Netlogon and DNS Service - errors in event viewer

  • Thread starter Thread starter Michael Hewson
  • Start date Start date
M

Michael Hewson

I have a problem on my secondary DC whereby I regularly get 5774 event ID
messages that state that the Netlogon service is unable to access certain
resources - for example 600 IN CNAME followed by the FQDN - I also get 600
IN SRV 100 88 and 600 IN SRV 0 100 464 followed by the FQDN for the machine
with the message that the DNS server is unable to interpret format.

I have checked the relevant KB article 259277 but it isn't much help and I
have checked the TCP/IP properties of the network card and they seem to be
OK. I am at a loss as to why I get these error messages at least 3-4 times a
day.

Any help ideas would be welcome.

Thanks
 
How many nics in the server? Does DNS point to your server-IP only? The
ISP-DNS-numbers should be set in the tab Forwarders of your DNS-server.
Check the DNS-configuration, especially the Forward and Reverse lookup
zones.

Marina
 
Just the one NIC card -

ipconfig /all

DHCP Enabled No
IP Address 193.35.157.19
Subnet Mask 255.255.255.0
Default gateway 193.35.157.12
DNS Servers 193.35.157.18
158.43.128.72

Primary Wins Server 193.35.157.18

Thanks
 
Hi Michael

Is DNS-server installed? It should be. DNS on your nic should *only* point
to your server-IP. In DNS-server, you put the ISP-DNS-numbers in the tab
Forwarders.
Why is the WINS-server .18? I assume you only have 1 server or not?

Marina
 
Hi Marina - yes the server is installed - but you were right - there were no
Forwarders enabled, so I have amended that. We have 2 servers - 18 is the
Primary DC and WINS Server while 19 is the secondary DC. The 18 server just
has 18 in the NIC properties.
 
Hi Michael,

Also check the Forward and Reverse lookup zones.
Have you set options 003, 006, 015, 044 and 046(0x8) in DHCP-server, Scope
options?

Marina
 
Hi Marina -

We don't have DHCP enabled - we use static IP addresses for our network.
Thanks
 
Michael,

DHCP is a no-brainer and will make life much easier for you. Now you will
have to check each client if they have the proper settings.

Marina
 
Hi Marina - I agree with you - unfortunately it's not my decision. Thanks
for your help anyway - It is much appreciated.
 
Hi Michael,

Well, you could tell the person who can make the decision about how much
time it will take you to check and doublecheck each and every computer.
By using DHCP, you can make the changes you want (or need) and all the
necessary setting for WINS and DNS will be automatically pushed to the
clients.

Marina
 
Back
Top