Thanks for the reply. I ran Netdiag as you requested
(first /fix then test:dns), here is the results:
Gathering IPX configuration information.
Querying status of the Netcard drivers... Passed
Testing Domain membership... Passed
Gathering NetBT configuration information.
Testing DNS
[WARNING]: The DNS registration for 'hou-
dc01.us.ad.ep.local' is correct only on some DNS servers.
Please wait 15 min for replication and
run the test again.
PASS - All the DNS entries for DC are registered on
DNS server '10.55.X.10' and other DCs also have some of
the names registered.
Tests complete.
Computer Name: US-HOU-DC01
DNS Host Name: us-hou-dc01.us.ad.ep.corp.local
DNS Domain Name: us.ad.ep.corp.local
System info : Windows 2000 Server (Build 2195)
Processor : x86 Family 15 Model 2 Stepping 2,
GenuineIntel
Hotfixes :
-SNIPPED
Netcard queries test . . . . . . . : Passed
Information of Netcard drivers:
-------------------------------------------------------
--------------------
Description: HP Network Team #1
Device: \DEVICE\{20AEE8E9-368B-4987-A6E7-7B9F57ABB2EC}
Media State: Connected
Device State: Connected
Connect Time: 24 days, 15:49:38
Media Speed: 2000 Gbps
Packets Sent: 150959596
Bytes Sent (Optional): 0
Packets Received: 146706550
Directed Pkts Recd (Optional): 146706550
Bytes Received (Optional): 0
Directed Bytes Recd (Optional): 0
-------------------------------------------------------
--------------------
Description: HP NC7770 Gigabit Server Adapter #2
Device: \DEVICE\{F18D277A-AB9F-40EB-BAE7-F519EE50FD34}
Media State: Connected
Device State: Connected
Connect Time: 24 days, 15:49:42
Media Speed: 1000 Gbps
Packets Sent: 47359992
Bytes Sent (Optional): 0
Packets Received: 2061168
Directed Pkts Recd (Optional): 57573
Bytes Received (Optional): 0
Directed Bytes Recd (Optional): 0
-------------------------------------------------------
--------------------
Description: HP NC7770 Gigabit Server Adapter
Device: \DEVICE\{817C90B0-BAE4-4DDD-A8A7-27BCC6EDE7AF}
Media State: Connected
Device State: Connected
Connect Time: 24 days, 15:49:45
Media Speed: 1000 Gbps
Packets Sent: 103675454
Bytes Sent (Optional): 0
Packets Received: 148064693
Directed Pkts Recd (Optional): 145993719
Bytes Received (Optional): 0
Directed Bytes Recd (Optional): 0
-------------------------------------------------------
--------------------
[PASS] - At least one netcard is in the 'Connected'
state.
Per interface results:
Adapter : TOTAL_LAN
Adapter ID . . . . . . . . : {20AEE8E9-368B-4987-
A6E7-7B9F57ABB2EC}
Netcard queries test . . . : Passed
Global results:
Domain membership test . . . . . . : Passed
Machine is a . . . . . . . . . : Domain Controller
Netbios Domain name. . . . . . : USA
Dns domain name. . . . . . . . : us.ad.ep.local
Dns forest name. . . . . . . . : ad.ep.local
Domain Guid. . . . . . . . . . : {9BE8FF51-0254-41F8-
A9C1-C6308950D9DB}
Domain Sid . . . . . . . . . . : S-1-5-21-1417001333-
776561741-839522115
Logon User . . . . . . . . . . : XXX
Logon Domain . . . . . . . . . : USA
NetBT transports test. . . . . . . : Passed
List of NetBt transports currently configured:
NetBT_Tcpip_{20AEE8E9-368B-4987-A6E7-7B9F57ABB2EC}
1 NetBt transport currently configured.
DNS test . . . . . . . . . . . . . : Passed
Interface {20AEE8E9-368B-4987-A6E7-7B9F57ABB2EC}
DNS Domain:
DNS Servers: 10.55.X.10
IP Address: 10.55.X.10
Expected registration with PDN (primary DNS domain
name):
Hostname: hou-dc01.us.ad.ep.local.
Authoritative zone: us.ad.ep.local.
Primary DNS server: hou-dc01.us.ad.ep.local
10.55.X.10
Authoritative NS:10.55.X.136 10.55.X.102
10.55.X.12 10.55.X.11 10.55.X.103 10.55.X.10 10.55.X.15
10.55.X.16
Verify DNS registration:
Name: us-hou-dc01.us.ad.ep.local
Expected IP: 10.55.X.10
Server 10.55.X.136: NO_ERROR
Server 10.55.X.102: NO_ERROR
Server 10.55.X.12: NO_ERROR
Server 10.55.X.11: NO_ERROR
Server 10.55.167.103: Error 9554
DNS_ERROR_TRY_AGAIN_LATER (UNIX box, acting as secondary
DNS for zone)
Server 10.55.X.10: NO_ERROR
Server 10.55.X.15: NO_ERROR
[WARNING]: The DNS registration
for 'hou-dc01.us.ad.ep.local' is correct only on some DNS
servers.
Please wait 15 min for replication and
run the test again.
Check the DNS registration for DCs entries on DNS
server '10.55.X.10'
The Record is different on DNS server '10.55.X.10'.
DNS server has more than one entries for this name,
usually this means there are multiple DCs for this domain.
Your DC entry is one of them on DNS server '10.55.X.10',
no need to re-register.
+------------------------------------------------------+
The record on your DC is:
DNS NAME = _ldap._tcp.us.ad.ep.local.
DNS DATA =
SRV 0 100 389 hou-dc01.us.ad.ep.local.
The record on DNS server 10.55.X.10 is:
DNS NAME = _ldap._tcp.us.ad.ep.local
DNS DATA =
SRV 0 100 389 hou-dc02.us.ad.ep.local
SRV 0 100 389 hou-dc01.us.ad.ep.local
SRV 0 100 389 mca-dc01.us.ad.ep.local
SRV 0 100 389 mat-dc01.us.ad.ep.local
SRV 0 100 389 cal-dc01.us.ad.ep.local
SRV 0 100 389 hou-dc03.us.ad.ep.local
+------------------------------------------------------+
The Record is different on DNS server '10.55.X.10'.
DNS server has more than one entries for this name,
usually this means there are multiple DCs for this domain.
Your DC entry is one of them on DNS server '10.55.X.10',
no need to re-register.
+------------------------------------------------------+
The record on your DC is:
DNS NAME = _ldap._tcp.FRPAR._sites.us.ad.ep.local.
DNS DATA =
SRV 0 100 389 hou-dc01.us.ad.ep.local.
The record on DNS server 10.55.X.10 is:
DNS NAME = _ldap._tcp.FRPAR._sites.us.ad.ep.local
DNS DATA =
SRV 0 100 389 hou-dc01.us.ad.ep.local
SRV 0 100 389 hou-dc02.us.ad.ep.local
SRV 0 100 389 hou-dc03.us.ad.ep.local
+------------------------------------------------------+
The Record is different on DNS server '10.55.X.10'.
DNS server has more than one entries for this name,
usually this means there are multiple DCs for this domain.
Your DC entry is one of them on DNS server '10.55.X.10',
no need to re-register.
+------------------------------------------------------+
The record on your DC is:
DNS NAME = _ldap._tcp.USHOU._sites.us.ad.ep.local.
DNS DATA =
SRV 0 100 389 hou-dc01.us.ad.ep.local.
The record on DNS server 10.55.X.10 is:
DNS NAME = _ldap._tcp.USHOU._sites.us.ad.ep.local
DNS DATA =
SRV 0 100 389 hou-dc01.us.ad.ep.local
SRV 0 100 389 hou-dc02.us.ad.ep.local
SRV 0 100 389 hou-dc03.us.ad.ep.local
+------------------------------------------------------+
The Record is different on DNS server '10.55.X.10'.
DNS server has more than one entries for this name,
usually this means there are multiple DCs for this domain.
Your DC entry is one of them on DNS server '10.55.X.10',
no need to re-register.
+------------------------------------------------------+
The record on your DC is:
DNS NAME = _ldap._tcp.9be8ff51-0254-41f8-a9c1-
c6308950d9db.domains._msdcs.ad.ep.local.
DNS DATA =
SRV 0 100 389 hou-dc01.us.ad.ep.local.
The record on DNS server 10.55.X.10 is:
DNS NAME = _ldap._tcp.9be8ff51-0254-41f8-a9c1-
c6308950d9db.domains._msdcs.ad.ep.local
DNS DATA =
SRV 0 100 389 hou-dc03.us.ad.ep.local
SRV 0 100 389 hou-dc01.us.ad.ep.local
SRV 0 100 389 hou-dc02.us.ad.ep.local
SRV 0 100 389 mca-dc01.us.ad.ep.local
SRV 0 100 389 cal-dc01.us.ad.ep.local
+------------------------------------------------------+
The Record is correct on DNS server '10.55.X.10'.
The Record is different on DNS server '10.55.X.10'.
DNS server has more than one entries for this name,
usually this means there are multiple DCs for this domain.
Your DC entry is one of them on DNS server '10.55.X.10',
no need to re-register.
+------------------------------------------------------+
The record on your DC is:
DNS NAME = _kerberos._tcp.dc._msdcs.us.ad.ep.local.
DNS DATA =
SRV 0 100 88 us-hou-dc01.us.ad.ep.local.
The record on DNS server 10.55.X.10 is:
DNS NAME = _kerberos._tcp.dc._msdcs.us.ad.ep.local
DNS DATA =
SRV 0 100 88 hou-dc01.us.ad.ep.local
SRV 0 100 88 mca-dc01.us.ad.ep.local
SRV 0 100 88 hou-dc02.us.ad.ep.local
SRV 0 100 88 mat-dc01.us.ad.ep.local
SRV 0 100 88 cal-dc01.us.ad.ep.local
SRV 0 100 88 hou-dc03.us.ad.ep.local
+------------------------------------------------------+
The Record is different on DNS server '10.55.X.10'.
DNS server has more than one entries for this name,
usually this means there are multiple DCs for this domain.
Your DC entry is one of them on DNS server '10.55.X.10',
no need to re-register.
+------------------------------------------------------+
The record on your DC is:
DNS NAME =
_kerberos._tcp.FRPAR._sites.dc._msdcs.us.ad.ep.local.
DNS DATA =
SRV 0 100 88 hou-dc01.us.ad.ep.local.
The record on DNS server 10.55.X.10 is:
DNS NAME =
_kerberos._tcp.FRPAR._sites.dc._msdcs.us.ad.ep.corp.local
DNS DATA =
SRV 0 100 88 hou-dc03.us.ad.ep.local
SRV 0 100 88 hou-dc02.us.ad.ep.local
SRV 0 100 88 hou-dc01.us.ad.ep.local
+------------------------------------------------------+
The Record is different on DNS server '10.55.X.10'.
DNS server has more than one entries for this name,
usually this means there are multiple DCs for this domain.
Your DC entry is one of them on DNS server '10.55.X.10',
no need to re-register.
+------------------------------------------------------+
The record on your DC is:
DNS NAME =
_kerberos._tcp.USHOU._sites.dc._msdcs.us.ad.ep.local.
DNS DATA =
SRV 0 100 88 hou-dc01.us.ad.ep.local.
The record on DNS server 10.55.X.10 is:
DNS NAME =
_kerberos._tcp.USHOU._sites.dc._msdcs.us.ad.ep.local
DNS DATA =
SRV 0 100 88 hou-dc03.us.ad.ep.local
SRV 0 100 88 hou-dc02.us.ad.ep.local
SRV 0 100 88 hou-dc01.us.ad.ep.local
+------------------------------------------------------+
The Record is different on DNS server '10.55.X.10'.
DNS server has more than one entries for this name,
usually this means there are multiple DCs for this domain.
Your DC entry is one of them on DNS server '10.55.X.10',
no need to re-register.
+------------------------------------------------------+
The record on your DC is:
DNS NAME = _ldap._tcp.dc._msdcs.us.ad.ep.local.
DNS DATA =
SRV 0 100 389 hou-dc01.us.ad.ep.local.
The record on DNS server 10.55.X.10 is:
DNS NAME = _ldap._tcp.dc._msdcs.us.ad.ep.local
DNS DATA =
SRV 0 100 389 hou-dc01.us.ad.ep.local
SRV 0 100 389 mca-dc01.us.ad.ep.local
SRV 0 100 389 hou-dc02.us.ad.ep.local
SRV 0 100 389 mat-dc01.us.ad.ep.local
SRV 0 100 389 cal-dc01.us.ad.ep.local
SRV 0 100 389 hou-dc03.us.ad.ep.local
+------------------------------------------------------+
The Record is different on DNS server '10.55.X.10'.
DNS server has more than one entries for this name,
usually this means there are multiple DCs for this domain.
Your DC entry is one of them on DNS server '10.55.X.10',
no need to re-register.
+------------------------------------------------------+
The record on your DC is:
DNS NAME =
_ldap._tcp.FRPAR._sites.dc._msdcs.us.ad.ep.local.
DNS DATA =
SRV 0 100 389 hou-dc01.us.ad.ep.local.
The record on DNS server 10.55.X.10 is:
DNS NAME = _ldap._tcp.FRPAR._sites.dc._msdcs.us.ad.ep.local
DNS DATA =
SRV 0 100 389 hou-dc03.us.ad.ep.local
SRV 0 100 389 hou-dc02.us.ad.ep.local
SRV 0 100 389 hou-dc01.us.ad.ep.local
+------------------------------------------------------+
The Record is different on DNS server '10.55.X.10'.
DNS server has more than one entries for this name,
usually this means there are multiple DCs for this domain.
Your DC entry is one of them on DNS server '10.55.X.10',
no need to re-register.
+------------------------------------------------------+
The record on your DC is:
DNS NAME =
_ldap._tcp.USHOU._sites.dc._msdcs.us.ad.ep.local.
DNS DATA =
SRV 0 100 389 us-hou-dc01.us.ad.ep.local.
The record on DNS server 10.55.X.10 is:
DNS NAME = _ldap._tcp.USHOU._sites.dc._msdcs.us.ad.ep.local
DNS DATA =
SRV 0 100 389 hou-dc03.us.ad.ep.local
SRV 0 100 389 hou-dc02.us.ad.ep.local
SRV 0 100 389 hou-dc01.us.ad.ep.local
+------------------------------------------------------+
The Record is different on DNS server '10.55.X.10'.
DNS server has more than one entries for this name,
usually this means there are multiple DCs for this domain.
Your DC entry is one of them on DNS server '10.55.X.10',
no need to re-register.
+------------------------------------------------------+
The record on your DC is:
DNS NAME = _kerberos._tcp.us.ad.ep.local.
DNS DATA =
SRV 0 100 88 hou-dc01.us.ad.ep.local.
The record on DNS server 10.55.X.10 is:
DNS NAME = _kerberos._tcp.us.ad.ep.local
DNS DATA =
SRV 0 100 88 hou-dc01.us.ad.ep.local
SRV 0 100 88 mca-dc01.us.ad.ep.local
SRV 0 100 88 hou-dc02.us.ad.ep.local
SRV 0 100 88 mat-dc01.us.ad.ep.local
SRV 0 100 88 cal-dc01.us.ad.ep.local
SRV 0 100 88 hou-dc03.us.ad.ep.local
+------------------------------------------------------+
The Record is different on DNS server '10.55.X.10'.
DNS server has more than one entries for this name,
usually this means there are multiple DCs for this domain.
Your DC entry is one of them on DNS server '10.55.X.10',
no need to re-register.
+------------------------------------------------------+
The record on your DC is:
DNS NAME = _kerberos._tcp.FRPAR._sites.us.ad.ep.local.
DNS DATA =
SRV 0 100 88 hou-dc01.us.ad.ep.local.
The record on DNS server 10.55.X.10 is:
DNS NAME = _kerberos._tcp.FRPAR._sites.us.ad.ep.local
DNS DATA =
SRV 0 100 88 hou-dc03.us.ad.ep.local
SRV 0 100 88 hou-dc02.us.ad.ep.local
SRV 0 100 88 hou-dc01.us.ad.ep.local
+------------------------------------------------------+
The Record is different on DNS server '10.55.X.10'.
DNS server has more than one entries for this name,
usually this means there are multiple DCs for this domain.
Your DC entry is one of them on DNS server '10.55.X.10',
no need to re-register.
+------------------------------------------------------+
The record on your DC is:
DNS NAME = _kerberos._tcp.USHOU._sites.us.ad.ep.local.
DNS DATA =
SRV 0 100 88 hou-dc01.us.ad.ep.local.
The record on DNS server 10.55.X.10 is:
DNS NAME = _kerberos._tcp.USHOU._sites.us.ad.ep.local
DNS DATA =
SRV 0 100 88 hou-dc03.us.ad.ep.local
SRV 0 100 88 hou-dc02.us.ad.ep.local
SRV 0 100 88 hou-dc01.us.ad.ep.local
+------------------------------------------------------+
The Record is different on DNS server '10.55.X.10'.
DNS server has more than one entries for this name,
usually this means there are multiple DCs for this domain.
Your DC entry is one of them on DNS server '10.55.X.10',
no need to re-register.
+------------------------------------------------------+
The record on your DC is:
DNS NAME = _kerberos._udp.us.ad.ep.local.
DNS DATA =
SRV 0 100 88 hou-dc01.us.ad.ep.local.
The record on DNS server 10.55.X.10 is:
DNS NAME = _kerberos._udp.us.ad.ep.local
DNS DATA =
SRV 0 100 88 mat-dc01.us.ad.ep.local
SRV 0 100 88 hou-dc02.us.ad.ep.local
SRV 0 100 88 mca-dc01.us.ad.ep.local
SRV 0 100 88 hou-dc01.us.ad.ep.local
SRV 0 100 88 cal-dc01.us.ad.ep.local
SRV 0 100 88 hou-dc03.us.ad.ep.local
+------------------------------------------------------+
The Record is different on DNS server '10.55.X.10'.
DNS server has more than one entries for this name,
usually this means there are multiple DCs for this domain.
Your DC entry is one of them on DNS server '10.55.X.10',
no need to re-register.
+------------------------------------------------------+
The record on your DC is:
DNS NAME = _kpasswd._tcp.us.ad.ep.local.
DNS DATA =
SRV 0 100 464 hou-dc01.us.ad.ep.local.
The record on DNS server 10.55.X.10 is:
DNS NAME = _kpasswd._tcp.us.ad.ep.corp.local
DNS DATA =
SRV 0 100 464 mat-dc01.us.ad.ep.local
SRV 0 100 464 hou-dc02.us.ad.ep.local
SRV 0 100 464 mca-dc01.us.ad.ep.local
SRV 0 100 464 hou-dc01.us.ad.ep.local
SRV 0 100 464 cal-dc01.us.ad.ep.local
SRV 0 100 464 hou-dc03.us.ad.ep.local
+------------------------------------------------------+
The Record is different on DNS server '10.55.X.10'.
DNS server has more than one entries for this name,
usually this means there are multiple DCs for this domain.
Your DC entry is one of them on DNS server '10.55.X.10',
no need to re-register.
+------------------------------------------------------+
The record on your DC is:
DNS NAME = _kpasswd._udp.us.ad.ep.local.
DNS DATA =
SRV 0 100 464 hou-dc01.us.ad.ep.local.
The record on DNS server 10.55.X.10 is:
DNS NAME = _kpasswd._udp.us.ad.ep.local
DNS DATA =
SRV 0 100 464 mat-dc01.us.ad.ep.local
SRV 0 100 464 hou-dc02.us.ad.ep.local
SRV 0 100 464 mca-dc01.us.ad.ep.local
SRV 0 100 464 hou-dc01.us.ad.ep.local
SRV 0 100 464 cal-dc01.us.ad.ep.local
SRV 0 100 464 hou-dc03.us.ad.ep.local
+------------------------------------------------------+
The Record is different on DNS server '10.55.X.10'.
DNS server has more than one entries for this name,
usually this means there are multiple DCs for this domain.
Your DC entry is one of them on DNS server '10.55.X.10',
no need to re-register.
+------------------------------------------------------+
+------------------------------------------------------+
The Record is correct on DNS server '10.55.128.10'.
The Record is different on DNS server '10.55.128.10'.
DNS server has more than one entries for this name,
usually this means there are multiple DCs for this domain.
Your DC entry is one of them on DNS server '10.55.128.10',
no need to re-register.
+------------------------------------------------------+
The record on your DC is:
DNS NAME = us.ad.ep.local.
DNS DATA =
A 10.55.X.10
The record on DNS server 10.55.X.10 is:
DNS NAME = us.ad.ep.local
DNS DATA =
A 10.55.X.10
A 10.55.X.11
A 10.55.X.12
A 10.55.X.136
A 10.55.X.102
A 10.55.X.15
+------------------------------------------------------+
The Record is different on DNS server '10.55.X.10'.
DNS server has more than one entries for this name,
usually this means there are multiple DCs for this domain.
Your DC entry is one of them on DNS server '10.55.X.10',
no need to re-register.
+------------------------------------------------------+
The record on your DC is:
DNS NAME = gc._msdcs.ad.ep.local.
DNS DATA =
A 10.55.X.10
The record on DNS server 10.55.128.10 is:
DNS NAME = gc._msdcs.ad.ep.corp.local
DNS DATA =
A 10.55.X.10
A 10.55.X.102
A 10.55.X.15
A 10.55.X.136
A 10.55.X.15
+------------------------------------------------------+
PASS - All the DNS entries for DC are registered on
DNS server '10.55.X.10' and other DCs also have some of
the names registered.
The command completed successfully
-----Original Message-----
In
edward bernard said:
Hello, I have had an ongoing replication problem with one
of my DC's. We have one domain, 4 remotes sites. HQ is
here with 3 DC's, the other sutes have 1 DC. All remote
DC's are pointed to the DNS root at HQ for primary and
themselves as secondary. The DC's here all pointed to the
root and then themselves. I ran Netdiag on the remote DC
and everything looks good except the DNS entries. Can
anyone help with interpreting the results? Internet
searches have not been too promising. Any help is greatly
appreciated.
Testing DNS
[WARNING]: The DNS registration for 'cal-
dc01.us.ad.ep.local' is correct only on some DNS servers.
Please wait 15 min for replication and run the test again.
* If I understand correctly the CAL DC is not registered
on all DC's, I have checked and all DC's have the usual
DNS records (NS, A, etc.).
[WARNING]: The DNS registration for 'cal-
dc01.us.ad.ep.local' is correct only on some DNS servers.
Please wait 15 min for replication and run the test again.
Check the DNS registration for DCs entries on DNS
server '10.55.X.X'
The Record is different on DNS server '10.55.X.X'.
* This is the root DNS at HQ. It has the CAL records,
unless there is something else I need to check?
PASS - All the DNS entries for DC are registered on DNS
server '10.55.X.X' and other DCs also have some of the
names registered.
I really want to get this resolved as it has been an
ongoing battle for 6 months now...thanks for the
input/help.
run netdiag /fix on dc01.us.ad.ep.local then run netdiag /test:dns /v and
post the results.
.