you say the routing, I'm not sure what you mean. The webserver's address is resolved through AD. And the individual subnets are sites in AD. -- Bob Hartung Wisco Industries, Inc. 736 Janesville St. Oregon, WI 53575 Tel: (608) 835-3106 x215 Fax: (608) 835-7399 e-mail: bhartung(at)wiscoind.com _ From: HELP_PC [mailto:g...@enter.it] To: NT System Admin Issues [mailto:ntsysadmin@lyris.sunbelt-software.com] Sent: Tue, 15 Mar 2011 10:26:11 -0500 Subject: R: DNS Issue Is the routing distributed by the DHCP server ? GuidoElia HELPPC _ Da: Bob Hartung [mailto:bhart...@wiscoind.com] Inviato: martedì 15 marzo 2011 16.19 A: NT System Admin Issues Oggetto: DNS Issue I have two locations connected via VPN. The main location LAN is 172.16.x.x and the remote location is 172.17.x.x. I'd like users on the 172.17.x.x end to access a webserver on the 172.16.x.x end but it doesn't work and I'm not sure why. The users at the 172.17.x.x end have their Win2003 server as their DNS server. I can ping both the webserver's name and IP address from the 172.17.x.x PCs without problem. The webserver's name resolves to the IP address. All our servers and users are members of a single domain, just on different subnets. What am I missing? -- Bob Hartung Wisco Industries, Inc. 736 Janesville St. Oregon, WI 53575 Tel: (608) 835-3106 x215 Fax: (608) 835-7399 e-mail: bhartung(at)wiscoind.com ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: R: DNS Issue
Tracert the IP and see where it’s routed. We have a separate LAN that connects via VPN and in order for the PCs to access exchange we placed a persistent route in the route tables that point all email traffic through the VPN. Thank you, _ Cameron Cooper System Administrator | CompTIA A+ Certified Phone: 847-890-4021 | Fax: 847-255-1896 ccoo...@aurico.com | www.aurico.com From: Bob Hartung [mailto:bhart...@wiscoind.com] Sent: Tuesday, March 15, 2011 10:30 AM To: NT System Admin Issues Subject: Re: R: DNS Issue I answered to quick. When you say the routing, I'm not sure what you mean. The webserver's address is resolved through AD. And the individual subnets are sites in AD. -- Bob Hartung Wisco Industries, Inc. 736 Janesville St. Oregon, WI 53575 Tel: (608) 835-3106 x215 Fax: (608) 835-7399 e-mail: bhartung(at)wiscoind.com From: HELP_PC [mailto:g...@enter.it] To: NT System Admin Issues [mailto:ntsysadmin@lyris.sunbelt-software.com] Sent: Tue, 15 Mar 2011 10:26:11 -0500 Subject: R: DNS Issue Is the routing distributed by the DHCP server ? GuidoElia HELPPC Da: Bob Hartung [mailto:bhart...@wiscoind.com] Inviato: martedì 15 marzo 2011 16.19 A: NT System Admin Issues Oggetto: DNS Issue I have two locations connected via VPN. The main location LAN is 172.16.x.x and the remote location is 172.17.x.x. I'd like users on the 172.17.x.x end to access a webserver on the 172.16.x.x end but it doesn't work and I'm not sure why. The users at the 172.17.x.x end have their Win2003 server as their DNS server. I can ping both the webserver's name and IP address from the 172.17.x.x PCs without problem. The webserver's name resolves to the IP address. All our servers and users are members of a single domain, just on different subnets. What am I missing? -- Bob Hartung Wisco Industries, Inc. 736 Janesville St. Oregon, WI 53575 Tel: (608) 835-3106 x215 Fax: (608) 835-7399 e-mail: bhartung(at)wiscoind.com ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin image001.jpg
RE: DNS Issue
Given that you have name resolution, and that you can ping the webserver on the 172.16.x.x subnet from the 172.17.x.x subnet, I don't believe this is a DNS issue at all. Also, since pings (and likely trace routes) are successful, routing is correctly set up. That leads to the conclusion that it's a rule base or permission issue for the VPN. Your rule set may allow pings but not http, for example. Check the VPN and/or firewall rules. From: Bob Hartung [mailto:bhart...@wiscoind.com] Sent: Tuesday, March 15, 2011 10:19 AM To: NT System Admin Issues Subject: DNS Issue I have two locations connected via VPN. The main location LAN is 172.16.x.x and the remote location is 172.17.x.x. I'd like users on the 172.17.x.x end to access a webserver on the 172.16.x.x end but it doesn't work and I'm not sure why. The users at the 172.17.x.x end have their Win2003 server as their DNS server. I can ping both the webserver's name and IP address from the 172.17.x.x PCs without problem. The webserver's name resolves to the IP address. All our servers and users are members of a single domain, just on different subnets. What am I missing? -- Bob Hartung Wisco Industries, Inc. 736 Janesville St. Oregon, WI 53575 Tel: (608) 835-3106 x215 Fax: (608) 835-7399 e-mail: bhartung(at)wiscoind.com ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: DNS Issue
On Tue, Mar 15, 2011 at 11:18 AM, Bob Hartung bhart...@wiscoind.com wrote: I'd like users on the 172.17.x.x end to access a webserver on the 172.16.x.x end but it doesn't work and I'm not sure why. Explain doesn't work. Error message, timeout, what? What are you entering as the URL -- name or IP address? If only one, try the other. Have you tried a non-MSIE browser (MSIE tends to give the same error message for everything)? On a client, open a command prompt, and do TELNET WebServerName 80 If you get a connection, type: GET / and hit ENTER twice (blank line). If name resolution fails, try by IP address, see if that makes a difference. I can ping both the webserver's name and IP address from the 172.17.x.x PCs without problem. What about NSLOOKUP? -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: R: DNS Issue
Here's a sample trace... C:\tracert win2k8-1 Tracing route to win2k8-1.wiscoind.local [172.16.1.6] over a maximum of 30 hops: 11 ms1 ms1 ms InstagateAL.wiscoind.local [172.17.1.2] 2 *** Request timed out. 3 *** Request timed out. 471 ms65 ms65 ms win2k8-1.wiscoind.local [172.16.1.6] -- Bob Hartung Wisco Industries, Inc. 736 Janesville St. Oregon, WI 53575 Tel: (608) 835-3106 x215 Fax: (608) 835-7399 e-mail: bhartung(at)wiscoind.com _ From: Cameron Cooper [mailto:ccoo...@aurico.com] To: NT System Admin Issues [mailto:ntsysadmin@lyris.sunbelt-software.com] Sent: Tue, 15 Mar 2011 10:37:01 -0500 Subject: RE: R: DNS Issue Tracert the IP and see where it’s routed. We have a separate LAN that connects via VPN and in order for the PCs to access exchange we placed a persistent route in the route tables that point all email traffic through the VPN. Thank you, _ Cameron Cooper System Administrator | CompTIA A+ Certified Phone: 847-890-4021 | Fax: 847-255-1896 ccoo...@aurico.com | www.aurico.com From: Bob Hartung [mailto:bhart...@wiscoind.com] Sent: Tuesday, March 15, 2011 10:30 AM To: NT System Admin Issues Subject: Re: R: DNS Issue I answered to quick. When you say the routing, I'm not sure what you mean. The webserver's address is resolved through AD. And the individual subnets are sites in AD. -- Bob Hartung Wisco Industries, Inc. 736 Janesville St. Oregon, WI 53575 Tel: (608) 835-3106 x215 Fax: (608) 835-7399 e-mail: bhartung(at)wiscoind.com _ From: HELP_PC [mailto:g...@enter.it] To: NT System Admin Issues [mailto:ntsysadmin@lyris.sunbelt-software.com] Sent: Tue, 15 Mar 2011 10:26:11 -0500 Subject: R: DNS Issue Is the routing distributed by the DHCP server ? GuidoElia HELPPC _ Da: Bob Hartung [mailto:bhart...@wiscoind.com] Inviato: martedì 15 marzo 2011 16.19 A: NT System Admin Issues Oggetto: DNS Issue I have two locations connected via VPN. The main location LAN is 172.16.x.x and the remote location is 172.17.x.x. I'd like users on the 172.17.x.x end to access a webserver on the 172.16.x.x end but it doesn't work and I'm not sure why. The users at the 172.17.x.x end have their Win2003 server as their DNS server. I can ping both the webserver's name and IP address from the 172.17.x.x PCs without problem. The webserver's name resolves to the IP address. All our servers and users are members of a single domain, just on different subnets. What am I missing? -- Bob Hartung Wisco Industries, Inc. 736 Janesville St. Oregon, WI 53575 Tel: (608) 835-3106 x215 Fax: (608) 835-7399 e-mail: bhartung(at)wiscoind.com ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: DNS Issue
What does doesn't work mean? What errors? *ASB *(Find me online via About.Me http://about.me/Andrew.S.Baker/bio) *Exploiting Technology for Business Advantage... * On Tue, Mar 15, 2011 at 11:18 AM, Bob Hartung bhart...@wiscoind.com wrote: I have two locations connected via VPN. The main location LAN is 172.16.x.x and the remote location is 172.17.x.x. I'd like users on the 172.17.x.x end to access a webserver on the 172.16.x.x end but it doesn't work and I'm not sure why. The users at the 172.17.x.x end have their Win2003 server as their DNS server. I can ping both the webserver's name and IP address from the 172.17.x.x PCs without problem. The webserver's name resolves to the IP address. All our servers and users are members of a single domain, just on different subnets. What am I missing? -- Bob Hartung Wisco Industries, Inc. 736 Janesville St. Oregon, WI 53575 Tel: (608) 835-3106 x215 Fax: (608) 835-7399 e-mail: bhartung(at)wiscoind.com ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: R: DNS Issue
That verifies routing is good. Check the logs for your VPN device to see what’s happening to the http traffic. It’s likely being dropped or blocked. From: Bob Hartung [mailto:bhart...@wiscoind.com] Sent: Tuesday, March 15, 2011 10:39 AM To: NT System Admin Issues Subject: RE: R: DNS Issue Here's a sample trace... C:\tracert win2k8-1 Tracing route to win2k8-1.wiscoind.local [172.16.1.6] over a maximum of 30 hops: 11 ms1 ms1 ms InstagateAL.wiscoind.local [172.17.1.2] 2 *** Request timed out. 3 *** Request timed out. 471 ms65 ms65 ms win2k8-1.wiscoind.local [172.16.1.6] -- Bob Hartung Wisco Industries, Inc. 736 Janesville St. Oregon, WI 53575 Tel: (608) 835-3106 x215 Fax: (608) 835-7399 e-mail: bhartung(at)wiscoind.com From: Cameron Cooper [mailto:ccoo...@aurico.com] To: NT System Admin Issues [mailto:ntsysadmin@lyris.sunbelt-software.com] Sent: Tue, 15 Mar 2011 10:37:01 -0500 Subject: RE: R: DNS Issue Tracert the IP and see where it’s routed. We have a separate LAN that connects via VPN and in order for the PCs to access exchange we placed a persistent route in the route tables that point all email traffic through the VPN. Thank you, _ Cameron Cooper System Administrator | CompTIA A+ Certified [Description: aurico_logo-quality-email - big] Phone: 847-890-4021 | Fax: 847-255-1896 ccoo...@aurico.commailto:ccoo...@aurico.com | www.aurico.com From: Bob Hartung [mailto:bhart...@wiscoind.commailto:bhart...@wiscoind.com] Sent: Tuesday, March 15, 2011 10:30 AM To: NT System Admin Issues Subject: Re: R: DNS Issue I answered to quick. When you say the routing, I'm not sure what you mean. The webserver's address is resolved through AD. And the individual subnets are sites in AD. -- Bob Hartung Wisco Industries, Inc. 736 Janesville St. Oregon, WI 53575 Tel: (608) 835-3106 x215 Fax: (608) 835-7399 e-mail: bhartung(at)wiscoind.com From: HELP_PC [mailto:g...@enter.itmailto:g...@enter.it] To: NT System Admin Issues [mailto:ntsysadmin@lyris.sunbelt-software.commailto:ntsysadmin@lyris.sunbelt-software.com] Sent: Tue, 15 Mar 2011 10:26:11 -0500 Subject: R: DNS Issue Is the routing distributed by the DHCP server ? GuidoElia HELPPC Da: Bob Hartung [mailto:bhart...@wiscoind.commailto:bhart...@wiscoind.com] Inviato: martedì 15 marzo 2011 16.19 A: NT System Admin Issues Oggetto: DNS Issue I have two locations connected via VPN. The main location LAN is 172.16.x.x and the remote location is 172.17.x.x. I'd like users on the 172.17.x.x end to access a webserver on the 172.16.x.x end but it doesn't work and I'm not sure why. The users at the 172.17.x.x end have their Win2003 server as their DNS server. I can ping both the webserver's name and IP address from the 172.17.x.x PCs without problem. The webserver's name resolves to the IP address. All our servers and users are members of a single domain, just on different subnets. What am I missing? -- Bob Hartung Wisco Industries, Inc. 736 Janesville St. Oregon, WI 53575 Tel: (608) 835-3106 x215 Fax: (608) 835-7399 e-mail: bhartung(at)wiscoind.com ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read
R: R: DNS Issue
Trace through IP and see the difference GuidoElia HELPPC _ Da: Bob Hartung [mailto:bhart...@wiscoind.com] Inviato: martedì 15 marzo 2011 16.39 A: NT System Admin Issues Oggetto: RE: R: DNS Issue Here's a sample trace... C:\tracert win2k8-1 Tracing route to win2k8-1.wiscoind.local [172.16.1.6] over a maximum of 30 hops: 11 ms1 ms1 ms InstagateAL.wiscoind.local [172.17.1.2] 2 *** Request timed out. 3 *** Request timed out. 471 ms65 ms65 ms win2k8-1.wiscoind.local [172.16.1.6] -- Bob Hartung Wisco Industries, Inc. 736 Janesville St. Oregon, WI 53575 Tel: (608) 835-3106 x215 Fax: (608) 835-7399 e-mail: bhartung(at)wiscoind.com _ From: Cameron Cooper [mailto:ccoo...@aurico.com] To: NT System Admin Issues [mailto:ntsysadmin@lyris.sunbelt-software.com] Sent: Tue, 15 Mar 2011 10:37:01 -0500 Subject: RE: R: DNS Issue Tracert the IP and see where it's routed. We have a separate LAN that connects via VPN and in order for the PCs to access exchange we placed a persistent route in the route tables that point all email traffic through the VPN. Thank you, _ Cameron Cooper System Administrator | CompTIA A+ Certified Description: aurico_logo-quality-email - big Phone: 847-890-4021 | Fax: 847-255-1896 ccoo...@aurico.com | www.aurico.com From: Bob Hartung [mailto:bhart...@wiscoind.com] Sent: Tuesday, March 15, 2011 10:30 AM To: NT System Admin Issues Subject: Re: R: DNS Issue I answered to quick. When you say the routing, I'm not sure what you mean. The webserver's address is resolved through AD. And the individual subnets are sites in AD. -- Bob Hartung Wisco Industries, Inc. 736 Janesville St. Oregon, WI 53575 Tel: (608) 835-3106 x215 Fax: (608) 835-7399 e-mail: bhartung(at)wiscoind.com _ From: HELP_PC [mailto:g...@enter.it] To: NT System Admin Issues [mailto:ntsysadmin@lyris.sunbelt-software.com] Sent: Tue, 15 Mar 2011 10:26:11 -0500 Subject: R: DNS Issue Is the routing distributed by the DHCP server ? GuidoElia HELPPC _ Da: Bob Hartung [mailto:bhart...@wiscoind.com] Inviato: martedì 15 marzo 2011 16.19 A: NT System Admin Issues Oggetto: DNS Issue I have two locations connected via VPN. The main location LAN is 172.16.x.x and the remote location is 172.17.x.x. I'd like users on the 172.17.x.x end to access a webserver on the 172.16.x.x end but it doesn't work and I'm not sure why. The users at the 172.17.x.x end have their Win2003 server as their DNS server. I can ping both the webserver's name and IP address from the 172.17.x.x PCs without problem. The webserver's name resolves to the IP address. All our servers and users are members of a single domain, just on different subnets. What am I missing? -- Bob Hartung Wisco Industries, Inc. 736 Janesville St. Oregon, WI 53575 Tel: (608) 835-3106 x215 Fax: (608) 835-7399 e-mail: bhartung(at)wiscoind.com ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: R: R: DNS Issue
Tracert to 172.16.1.6 gets the same result. -- Bob Hartung Wisco Industries, Inc. 736 Janesville St. Oregon, WI 53575 Tel: (608) 835-3106 x215 Fax: (608) 835-7399 e-mail: bhartung(at)wiscoind.com _ From: HELP_PC [mailto:g...@enter.it] To: NT System Admin Issues [mailto:ntsysadmin@lyris.sunbelt-software.com] Sent: Tue, 15 Mar 2011 10:45:46 -0500 Subject: R: R: DNS Issue Trace through IP and see the difference GuidoElia HELPPC _ Da: Bob Hartung [mailto:bhart...@wiscoind.com] Inviato: martedì 15 marzo 2011 16.39 A: NT System Admin Issues Oggetto: RE: R: DNS Issue Here's a sample trace... C:\tracert win2k8-1 Tracing route to win2k8-1.wiscoind.local [172.16.1.6] over a maximum of 30 hops: 11 ms1 ms1 ms InstagateAL.wiscoind.local [172.17.1.2] 2 * ** Request timed out. 3 * ** Request timed out. 471 ms65 ms65 ms win2k8-1.wiscoind.local [172.16.1.6] -- Bob Hartung Wisco Industries, Inc. 736 Janesville St. Oregon, WI 53575 Tel: (608) 835-3106 x215 Fax: (608) 835-7399 e-mail: bhartung(at)wiscoind.com _ From: Cameron Cooper [mailto:ccoo...@aurico.com] To: NT System Admin Issues [mailto:ntsysadmin@lyris.sunbelt-software.com] Sent: Tue, 15 Mar 2011 10:37:01 -0500 Subject: RE: R: DNS Issue Tracert the IP and see where it’s routed. We have a separate LAN that connects via VPN and in order for the PCs to access exchange we placed a persistent route in the route tables that point all email traffic through the VPN. Thank you, _ Cameron Cooper System Administrator | CompTIA A+ Certified Phone: 847-890-4021 | Fax: 847-255-1896 ccoo...@aurico.com | www.aurico.com From: Bob Hartung [mailto:bhart...@wiscoind.com] Sent: Tuesday, March 15, 2011 10:30 AM To: NT System Admin Issues Subject: Re: R: DNS Issue I answered to quick. When you say the routing, I'm not sure what you mean. The webserver's address is resolved through AD. And the individual subnets are sites in AD. -- Bob Hartung Wisco Industries, Inc. 736 Janesville St. Oregon, WI 53575 Tel: (608) 835-3106 x215 Fax: (608) 835-7399 e-mail: bhartung(at)wiscoind.com _ From: HELP_PC [mailto:g...@enter.it] To: NT System Admin Issues [mailto:ntsysadmin@lyris.sunbelt-software.com] Sent: Tue, 15 Mar 2011 10:26:11 -0500 Subject: R: DNS Issue Is the routing distributed by the DHCP server ? GuidoElia HELPPC _ Da: Bob Hartung [mailto:bhart...@wiscoind.com] Inviato: martedì 15 marzo 2011 16.19 A: NT System Admin Issues Oggetto: DNS Issue I have two locations connected via VPN. The main location LAN is 172.16.x.x and the remote location is 172.17.x.x. I'd like users on the 172.17.x.x end to access a webserver on the 172.16.x.x end but it doesn't work and I'm not sure why. The users at the 172.17.x.x end have their Win2003 server as their DNS server. I can ping both the webserver's name and IP address from the 172.17.x.x PCs without problem. The webserver's name resolves to the IP address. All our servers and users are members of a single domain, just on different subnets. What am I missing? -- Bob Hartung Wisco Industries, Inc. 736 Janesville St. Oregon, WI 53575 Tel: (608) 835-3106 x215 Fax: (608) 835-7399 e-mail: bhartung(at)wiscoind.com ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise
RE: R: DNS Issue
Try adding the IP of the webserver to the Hosts file. Thank you, _ Cameron Cooper System Administrator | CompTIA A+ Certified Phone: 847-890-4021 | Fax: 847-255-1896 ccoo...@aurico.com | www.aurico.com From: HELP_PC [mailto:g...@enter.it] Sent: Tuesday, March 15, 2011 10:46 AM To: NT System Admin Issues Subject: R: R: DNS Issue Trace through IP and see the difference GuidoElia HELPPC Da: Bob Hartung [mailto:bhart...@wiscoind.com] Inviato: martedì 15 marzo 2011 16.39 A: NT System Admin Issues Oggetto: RE: R: DNS Issue Here's a sample trace... C:\tracert win2k8-1 Tracing route to win2k8-1.wiscoind.local [172.16.1.6] over a maximum of 30 hops: 11 ms1 ms1 ms InstagateAL.wiscoind.local [172.17.1.2] 2 *** Request timed out. 3 *** Request timed out. 471 ms65 ms65 ms win2k8-1.wiscoind.local [172.16.1.6] -- Bob Hartung Wisco Industries, Inc. 736 Janesville St. Oregon, WI 53575 Tel: (608) 835-3106 x215 Fax: (608) 835-7399 e-mail: bhartung(at)wiscoind.com From: Cameron Cooper [mailto:ccoo...@aurico.com] To: NT System Admin Issues [mailto:ntsysadmin@lyris.sunbelt-software.com] Sent: Tue, 15 Mar 2011 10:37:01 -0500 Subject: RE: R: DNS Issue Tracert the IP and see where it's routed. We have a separate LAN that connects via VPN and in order for the PCs to access exchange we placed a persistent route in the route tables that point all email traffic through the VPN. Thank you, _ Cameron Cooper System Administrator | CompTIA A+ Certified Description: aurico_logo-quality-email - big Phone: 847-890-4021 | Fax: 847-255-1896 ccoo...@aurico.com | www.aurico.com From: Bob Hartung [mailto:bhart...@wiscoind.com] Sent: Tuesday, March 15, 2011 10:30 AM To: NT System Admin Issues Subject: Re: R: DNS Issue I answered to quick. When you say the routing, I'm not sure what you mean. The webserver's address is resolved through AD. And the individual subnets are sites in AD. -- Bob Hartung Wisco Industries, Inc. 736 Janesville St. Oregon, WI 53575 Tel: (608) 835-3106 x215 Fax: (608) 835-7399 e-mail: bhartung(at)wiscoind.com From: HELP_PC [mailto:g...@enter.it] To: NT System Admin Issues [mailto:ntsysadmin@lyris.sunbelt-software.com] Sent: Tue, 15 Mar 2011 10:26:11 -0500 Subject: R: DNS Issue Is the routing distributed by the DHCP server ? GuidoElia HELPPC Da: Bob Hartung [mailto:bhart...@wiscoind.com] Inviato: martedì 15 marzo 2011 16.19 A: NT System Admin Issues Oggetto: DNS Issue I have two locations connected via VPN. The main location LAN is 172.16.x.x and the remote location is 172.17.x.x. I'd like users on the 172.17.x.x end to access a webserver on the 172.16.x.x end but it doesn't work and I'm not sure why. The users at the 172.17.x.x end have their Win2003 server as their DNS server. I can ping both the webserver's name and IP address from the 172.17.x.x PCs without problem. The webserver's name resolves to the IP address. All our servers and users are members of a single domain, just on different subnets. What am I missing? -- Bob Hartung Wisco Industries, Inc. 736 Janesville St. Oregon, WI 53575 Tel: (608) 835-3106 x215 Fax: (608) 835-7399 e-mail: bhartung(at)wiscoind.com ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http
Re: DNS Issue
I've tried entering both the name and IP address of the webserver and get connection fail in Internet Explorer. In FireFox, the error is Unable to determine IP address from host name. Telnet gets a connect failed. -- Bob Hartung Wisco Industries, Inc. 736 Janesville St. Oregon, WI 53575 Tel: (608) 835-3106 x215 Fax: (608) 835-7399 e-mail: bhartung(at)wiscoind.com _ From: Ben Scott [mailto:mailvor...@gmail.com] To: NT System Admin Issues [mailto:ntsysadmin@lyris.sunbelt-software.com] Sent: Tue, 15 Mar 2011 10:35:12 -0500 Subject: Re: DNS Issue On Tue, Mar 15, 2011 at 11:18 AM, Bob Hartung bhart...@wiscoind.com wrote: I'd like users on the 172.17.x.x end to access a webserver on the 172.16.x.x end but it doesn't work and I'm not sure why. Explain doesn't work. Error message, timeout, what? What are you entering as the URL -- name or IP address? If only one, try the other. Have you tried a non-MSIE browser (MSIE tends to give the same error message for everything)? On a client, open a command prompt, and do TELNET WebServerName 80 If you get a connection, type: GET / and hit ENTER twice (blank line). If name resolution fails, try by IP address, see if that makes a difference. I can ping both the webserver's name and IP address from the 172.17.x.x PCs without problem. What about NSLOOKUP? -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: DNS Issue
On Tue, Mar 15, 2011 at 11:52 AM, Bob Hartung bhart...@wiscoind.com wrote: I've tried entering both the name and IP address of the webserver and get connection fail in Internet Explorer. In FireFox, the error is Unable to determine IP address from host name. The Firefox error indicates a problem with name resolution. What if you try by IP address in Firefox? Telnet gets a connect failed. By IP address, hostname, or both? And: I can ping both the webserver's name and IP address from the 172.17.x.x PCs without problem. What about NSLOOKUP? -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: R: DNS Issue
I added the webserver to the hosts file and get Internet Explorerr cannot display the webpage. -- Bob Hartung Wisco Industries, Inc. 736 Janesville St. Oregon, WI 53575 Tel: (608) 835-3106 x215 Fax: (608) 835-7399 e-mail: bhartung(at)wiscoind.com _ From: Cameron Cooper [mailto:ccoo...@aurico.com] To: NT System Admin Issues [mailto:ntsysadmin@lyris.sunbelt-software.com] Sent: Tue, 15 Mar 2011 10:54:39 -0500 Subject: RE: R: DNS Issue Try adding the IP of the webserver to the Hosts file. Thank you, _ Cameron Cooper System Administrator | CompTIA A+ Certified Phone: 847-890-4021 | Fax: 847-255-1896 ccoo...@aurico.com | www.aurico.com From: HELP_PC [mailto:g...@enter.it] Sent: Tuesday, March 15, 2011 10:46 AM To: NT System Admin Issues Subject: R: R: DNS Issue Trace through IP and see the difference GuidoElia HELPPC _ Da: Bob Hartung [mailto:bhart...@wiscoind.com] Inviato: martedì 15 marzo 2011 16.39 A: NT System Admin Issues Oggetto: RE: R: DNS Issue Here's a sample trace... C:\tracert win2k8-1 Tracing route to win2k8-1.wiscoind.local [172.16.1.6] over a maximum of 30 hops: 11 ms1 ms1 ms InstagateAL.wiscoind.local [172.17.1.2] 2 *** Request timed out. 3 *** Request timed out. 471 ms65 ms65 ms win2k8-1.wiscoind.local [172.16.1.6] -- Bob Hartung Wisco Industries, Inc. 736 Janesville St. Oregon, WI 53575 Tel: (608) 835-3106 x215 Fax: (608) 835-7399 e-mail: bhartung(at)wiscoind.com _ From: Cameron Cooper [mailto:ccoo...@aurico.com] To: NT System Admin Issues [mailto:ntsysadmin@lyris.sunbelt-software.com] Sent: Tue, 15 Mar 2011 10:37:01 -0500 Subject: RE: R: DNS Issue Tracert the IP and see where it’s routed. We have a separate LAN that connects via VPN and in order for the PCs to access exchange we placed a persistent route in the route tables that point all email traffic through the VPN. Thank you, _ Cameron Cooper System Administrator | CompTIA A+ Certified Phone: 847-890-4021 | Fax: 847-255-1896 ccoo...@aurico.com | www.aurico.com From: Bob Hartung [mailto:bhart...@wiscoind.com] Sent: Tuesday, March 15, 2011 10:30 AM To: NT System Admin Issues Subject: Re: R: DNS Issue I answered to quick. When you say the routing, I'm not sure what you mean. The webserver's address is resolved through AD. And the individual subnets are sites in AD. -- Bob Hartung Wisco Industries, Inc. 736 Janesville St. Oregon, WI 53575 Tel: (608) 835-3106 x215 Fax: (608) 835-7399 e-mail: bhartung(at)wiscoind.com _ From: HELP_PC [mailto:g...@enter.it] To: NT System Admin Issues [mailto:ntsysadmin@lyris.sunbelt-software.com] Sent: Tue, 15 Mar 2011 10:26:11 -0500 Subject: R: DNS Issue Is the routing distributed by the DHCP server ? GuidoElia HELPPC _ Da: Bob Hartung [mailto:bhart...@wiscoind.com] Inviato: martedì 15 marzo 2011 16.19 A: NT System Admin Issues Oggetto: DNS Issue I have two locations connected via VPN. The main location LAN is 172.16.x.x and the remote location is 172.17.x.x. I'd like users on the 172.17.x.x end to access a webserver on the 172.16.x.x end but it doesn't work and I'm not sure why. The users at the 172.17.x.x end have their Win2003 server as their DNS server. I can ping both the webserver's name and IP address from the 172.17.x.x PCs without problem. The webserver's name resolves to the IP address. All our servers and users are members of a single domain, just on different subnets. What am I missing? -- Bob Hartung Wisco Industries, Inc. 736 Janesville St. Oregon, WI 53575 Tel: (608) 835-3106 x215 Fax: (608) 835-7399 e-mail: bhartung(at)wiscoind.com ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise
Re: DNS Issue
I'd be sure to verify what ports are being allowed through your VPN. What is your VPN? On Tue, Mar 15, 2011 at 11:52 AM, Bob Hartung bhart...@wiscoind.com wrote: I've tried entering both the name and IP address of the webserver and get connection fail in Internet Explorer. In FireFox, the error is Unable to determine IP address from host name. Telnet gets a connect failed. -- Bob Hartung Wisco Industries, Inc. 736 Janesville St. Oregon, WI 53575 Tel: (608) 835-3106 x215 Fax: (608) 835-7399 e-mail: bhartung(at)wiscoind.com -- *From:* Ben Scott [mailto:mailvor...@gmail.com] *To:* NT System Admin Issues [mailto:ntsysadmin@lyris.sunbelt-software.com ] *Sent:* Tue, 15 Mar 2011 10:35:12 -0500 *Subject:* Re: DNS Issue On Tue, Mar 15, 2011 at 11:18 AM, Bob Hartung bhart...@wiscoind.com wrote: I'd like users on the 172.17.x.x end to access a webserver on the 172.16.x.x end but it doesn't work and I'm not sure why. Explain doesn't work. Error message, timeout, what? What are you entering as the URL -- name or IP address? If only one, try the other. Have you tried a non-MSIE browser (MSIE tends to give the same error message for everything)? On a client, open a command prompt, and do TELNET WebServerName 80 If you get a connection, type: GET / and hit ENTER twice (blank line). If name resolution fails, try by IP address, see if that makes a difference. I can ping both the webserver's name and IP address from the 172.17.x.x PCs without problem. What about NSLOOKUP? -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: DNS Issue
Telnet fails with both name and ip address. NSLOOKUP resolves the name correctly. FireFox gets The requested URL could not be retrieved when the ip address is entered. -- Bob Hartung Wisco Industries, Inc. 736 Janesville St. Oregon, WI 53575 Tel: (608) 835-3106 x215 Fax: (608) 835-7399 e-mail: bhartung(at)wiscoind.com _ From: Ben Scott [mailto:mailvor...@gmail.com] To: NT System Admin Issues [mailto:ntsysadmin@lyris.sunbelt-software.com] Sent: Tue, 15 Mar 2011 10:56:02 -0500 Subject: Re: DNS Issue On Tue, Mar 15, 2011 at 11:52 AM, Bob Hartung bhart...@wiscoind.com wrote: I've tried entering both the name and IP address of the webserver and get connection fail in Internet Explorer. In FireFox, the error is Unable to determine IP address from host name. The Firefox error indicates a problem with name resolution. What if you try by IP address in Firefox? Telnet gets a connect failed. By IP address, hostname, or both? And: I can ping both the webserver's name and IP address from the 172.17.x.x PCs without problem. What about NSLOOKUP? -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: DNS Issue
Then the problem is likely an access list issue between the two subnets, not a name resolution issue. *ASB *(Find me online via About.Me http://about.me/Andrew.S.Baker/bio) *Exploiting Technology for Business Advantage... * On Tue, Mar 15, 2011 at 12:02 PM, Bob Hartung bhart...@wiscoind.com wrote: Telnet fails with both name and ip address. NSLOOKUP resolves the name correctly. FireFox gets The requested URL could not be retrieved when the ip address is entered. -- Bob Hartung Wisco Industries, Inc. 736 Janesville St. Oregon, WI 53575 Tel: (608) 835-3106 x215 Fax: (608) 835-7399 e-mail: bhartung(at)wiscoind.com -- *From:* Ben Scott [mailto:mailvor...@gmail.com] *To:* NT System Admin Issues [mailto:ntsysadmin@lyris.sunbelt-software.com ] *Sent:* Tue, 15 Mar 2011 10:56:02 -0500 *Subject:* Re: DNS Issue On Tue, Mar 15, 2011 at 11:52 AM, Bob Hartung bhart...@wiscoind.com wrote: I've tried entering both the name and IP address of the webserver and get connection fail in Internet Explorer. In FireFox, the error is Unable to determine IP address from host name. The Firefox error indicates a problem with name resolution. What if you try by IP address in Firefox? Telnet gets a connect failed. By IP address, hostname, or both? And: I can ping both the webserver's name and IP address from the 172.17.x.x PCs without problem. What about NSLOOKUP? -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: DNS Issue
IP address restrictions on the site itself? Firewall rules? On Tue, Mar 15, 2011 at 12:02 PM, Bob Hartung bhart...@wiscoind.com wrote: Telnet fails with both name and ip address. NSLOOKUP resolves the name correctly. FireFox gets The requested URL could not be retrieved when the ip address is entered. -- Bob Hartung Wisco Industries, Inc. 736 Janesville St. Oregon, WI 53575 Tel: (608) 835-3106 x215 Fax: (608) 835-7399 e-mail: bhartung(at)wiscoind.com -- *From:* Ben Scott [mailto:mailvor...@gmail.com] *To:* NT System Admin Issues [mailto:ntsysadmin@lyris.sunbelt-software.com ] *Sent:* Tue, 15 Mar 2011 10:56:02 -0500 *Subject:* Re: DNS Issue On Tue, Mar 15, 2011 at 11:52 AM, Bob Hartung bhart...@wiscoind.com wrote: I've tried entering both the name and IP address of the webserver and get connection fail in Internet Explorer. In FireFox, the error is Unable to determine IP address from host name. The Firefox error indicates a problem with name resolution. What if you try by IP address in Firefox? Telnet gets a connect failed. By IP address, hostname, or both? And: I can ping both the webserver's name and IP address from the 172.17.x.x PCs without problem. What about NSLOOKUP? -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: DNS Issue
Like Jonathan and I've been saying, check your VPN rules. You've already stated that name resolution works, per this comment: I can ping both the webserver's name and IP address from the 172.17.x.x PCs without problem. From: Bob Hartung [mailto:bhart...@wiscoind.com] Sent: Tuesday, March 15, 2011 11:03 AM To: NT System Admin Issues Subject: Re: DNS Issue Telnet fails with both name and ip address. NSLOOKUP resolves the name correctly. FireFox gets The requested URL could not be retrieved when the ip address is entered. -- Bob Hartung Wisco Industries, Inc. 736 Janesville St. Oregon, WI 53575 Tel: (608) 835-3106 x215 Fax: (608) 835-7399 e-mail: bhartung(at)wiscoind.com From: Ben Scott [mailto:mailvor...@gmail.com] To: NT System Admin Issues [mailto:ntsysadmin@lyris.sunbelt-software.com] Sent: Tue, 15 Mar 2011 10:56:02 -0500 Subject: Re: DNS Issue On Tue, Mar 15, 2011 at 11:52 AM, Bob Hartung bhart...@wiscoind.commailto:bhart...@wiscoind.com wrote: I've tried entering both the name and IP address of the webserver and get connection fail in Internet Explorer. In FireFox, the error is Unable to determine IP address from host name. The Firefox error indicates a problem with name resolution. What if you try by IP address in Firefox? Telnet gets a connect failed. By IP address, hostname, or both? And: I can ping both the webserver's name and IP address from the 172.17.x.x PCs without problem. What about NSLOOKUP? -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: DNS Issue
We use a couple of Instagates (eSoft) for VPN. Looking at the VPN rules, they indicate All services are allowed. I suspect the issue is related to rules as well. I've got a call into eSoft tech support. I'll update when I find out more. Thanks. -- Bob Hartung Wisco Industries, Inc. 736 Janesville St. Oregon, WI 53575 Tel: (608) 835-3106 x215 Fax: (608) 835-7399 e-mail: bhartung(at)wiscoind.com _ From: Jonathan Link [mailto:jonathan.l...@gmail.com] To: NT System Admin Issues [mailto:ntsysadmin@lyris.sunbelt-software.com] Sent: Tue, 15 Mar 2011 10:59:56 -0500 Subject: Re: DNS Issue I'd be sure to verify what ports are being allowed through your VPN. What is your VPN? On Tue, Mar 15, 2011 at 11:52 AM, Bob Hartung bhart...@wiscoind.com wrote: I've tried entering both the name and IP address of the webserver and get connection fail in Internet Explorer. In FireFox, the error is Unable to determine IP address from host name. Telnet gets a connect failed. -- Bob Hartung Wisco Industries, Inc. 736 Janesville St. Oregon, WI 53575 Tel: (608) 835-3106 x215 Fax: (608) 835-7399 e-mail: bhartung(at)wiscoind.com _ From: Ben Scott [mailto:mailvor...@gmail.com] To: NT System Admin Issues [mailto:ntsysadmin@lyris.sunbelt-software.com] Sent: Tue, 15 Mar 2011 10:35:12 -0500 Subject: Re: DNS Issue On Tue, Mar 15, 2011 at 11:18 AM, Bob Hartung bhart...@wiscoind.com wrote: I'd like users on the 172.17.x.x end to access a webserver on the 172.16.x.x end but it doesn't work and I'm not sure why. Explain doesn't work. Error message, timeout, what? What are you entering as the URL -- name or IP address? If only one, try the other. Have you tried a non-MSIE browser (MSIE tends to give the same error message for everything)? On a client, open a command prompt, and do TELNET WebServerName 80 If you get a connection, type: GET / and hit ENTER twice (blank line). If name resolution fails, try by IP address, see if that makes a difference. I can ping both the webserver's name and IP address from the 172.17.x.x PCs without problem. What about NSLOOKUP? -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
DNS Issue - Forward IP's not matching Reverse
Hello Everyone: I noticed an issue with our DNS the other day where the IP address for our workstations in the HOST (A) records in the forward lookup zones are not matching in the reverse lookup zones. The reverse zone contains accurate IP’s for each machine. We have AD setup on a Windows 2008 R2 server with DHCP also AD-integrated. Has anyone else seen something like this, or have any ideas on how to correct it? Would it have something to do with scavenging the records, or something with DHCP not set right? TIA! Scott --- Scott Wilhelm Computer Technician Massena Central School District St. Lawrence-Lewis BOCES (315) 764-3700 ext. 3046 “The harder I work, the luckier I get. “ -Samuel Goldwyn Individual commitment to a group effort - that is what makes a team work, a company work, a society work, a civilization work. -Vince Lombardi ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: DNS Issue - Forward IP's not matching Reverse
What info are you getting back for the reverse zones? Can you provide examples (appropriately sanitized, of course)? *ASB *(My XeeSM Profile) http://XeeSM.com/AndrewBaker *Exploiting Technology for Business Advantage...* * * 2010/10/18 Wilhelm, Scott swilh...@mcs.k12.ny.us Hello Everyone: I noticed an issue with our DNS the other day where the IP address for our workstations in the HOST (A) records in the forward lookup zones are not matching in the reverse lookup zones. The reverse zone contains accurate IP’s for each machine. We have AD setup on a Windows 2008 R2 server with DHCP also AD-integrated. Has anyone else seen something like this, or have any ideas on how to correct it? Would it have something to do with scavenging the records, or something with DHCP not set right? TIA! Scott --- Scott Wilhelm Computer Technician Massena Central School District St. Lawrence-Lewis BOCES (315) 764-3700 ext. 3046 *“The harder I work, the luckier I get. “* -Samuel Goldwyn * * ***Individual commitment to a group effort - that is what makes a team work, a company work, a society work, a civilization work. -*Vince Lombardi ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Weird DNS issue I can't figure out
I'm trying to implement WPAD in our US office, and think I've got it mostly covered, except for one thing. On our main IIS box I've configured a web site called wpad, and set up a static entry in DNS on the main DC yesterday to point to it. I can't ping by name, but if I do a 'ping -a 12.34.56.78' I get the name resolution just fine. I see an 6268 event in the DNS event log that seems relevant, but not much information about it, after having visited http://eventid.net - the one comment there said something about a TXT entry, but I've searched and found only one reference to wpad.mycompany.com in DNS, no TXT or other files at all with that name. I can't even ping it from the DC running DNS. What's even more weird is that I can ping it by name from our foreign offices - this is probably something I'll need to do something about later... Anyone know what the heck is going on? Kurt ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Weird DNS issue I can't figure out
What type of dns entry did you make? I made a cname for mine to `wpad - fqdn.server.local.` then just put a wpad.dat in the root of the default site on that server (this way I could move it transparently by only adjusting the cname if need be...) -Original Message- From: Kurt Buff [mailto:kurt.b...@gmail.com] Sent: Wednesday, December 30, 2009 11:36 AM To: NT System Admin Issues Subject: Weird DNS issue I can't figure out I'm trying to implement WPAD in our US office, and think I've got it mostly covered, except for one thing. On our main IIS box I've configured a web site called wpad, and set up a static entry in DNS on the main DC yesterday to point to it. I can't ping by name, but if I do a 'ping -a 12.34.56.78' I get the name resolution just fine. I see an 6268 event in the DNS event log that seems relevant, but not much information about it, after having visited http://eventid.net - the one comment there said something about a TXT entry, but I've searched and found only one reference to wpad.mycompany.com in DNS, no TXT or other files at all with that name. I can't even ping it from the DC running DNS. What's even more weird is that I can ping it by name from our foreign offices - this is probably something I'll need to do something about later... Anyone know what the heck is going on? Kurt ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Weird DNS issue I can't figure out
You've probably already seen this, but it might help if you haven't? http://support.microsoft.com/kb/934864 -Original Message- From: Kurt Buff [mailto:kurt.b...@gmail.com] Sent: Wednesday, December 30, 2009 1:36 PM To: NT System Admin Issues Subject: Weird DNS issue I can't figure out I'm trying to implement WPAD in our US office, and think I've got it mostly covered, except for one thing. On our main IIS box I've configured a web site called wpad, and set up a static entry in DNS on the main DC yesterday to point to it. I can't ping by name, but if I do a 'ping -a 12.34.56.78' I get the name resolution just fine. I see an 6268 event in the DNS event log that seems relevant, but not much information about it, after having visited http://eventid.net - the one comment there said something about a TXT entry, but I've searched and found only one reference to wpad.mycompany.com in DNS, no TXT or other files at all with that name. I can't even ping it from the DC running DNS. What's even more weird is that I can ping it by name from our foreign offices - this is probably something I'll need to do something about later... Anyone know what the heck is going on? Kurt ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Weird DNS issue I can't figure out
Or maybe that MS kb link is not relevant. Have you had a look at this? http://perimetergrid.com/wp/2008/01/11/wpad-internet-explorers-worst-feature/ -Original Message- From: Richard Stovall [mailto:richard.stov...@researchdata.com] Sent: Wednesday, December 30, 2009 1:42 PM To: NT System Admin Issues Subject: RE: Weird DNS issue I can't figure out You've probably already seen this, but it might help if you haven't? http://support.microsoft.com/kb/934864 -Original Message- From: Kurt Buff [mailto:kurt.b...@gmail.com] Sent: Wednesday, December 30, 2009 1:36 PM To: NT System Admin Issues Subject: Weird DNS issue I can't figure out I'm trying to implement WPAD in our US office, and think I've got it mostly covered, except for one thing. On our main IIS box I've configured a web site called wpad, and set up a static entry in DNS on the main DC yesterday to point to it. I can't ping by name, but if I do a 'ping -a 12.34.56.78' I get the name resolution just fine. I see an 6268 event in the DNS event log that seems relevant, but not much information about it, after having visited http://eventid.net - the one comment there said something about a TXT entry, but I've searched and found only one reference to wpad.mycompany.com in DNS, no TXT or other files at all with that name. I can't even ping it from the DC running DNS. What's even more weird is that I can ping it by name from our foreign offices - this is probably something I'll need to do something about later... Anyone know what the heck is going on? Kurt ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: Weird DNS issue I can't figure out
I put in an A record - I have a separate web site just for this. On Wed, Dec 30, 2009 at 10:41, Joseph L. Casale jcas...@activenetwerx.com wrote: What type of dns entry did you make? I made a cname for mine to `wpad - fqdn.server.local.` then just put a wpad.dat in the root of the default site on that server (this way I could move it transparently by only adjusting the cname if need be...) -Original Message- From: Kurt Buff [mailto:kurt.b...@gmail.com] Sent: Wednesday, December 30, 2009 11:36 AM To: NT System Admin Issues Subject: Weird DNS issue I can't figure out I'm trying to implement WPAD in our US office, and think I've got it mostly covered, except for one thing. On our main IIS box I've configured a web site called wpad, and set up a static entry in DNS on the main DC yesterday to point to it. I can't ping by name, but if I do a 'ping -a 12.34.56.78' I get the name resolution just fine. I see an 6268 event in the DNS event log that seems relevant, but not much information about it, after having visited http://eventid.net - the one comment there said something about a TXT entry, but I've searched and found only one reference to wpad.mycompany.com in DNS, no TXT or other files at all with that name. I can't even ping it from the DC running DNS. What's even more weird is that I can ping it by name from our foreign offices - this is probably something I'll need to do something about later... Anyone know what the heck is going on? Kurt ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: Weird DNS issue I can't figure out
No, hadn't seen that at all. All the descriptions I found about implementing WPAD didn't say anything about a TXT record, so I just created an A record. I did find http://support.microsoft.com/kb/2003485 and I removed wpad from the block list, and that helps for the other DC, but I still have the problem on the DC that holds the FSMO roles. Is an A record not the correct way to do this? Kurt On Wed, Dec 30, 2009 at 10:41, Richard Stovall richard.stov...@researchdata.com wrote: You've probably already seen this, but it might help if you haven't? http://support.microsoft.com/kb/934864 -Original Message- From: Kurt Buff [mailto:kurt.b...@gmail.com] Sent: Wednesday, December 30, 2009 1:36 PM To: NT System Admin Issues Subject: Weird DNS issue I can't figure out I'm trying to implement WPAD in our US office, and think I've got it mostly covered, except for one thing. On our main IIS box I've configured a web site called wpad, and set up a static entry in DNS on the main DC yesterday to point to it. I can't ping by name, but if I do a 'ping -a 12.34.56.78' I get the name resolution just fine. I see an 6268 event in the DNS event log that seems relevant, but not much information about it, after having visited http://eventid.net - the one comment there said something about a TXT entry, but I've searched and found only one reference to wpad.mycompany.com in DNS, no TXT or other files at all with that name. I can't even ping it from the DC running DNS. What's even more weird is that I can ping it by name from our foreign offices - this is probably something I'll need to do something about later... Anyone know what the heck is going on? Kurt ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: Weird DNS issue I can't figure out
I'm aware of the threats, but have been asked to implement anyway - mobile users don't want to have to manually reconfigure their laptops while in and out of the office, and Firefox is very popular... Kurt On Wed, Dec 30, 2009 at 10:47, Richard Stovall richard.stov...@researchdata.com wrote: Or maybe that MS kb link is not relevant. Have you had a look at this? http://perimetergrid.com/wp/2008/01/11/wpad-internet-explorers-worst-feature/ -Original Message- From: Richard Stovall [mailto:richard.stov...@researchdata.com] Sent: Wednesday, December 30, 2009 1:42 PM To: NT System Admin Issues Subject: RE: Weird DNS issue I can't figure out You've probably already seen this, but it might help if you haven't? http://support.microsoft.com/kb/934864 -Original Message- From: Kurt Buff [mailto:kurt.b...@gmail.com] Sent: Wednesday, December 30, 2009 1:36 PM To: NT System Admin Issues Subject: Weird DNS issue I can't figure out I'm trying to implement WPAD in our US office, and think I've got it mostly covered, except for one thing. On our main IIS box I've configured a web site called wpad, and set up a static entry in DNS on the main DC yesterday to point to it. I can't ping by name, but if I do a 'ping -a 12.34.56.78' I get the name resolution just fine. I see an 6268 event in the DNS event log that seems relevant, but not much information about it, after having visited http://eventid.net - the one comment there said something about a TXT entry, but I've searched and found only one reference to wpad.mycompany.com in DNS, no TXT or other files at all with that name. I can't even ping it from the DC running DNS. What's even more weird is that I can ping it by name from our foreign offices - this is probably something I'll need to do something about later... Anyone know what the heck is going on? Kurt ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Weird DNS issue I can't figure out
What do the logs say about the request? That'll go a long way in diagnosing the issue. Do you have the mime type set, does the webserver get the request formatted as you expected, _and_ server it back? IIRC, ff doesn’t look for a proxy by default... -Original Message- From: Kurt Buff [mailto:kurt.b...@gmail.com] Sent: Wednesday, December 30, 2009 11:49 AM To: NT System Admin Issues Subject: Re: Weird DNS issue I can't figure out I put in an A record - I have a separate web site just for this. On Wed, Dec 30, 2009 at 10:41, Joseph L. Casale jcas...@activenetwerx.com wrote: What type of dns entry did you make? I made a cname for mine to `wpad - fqdn.server.local.` then just put a wpad.dat in the root of the default site on that server (this way I could move it transparently by only adjusting the cname if need be...) -Original Message- From: Kurt Buff [mailto:kurt.b...@gmail.com] Sent: Wednesday, December 30, 2009 11:36 AM To: NT System Admin Issues Subject: Weird DNS issue I can't figure out I'm trying to implement WPAD in our US office, and think I've got it mostly covered, except for one thing. On our main IIS box I've configured a web site called wpad, and set up a static entry in DNS on the main DC yesterday to point to it. I can't ping by name, but if I do a 'ping -a 12.34.56.78' I get the name resolution just fine. I see an 6268 event in the DNS event log that seems relevant, but not much information about it, after having visited http://eventid.net - the one comment there said something about a TXT entry, but I've searched and found only one reference to wpad.mycompany.com in DNS, no TXT or other files at all with that name. I can't even ping it from the DC running DNS. What's even more weird is that I can ping it by name from our foreign offices - this is probably something I'll need to do something about later... Anyone know what the heck is going on? Kurt ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: Weird DNS issue I can't figure out
First things first - I can't ping the name, wpad.mycompany.com from the DC that holds the FSMO roles. Once I've got that figured, I'll tackle the rest. On Wed, Dec 30, 2009 at 11:05, Joseph L. Casale jcas...@activenetwerx.com wrote: What do the logs say about the request? That'll go a long way in diagnosing the issue. Do you have the mime type set, does the webserver get the request formatted as you expected, _and_ server it back? IIRC, ff doesn’t look for a proxy by default... -Original Message- From: Kurt Buff [mailto:kurt.b...@gmail.com] Sent: Wednesday, December 30, 2009 11:49 AM To: NT System Admin Issues Subject: Re: Weird DNS issue I can't figure out I put in an A record - I have a separate web site just for this. On Wed, Dec 30, 2009 at 10:41, Joseph L. Casale jcas...@activenetwerx.com wrote: What type of dns entry did you make? I made a cname for mine to `wpad - fqdn.server.local.` then just put a wpad.dat in the root of the default site on that server (this way I could move it transparently by only adjusting the cname if need be...) -Original Message- From: Kurt Buff [mailto:kurt.b...@gmail.com] Sent: Wednesday, December 30, 2009 11:36 AM To: NT System Admin Issues Subject: Weird DNS issue I can't figure out I'm trying to implement WPAD in our US office, and think I've got it mostly covered, except for one thing. On our main IIS box I've configured a web site called wpad, and set up a static entry in DNS on the main DC yesterday to point to it. I can't ping by name, but if I do a 'ping -a 12.34.56.78' I get the name resolution just fine. I see an 6268 event in the DNS event log that seems relevant, but not much information about it, after having visited http://eventid.net - the one comment there said something about a TXT entry, but I've searched and found only one reference to wpad.mycompany.com in DNS, no TXT or other files at all with that name. I can't even ping it from the DC running DNS. What's even more weird is that I can ping it by name from our foreign offices - this is probably something I'll need to do something about later... Anyone know what the heck is going on? Kurt ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: Weird DNS issue I can't figure out
Aha! I didn't stop and start the DNS service. I thought I had, but only did it on the non-FSMO role holder. All now works... Kurt On Wed, Dec 30, 2009 at 12:03, Richard Stovall richard.stov...@researchdata.com wrote: What do you get from: nslookup wpad.mycompany.com dcwithfsmoroles.mycompany.com and nslookup wpad.mycompany.com anotherDNSserver.mycompany.com What DNS server is the problematic one pointed to? -Original Message- From: Kurt Buff [mailto:kurt.b...@gmail.com] Sent: Wednesday, December 30, 2009 2:48 PM To: NT System Admin Issues Subject: Re: Weird DNS issue I can't figure out First things first - I can't ping the name, wpad.mycompany.com from the DC that holds the FSMO roles. Once I've got that figured, I'll tackle the rest. On Wed, Dec 30, 2009 at 11:05, Joseph L. Casale jcas...@activenetwerx.com wrote: What do the logs say about the request? That'll go a long way in diagnosing the issue. Do you have the mime type set, does the webserver get the request formatted as you expected, _and_ server it back? IIRC, ff doesn’t look for a proxy by default... -Original Message- From: Kurt Buff [mailto:kurt.b...@gmail.com] Sent: Wednesday, December 30, 2009 11:49 AM To: NT System Admin Issues Subject: Re: Weird DNS issue I can't figure out I put in an A record - I have a separate web site just for this. On Wed, Dec 30, 2009 at 10:41, Joseph L. Casale jcas...@activenetwerx.com wrote: What type of dns entry did you make? I made a cname for mine to `wpad - fqdn.server.local.` then just put a wpad.dat in the root of the default site on that server (this way I could move it transparently by only adjusting the cname if need be...) -Original Message- From: Kurt Buff [mailto:kurt.b...@gmail.com] Sent: Wednesday, December 30, 2009 11:36 AM To: NT System Admin Issues Subject: Weird DNS issue I can't figure out I'm trying to implement WPAD in our US office, and think I've got it mostly covered, except for one thing. On our main IIS box I've configured a web site called wpad, and set up a static entry in DNS on the main DC yesterday to point to it. I can't ping by name, but if I do a 'ping -a 12.34.56.78' I get the name resolution just fine. I see an 6268 event in the DNS event log that seems relevant, but not much information about it, after having visited http://eventid.net - the one comment there said something about a TXT entry, but I've searched and found only one reference to wpad.mycompany.com in DNS, no TXT or other files at all with that name. I can't even ping it from the DC running DNS. What's even more weird is that I can ping it by name from our foreign offices - this is probably something I'll need to do something about later... Anyone know what the heck is going on? Kurt ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
strange dns issue
I am having trouble with dns going to an external site. It goes to a company that hosts a site they have for our people to purchase clothing with our logo. The site is redirected on their end. The address is like http://ourcompany.theircompany.com. I can initially get to the site but after an hour, give or take, I will no longer be able to get to the site. Check dns cache on local pc and it shows site does not exist. If I do an ipconfig /flushdns and then /registerdns I will be able to access it for a short time again. If I check the cache on my dns server it shows that site with two NS records for theircompany domain. After I flush and register the dns on my local pc the server cache comes up with an A record for mycompany.theircompany.com. Any idea what would cause the A record to disappear after a short time? Thank you, Larry Didtel Systems Administrator ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: strange dns issue
Do you have to /registerdns? It makes no sense to me if you do. Can you tell us the actual URL you're hitting so we can have a look at theircompany.com's DNS information? On Tue, Oct 27, 2009 at 5:45 PM, Didtel, Larry larry.did...@stemilt.com wrote: I am having trouble with dns going to an external site. It goes to a company that hosts a site they have for our people to purchase clothing with our logo. The site is redirected on their end. The address is like http://ourcompany.theircompany.com. I can initially get to the site but after an hour, give or take, I will no longer be able to get to the site. Check dns cache on local pc and it shows site does not exist. If I do an ipconfig /flushdns and then /registerdns I will be able to access it for a short time again. If I check the cache on my dns server it shows that site with two NS records for theircompany domain. After I flush and register the dns on my local pc the server cache comes up with an A record for mycompany.theircompany.com. Any idea what would cause the A record to disappear after a short time? Thank you, Larry Didtel Systems Administrator ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: strange dns issue
Yes, from local pc I have to /flushdns /registerdns then it works for a short time. The address is //stemilt.gousa1.com. Doesn't make any sense to me either. The link most people use is //stemilt.gousa1.com/Default.asp?Redirected=Y but I have used both. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: strange dns issue
On Tue, Oct 27, 2009 at 5:45 PM, Didtel, Larry larry.did...@stemilt.com wrote: I am having trouble with dns going to an external site. What OS and version for the client PC and for the DNS cache server? Have you tried from more than one client? The address is like http://ourcompany.theircompany.com What are the actual names? I can initially get to the site but after an hour, give or take, I will no longer be able to get to the site. Explain what happens when you are no longer able to get to the site. What are you doing to test? Do you get an error message? If so, what is the message? Have you tried closing and opening the browser, ping by name from the command line? Have you tried telnet ourcompany.theircompany.com 80 from the command line? Check dns cache on local pc and it shows site does not exist. How are you checking the DNS cache on the local PC? Any idea what would cause the A record to disappear after a short time? TTL (Time To Live) would be my first guess. The fact that the A record is disappearing may be irrelevant; that happens as part of normal DNS function. If the cache gets another query for the same record, it should (if needed) find the answer and cache the new answer. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: strange dns issue
What OS and version for the client PC and for the DNS cache server? My OS is Win7 but this is a company wide problem and everyone else is either on XP or a Citrix desktop from Win2k03 servers. Our DNS server is Win2k03. Explain what happens when you are no longer able to get to the site. What are you doing to test? Do you get an error message? If so, what is the message? Have you tried closing and opening the browser, ping by name from the command line? Have you tried telnet ourcompany.theircompany.com 80 from the command line? IE says IE cannot display the web page. To test I ran ping and tried opening the web page. Have not tried telnet but I know that will not work because it won't find the name. How are you checking the DNS cache on the local PC? Ipconfig /displaydns Thanks, Larry ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: strange dns issue
On Tue, Oct 27, 2009 at 6:19 PM, Didtel, Larry larry.did...@stemilt.com wrote: Yes, from local pc I have to /flushdns /registerdns then it works for a short time. It's possible the client PC is caching a negative answer. The address is //stemilt.gousa1.com. Here's what I see: stemilt.gousa1.com. has a single resource record, CNAME type, with a TTL of 1200 (20 minutes). The RHS (right hand side) of the CNAME RR is 5qods.wrfe2.servertrust.com.. 5qods.wrfe2.servertrust.com. has a single RR, A type, with a TTL of 900 (15 minutes). The RHS of the A RR is 69.162.233.206. Compare my results to yours. Test resolution of the above names, and test connectivity to the above IP address. The nameservers at ns1.apcap.net. and ns2.apcap.net. have been delegated authority for gousa1.com.. However, they are claiming authority for the entire .com zone (i.e., most of the Internet). While I don't think that is directly relevant to your problem, it is a sign that those nameservers are broken. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: strange dns issue
On Tue, Oct 27, 2009 at 6:44 PM, Didtel, Larry larry.did...@stemilt.com wrote: What OS and version for the client PC and for the DNS cache server? My OS is Win7 but this is a company wide problem and everyone else is either on XP or a Citrix desktop from Win2k03 servers. Our DNS server is Win2k03. Explain what happens when you are no longer able to get to the IE says IE cannot display the web page. IE says that for almost every possible problem. DNS lookup failed, DNS didn't return any A records, TCP connection refused, TCP connection timed out, etc. You may want to try a different web browser to get better diagnostics. That said, your ping test is telling. If ping can't find the name, you have trouble. :) Have not tried telnet but I know that will not work because it won't find the name. Correct! :) How are you checking the DNS cache on the local PC? Ipconfig /displaydns I asked because you remarked that it shows site does not exist but on my Win XP computer, IPCONFIG /DISPLAYDNS does not take any parameters, and never displays site does not exist. I do see Name does not exist for negative caching, though. Is that what you're seeing? If so, some name server in your query chain has said NXDOMAIN (non-existent domain) for one of the domain names involved, and the client has cached the negative answer. By doing IPCONFIG /FLUSHDNS, you're forcing it to discard that negative answer and query again. The /REGISTERDNS thing is probabbly a red herring; I bet if you just did the flush it would give you the same behavior. Oh, *weird*: dig +nocmd +noques +nostats A stemilt.gousa1.com. @ns1.apcap.net. ;; Got answer: ;; -HEADER- opcode: QUERY, status: NXDOMAIN, id: 61530 ;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDITIONAL: 0 ;; ANSWER SECTION: stemilt.gousa1.com. 1200IN CNAME 5qods.wrfe2.servertrust.com. ;; AUTHORITY SECTION: com.1200IN SOA ns1.apcap.net. webadmin.computerworksnet.com. 1242421483 1200 1200 604800 1200 In the above, I just noticed the status: field in the header. NXDOMAIN. Yet it is still including an answer! I'm pretty sure that's highly broken. Also note the SOA (Start Of Authority) record claiming all of com.. I *know* that's broken. Contact the operator of the site; their DNS is all fscked up. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: strange dns issue
Yes, that is the same information that I resolve to here. I can telnet to that address. I'll time how long it takes to lose the dns resolution. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: strange dns issue
At 23 minutes I had lost dns resolution. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: strange dns issue
On Tue, Oct 27, 2009 at 7:33 PM, Didtel, Larry larry.did...@stemilt.com wrote: At 23 minutes I had lost dns resolution. Which makes sense, given the TTL we saw. Again, the nameservers for gousa1.com. are apparently rather fscked up. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: DNS issue
With the current DNS poisoning, trojans, and other malicious activity ISP's are only allowing certain DNS servers to resolve. Check with Comcast and make sure that you have the right Comcast DNS server for your area. At 04:38 PM 9/24/2009, you wrote: Good morning folks, Recently, at a new customer who just upgraded from dial-up to cable, they havn't been able to use the cable connection - it just didn't work. Apparently Comcast wasn't able to help them, so I got the call. Anyway, what I found was that ipconfig/all showed that it had an appropriate IP address, SNM, DG and DNS servers listed. IE or FireFox couldn't find any sites on the web. From the workstation I could ping the DNS servers and any other site I knew the address of but could not ping anything by name. Suggesting that DNS wasn't working. So, I installed their new firewall/router and after a call to Comcast to get them to reset the cable modem, (the router refused to accept the connection from the modem) the router started working. As this modem also has the voice channel in it, when they reset the modem we lost our phone call with them. Anyway the modem and the router were functional after that. My laptop worked fine and could surf without problems. Their PC however was like before, even after reboots and ipconfig/all showing the DHCP configuration from the router that worked with my laptop. My conclusion is that something is wrong with the IP installation. It was here that the owner mentioned the possibility of virus infection as their Kaspersky subscription has expired. I thought about trying to unload and reload the IP stack, but then realized that I have never done that to an XP box, just done it with a rebuild. And with an unknown virus condition that is still my preferred option. They are going to move all data files to an external hard drive, plus they found all the OEM disks so a rebuild is likely in the near future Bottom line: At this point, I believe there is something wrong with the IP stack on the PC. But I am curious as to where to go to just refresh the IP stack, never having done just that. In my XP pro sp3 desk machine here, the option to uninstall IP from within the Network applet in Control Panel is greyed out. Any thoughts would be appreciated, before I nuke the client machine to start over. Although that is probably my best option considering the unknown virus condition; especially since they could not tell my why they think it is possible to have a virus (or whatever). It's so cluttered that it runs slow enough to justify a refresh on that point alone. Len Hammond CSI:Hartland mailto:lenhamm...@gmail.comlenhamm...@gmail.com Andy-Ofalt---863-3449--405-Ag-Admin-Bldg--for more information go to http://ict.cas.psu.edu/Contacts.html -- My little blurb to eat up bandwidth and make your mail box even larger +++ The real problem is that IP, a connectionless protocol, was never developed to be the universal protocol. ATM was developed to serve that purpose and failed. +++ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: DNS issue
Is this an AD environment or peer to peer? You didn't mention local DNS servers so I'm assuming it's peer to peer. Anyway, what I found was that ipconfig/all showed that it had an appropriate IP address, SNM, DG and DNS servers listed Comcast DNS servers listed as DNS pri/sec on the LAN clients? Really? Why not a local DNS server on the LAN for resolution? Cheers. On Thu, Sep 24, 2009 at 3:38 PM, Len Hammond lenhammo...@gmail.com wrote: Good morning folks, Recently, at a new customer who just upgraded from dial-up to cable, they havn't been able to use the cable connection - it just didn't work. Apparently Comcast wasn't able to help them, so I got the call. Anyway, what I found was that ipconfig/all showed that it had an appropriate IP address, SNM, DG and DNS servers listed. IE or FireFox couldn't find any sites on the web. From the workstation I could ping the DNS servers and any other site I knew the address of but could not ping anything by name. Suggesting that DNS wasn't working. So, I installed their new firewall/router and after a call to Comcast to get them to reset the cable modem, (the router refused to accept the connection from the modem) the router started working. As this modem also has the voice channel in it, when they reset the modem we lost our phone call with them. Anyway the modem and the router were functional after that. My laptop worked fine and could surf without problems. Their PC however was like before, even after reboots and ipconfig/all showing the DHCP configuration from the router that worked with my laptop. My conclusion is that something is wrong with the IP installation. It was here that the owner mentioned the possibility of virus infection as their Kaspersky subscription has expired. I thought about trying to unload and reload the IP stack, but then realized that I have never done that to an XP box, just done it with a rebuild. And with an unknown virus condition that is still my preferred option. They are going to move all data files to an external hard drive, plus they found all the OEM disks so a rebuild is likely in the near future Bottom line: At this point, I believe there is something wrong with the IP stack on the PC. But I am curious as to where to go to just refresh the IP stack, never having done just that. In my XP pro sp3 desk machine here, the option to uninstall IP from within the Network applet in Control Panel is greyed out. Any thoughts would be appreciated, before I nuke the client machine to start over. Although that is probably my best option considering the unknown virus condition; especially since they could not tell my why they think it is possible to have a virus (or whatever). It's so cluttered that it runs slow enough to justify a refresh on that point alone. Len Hammond CSI:Hartland lenhamm...@gmail.com ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: DNS issue
Thanks! I'll try all these before I rebuild it. Probably get around to that task middle of next week. It's a residential box and they are moving their data and picture files to another drive in preparation for the rebuild. I'd kinda like to see if I can fix it before I decide to rebuild. They sort of thought that maybe a virus (or some kind of malware) got into the box and that was what precipitated the first call to me. If I can buy them enough time to wait for Windows 7 release on Oct 22, that might be a good thing, too. I'll keep you posted on the progress - may take a week or so as this is not one of my 'high priority' projects. The funny part is that it DOES ping things, both inside and outside of the LAN by address. But not outside by name. It does ping both of the Comcast DNS servers listed by address so I know it an get there - just no name resolution. My laptop on the same LAN resolves just fine even using the same ports and wires that fail on their desk machine. So it definitely is in their box where the problem is. Oh, well! I'll either fix it or wipe reinstall and fix it. my motto: It ain't over 'til I win!! Len Hammond CSI:Hartland lenhamm...@gmail.com On Thu, Sep 24, 2009 at 4:47 PM, Don Kuhlman drkuhl...@yahoo.com wrote: This is a long shot, but is there a chance that the IE settings went into Work Offline under tools\ when the computer couldn't connect to anything, and now that you have a valid ip config, maybe it's only IE having issues - that is as long as the only thing that isn't working is IE and surfing. If you can't ping the default gateway (router) or the cable modem, then something may be wrong with the Nic's settings too. Don K -- *From:* Len Hammond lenhammo...@gmail.com *To:* NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com *Sent:* Thursday, September 24, 2009 3:38:27 PM *Subject:* DNS issue Good morning folks, Recently, at a new customer who just upgraded from dial-up to cable, they havn't been able to use the cable connection - it just didn't work. Apparently Comcast wasn't able to help them, so I got the call. Anyway, what I found was that ipconfig/all showed that it had an appropriate IP address, SNM, DG and DNS servers listed. IE or FireFox couldn't find any sites on the web. From the workstation I could ping the DNS servers and any other site I knew the address of but could not ping anything by name. Suggesting that DNS wasn't working. So, I installed their new firewall/router and after a call to Comcast to get them to reset the cable modem, (the router refused to accept the connection from the modem) the router started working. As this modem also has the voice channel in it, when they reset the modem we lost our phone call with them. Anyway the modem and the router were functional after that. My laptop worked fine and could surf without problems. Their PC however was like before, even after reboots and ipconfig/all showing the DHCP configuration from the router that worked with my laptop. My conclusion is that something is wrong with the IP installation. It was here that the owner mentioned the possibility of virus infection as their Kaspersky subscription has expired. I thought about trying to unload and reload the IP stack, but then realized that I have never done that to an XP box, just done it with a rebuild. And with an unknown virus condition that is still my preferred option. They are going to move all data files to an external hard drive, plus they found all the OEM disks so a rebuild is likely in the near future Bottom line: At this point, I believe there is something wrong with the IP stack on the PC. But I am curious as to where to go to just refresh the IP stack, never having done just that. In my XP pro sp3 desk machine here, the option to uninstall IP from within the Network applet in Control Panel is greyed out. Any thoughts would be appreciated, before I nuke the client machine to start over. Although that is probably my best option considering the unknown virus condition; especially since they could not tell my why they think it is possible to have a virus (or whatever). It's so cluttered that it runs slow enough to justify a refresh on that point alone. Len Hammond CSI:Hartland lenhamm...@gmail.com ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: DNS issue
Quote: Comcast DNS servers listed as DNS pri/sec on the LAN clients? Really? Why not a local DNS server on the LAN for resolution? This is a residential PC. There is only the single box on the cable modem and before I got there, there wasn't a firewall/router in the system. That was why the machine had a direct connection to the cable modem and subsequently received it's IP etc straight from the cable modem. Now, with a router in place, it will use the router as the local DNS and gets passed out to the Comcast DNS servers after that. As for wondering if the DNS servers listed in ipcnfig/all are correct, I believe they are; as they are the same DNS servers my residential Comcast cable modem gets as well as at least two other clients in the area gets from Comcast. None of the other clients are experiencing this issue, so that leads me back to the specific box being corrupted in some way. Stilla prime candidate for a wipe rebuild. Probably later next week I'll get around to doing it. Len Hammond CSI:Hartland lenhamm...@gmail.com On Fri, Sep 25, 2009 at 11:02 AM, Stephan Barr stephanbarr.li...@gmail.comwrote: Is this an AD environment or peer to peer? You didn't mention local DNS servers so I'm assuming it's peer to peer. Anyway, what I found was that ipconfig/all showed that it had an appropriate IP address, SNM, DG and DNS servers listed Comcast DNS servers listed as DNS pri/sec on the LAN clients? Really? Why not a local DNS server on the LAN for resolution? Cheers. On Thu, Sep 24, 2009 at 3:38 PM, Len Hammond lenhammo...@gmail.comwrote: Good morning folks, Recently, at a new customer who just upgraded from dial-up to cable, they havn't been able to use the cable connection - it just didn't work. Apparently Comcast wasn't able to help them, so I got the call. Anyway, what I found was that ipconfig/all showed that it had an appropriate IP address, SNM, DG and DNS servers listed. IE or FireFox couldn't find any sites on the web. From the workstation I could ping the DNS servers and any other site I knew the address of but could not ping anything by name. Suggesting that DNS wasn't working. So, I installed their new firewall/router and after a call to Comcast to get them to reset the cable modem, (the router refused to accept the connection from the modem) the router started working. As this modem also has the voice channel in it, when they reset the modem we lost our phone call with them. Anyway the modem and the router were functional after that. My laptop worked fine and could surf without problems. Their PC however was like before, even after reboots and ipconfig/all showing the DHCP configuration from the router that worked with my laptop. My conclusion is that something is wrong with the IP installation. It was here that the owner mentioned the possibility of virus infection as their Kaspersky subscription has expired. I thought about trying to unload and reload the IP stack, but then realized that I have never done that to an XP box, just done it with a rebuild. And with an unknown virus condition that is still my preferred option. They are going to move all data files to an external hard drive, plus they found all the OEM disks so a rebuild is likely in the near future Bottom line: At this point, I believe there is something wrong with the IP stack on the PC. But I am curious as to where to go to just refresh the IP stack, never having done just that. In my XP pro sp3 desk machine here, the option to uninstall IP from within the Network applet in Control Panel is greyed out. Any thoughts would be appreciated, before I nuke the client machine to start over. Although that is probably my best option considering the unknown virus condition; especially since they could not tell my why they think it is possible to have a virus (or whatever). It's so cluttered that it runs slow enough to justify a refresh on that point alone. Len Hammond CSI:Hartland lenhamm...@gmail.com ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
DNS issue
Good morning folks, Recently, at a new customer who just upgraded from dial-up to cable, they havn't been able to use the cable connection - it just didn't work. Apparently Comcast wasn't able to help them, so I got the call. Anyway, what I found was that ipconfig/all showed that it had an appropriate IP address, SNM, DG and DNS servers listed. IE or FireFox couldn't find any sites on the web. From the workstation I could ping the DNS servers and any other site I knew the address of but could not ping anything by name. Suggesting that DNS wasn't working. So, I installed their new firewall/router and after a call to Comcast to get them to reset the cable modem, (the router refused to accept the connection from the modem) the router started working. As this modem also has the voice channel in it, when they reset the modem we lost our phone call with them. Anyway the modem and the router were functional after that. My laptop worked fine and could surf without problems. Their PC however was like before, even after reboots and ipconfig/all showing the DHCP configuration from the router that worked with my laptop. My conclusion is that something is wrong with the IP installation. It was here that the owner mentioned the possibility of virus infection as their Kaspersky subscription has expired. I thought about trying to unload and reload the IP stack, but then realized that I have never done that to an XP box, just done it with a rebuild. And with an unknown virus condition that is still my preferred option. They are going to move all data files to an external hard drive, plus they found all the OEM disks so a rebuild is likely in the near future Bottom line: At this point, I believe there is something wrong with the IP stack on the PC. But I am curious as to where to go to just refresh the IP stack, never having done just that. In my XP pro sp3 desk machine here, the option to uninstall IP from within the Network applet in Control Panel is greyed out. Any thoughts would be appreciated, before I nuke the client machine to start over. Although that is probably my best option considering the unknown virus condition; especially since they could not tell my why they think it is possible to have a virus (or whatever). It's so cluttered that it runs slow enough to justify a refresh on that point alone. Len Hammond CSI:Hartland lenhamm...@gmail.com ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: DNS issue
This is a long shot, but is there a chance that the IE settings went into Work Offline under tools\ when the computer couldn't connect to anything, and now that you have a valid ip config, maybe it's only IE having issues - that is as long as the only thing that isn't working is IE and surfing. If you can't ping the default gateway (router) or the cable modem, then something may be wrong with the Nic's settings too. Don K From: Len Hammond lenhammo...@gmail.com To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com Sent: Thursday, September 24, 2009 3:38:27 PM Subject: DNS issue Good morning folks, Recently, at a new customer who just upgraded from dial-up to cable, they havn't been able to use the cable connection - it just didn't work. Apparently Comcast wasn't able to help them, so I got the call. Anyway, what I found was that ipconfig/all showed that it had an appropriate IP address, SNM, DG and DNS servers listed. IE or FireFox couldn't find any sites on the web. From the workstation I could ping the DNS servers and any other site I knew the address of but could not ping anything by name. Suggesting that DNS wasn't working. So, I installed their new firewall/router and after a call to Comcast to get them to reset the cable modem, (the router refused to accept the connection from the modem) the router started working. As this modem also has the voice channel in it, when they reset the modem we lost our phone call with them. Anyway the modem and the router were functional after that. My laptop worked fine and could surf without problems. Their PC however was like before, even after reboots and ipconfig/all showing the DHCP configuration from the router that worked with my laptop. My conclusion is that something is wrong with the IP installation. It was here that the owner mentioned the possibility of virus infection as their Kaspersky subscription has expired. I thought about trying to unload and reload the IP stack, but then realized that I have never done that to an XP box, just done it with a rebuild. And with an unknown virus condition that is still my preferred option. They are going to move all data files to an external hard drive, plus they found all the OEM disks so a rebuild is likely in the near future Bottom line: At this point, I believe there is something wrong with the IP stack on the PC. But I am curious as to where to go to just refresh the IP stack, never having done just that. In my XP pro sp3 desk machine here, the option to uninstall IP from within the Network applet in Control Panel is greyed out. Any thoughts would be appreciated, before I nuke the client machine to start over. Although that is probably my best option considering the unknown virus condition; especially since they could not tell my why they think it is possible to have a virus (or whatever). It's so cluttered that it runs slow enough to justify a refresh on that point alone. Len Hammond CSI:Hartland lenhamm...@gmail.com ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: DNS issue
Do a google search for Winsock XP Fix. Use that tool and see if it helps at all. I've used it in similar scenarios, typically when a virus or malware has damaged network settings, and it seems to help. Jay From: Len Hammond [mailto:lenhammo...@gmail.com] Sent: Thursday, September 24, 2009 3:38 PM To: NT System Admin Issues Subject: DNS issue Good morning folks, Recently, at a new customer who just upgraded from dial-up to cable, they havn't been able to use the cable connection - it just didn't work. Apparently Comcast wasn't able to help them, so I got the call. Anyway, what I found was that ipconfig/all showed that it had an appropriate IP address, SNM, DG and DNS servers listed. IE or FireFox couldn't find any sites on the web. From the workstation I could ping the DNS servers and any other site I knew the address of but could not ping anything by name. Suggesting that DNS wasn't working. So, I installed their new firewall/router and after a call to Comcast to get them to reset the cable modem, (the router refused to accept the connection from the modem) the router started working. As this modem also has the voice channel in it, when they reset the modem we lost our phone call with them. Anyway the modem and the router were functional after that. My laptop worked fine and could surf without problems. Their PC however was like before, even after reboots and ipconfig/all showing the DHCP configuration from the router that worked with my laptop. My conclusion is that something is wrong with the IP installation. It was here that the owner mentioned the possibility of virus infection as their Kaspersky subscription has expired. I thought about trying to unload and reload the IP stack, but then realized that I have never done that to an XP box, just done it with a rebuild. And with an unknown virus condition that is still my preferred option. They are going to move all data files to an external hard drive, plus they found all the OEM disks so a rebuild is likely in the near future Bottom line: At this point, I believe there is something wrong with the IP stack on the PC. But I am curious as to where to go to just refresh the IP stack, never having done just that. In my XP pro sp3 desk machine here, the option to uninstall IP from within the Network applet in Control Panel is greyed out. Any thoughts would be appreciated, before I nuke the client machine to start over. Although that is probably my best option considering the unknown virus condition; especially since they could not tell my why they think it is possible to have a virus (or whatever). It's so cluttered that it runs slow enough to justify a refresh on that point alone. Len Hammond CSI:Hartland lenhamm...@gmail.com ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: DNS issue
netsh ip reset has proved most helpful for me in the past. How to reset Internet Protocol (TCP/IP) http://support.microsoft.com/kb/299357 http://support.microsoft.com/kb/299357 How to reset Internet Protocol (TCP/IP) in Windows Server 2003 http://support.microsoft.com/kb/317518 http://support.microsoft.com/kb/317518 Also the winsock can get sideways causing networking problems and netsh winsock reset can work wonders. If you are about to reinstall anyway either of them couldn't really hurt. How to determine and to recover from Winsock2 corruption in Windows Server 2003, in Windows XP, and in Windows Vista http://support.microsoft.com/kb/811259 From: Len Hammond [mailto:lenhammo...@gmail.com] Sent: Thursday, September 24, 2009 1:38 PM To: NT System Admin Issues Subject: DNS issue Good morning folks, Recently, at a new customer who just upgraded from dial-up to cable, they havn't been able to use the cable connection - it just didn't work. Apparently Comcast wasn't able to help them, so I got the call. Anyway, what I found was that ipconfig/all showed that it had an appropriate IP address, SNM, DG and DNS servers listed. IE or FireFox couldn't find any sites on the web. From the workstation I could ping the DNS servers and any other site I knew the address of but could not ping anything by name. Suggesting that DNS wasn't working. So, I installed their new firewall/router and after a call to Comcast to get them to reset the cable modem, (the router refused to accept the connection from the modem) the router started working. As this modem also has the voice channel in it, when they reset the modem we lost our phone call with them. Anyway the modem and the router were functional after that. My laptop worked fine and could surf without problems. Their PC however was like before, even after reboots and ipconfig/all showing the DHCP configuration from the router that worked with my laptop. My conclusion is that something is wrong with the IP installation. It was here that the owner mentioned the possibility of virus infection as their Kaspersky subscription has expired. I thought about trying to unload and reload the IP stack, but then realized that I have never done that to an XP box, just done it with a rebuild. And with an unknown virus condition that is still my preferred option. They are going to move all data files to an external hard drive, plus they found all the OEM disks so a rebuild is likely in the near future Bottom line: At this point, I believe there is something wrong with the IP stack on the PC. But I am curious as to where to go to just refresh the IP stack, never having done just that. In my XP pro sp3 desk machine here, the option to uninstall IP from within the Network applet in Control Panel is greyed out. Any thoughts would be appreciated, before I nuke the client machine to start over. Although that is probably my best option considering the unknown virus condition; especially since they could not tell my why they think it is possible to have a virus (or whatever). It's so cluttered that it runs slow enough to justify a refresh on that point alone. Len Hammond CSI:Hartland lenhamm...@gmail.com ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: DNS issue
On Thu, Sep 24, 2009 at 4:38 PM, Len Hammond lenhammo...@gmail.com wrote: My conclusion is that something is wrong with the IP installation. Obviously. :) But I am curious as to where to go to just refresh the IP stack, never having done just that. I am of the belief that once Windows gets screwed up like this there is no way to fix it. The registry is huge and complicated, there are hundreds upon hundreds of files in system32, and documentation on how it all ties together varies from incomplete to non-existent. There's no authoritative way to say the system is intact. So there really isn't a way to fix things once they're broken. You have to blow everything away and reinstall it all. This is probabbly my number one complaint about Windows: You can't fix it when it breaks. That said: NETSH INTERFACE IP RESET c:\ipreset.log NETSH WINSOCK RESET will reset stuff in the IP stack. (What stuff? Nobody knows, exactly. Mysterious, Microsoft voodoo stuff. But it often works (for sufficiently loose definitions of works).) In my XP pro sp3 desk machine here, the option to uninstall IP from within the Network applet in Control Panel is greyed out. With Win XP and later, Microsoft decided one shouldn't be able to uninstall the IP stack. Too bad, so sad. Any thoughts would be appreciated, before I nuke the client machine to start over. That's the recommended action for good reason. Although that is probably my best option considering the unknown virus condition ... Indeed. For *any* OS, once you suspect the system is compromised, the *only* safe course of action is to wipe and reload from trusted media. (Unless you have detailed IDS signatures from before the compromise, but if you had that you wouldn't be asking these questions. :) ) -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: DNS issue
With XP you can't uninstall TCP/IP, however you can reset the XP TCP/IP stack with the following command: netsh int ip reset c:\logfile.txt Phillip Partipilo Parametric Solutions Inc. Jupiter, Florida (561) 747-6107 _ From: Len Hammond [mailto:lenhammo...@gmail.com] Sent: Thursday, September 24, 2009 4:38 PM To: NT System Admin Issues Subject: DNS issue Good morning folks, Recently, at a new customer who just upgraded from dial-up to cable, they havn't been able to use the cable connection - it just didn't work. Apparently Comcast wasn't able to help them, so I got the call. Anyway, what I found was that ipconfig/all showed that it had an appropriate IP address, SNM, DG and DNS servers listed. IE or FireFox couldn't find any sites on the web. From the workstation I could ping the DNS servers and any other site I knew the address of but could not ping anything by name. Suggesting that DNS wasn't working. So, I installed their new firewall/router and after a call to Comcast to get them to reset the cable modem, (the router refused to accept the connection from the modem) the router started working. As this modem also has the voice channel in it, when they reset the modem we lost our phone call with them. Anyway the modem and the router were functional after that. My laptop worked fine and could surf without problems. Their PC however was like before, even after reboots and ipconfig/all showing the DHCP configuration from the router that worked with my laptop. My conclusion is that something is wrong with the IP installation. It was here that the owner mentioned the possibility of virus infection as their Kaspersky subscription has expired. I thought about trying to unload and reload the IP stack, but then realized that I have never done that to an XP box, just done it with a rebuild. And with an unknown virus condition that is still my preferred option. They are going to move all data files to an external hard drive, plus they found all the OEM disks so a rebuild is likely in the near future Bottom line: At this point, I believe there is something wrong with the IP stack on the PC. But I am curious as to where to go to just refresh the IP stack, never having done just that. In my XP pro sp3 desk machine here, the option to uninstall IP from within the Network applet in Control Panel is greyed out. Any thoughts would be appreciated, before I nuke the client machine to start over. Although that is probably my best option considering the unknown virus condition; especially since they could not tell my why they think it is possible to have a virus (or whatever). It's so cluttered that it runs slow enough to justify a refresh on that point alone. Len Hammond CSI:Hartland lenhamm...@gmail.com _ If this email is spam, report it here: http://www.OnlyMyEmail.com/ReportSpam http://www.onlymyemail.com/view/?action=reportSpamId=ODEzNjQ6OTY5MTY2MTY4O nBqcEBwc25ldC5jb20%3D THIS ELECTRONIC MESSAGE AND ANY ATTACHMENTS ARE CONFIDENTIAL AND PROPRIETARY PROPERTY OF THE SENDER. THE INFORMATION IS INTENDED FOR USE BY THE ADDRESSEE ONLY. ANY OTHER INTERCEPTION, COPYING, ACCESSING, OR DISCLOSURE OF THIS MESSAGE IS PROHIBITED. IF YOU HAVE RECEIVED THIS MESSAGE IN ERROR, PLEASE IMMEDIATELY NOTIFY THE SENDER AND DELETE THIS MAIL AND ALL ATTACHMENTS. DO NOT FORWARD THIS MESSAGE WITHOUT PERMISSION OF THE SENDER. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Server 2003 DNS issue - Fixed
I got this working but not exactly sure what made it start working. Called Qwest and they tested the lines and said things were working fine from their perspective. I figured that. Had the office reboot the DSL modem. They did this while I was connected since I lost connectivity. Logged back in and same error messages. While working remotely deleted DNS from the box, rebooted and reinstalled DNS. Ran SBS Connect to Internet wizard. Same problem. Checked everything again with other working SBS boxes and all settings were correct. Frustrated quit and went out and worked on my car. Saturday morning went to the office with my laptop. Checked everything locally just in case being remote was an issue. Same error messages. Configured laptop with server wan settings, connected to the DSL modem and same error messages. What! Must be a Qwest issue somewhere. Called Qwest support and tried to explain what was happening and what I had determined to the woman. Went through the basic support steps and she said it was a server issue. Uh no it wasn't could you check with someone else. On hold for a while, line got disconnected, waited five minutes with no call back and called in again. Got a different tech this time but he actually knew what I was talking about. Went through the basic support steps again with the same result. Put on hold while he went to check on some things and talk with another tech. Things didn't make sense so we started from the beginning again with the basic support steps. After rebooting the DSL modem, open command prompt, ping by IP working. Ping by name working. OK what changed. Open IE and could get to web pages. Checked Exchange queues and saw mail going out. Asked what changed and he said they didn't do anything. We tested a few more things with good results and then closed the call. Client is happy but I wish I knew what changed so I know if I see this again. -Original Message- From: Charlie Kaiser [mailto:charl...@golden-eagle.org] Sent: Friday, May 01, 2009 8:23 AM To: NT System Admin Issues Subject: RE: Server 2003 DNS issue How is external DNS set up? Forwarders? Root hints? I usually use forwarders. See if you can ping the listed forwarders; then try a Nslookup using those IPs as the server. Any firewall rules that might have been inadvertently changed? It sounds like DNS queries aren't getting replies from outside. Does internal DNS work? You might throw wireshark on the box and see what the DNS queries do... *** Charlie Kaiser charl...@golden-eagle.org Kingman, AZ *** -Original Message- From: Art DeKneef [mailto:art.dekn...@cox.net] Sent: Friday, May 01, 2009 8:16 AM To: NT System Admin Issues Subject: Server 2003 DNS issue Have a client that is having trouble with Internet connectivity and Exchange sending mail externally. Has a SBS 2003 server up to date as of two weeks ago, nothing changed since then that I know of or can see. They can send and receive internal Exchange just fine. Receiving mail externally works fine. Outbound external mail is sitting in the queue. Error message is Unable to bind to the destination server in DNS. Opening IE displays the Page can not be found error message. Nothing in the event logs. Rebooted server, no effect. Ping by IP works. Ping by name doesn't. Error can not find server. Nslookup fails. Checked out several KB articles and all suggestions shown have been configured correctly on the server. Reran the Connect to Internet wizard, no change. Anyone have any ideas while I look some more. It really looks like DNS is broke on this box. Thanks ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Server 2003 DNS issue - Fixed
Sounds to me like they may have uploaded some changes to the DSL modem, and didn't want to admit they'd screwed things up originally. :-) Oh, well... all's well that ends well. :-) -Original Message- From: Art DeKneef [mailto:art.dekn...@cox.net] Sent: Monday, May 04, 2009 1:51 PM To: NT System Admin Issues Subject: RE: Server 2003 DNS issue - Fixed I got this working but not exactly sure what made it start working. Called Qwest and they tested the lines and said things were working fine from their perspective. I figured that. Had the office reboot the DSL modem. They did this while I was connected since I lost connectivity. Logged back in and same error messages. While working remotely deleted DNS from the box, rebooted and reinstalled DNS. Ran SBS Connect to Internet wizard. Same problem. Checked everything again with other working SBS boxes and all settings were correct. Frustrated quit and went out and worked on my car. Saturday morning went to the office with my laptop. Checked everything locally just in case being remote was an issue. Same error messages. Configured laptop with server wan settings, connected to the DSL modem and same error messages. What! Must be a Qwest issue somewhere. Called Qwest support and tried to explain what was happening and what I had determined to the woman. Went through the basic support steps and she said it was a server issue. Uh no it wasn't could you check with someone else. On hold for a while, line got disconnected, waited five minutes with no call back and called in again. Got a different tech this time but he actually knew what I was talking about. Went through the basic support steps again with the same result. Put on hold while he went to check on some things and talk with another tech. Things didn't make sense so we started from the beginning again with the basic support steps. After rebooting the DSL modem, open command prompt, ping by IP working. Ping by name working. OK what changed. Open IE and could get to web pages. Checked Exchange queues and saw mail going out. Asked what changed and he said they didn't do anything. We tested a few more things with good results and then closed the call. Client is happy but I wish I knew what changed so I know if I see this again. -Original Message- From: Charlie Kaiser [mailto:charl...@golden-eagle.org] Sent: Friday, May 01, 2009 8:23 AM To: NT System Admin Issues Subject: RE: Server 2003 DNS issue How is external DNS set up? Forwarders? Root hints? I usually use forwarders. See if you can ping the listed forwarders; then try a Nslookup using those IPs as the server. Any firewall rules that might have been inadvertently changed? It sounds like DNS queries aren't getting replies from outside. Does internal DNS work? You might throw wireshark on the box and see what the DNS queries do... *** Charlie Kaiser charl...@golden-eagle.org Kingman, AZ *** -Original Message- From: Art DeKneef [mailto:art.dekn...@cox.net] Sent: Friday, May 01, 2009 8:16 AM To: NT System Admin Issues Subject: Server 2003 DNS issue Have a client that is having trouble with Internet connectivity and Exchange sending mail externally. Has a SBS 2003 server up to date as of two weeks ago, nothing changed since then that I know of or can see. They can send and receive internal Exchange just fine. Receiving mail externally works fine. Outbound external mail is sitting in the queue. Error message is Unable to bind to the destination server in DNS. Opening IE displays the Page can not be found error message. Nothing in the event logs. Rebooted server, no effect. Ping by IP works. Ping by name doesn't. Error can not find server. Nslookup fails. Checked out several KB articles and all suggestions shown have been configured correctly on the server. Reran the Connect to Internet wizard, no change. Anyone have any ideas while I look some more. It really looks like DNS is broke on this box. Thanks ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ No virus found in this incoming message. Checked by AVG - www.avg.com Version: 8.5.323 / Virus Database: 270.12.17/2095 - Release Date: 05/04/09 06:00:00 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: Server 2003 DNS issue - Fixed
+1 I've had Comcast screw me on at least three occasions that way. If you have to reboot your modem its because the provisioning isn't matching their equipment or security configs. End of story. -- ME2 On Mon, May 4, 2009 at 2:06 PM, John Aldrich jaldr...@blueridgecarpet.comwrote: Sounds to me like they may have uploaded some changes to the DSL modem, and didn't want to admit they'd screwed things up originally. :-) Oh, well... all's well that ends well. :-) -Original Message- From: Art DeKneef [mailto:art.dekn...@cox.net] Sent: Monday, May 04, 2009 1:51 PM To: NT System Admin Issues Subject: RE: Server 2003 DNS issue - Fixed I got this working but not exactly sure what made it start working. Called Qwest and they tested the lines and said things were working fine from their perspective. I figured that. Had the office reboot the DSL modem. They did this while I was connected since I lost connectivity. Logged back in and same error messages. While working remotely deleted DNS from the box, rebooted and reinstalled DNS. Ran SBS Connect to Internet wizard. Same problem. Checked everything again with other working SBS boxes and all settings were correct. Frustrated quit and went out and worked on my car. Saturday morning went to the office with my laptop. Checked everything locally just in case being remote was an issue. Same error messages. Configured laptop with server wan settings, connected to the DSL modem and same error messages. What! Must be a Qwest issue somewhere. Called Qwest support and tried to explain what was happening and what I had determined to the woman. Went through the basic support steps and she said it was a server issue. Uh no it wasn't could you check with someone else. On hold for a while, line got disconnected, waited five minutes with no call back and called in again. Got a different tech this time but he actually knew what I was talking about. Went through the basic support steps again with the same result. Put on hold while he went to check on some things and talk with another tech. Things didn't make sense so we started from the beginning again with the basic support steps. After rebooting the DSL modem, open command prompt, ping by IP working. Ping by name working. OK what changed. Open IE and could get to web pages. Checked Exchange queues and saw mail going out. Asked what changed and he said they didn't do anything. We tested a few more things with good results and then closed the call. Client is happy but I wish I knew what changed so I know if I see this again. -Original Message- From: Charlie Kaiser [mailto:charl...@golden-eagle.org] Sent: Friday, May 01, 2009 8:23 AM To: NT System Admin Issues Subject: RE: Server 2003 DNS issue How is external DNS set up? Forwarders? Root hints? I usually use forwarders. See if you can ping the listed forwarders; then try a Nslookup using those IPs as the server. Any firewall rules that might have been inadvertently changed? It sounds like DNS queries aren't getting replies from outside. Does internal DNS work? You might throw wireshark on the box and see what the DNS queries do... *** Charlie Kaiser charl...@golden-eagle.org Kingman, AZ *** -Original Message- From: Art DeKneef [mailto:art.dekn...@cox.net] Sent: Friday, May 01, 2009 8:16 AM To: NT System Admin Issues Subject: Server 2003 DNS issue Have a client that is having trouble with Internet connectivity and Exchange sending mail externally. Has a SBS 2003 server up to date as of two weeks ago, nothing changed since then that I know of or can see. They can send and receive internal Exchange just fine. Receiving mail externally works fine. Outbound external mail is sitting in the queue. Error message is Unable to bind to the destination server in DNS. Opening IE displays the Page can not be found error message. Nothing in the event logs. Rebooted server, no effect. Ping by IP works. Ping by name doesn't. Error can not find server. Nslookup fails. Checked out several KB articles and all suggestions shown have been configured correctly on the server. Reran the Connect to Internet wizard, no change. Anyone have any ideas while I look some more. It really looks like DNS is broke on this box. Thanks ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ No virus found in this incoming message. Checked by AVG - www.avg.com Version: 8.5.323 / Virus Database: 270.12.17/2095 - Release Date: 05/04/09 06:00:00 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise
RE: Server 2003 DNS issue - Fixed
I spent two days once trying to convince Insight communications that the problem was on their end. no, our equipment is fine, the issue is your server. My server was off and I was using their DHCP. Finally got someone on the line that knew more than reading que-cards. He fixed the DNS settings and boom... problem solved. Bob Fronk From: Micheal Espinola Jr [mailto:michealespin...@gmail.com] Sent: Monday, May 04, 2009 2:16 PM To: NT System Admin Issues Subject: Re: Server 2003 DNS issue - Fixed +1 I've had Comcast screw me on at least three occasions that way. If you have to reboot your modem its because the provisioning isn't matching their equipment or security configs. End of story. -- ME2 On Mon, May 4, 2009 at 2:06 PM, John Aldrich jaldr...@blueridgecarpet.commailto:jaldr...@blueridgecarpet.com wrote: Sounds to me like they may have uploaded some changes to the DSL modem, and didn't want to admit they'd screwed things up originally. :-) Oh, well... all's well that ends well. :-) -Original Message- From: Art DeKneef [mailto:art.dekn...@cox.netmailto:art.dekn...@cox.net] Sent: Monday, May 04, 2009 1:51 PM To: NT System Admin Issues Subject: RE: Server 2003 DNS issue - Fixed I got this working but not exactly sure what made it start working. Called Qwest and they tested the lines and said things were working fine from their perspective. I figured that. Had the office reboot the DSL modem. They did this while I was connected since I lost connectivity. Logged back in and same error messages. While working remotely deleted DNS from the box, rebooted and reinstalled DNS. Ran SBS Connect to Internet wizard. Same problem. Checked everything again with other working SBS boxes and all settings were correct. Frustrated quit and went out and worked on my car. Saturday morning went to the office with my laptop. Checked everything locally just in case being remote was an issue. Same error messages. Configured laptop with server wan settings, connected to the DSL modem and same error messages. What! Must be a Qwest issue somewhere. Called Qwest support and tried to explain what was happening and what I had determined to the woman. Went through the basic support steps and she said it was a server issue. Uh no it wasn't could you check with someone else. On hold for a while, line got disconnected, waited five minutes with no call back and called in again. Got a different tech this time but he actually knew what I was talking about. Went through the basic support steps again with the same result. Put on hold while he went to check on some things and talk with another tech. Things didn't make sense so we started from the beginning again with the basic support steps. After rebooting the DSL modem, open command prompt, ping by IP working. Ping by name working. OK what changed. Open IE and could get to web pages. Checked Exchange queues and saw mail going out. Asked what changed and he said they didn't do anything. We tested a few more things with good results and then closed the call. Client is happy but I wish I knew what changed so I know if I see this again. -Original Message- From: Charlie Kaiser [mailto:charl...@golden-eagle.orgmailto:charl...@golden-eagle.org] Sent: Friday, May 01, 2009 8:23 AM To: NT System Admin Issues Subject: RE: Server 2003 DNS issue How is external DNS set up? Forwarders? Root hints? I usually use forwarders. See if you can ping the listed forwarders; then try a Nslookup using those IPs as the server. Any firewall rules that might have been inadvertently changed? It sounds like DNS queries aren't getting replies from outside. Does internal DNS work? You might throw wireshark on the box and see what the DNS queries do... *** Charlie Kaiser charl...@golden-eagle.orgmailto:charl...@golden-eagle.org Kingman, AZ *** -Original Message- From: Art DeKneef [mailto:art.dekn...@cox.netmailto:art.dekn...@cox.net] Sent: Friday, May 01, 2009 8:16 AM To: NT System Admin Issues Subject: Server 2003 DNS issue Have a client that is having trouble with Internet connectivity and Exchange sending mail externally. Has a SBS 2003 server up to date as of two weeks ago, nothing changed since then that I know of or can see. They can send and receive internal Exchange just fine. Receiving mail externally works fine. Outbound external mail is sitting in the queue. Error message is Unable to bind to the destination server in DNS. Opening IE displays the Page can not be found error message. Nothing in the event logs. Rebooted server, no effect. Ping by IP works. Ping by name doesn't. Error can not find server. Nslookup fails. Checked out several KB articles and all suggestions shown have been configured correctly on the server. Reran the Connect to Internet wizard, no change. Anyone have any ideas while I look some more. It really looks like DNS is broke on this box. Thanks
Server 2003 DNS issue
Have a client that is having trouble with Internet connectivity and Exchange sending mail externally. Has a SBS 2003 server up to date as of two weeks ago, nothing changed since then that I know of or can see. They can send and receive internal Exchange just fine. Receiving mail externally works fine. Outbound external mail is sitting in the queue. Error message is Unable to bind to the destination server in DNS. Opening IE displays the Page can not be found error message. Nothing in the event logs. Rebooted server, no effect. Ping by IP works. Ping by name doesn't. Error can not find server. Nslookup fails. Checked out several KB articles and all suggestions shown have been configured correctly on the server. Reran the Connect to Internet wizard, no change. Anyone have any ideas while I look some more. It really looks like DNS is broke on this box. Thanks ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Server 2003 DNS issue
How is external DNS set up? Forwarders? Root hints? I usually use forwarders. See if you can ping the listed forwarders; then try a Nslookup using those IPs as the server. Any firewall rules that might have been inadvertently changed? It sounds like DNS queries aren't getting replies from outside. Does internal DNS work? You might throw wireshark on the box and see what the DNS queries do... *** Charlie Kaiser charl...@golden-eagle.org Kingman, AZ *** -Original Message- From: Art DeKneef [mailto:art.dekn...@cox.net] Sent: Friday, May 01, 2009 8:16 AM To: NT System Admin Issues Subject: Server 2003 DNS issue Have a client that is having trouble with Internet connectivity and Exchange sending mail externally. Has a SBS 2003 server up to date as of two weeks ago, nothing changed since then that I know of or can see. They can send and receive internal Exchange just fine. Receiving mail externally works fine. Outbound external mail is sitting in the queue. Error message is Unable to bind to the destination server in DNS. Opening IE displays the Page can not be found error message. Nothing in the event logs. Rebooted server, no effect. Ping by IP works. Ping by name doesn't. Error can not find server. Nslookup fails. Checked out several KB articles and all suggestions shown have been configured correctly on the server. Reran the Connect to Internet wizard, no change. Anyone have any ideas while I look some more. It really looks like DNS is broke on this box. Thanks ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Server 2003 DNS issue
Forgot to mention. DNS is set to use Forwarders. Originally had Qwest DNS servers and switched to OpenDNS servers. Same result. I can ping forwarders by IP but not by name. No firewall rules changed. Internal DNS works fine. Ping a workstation by name and it resolves. I'll see what Netmon shows. -Original Message- From: Charlie Kaiser [mailto:charl...@golden-eagle.org] Sent: Friday, May 01, 2009 8:23 AM To: NT System Admin Issues Subject: RE: Server 2003 DNS issue How is external DNS set up? Forwarders? Root hints? I usually use forwarders. See if you can ping the listed forwarders; then try a Nslookup using those IPs as the server. Any firewall rules that might have been inadvertently changed? It sounds like DNS queries aren't getting replies from outside. Does internal DNS work? You might throw wireshark on the box and see what the DNS queries do... *** Charlie Kaiser charl...@golden-eagle.org Kingman, AZ *** -Original Message- From: Art DeKneef [mailto:art.dekn...@cox.net] Sent: Friday, May 01, 2009 8:16 AM To: NT System Admin Issues Subject: Server 2003 DNS issue Have a client that is having trouble with Internet connectivity and Exchange sending mail externally. Has a SBS 2003 server up to date as of two weeks ago, nothing changed since then that I know of or can see. They can send and receive internal Exchange just fine. Receiving mail externally works fine. Outbound external mail is sitting in the queue. Error message is Unable to bind to the destination server in DNS. Opening IE displays the Page can not be found error message. Nothing in the event logs. Rebooted server, no effect. Ping by IP works. Ping by name doesn't. Error can not find server. Nslookup fails. Checked out several KB articles and all suggestions shown have been configured correctly on the server. Reran the Connect to Internet wizard, no change. Anyone have any ideas while I look some more. It really looks like DNS is broke on this box. Thanks ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Server 2003 DNS issue
Can you do NSLookup and set server=the external server IP and get a DNS query reply? If not, the firewall may well be blocking the DNS traffic. What DNS servers are you using? Send an IP and I'll try a query from here to make sure the server is working... *** Charlie Kaiser charl...@golden-eagle.org Kingman, AZ *** -Original Message- From: Art DeKneef [mailto:art.dekn...@cox.net] Sent: Friday, May 01, 2009 8:35 AM To: NT System Admin Issues Subject: RE: Server 2003 DNS issue Forgot to mention. DNS is set to use Forwarders. Originally had Qwest DNS servers and switched to OpenDNS servers. Same result. I can ping forwarders by IP but not by name. No firewall rules changed. Internal DNS works fine. Ping a workstation by name and it resolves. I'll see what Netmon shows. -Original Message- From: Charlie Kaiser [mailto:charl...@golden-eagle.org] Sent: Friday, May 01, 2009 8:23 AM To: NT System Admin Issues Subject: RE: Server 2003 DNS issue How is external DNS set up? Forwarders? Root hints? I usually use forwarders. See if you can ping the listed forwarders; then try a Nslookup using those IPs as the server. Any firewall rules that might have been inadvertently changed? It sounds like DNS queries aren't getting replies from outside. Does internal DNS work? You might throw wireshark on the box and see what the DNS queries do... *** Charlie Kaiser charl...@golden-eagle.org Kingman, AZ *** -Original Message- From: Art DeKneef [mailto:art.dekn...@cox.net] Sent: Friday, May 01, 2009 8:16 AM To: NT System Admin Issues Subject: Server 2003 DNS issue Have a client that is having trouble with Internet connectivity and Exchange sending mail externally. Has a SBS 2003 server up to date as of two weeks ago, nothing changed since then that I know of or can see. They can send and receive internal Exchange just fine. Receiving mail externally works fine. Outbound external mail is sitting in the queue. Error message is Unable to bind to the destination server in DNS. Opening IE displays the Page can not be found error message. Nothing in the event logs. Rebooted server, no effect. Ping by IP works. Ping by name doesn't. Error can not find server. Nslookup fails. Checked out several KB articles and all suggestions shown have been configured correctly on the server. Reran the Connect to Internet wizard, no change. Anyone have any ideas while I look some more. It really looks like DNS is broke on this box. Thanks ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: DNS issue
I'll take a look at that. Thanks. We've recommended logging but the client is still balking at the costs to log/analyze. But they'll pay us to break/fix it daily. LOL... *** Charlie Kaiser charl...@golden-eagle.org Kingman, AZ *** -Original Message- From: Richard Stovall [mailto:richard.stov...@researchdata.com] Sent: Wednesday, April 29, 2009 5:24 PM To: NT System Admin Issues Subject: RE: DNS issue It's been a good while, but I've fixed certain lookup problems in the past by disabling edns on 2k3 DNS servers behind older pixes. dnscmd /config /enableednsprobes 0 Just a thought. Have you enabled detailed packet logging on your DNS servers to look into exactly what replies you're getting? Good luck with it. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: DNS issue
The domains in question do have MX records, but the DNS lookup failures end up giving us A records only, and then exchange tries to deliver to the A record address, which accepts mail for a different domain. We've offered logging; we need them to approve the costs first... No bind in this org. Someone sent me a note about a known issue with the Watchguards. I'm going to look at that today... *** Charlie Kaiser charl...@golden-eagle.org Kingman, AZ *** -Original Message- From: Ben Scott [mailto:mailvor...@gmail.com] Sent: Wednesday, April 29, 2009 7:34 PM To: NT System Admin Issues Subject: Re: DNS issue If a domain name has no MX records, but does have A records, then SMTP MTAs are supposed to treat the domain as if it had specified the hosts at those A records as the mail exchangers. This is per the relevant RFC. Does it happen for all domains, or just some? As someone else said, query logging would be good. Another thing to try is a packet sniffer. (Sometimes that's even better, because you might see stuff that the person programming an application's logging routines didn't think was relevant.) In the NT 4.0 days, I sometimes fixed deficiencies in the NT 4.0 DNS server by having it forward all DNS queries to a local ISC BIND named resolver which then did the Internet-facing stuff. The MS DNS server was much improved in Win 2000, but it's a thought if you get desperate. What I'm trying to find out is this: Is there a way to prevent server-side caching of negative replies to remote DNS queries? The normal control for this is the minimum TTL field from the SOA record of the zone being queried. Microsoft's documentation seems to imply that they just use that: The Windows 2000 DNS server caches negative responses according to the minimum TTL in the SOA record. However, it cannot be less than one minute or greater than 15 minutes. (http://technet.microsoft.com/en-us/library/cc959309.aspx) -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: DNS issue
Also consider testing with someone else's DNS or your forwarders. OpenDNS perhaps. -Original Message- From: Charlie Kaiser [mailto:charl...@golden-eagle.org] Sent: Thursday, April 30, 2009 9:41 AM To: NT System Admin Issues Subject: RE: DNS issue The domains in question do have MX records, but the DNS lookup failures end up giving us A records only, and then exchange tries to deliver to the A record address, which accepts mail for a different domain. We've offered logging; we need them to approve the costs first... No bind in this org. Someone sent me a note about a known issue with the Watchguards. I'm going to look at that today... *** Charlie Kaiser charl...@golden-eagle.org Kingman, AZ *** -Original Message- From: Ben Scott [mailto:mailvor...@gmail.com] Sent: Wednesday, April 29, 2009 7:34 PM To: NT System Admin Issues Subject: Re: DNS issue If a domain name has no MX records, but does have A records, then SMTP MTAs are supposed to treat the domain as if it had specified the hosts at those A records as the mail exchangers. This is per the relevant RFC. Does it happen for all domains, or just some? As someone else said, query logging would be good. Another thing to try is a packet sniffer. (Sometimes that's even better, because you might see stuff that the person programming an application's logging routines didn't think was relevant.) In the NT 4.0 days, I sometimes fixed deficiencies in the NT 4.0 DNS server by having it forward all DNS queries to a local ISC BIND named resolver which then did the Internet-facing stuff. The MS DNS server was much improved in Win 2000, but it's a thought if you get desperate. What I'm trying to find out is this: Is there a way to prevent server-side caching of negative replies to remote DNS queries? The normal control for this is the minimum TTL field from the SOA record of the zone being queried. Microsoft's documentation seems to imply that they just use that: The Windows 2000 DNS server caches negative responses according to the minimum TTL in the SOA record. However, it cannot be less than one minute or greater than 15 minutes. (http://technet.microsoft.com/en-us/library/cc959309.aspx) -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: DNS issue
Here's an article about changing the negative caching: http://windowsitpro.com/article/articleid/48528/controlling-positive-and-negative-caching.html Jeff On Wed, Apr 29, 2009 at 7:25 PM, Charlie Kaiser charl...@golden-eagle.orgwrote: I'm running into a problem at one of our clients. W2K3 AD, running E2K3. When SMTP mail goes out, we're seeing DNS problems that result in NDRs. This type of problem has been documented here: http://social.technet.microsoft.com/forums/en-US/exchangesvrtransport/thread /178b88bb-bbdb-4cc2-896b-711fdeeb36d8/http://social.technet.microsoft.com/forums/en-US/exchangesvrtransport/thread%0A/178b88bb-bbdb-4cc2-896b-711fdeeb36d8/ Bottom line is that DNS lookups are failing, and mail is going to the A record for the remote domain instead of the MX record. Apparently this is by design with E2K3/W2K3 when a negative reply comes back. What I'm trying to find out is this: Is there a way to prevent server-side caching of negative replies to remote DNS queries? Or at least reduce their life to a few seconds? I've seen articles that show how to do it for the client side, but that doesn't affect the DNS server cache. We're using ISP forwarders (ATT). I think there may be a firewall (watchguard) or other external issue causing the DNS lookup failures. I'm trying to get the client to authorize that kind of troubleshooting, but in the meantime, we're looking for a fix from another angle. Right now, I've created an AT job to clear the DNS server cache every 5 minutes. That's an ugly workaround, but when the CEO gets NDRs, you get creative. :-) Any ideas? Thanks... *** Charlie Kaiser charl...@golden-eagle.org Kingman, AZ *** ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: DNS issue
Yeah; I saw that one, but it's a client-side setting only. I set that on the Exchange server, but it doesn't affect the DNS server's caching of outside lookups... And that's where the issue lies... *** Charlie Kaiser charl...@golden-eagle.org Kingman, AZ *** -Original Message- From: Jeff Bunting [mailto:bunting.j...@gmail.com] Sent: Thursday, April 30, 2009 6:52 AM To: NT System Admin Issues Subject: Re: DNS issue Here's an article about changing the negative caching: http://windowsitpro.com/article/articleid/48528/controlling-po sitive-and-negative-caching.html Jeff ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: DNS issue
Charlie, I developed a similar problem yesterday when I replaced the SMTP proxy on my Watchgaurd X500 with the SMTP filter. With just the proxy enabled, DNS resolves fine. But when I enable the SMTP filter, DNS queries run amok and the firewall logs fill up with DNS traffic. Web browsing slows to a crawl and exchange queues back up. I blame Watchguard, but I haven't been able to find a solution yet other than sticking with the Proxy which has to go for an unrelated reason. Bill -Original Message- From: Charlie Kaiser [mailto:charl...@golden-eagle.org] Sent: Thursday, April 30, 2009 7:22 AM To: NT System Admin Issues Subject: RE: DNS issue Yeah; I saw that one, but it's a client-side setting only. I set that on the Exchange server, but it doesn't affect the DNS server's caching of outside lookups... And that's where the issue lies... *** Charlie Kaiser charl...@golden-eagle.org Kingman, AZ *** -Original Message- From: Jeff Bunting [mailto:bunting.j...@gmail.com] Sent: Thursday, April 30, 2009 6:52 AM To: NT System Admin Issues Subject: Re: DNS issue Here's an article about changing the negative caching: http://windowsitpro.com/article/articleid/48528/controlling-po sitive-and-negative-caching.html Jeff ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: DNS issue
Hi Bill. We're going to try this today (method 2) and see what happens... http://support.microsoft.com/kb/828263 Seems like it attacks the problem from the server side... This is the DNS server-based change I was looking for... *** Charlie Kaiser charl...@golden-eagle.org Kingman, AZ *** -Original Message- From: Bill Songstad (WCUL) [mailto:administra...@waleague.org] Sent: Thursday, April 30, 2009 10:21 AM To: NT System Admin Issues Subject: RE: DNS issue Charlie, I developed a similar problem yesterday when I replaced the SMTP proxy on my Watchgaurd X500 with the SMTP filter. With just the proxy enabled, DNS resolves fine. But when I enable the SMTP filter, DNS queries run amok and the firewall logs fill up with DNS traffic. Web browsing slows to a crawl and exchange queues back up. I blame Watchguard, but I haven't been able to find a solution yet other than sticking with the Proxy which has to go for an unrelated reason. Bill ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
DNS issue
I'm running into a problem at one of our clients. W2K3 AD, running E2K3. When SMTP mail goes out, we're seeing DNS problems that result in NDRs. This type of problem has been documented here: http://social.technet.microsoft.com/forums/en-US/exchangesvrtransport/thread /178b88bb-bbdb-4cc2-896b-711fdeeb36d8/ Bottom line is that DNS lookups are failing, and mail is going to the A record for the remote domain instead of the MX record. Apparently this is by design with E2K3/W2K3 when a negative reply comes back. What I'm trying to find out is this: Is there a way to prevent server-side caching of negative replies to remote DNS queries? Or at least reduce their life to a few seconds? I've seen articles that show how to do it for the client side, but that doesn't affect the DNS server cache. We're using ISP forwarders (ATT). I think there may be a firewall (watchguard) or other external issue causing the DNS lookup failures. I'm trying to get the client to authorize that kind of troubleshooting, but in the meantime, we're looking for a fix from another angle. Right now, I've created an AT job to clear the DNS server cache every 5 minutes. That's an ugly workaround, but when the CEO gets NDRs, you get creative. :-) Any ideas? Thanks... *** Charlie Kaiser charl...@golden-eagle.org Kingman, AZ *** ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~