Hello, I recently introduced a Windows server 2008 R2 dc into a small environment, to replace a windows server 2003 dc. in a remote office (with a site-to-site VPN set up), I get erratic DNS responses, where sometimes DNS just works, but other times it does not. I'm not sur if it's DNS or not, but nslookup will resolve a hostname but I still cannot access (ping) it. C:\>ping host1 Ping request could not find host host1. Please check the name and try again. C:\>nslookup host1 Server: dc.domainname.local Address: 192.168.28.50 Name: host1.domainname.local Address: 192.168.28.4 I can ping the IP address but not when I use its hostname. Any thoughts? Thanks, Ryan

Can you ping an FQDN of host1 (host1.domainname.local)? Show the output of "pathping 192.168.28.50"

I get the same result: could not find host please check the name and try again.

Tracing route to DOMAIN[192.168.28.50] over a maximum of 30 hops: 0 localhost.domain.local [192.168.253.165] 1 DOMAIN [192.168.28.50] Computing statistics for 25 seconds... Source to Here This Node/Link Hop RTT Lost/Sent = Pct Lost/Sent = Pct Address 0 localhost.domain.local [192.168.253.165] 2/ 100 = 2% | 1 208ms 2/ 100 = 2% 0/ 100 = 0% DOMAIN [192.168.28.50] Trace complete.

Hi can you try ping -4 host1 Renato Kurti CCNA,CCNP Security,CCAI,MCP,MCTS,MCITP:EA

same result...

Hello, if i understand you correct the new OS DC is not pingable, so is the firewall enabled? Then what you see is normal as ping echo requests are blocked from the Windows server 2008 R2.Best regards Meinolf Weber MVP, MCP, MCTS Microsoft MVP - Directory Services My Blog: http://msmvps.com/blogs/mweber/ Disclaimer: This posting is provided "AS IS" with no warranties or guarantees , and confers no rights.

No, I can ping the IP address, but not the host name. But nslookup resolves the hostname. I can't ping any host with its hostname but can look it up successfully with nslookup. the server (DC) is not firewalled. Sometimes it won't resolve names, othertimes it will. It's random and there's nothing in the event viewer for the DNS server except for some 5501 warnings.

Hello, please post an unedited ipconfig /all from the DC/DNS servers a client and also the following DNSLInt output: dnslint /ad /s "DCipaddress" (http://support.microsoft.com/kb/321045)Best regards Meinolf Weber MVP, MCP, MCTS Microsoft MVP - Directory Services My Blog: http://msmvps.com/blogs/mweber/ Disclaimer: This posting is provided "AS IS" with no warranties or guarantees , and confers no rights.

IPCONFIG: Windows IP Configuration Host Name . . . . . . . . . . . . : nycwpinfr01 Primary Dns Suffix . . . . . . . : redscout.local Node Type . . . . . . . . . . . . : Hybrid IP Routing Enabled. . . . . . . . : No WINS Proxy Enabled. . . . . . . . : No DNS Suffix Search List. . . . . . : redscout.local Ethernet adapter Local Area Connection: Connection-specific DNS Suffix . : Description . . . . . . . . . . . : Broadcom BCM5709C NetXtreme II GigE (NDIS VBD Client) Physical Address. . . . . . . . . : D4-BE-D9-B4-50-28 DHCP Enabled. . . . . . . . . . . : No Autoconfiguration Enabled . . . . : Yes Link-local IPv6 Address . . . . . : fe80::6d63:d23d:89ef:5b3c%11(Preferred) IPv4 Address. . . . . . . . . . . : 192.168.28.50(Preferred) Subnet Mask . . . . . . . . . . . : 255.255.255.0 Default Gateway . . . . . . . . . : 192.168.28.1 DHCPv6 IAID . . . . . . . . . . . : 248823513 DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-16-B8-AC-F1-D4-BE-D9-B4-50-28 DNS Servers . . . . . . . . . . . : 192.168.28.50 NetBIOS over Tcpip. . . . . . . . : Enabled Tunnel adapter isatap.{D73902F2-E65B-4D3D-8A0E-D75AE8F79B07}: Media State . . . . . . . . . . . : Media disconnected Connection-specific DNS Suffix . : Description . . . . . . . . . . . : Microsoft ISATAP Adapter Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0 DHCP Enabled. . . . . . . . . . . : No Autoconfiguration Enabled . . . . : Yes Tunnel adapter Teredo Tunneling Pseudo-Interface: Media State . . . . . . . . . . . : Media disconnected Connection-specific DNS Suffix . : Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0 DHCP Enabled. . . . . . . . . . . : No Autoconfiguration Enabled . . . . : Yes DSLINT: DNSLint Report System Date: Thu Feb 16 15:05:03 2012 Command run: dnslint\dnslint.exe /ad /s 192.168.28.50 Root of Active Directory Forest: redscout.local Active Directory Forest Replication GUIDs Found: DC: NTSERVER GUID: 6cd7f075-8c3a-43ef-90c1-b2e111ecf196 DC: NYCWPINFR01 GUID: 2c8782d2-5839-4f85-b6e7-b685f4b189d3 Total GUIDs found: 2 The following 2DNS servers were checked for records related to AD forest replication: Additional authoritative (NS) records from server: ntserver.redscout.local Unknown nycwpinfr01.redscout.local Unknown Alias (CNAME) and glue (A) records for forest GUIDs from server: CNAME: 6cd7f075-8c3a-43ef-90c1-b2e111ecf196._msdcs.redscout.local Alias: ntserver.redscout.local Glue: 192.168.28.2 CNAME: 2c8782d2-5839-4f85-b6e7-b685f4b189d3._msdcs.redscout.local Alias: nycwpinfr01.redscout.local Glue: 192.168.28.50 Total number of CNAME records found on this server: 2 Total number of CNAME records missing on this server: 0 Total number of glue (A) records this server could not find: 0 DNS server: ntserver.redscout.local IP Address: 192.168.28.2 UDP port 53 responding to queries: YES TCP port 53 responding to queries: Not tested Answering authoritatively for domain: YES SOA record data from server: Authoritative name server: nycwpinfr01.redscout.local Hostmaster: admin Zone serial number: 118022 Zone expires in: 1.00 day(s) Refresh period: 900 seconds Retry delay: 600 seconds Default (minimum) TTL: 3600 seconds Additional authoritative (NS) records from server: ntserver.redscout.local Unknown nycwpinfr01.redscout.local Unknown Alias (CNAME) and glue (A) records for forest GUIDs from server: CNAME: 6cd7f075-8c3a-43ef-90c1-b2e111ecf196._msdcs.redscout.local Alias: ntserver.redscout.local Glue: 192.168.28.2 CNAME: 2c8782d2-5839-4f85-b6e7-b685f4b189d3._msdcs.redscout.local Alias: nycwpinfr01.redscout.local Glue: 192.168.28.50 Total number of CNAME records found on this server: 2 Total number of CNAME records missing on this server: 0 Total number of glue (A) records this server could not find: 0 Legend: warning, error DNSLint developed by Tim Rains DNS server: nycwpinfr01.redscout.local IP Address: 192.168.28.50 UDP port 53 responding to queries: YES TCP port 53 responding to queries: Not tested Answering authoritatively for domain: YES SOA record data from server: Authoritative name server: nycwpinfr01.redscout.local Hostmaster: admin Zone serial number: 118022 Zone expires in: 1.00 day(s) Refresh period: 900 seconds Retry delay: 600 seconds Default (minimum) TTL: 3600 seconds

Node Type . . . . . . . . . . . . : Hybrid >>querries wins first and then it querries dns do u use wins in ur environment ??Gopi Kiran |Facebook| This posting is provided AS IS with no warranties,and confers no rights.

I do not.

Even if it queries WINS first and then went to DNS it should still provide a DNS result. And the fact that it is intermittent really baffles me.

You have any ipv6 infrastructure in place? if not ,try disabling it just for a test Renato Kurti CCNA,CCNP Security,CCAI,MCP,MCTS,MCITP:EA

Hello, still waiting for the other requested output from all DC/DNS servers and a client. The existing output looks ok, except why didn't you use the other DNS server also on the NIC? Best regards Meinolf Weber MVP, MCP, MCTS Microsoft MVP - Directory Services My Blog: http://msmvps.com/blogs/mweber/ Disclaimer: This posting is provided "AS IS" with no warranties or guarantees , and confers no rights.

I'm trying to get rid of the old DC so I don't want to add it to dhcp. Here is the ipconfig from a client: Windows IP Configuration Host Name . . . . . . . . . . . . : NY-R9HH7GM-P Primary Dns Suffix . . . . . . . : redscout.local Node Type . . . . . . . . . . . . : Hybrid IP Routing Enabled. . . . . . . . : No WINS Proxy Enabled. . . . . . . . : No DNS Suffix Search List. . . . . . : redscout.local Wireless LAN adapter Wireless Network Connection: Connection-specific DNS Suffix . : Description . . . . . . . . . . . : Intel(R) Centrino(R) Advanced-N 6205 Physical Address. . . . . . . . . : 08-11-96-AE-64-E8 DHCP Enabled. . . . . . . . . . . : Yes Autoconfiguration Enabled . . . . : Yes Link-local IPv6 Address . . . . . : fe80::78e7:ac2b:dfdd:48d6%17(Preferred) IPv4 Address. . . . . . . . . . . : 192.168.253.165(Preferred) Subnet Mask . . . . . . . . . . . : 255.255.255.0 Lease Obtained. . . . . . . . . . : Thursday, February 16, 2012 8:43:47 AM Lease Expires . . . . . . . . . . : Friday, February 17, 2012 11:41:42 AM Default Gateway . . . . . . . . . : 192.168.253.1 DHCP Server . . . . . . . . . . . : 192.168.253.1 DHCPv6 IAID . . . . . . . . . . . : 369627542 DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-16-42-6B-C4-F0-DE-F1-A2-57-CE DNS Servers . . . . . . . . . . . : 192.168.28.50 208.71.92.201 208.71.92.202 NetBIOS over Tcpip. . . . . . . . : Enabled Ethernet adapter Local Area Connection: Media State . . . . . . . . . . . : Media disconnected Connection-specific DNS Suffix . : Description . . . . . . . . . . . : Intel(R) 82579LM Gigabit Network Connection Physical Address. . . . . . . . . : F0-DE-F1-A2-57-CE DHCP Enabled. . . . . . . . . . . : Yes Autoconfiguration Enabled . . . . : Yes Tunnel adapter isatap.{92D410E5-627F-4F85-8F69-AC996B2A49EF}: Media State . . . . . . . . . . . : Media disconnected Connection-specific DNS Suffix . : Description . . . . . . . . . . . : Microsoft ISATAP Adapter Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0 DHCP Enabled. . . . . . . . . . . : No Autoconfiguration Enabled . . . . : Yes Tunnel adapter isatap.{332BEB0E-A9FC-4257-A299-C99DECF75321}: Media State . . . . . . . . . . . : Media disconnected Connection-specific DNS Suffix . : Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2 Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0 DHCP Enabled. . . . . . . . . . . : No Autoconfiguration Enabled . . . . : Yes Tunnel adapter Local Area Connection* 12: Media State . . . . . . . . . . . : Media disconnected Connection-specific DNS Suffix . : Description . . . . . . . . . . . : Microsoft 6to4 Adapter Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0 DHCP Enabled. . . . . . . . . . . : No Autoconfiguration Enabled . . . . : Yes Tunnel adapter Teredo Tunneling Pseudo-Interface: Media State . . . . . . . . . . . : Media disconnected Connection-specific DNS Suffix . : Description . . . . . . . . . . . : Microsoft Teredo Tunneling Adapter Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0 DHCP Enabled. . . . . . . . . . . : No Autoconfiguration Enabled . . . . : Yes

any Round Robin setting enabled on the DNS server ?? I would suggest to flush the DNS resolver cache.. If ping by IP address and by name fail,sometimes the problem is with network connectivity too. Please use Network Monitor to capture the package for the nslookup and Ping individually, then upload the log to Skydrive and post the link here. Download Network Monitor at http://www.microsoft.com/download/en/details.aspx?id=4865 Gopi Kiran |Facebook| This posting is provided AS IS with no warranties,and confers no rights.

https://skydrive.live.com/redir.aspx?cid=18725719f362b8cd&resid=18725719F362B8CD!107&parid=18725719F362B8CD!105 I didn't enable round robin.

Hello, on the client, also on all other domain machines, please remove the external DNS servers 208.71.92.201 and 208.71.92.202, use only domain DNS servers on the NIC and configure instead the Forwarders on the DNS server proeprties in the DNS management console.Best regards Meinolf Weber MVP, MCP, MCTS Microsoft MVP - Directory Services My Blog: http://msmvps.com/blogs/mweber/ Disclaimer: This posting is provided "AS IS" with no warranties or guarantees , and confers no rights.

any updates for your issue?Please remember to click Mark as Answer on the post that helps you, and to click Unmark as Answer if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread.