disjointed name space

  • Thread starter Thread starter ART
  • Start date Start date
A

ART

I just started working for this company. They have a
server that has all kinds of problems. for example the
servers fully qualified name is "server.pacbell.net" but
the domain is "hq.domain.com" The server I believe was a
windows nt 4.0 server upgraded to 2k...So I dont know If
it kept old settings or if somebody did this on purpose. I
know there is registry change I can do. But I was
wondering what the reprocussions were. Such as having to
readd all the workstations to the domain because the sids
become corrupt or what ever. And If the change causes too
many problems how to fix it to the way it was. All the
machines have dns errors...everybody logs on fine...I just
noticed all these dns errors while going through teh event
viewer. They only have one 2k server on the network as a
dc. And I have a feeling that with this problem I wont be
able to add one. I also noticed that I tried to add an Xp
box and it times out of the network after about 30 minutes
while loging into the domain but If i demote back to
workgroup it acceses resources fine. Thanks in advance
 
In
ART said:
I just started working for this company. They have a
server that has all kinds of problems. for example the
servers fully qualified name is "server.pacbell.net" but
the domain is "hq.domain.com" The server I believe was a
windows nt 4.0 server upgraded to 2k...So I dont know If
it kept old settings or if somebody did this on purpose. I
know there is registry change I can do. But I was
wondering what the reprocussions were. Such as having to
readd all the workstations to the domain because the sids
become corrupt or what ever. And If the change causes too
many problems how to fix it to the way it was. All the
machines have dns errors...everybody logs on fine...I just
noticed all these dns errors while going through teh event
viewer. They only have one 2k server on the network as a
dc. And I have a feeling that with this problem I wont be
able to add one. I also noticed that I tried to add an Xp
box and it times out of the network after about 30 minutes
while loging into the domain but If i demote back to
workgroup it acceses resources fine. Thanks in advance
Click to expand...

This is pretty common with NT4 upgrades, (disjointed namespace) it just so
happens that Microsoft has a fix for it they just released in a KB article.
There is a script on the page that you run to correct the Primary DNS
suffix.
257623 Domain Controller's Domain Name System Suffix Does Not Match Domain
Name
http://support.microsoft.com/?id=257623

We used to have to verify this and email the script but Microsoft has so
kindly released the script for publication.
 
Thanks Kevin.

I will try this, this weekend. Have you gotten any feed
back from people on how well this works or issue..etc. I
have had such a nightmare with windows profiles and sids
that Im a bit sketchy and want to be somewhat prepared.
None of the workstations are registered in dns for the
obvious reason. Would apply this fix then bump them off
the network or not allow them to log on. And would I then
have to manually create them in dns
 
In (e-mail address removed) <[email protected]>
posted a question
Then Kevin replied below:
Thanks Kevin.

I will try this, this weekend. Have you gotten any feed
back from people on how well this works or issue..etc. I
have had such a nightmare with windows profiles and sids
that Im a bit sketchy and want to be somewhat prepared.
None of the workstations are registered in dns for the
obvious reason. Would apply this fix then bump them off
the network or not allow them to log on. And would I then
have to manually create them in dns
Click to expand...

Yes, feed back has been excellent the script has fixed all but one I know of
and I think he had other issues beside the disjointed namespace.
It take about twenty seconds and a reboot.
Make sure the DC only points to its own address for DNS.

If you would post an ipconfig /all from the DC and one of the XP clients.
 
2K SERVER-

Microsoft Windows 2000 [Version 5.00.2195]
(C) Copyright 1985-2000 Microsoft Corp.

C:\WINNT\Profiles\Administrator>ipconfig /all

Windows 2000 IP Configuration

Host Name . . . . . . . . . . . . : hal2000
Primary DNS Suffix . . . . . . . : pacbell.net
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : Yes
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : pacbell.net

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : 3Com EtherLink
10/100 PCI For Comple
te PC Management NIC (3C905C-TX)
Physical Address. . . . . . . . . : 00-50-DA-5F-8C-
AA
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 192.168.1.1
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.1.254
DNS Servers . . . . . . . . . . . : 192.168.1.1
206.13.29.12
206.13.30.12
192.168.1.1
Primary WINS Server . . . . . . . : 192.168.1.1

C:\WINNT\Profiles\Administrator>
--------------------------------------------------------
XP MACHINE ON WORKGROUP NOT DOMAIN

Microsoft Windows XP [Version 5.1.2600]
(C) Copyright 1985-2001 Microsoft Corp.

C:\Documents and Settings\Administrator.JOSIE-
XP>IPCONFIG /ALL

Windows IP Configuration

Host Name . . . . . . . . . . . . : josie-xp
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek
RTL8139 Family PCI Fast Ethe
rnet NIC
Physical Address. . . . . . . . . : 00-0C-6E-C0-1C-
DE
Dhcp Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
IP Address. . . . . . . . . . . . : 192.168.1.63
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.1.254
DHCP Server . . . . . . . . . . . : 192.168.1.1
DNS Servers . . . . . . . . . . . : 192.168.1.1
Primary WINS Server . . . . . . . : 192.168.1.1
Lease Obtained. . . . . . . . . . : Thursday,
April 01, 2004 8:07:43 AM
Lease Expires . . . . . . . . . . : Thursday,
April 01, 2004 8:07:43 PM

C:\Documents and Settings\Administrator.JOSIE-XP>
------------------------------------------------------
WINDOWS 2000 PRO MACHINE ON DOMAIN

Microsoft Windows 2000 [Version 5.00.2195]
(C) Copyright 1985-2000 Microsoft Corp.

C:\Documents and
Settings\administrator.CURRIE.000>IPCONFIG /ALL

Windows 2000 IP Configuration

Host Name . . . . . . . . . . . . : bpctechadmin
Primary DNS Suffix . . . . . . . :
hq.currieenterprises.com
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . :
hq.currieenterprises.com

currieenterprises.com

Ethernet adapter big block workgroup:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek RTL8139
(A) PCI Fast Ethernet
Adapter #2
Physical Address. . . . . . . . . : 00-40-F4-8B-9F-
81
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 192.168.10.105
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . :
DNS Servers . . . . . . . . . . . : 192.168.10.10
Primary WINS Server . . . . . . . : 192.168.10.10

Ethernet adapter currie domain:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : NETGEAR
FA310TX Fast Ethernet Adapte
r (NGRPCI)
Physical Address. . . . . . . . . : 00-02-E3-08-2C-
43
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
IP Address. . . . . . . . . . . . : 192.168.1.29
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.1.254
DHCP Server . . . . . . . . . . . : 192.168.1.1
DNS Servers . . . . . . . . . . . : 192.168.1.1
Primary WINS Server . . . . . . . : 192.168.1.1
Lease Obtained. . . . . . . . . . : Thursday,
April 01, 2004 4:49:12 AM
Lease Expires . . . . . . . . . . : Thursday,
April 01, 2004 4:49:12 PM

C:\Documents and Settings\administrator.CURRIE.000>
 
In (e-mail address removed) <[email protected]>
posted a question
Then Kevin replied inline:
2K SERVER-

Microsoft Windows 2000 [Version 5.00.2195]
(C) Copyright 1985-2000 Microsoft Corp.

C:\WINNT\Profiles\Administrator>ipconfig /all

Windows 2000 IP Configuration

Host Name . . . . . . . . . . . . : hal2000
Primary DNS Suffix . . . . . . . : pacbell.net
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : Yes
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : pacbell.net<--Make sure this gets changed, also.

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : 3Com EtherLink
10/100 PCI For Comple
te PC Management NIC (3C905C-TX)
Physical Address. . . . . . . . . : 00-50-DA-5F-8C-
AA
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 192.168.1.1
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.1.254
DNS Servers . . . . . . . . . . . : 192.168.1.1
206.13.29.12<---This address must be removed
206.13.30.12<---This address must be removed
192.168.1.1
Primary WINS Server . . . . . . . : 192.168.1.1
Click to expand...

For internet access configure a forwarder in the DNS server properties, on
the forwarders tab.
323380 - HOW TO: Configure DNS for Internet Access in Windows Server 2003
http://support.microsoft.com/default.aspx?scid=kb;en-us;323380
--------------------------------------------------------
XP MACHINE ON WORKGROUP NOT DOMAIN

Microsoft Windows XP [Version 5.1.2600]
(C) Copyright 1985-2001 Microsoft Corp.

C:\Documents and Settings\Administrator.JOSIE-
IPCONFIG /ALL
Click to expand...

Windows IP Configuration

Host Name . . . . . . . . . . . . : josie-xp
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek
RTL8139 Family PCI Fast Ethe
rnet NIC
Physical Address. . . . . . . . . : 00-0C-6E-C0-1C-
DE
Dhcp Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
IP Address. . . . . . . . . . . . : 192.168.1.63
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.1.254
DHCP Server . . . . . . . . . . . : 192.168.1.1
DNS Servers . . . . . . . . . . . : 192.168.1.1
Primary WINS Server . . . . . . . : 192.168.1.1
Lease Obtained. . . . . . . . . . : Thursday,
April 01, 2004 8:07:43 AM
Lease Expires . . . . . . . . . . : Thursday,
April 01, 2004 8:07:43 PM

C:\Documents and Settings\Administrator.JOSIE-XP>
------------------------------------------------------
WINDOWS 2000 PRO MACHINE ON DOMAIN

Microsoft Windows 2000 [Version 5.00.2195]
(C) Copyright 1985-2000 Microsoft Corp.

C:\Documents and
Settings\administrator.CURRIE.000>IPCONFIG /ALL

Windows 2000 IP Configuration

Host Name . . . . . . . . . . . . : bpctechadmin
Primary DNS Suffix . . . . . . . :
Click to expand...
hq.currieenterprises.com<--------------------------Is this the AD Domain name?


Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . :
hq.currieenterprises.com

currieenterprises.com
Click to expand...



!_!_!_!_!_!_!_!_!_!_!_!_!_!_!_!_!_!_!_!_!_!_!_!_!_!_!_!_!_!_!_!_!_!_!_!_!_!_
!
THE BINDINGS ON THIS MACHINE ARE OUT OF ORDER!
Right click on Network places, choose properties, in the Advanced Menu
select Advanced Settings. Move the Ethernet adapter currie domain: adapter
to the top of the connections list.
The bindings must be correct so GPOs can be properly applied.
Ethernet adapter big block workgroup:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek RTL8139
(A) PCI Fast Ethernet
Adapter #2
Physical Address. . . . . . . . . : 00-40-F4-8B-9F-
81
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 192.168.10.105
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . :
Click to expand...
DNS Servers . . . . . . . . . . . : 192.168.10.10<----What is this
Click to expand...
DNS server?
Do not use a DNS server that does not have a zone for the AD domain in any
position on any NIC of an AD Domain member.
825036 - Best practices for DNS client settings in Windows 2000 Server and
in Windows Server 2003
http://support.microsoft.com/default.aspx?scid=kb;en-us;825036
Primary WINS Server . . . . . . . : 192.168.10.10

Ethernet adapter currie domain:<----------------------This connection must
Click to expand...
be moved to the default position
 
192.168.1.1
For internet access configure a forwarder in the DNS
Click to expand...
server properties, on OK, I HAVE FORWARDING ALREADY
the forwarders tab.
323380 - HOW TO: Configure DNS for Internet Access in Windows Server 2003
http://support.microsoft.com/default.aspx?scid=kb;en- us;323380
this the AD Domain
name? YES


_!_!_!_!_!_!_!_!_!_
!
THE BINDINGS ON THIS MACHINE ARE OUT OF ORDER!
Right click on Network places, choose properties, in the Advanced Menu
select Advanced Settings. Move the Ethernet adapter currie domain: adapter
to the top of the connections list.
The bindings must be correct so GPOs can be properly applied. OK, THANKS
192.168.10.10<----What is this
DNS server? This connection must
be moved to the default position OK
Click to expand...
THANKS KEVIN. THE .10.10 DNS SERVER IS A WEB SERVER. ITS
PART OF A SEPERATE COMPANY IN OUR OFFICE THAT DOES HOSTS
WEB SITES AND DOES EMAIL. THE WEB GUYS AND PROGRAMMERS IN
OUR COMPANY COMPLAINED ABOUT THE FTP SPEED TO THE SERVER
THROUGH THE INTERNET. SO I CONNECTED THAT SERVER WHICH IS
IN A WORKGROUP OF ITS OWN ON ITS OWN T1 TO 3 MACHINES IN
OUR OFFICE WITH A HUB FROM THE SERVER TO THE 3 SELECT
COMPUTERS. ITS A LOW BUDGET COMPANY AND THEY DONT WANT TO
DO THE WHOLE POINT TO POINT AND SITE TRUSTING THING. SO I
THOUGHT RUNNING A HUB ON ITS OWN SUBNET AND DIRECTLY TO
SEPERATE NIC'S ON THE 3 MACHINES WOULD BE OK. IS THIS BAD ?
THANKS AGAIN FOR ALL YOUR HELP.
 
kevin you noted that on the dns suffix search list for the
server to make sure it gets changed. Will this be changed
in the script i run or will i have to do it manually.
 
In (e-mail address removed) <[email protected]>
posted a question
Then Kevin replied below:
kevin you noted that on the dns suffix search list for the
server to make sure it gets changed. Will this be changed
in the script i run or will i have to do it manually.
Click to expand...

Not sure I've never personally ran the script. It's not a big deal to change
it though.
 
In
Kevin D. Goodknecht said:
In (e-mail address removed)


Not sure I've never personally ran the script. It's not a big deal to
change it though.

--
Best regards,
Kevin D4 Dad Goodknecht Sr. [MVP]
Hope This Helps
============================
Click to expand...


I've ran the script before. It puts in the appropriate search suffixes based
on the Primary DNS Suffix.

--
Regards,
Ace

Please direct all replies to the newsgroup so all can benefit.
This posting is provided "AS-IS" with no warranties and confers no
rights.

Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MVP
Microsoft Windows MVP - Active Directory
 
In (e-mail address removed) <[email protected]>
posted a question
Then Kevin replied below:
THANKS KEVIN. THE .10.10 DNS SERVER IS A WEB SERVER. ITS
PART OF A SEPERATE COMPANY IN OUR OFFICE THAT DOES HOSTS
WEB SITES AND DOES EMAIL. THE WEB GUYS AND PROGRAMMERS IN
OUR COMPANY COMPLAINED ABOUT THE FTP SPEED TO THE SERVER
THROUGH THE INTERNET. SO I CONNECTED THAT SERVER WHICH IS
IN A WORKGROUP OF ITS OWN ON ITS OWN T1 TO 3 MACHINES IN
OUR OFFICE WITH A HUB FROM THE SERVER TO THE 3 SELECT
COMPUTERS. ITS A LOW BUDGET COMPANY AND THEY DONT WANT TO
DO THE WHOLE POINT TO POINT AND SITE TRUSTING THING. SO I
THOUGHT RUNNING A HUB ON ITS OWN SUBNET AND DIRECTLY TO
SEPERATE NIC'S ON THE 3 MACHINES WOULD BE OK. IS THIS BAD ?
THANKS AGAIN FOR ALL YOUR HELP.
Click to expand...

I can almost guarantee problems since this is a member of an AD domain. You
would be better to have secondary zones for the zones on it added to the AD
DNS server and vice-versa if necessary.
 
thanks again kevin. I dont know If it matters or not. But
the web server is not running ad its in its own workgroup.
I dont know much about web. But we are running imail and
iis on it. They are hosting like 13 different websites. I
have wanted to set it up on its own ad but dont know if
that will screw any thing up. Since the company has had
like 6 different techs in the past 2 years the server
seems kinda hokey to me. I read instructions on imail and
its not set up the way that imail states. Anyways im
getting a little off track. My main questions is I guess
you stated to make zones. But would that mean that the web
server would need to be running ad. We are trying to keep
the networks seperate with the exception of the 3
computers accessing it. I dont want to make a loop back.
SInce we have a dsl connection and the web server has its
own t1.
 
In (e-mail address removed) <[email protected]>
posted a question
Then Kevin replied below:
thanks again kevin. I dont know If it matters or not. But
the web server is not running ad its in its own workgroup.
I dont know much about web. But we are running imail and
iis on it. They are hosting like 13 different websites. I
have wanted to set it up on its own ad but dont know if
that will screw any thing up. Since the company has had
like 6 different techs in the past 2 years the server
seems kinda hokey to me. I read instructions on imail and
its not set up the way that imail states. Anyways im
getting a little off track. My main questions is I guess
you stated to make zones. But would that mean that the web
server would need to be running ad. We are trying to keep
the networks seperate with the exception of the 3
computers accessing it. I dont want to make a loop back.
SInce we have a dsl connection and the web server has its
own t1.
Click to expand...

No, the web server does not need AD and I wouldn't recommend setting AD up
on it.

It has a DNS server with zones for the web sites it hosts, correct?

Simply set those zones up to allow zone transfers to the AD DNS server, then
create secondary zones of its zones on the AD DNS server. This will allow
the AD DNS server to resolve its zones without having its DNS server listed
on any of the AD Member's NICs.
 
I dont know much about web. But I think they set up dns
with the companies they register the domain names with
like godady or whatever. They make a host entry to point
to their external ip for that website as well as a host
and mx entry for mail. I dont think they have a DNS server
that they use. I know they need one because one of the web
guys always tells me. But I dont even know where to start.
Is there a way of having your own dns server for the
internet.
 
The only reason these three machines want to attach to the
web server is because ftping over the internet to this web
server is so slow for some reason. All they use it for is
to transfer files and pictures. So should I just make it
so they not use the dns from the web server or do they
need that to attach to the server
 
Back
Top