Anasayfa » Forum

DNS server hatası
 

DNS server hatası  

  RSS
akinbeslan
(@akinbeslan)
Üye

Merhaba arkadaslar,


Ortamda 3 server var 2003 Ent.DC server mailtr.asbis.com.tr ADC server ise sqltr.asbis.com.tr benim sıkıntım Event a baktigimda surekli hata kodlari var.Biraz inceledim ancak sorun nerde oldugunu tam olarak anlayamadim.DNS serverim yanlis configure edilmis buyuk bi ihtimalle.DNS event larda verdigi hata kodlari 4004-4015-4007-3000-4521 ve Directory service de surekli 2088 NDTS Replication hatasi var.asagidaki resim e gore sizce ne sorun olabilir.



tesekkurler.

Alıntı
Gönderildi : 07/11/2008 14:03
Bugra KESKIN
(@bugrakeskin)
Üye

Merhaba,

asbis.com.tr tarafınıda görseydik kayıtları

birde hata loglarının resmini alabilsek çok iyi olur

 

CevapAlıntı
Gönderildi : 07/11/2008 17:30
akinbeslan
(@akinbeslan)
Üye

Hocam asbis.com.tr kayitlari asagidaki gibi,



Event id lerden bazilarida asagida;


Source:MSDTC Event ID:53258


MS DTC could not correctly process a DC Promotion/Demotion event. MS DTC will continue to function and will use the existing security settings. Error Specifics: %1


Source:NTDS Replication Event id:2088


ctive Directory could not use DNS to resolve the IP address of the source domain controller listed below. To maintain the consistency of Security groups, group policy, users and computers and their passwords, Active Directory successfully replicated using the NetBIOS or fully qualified computer name of the source domain controller.


 


Invalid DNS configuration may be affecting other essential operations on member computers, domain controllers or application servers in this Active Directory forest, including logon authentication or access to network resources.


 


You should immediately resolve this DNS configuration error so that this domain controller can resolve the IP address of the source domain controller using DNS.


 


Alternate server name:


sqltr


Failing DNS host name:


2427c3a3-041e-4fa8-aab7-bb8647c17b56._msdcs.asbis.com.tr


 


NOTE: By default, only up to 10 DNS failures are shown for any given 12 hour period, even if more than 10 failures occur. To log all individual failure events, set the following diagnostics registry value to 1:


 


Registry Path:


HKLM\System\CurrentControlSet\Services\NTDS\Diagnostics\22 DS RPC Client


 


User Action:


 


1) If the source domain controller is no longer functioning or its operating system has been reinstalled with a different computer name or NTDSDSA object GUID, remove the source domain controller's metadata with ntdsutil.exe, using the steps outlined in MSKB article 216498.


 


2) Confirm that the source domain controller is running Active directory and is accessible on the network by typing "net view \\<source DC name>" or "ping <source DC name>".


 


3) Verify that the source domain controller is using a valid DNS server for DNS services, and that the source domain controller's host record and CNAME record are correctly registered, using the DNS Enhanced version of DCDIAG.EXE available on http://www.microsoft.com/dns


 


dcdiag /test:dns


 


4) Verify that that this destination domain controller is using a valid DNS server for DNS services, by running the DNS Enhanced version of DCDIAG.EXE command on the console of the destination domain controller, as follows:


 


dcdiag /test:dns


 


5) For further analysis of DNS error failures see KB 824449:


http://support.microsoft.com/?kbid=824449


 


Additional Data


Error value:


11004 The requested name is valid, but no data of the requested type was found.


 


 Source:NtFrs event id:13509


The File Replication Service has enabled replication from SQLTR to MAILTR for c:\windows\sysvol\domain after repeated retries.


 


Source:NtFrs    Event id:13571


The File Replication Service has detected that one or more volumes on this computer have the same Volume Serial Number. File Replication Service does not support this configuration. Files may not replicate until this conflict is resolved.


 


Volume Serial Number : 04bc-8ca4


List of volumes that have this Volume Serial Number: c:, c:


 


The output of "dir" command displays the Volume Serial Number before listing the contents of the folder.


 


Source:Ntfrs    event id:13508


The File Replication Service is having trouble enabling replication from SQLTR to MAILTR for c:\windows\sysvol\domain using the DNS name sqltr.asbis.com.tr. FRS will keep retrying.


Following are some of the reasons you would see this warning.


 


[1] FRS can not correctly resolve the DNS name sqltr.asbis.com.tr from this computer.


[2] FRS is not running on sqltr.asbis.com.tr.


[3] The topology information in the Active Directory for this replica has not yet replicated to all the Domain Controllers.


 


This event log message will appear once per connection, After the problem is fixed you will see another event log message indicating that the connection has been established.


 


Source:MrXsMB  event id:


The redirector failed to determine the connection type.

CevapAlıntı
Gönderildi : 07/11/2008 19:16
akinbeslan
(@akinbeslan)
Üye

Son zamanlarda DC ye login olurken asagidaki hatalari almaya basladim


Event ID:5805    Source:NETLOGON 


The session setup from the computer UNSAL-PC failed to authenticate. The following error occurred:


Access is denied.


 


Event ID:5723   Source:NETLOGON


The session setup from computer 'UNSAL-PC' failed because the security database does not contain a trust account 'UNSAL-PC$' referenced by the specified computer.


USER ACTION


If this is the first occurrence of this event for the specified computer and account, this may be a transient issue that doesn't require any action at this time. Otherwise, the following steps may be taken to resolve this problem:


If 'UNSAL-PC$' is a legitimate machine account for the computer 'UNSAL-PC', then 'UNSAL-PC' should be rejoined to the domain.


If 'UNSAL-PC$' is a legitimate interdomain trust account, then the trust should be recreated.


Otherwise, assuming that 'UNSAL-PC$' is not a legitimate account, the following action should be taken on 'UNSAL-PC':


If 'UNSAL-PC' is a Domain Controller, then the trust associated with 'UNSAL-PC$' should be deleted.


If 'UNSAL-PC' is not a Domain Controller, it should be disjoined from the domain.


 


Event ID:8003   Source:MRxSmb


The master browser has received a server announcement from the computer TERMTR that believes that it is the master browser for the domain on transport NetBT_Tcpip_{75C50EC7-7ECD-4938-AA. The master browser is stopping or an election is being forced.


 


 

CevapAlıntı
Gönderildi : 20/11/2008 20:13
Bugra KESKIN
(@bugrakeskin)
Üye

Merhaba

Domain bayağı bir sıkıntılı gözüküyor

öncelikle hata veren client ı domainden düşürüp tekrar domaine almaya çalışın, başarılı olup olamayacağınızı test edin ve DC üzerinde

Support Tools yükledikten sonra DCDIAG ve NETDIAG komutlarını çalıştırıp herhangi bir failed durumunu inceleyin.

Sonra yine yardımcı olmaya çalışalım.

CevapAlıntı
Gönderildi : 21/11/2008 01:36
akinbeslan
(@akinbeslan)
Üye

Merhaba,


Dcdiag sonuclari asagidaki gibi


Testing server: Default-First-Site-Name\MAILTR
   Starting test: Connectivity
      ......................... MAILTR passed test Connectivity


ng primary tests


Testing server: Default-First-Site-Name\MAILTR
   Starting test: Replications
      REPLICATION LATENCY WARNING
      ERROR: Expected notification link is missing.
      Source SQLTR
      Replication of new changes along this path will be delayed.
      This problem should self-correct on the next periodic sync.
      REPLICATION LATENCY WARNING
      ERROR: Expected notification link is missing.
      Source SQLTR
      Replication of new changes along this path will be delayed.
      This problem should self-correct on the next periodic sync.


 Starting test: frsevent
   There are warning or error events within the last 24 hours after the
   SYSVOL has been shared.  Failing SYSVOL replication problems may cause
   Group Policy problems.
   ......................... MAILTR failed test frsevent
Starting test: kccevent
   ......................... MAILTR passed test kccevent
Starting test: systemlog
   An Error Event occured.  EventID: 0xC00007DD
      Time Generated: 11/21/2008   11:17:12
      Event String: SMTP could not connect to any DNS server. Either


 


Netdiag sonuclari da asagidaki gibi.


        NetBT name test. . . . . . : Passed
        [WARNING] At least one of the <00> 'WorkStation Service', <03> 'Messenge
r Service', <20> 'WINS' names is missing.


        WINS service test. . . . . : Skipped
            There are no WINS servers configured for this interface.



Global results:



Domain membership test . . . . . . : Passed



NetBT transports test. . . . . . . : Passed
    List of NetBt transports currently configured:
        NetBT_Tcpip_{75C50EC7-7ECD-4938-AAEE-5C112FBF4313}
    1 NetBt transport currently configured.



Autonet address test . . . . . . . : Passed



IP loopback ping test. . . . . . . : Passed



Default gateway test . . . . . . . : Passed



NetBT name test. . . . . . . . . . : Passed
    [WARNING] You don't have a single interface with the <00> 'WorkStation Servi
ce', <03> 'Messenger Service', <20> 'WINS' names defined.



Winsock test . . . . . . . . . . . : Passed



DNS test . . . . . . . . . . . . . : Passed
    PASS - All the DNS entries for DC are registered on DNS server '192.168.100.
12' and other DCs also have some of the names registered.



Redir and Browser test . . . . . . : Passed
    List of NetBt transports currently bound to the Redir
        NetBT_Tcpip_{75C50EC7-7ECD-4938-AAEE-5C112FBF4313}
    The redir is bound to 1 NetBt transport.


    List of NetBt transports currently bound to the browser
        NetBT_Tcpip_{75C50EC7-7ECD-4938-AAEE-5C112FBF4313}
    The browser is bound to 1 NetBt transport.



DC discovery test. . . . . . . . . : Passed



DC list test . . . . . . . . . . . : Passed



Trust relationship test. . . . . . : Skipped



Kerberos test. . . . . . . . . . . : Passed



LDAP test. . . . . . . . . . . . . : Passed



Bindings test. . . . . . . . . . . : Passed



WAN configuration test . . . . . . : Skipped
    No active remote access connections.



Modem diagnostics test . . . . . . : Passed


IP Security test . . . . . . . . . : Skipped


   

CevapAlıntı
Gönderildi : 21/11/2008 13:32
Bugra KESKIN
(@bugrakeskin)
Üye

Merhaba

Replikasyonda hata gözüküyor, Group Policy de hata gözüküyor, WINS aktif edilmiş ancak herhangi bir adres belirtilmemiş bunuda kontrol edin.

dcgiag ve netdiag komutlarının sonuna /fix parametresini ekleyip tekrar sonucu bildirin

komutlar bittikten sonra manuel olarak replikasyon başlatın.

DCGPOFIX.exe tool u kullanarak Group Policy da ki hataları inceleyin

bunlardan sonra tekrar konuşalım.

CevapAlıntı
Gönderildi : 21/11/2008 15:11
akinbeslan
(@akinbeslan)
Üye

Merhaba,


DCGPOFIX.exe komutunu calistirinca asagidaki gibi uyari veriyor.sistemim 2003 enterprise R2 SP2


C:\Documents and Settings\Administrator>DCGPOFIX.exe


Microsoft(R) Windows(R) Operating System Default Group Policy Restore Utility v5
.1


Copyright (C) Microsoft Corporation. 1981-2003


Description: Recreates the Default Group Policy Objects (GPOs) for a domain


Syntax: DcGPOFix [/ignoreschema] [/Target: Domain | DC | BOTH]



This utility can restore either or both the Default Domain Policy or the
Default Domain Controllers Policy to the state that exists immediately after
a clean install. You must be a domain administrator to perform this operation.


WARNING: YOU WILL LOSE ANY CHANGES YOU HAVE MADE TO THESE GPOs. THIS UTILITY
IS INTENDED ONLY FOR DISASTER RECOVERY PURPOSES.


The Active Directory schema version for this domain, and the version supported b
y this tool do not match. The GPO can be restored using the /ignoreschema comman
d line parameter. However, it is recommended that you try and obtain an updated
version of this tool that may have an updated version of the Active Directory sc
hema. Restoring a GPO with an incorrect schema may result in unpredictable behav
ior.
The restore failed.  See previous messages for more details


 dcdiag.exe /fix komutunu calistirinca asagidaki gibi


C:\Documents and Settings\Administrator>dcdiag.exe /fix


Domain Controller Diagnosis


Performing initial setup:
   Done gathering initial info.


Doing initial required tests


   Testing server: Default-First-Site-Name\MAILTR
      Starting test: Connectivity
         ......................... MAILTR passed test Connectivity


Doing primary tests


   Testing server: Default-First-Site-Name\MAILTR
      Starting test: Replications
         REPLICATION LATENCY WARNING
         ERROR: Expected notification link is missing.
         Source SQLTR
         Replication of new changes along this path will be delayed.
         This problem should self-correct on the next periodic sync.
         REPLICATION LATENCY WARNING
         ERROR: Expected notification link is missing.
         Source SQLTR
         Replication of new changes along this path will be delayed.
         This problem should self-correct on the next periodic sync.
         ......................... MAILTR passed test Replications
      Starting test: NCSecDesc
         ......................... MAILTR passed test NCSecDesc
      Starting test: NetLogons
         ......................... MAILTR passed test NetLogons
      Starting test: Advertising
         ......................... MAILTR passed test Advertising
      Starting test: KnowsOfRoleHolders
         ......................... MAILTR passed test KnowsOfRoleHolders
      Starting test: RidManager
         ......................... MAILTR passed test RidManager
      Starting test: MachineAccount
         ......................... MAILTR passed test MachineAccount
      Starting test: Services
         ......................... MAILTR passed test Services
      Starting test: ObjectsReplicated
         ......................... MAILTR passed test ObjectsReplicated
      Starting test: frssysvol
         ......................... MAILTR passed test frssysvol
      Starting test: frsevent
         There are warning or error events within the last 24 hours after the
         SYSVOL has been shared.  Failing SYSVOL replication problems may cause
         Group Policy problems.
         ......................... MAILTR failed test frsevent
      Starting test: kccevent
         ......................... MAILTR passed test kccevent
      Starting test: systemlog
         ......................... MAILTR passed test systemlog
      Starting test: VerifyReferences
         ......................... MAILTR passed test VerifyReferences


   Running partition tests on : ForestDnsZones
      Starting test: CrossRefValidation
         ......................... ForestDnsZones passed test CrossRefValidation


      Starting test: CheckSDRefDom
         ......................... ForestDnsZones passed test CheckSDRefDom


   Running partition tests on : DomainDnsZones
      Starting test: CrossRefValidation
         ......................... DomainDnsZones passed test CrossRefValidation


      Starting test: CheckSDRefDom
         ......................... DomainDnsZones passed test CheckSDRefDom


   Running partition tests on : Schema
      Starting test: CrossRefValidation
         ......................... Schema passed test CrossRefValidation
      Starting test: CheckSDRefDom
         ......................... Schema passed test CheckSDRefDom


   Running partition tests on : Configuration
      Starting test: CrossRefValidation
         ......................... Configuration passed test CrossRefValidation
      Starting test: CheckSDRefDom
         ......................... Configuration passed test CheckSDRefDom


   Running partition tests on : asbis
      Starting test: CrossRefValidation
         ......................... asbis passed test CrossRefValidation
      Starting test: CheckSDRefDom
         ......................... asbis passed test CheckSDRefDom


   Running enterprise tests on : asbis.com.tr
      Starting test: Intersite
         ......................... asbis.com.tr passed test Intersite
      Starting test: FsmoCheck
         ......................... asbis.com.tr passed test FsmoCheck


 

CevapAlıntı
Gönderildi : 21/11/2008 15:45
akinbeslan
(@akinbeslan)
Üye

Manuel olarak Replikasyon yapmaya calistim asagidaki gibi sonuc.


CevapAlıntı
Gönderildi : 21/11/2008 16:20
 Anonim

Merhaba,


Hem MAİLTR hemde SQLTR tarafında replicate now yaptığınız zamanda aynı hata mesajını alıyormusun?Ek olarak Check Replication Topology yaptığın zaman nasıl bir uyarı veriyor?

CevapAlıntı
Gönderildi : 21/11/2008 16:54
akinbeslan
(@akinbeslan)
Üye

Merhaba,


iki taraftada replicate now yapinca hata aliyorum.


Ek olarak Check Replication topology yaptigimda asagidaki gibi


Mailtr tarafinda  


Sqltr tarafinda

CevapAlıntı
Gönderildi : 21/11/2008 19:22
 Anonim

Bu her iki domain'de farklı forestlarda mı?Kaç tane Primary DNS kurulu?

CevapAlıntı
Gönderildi : 21/11/2008 19:32
akinbeslan
(@akinbeslan)
Üye

Hayir hocam 1 tane primary DNS var oda mailtr.

CevapAlıntı
Gönderildi : 21/11/2008 20:21
CozumPark
(@cozumpark)
Üye

fsmo'larında sorun var


http://support.microsoft.com/kb/288167  linki incele, netdom işini görecektir. İşe yaramazsa tekrar konuşalım


 

CevapAlıntı
Gönderildi : 21/11/2008 23:43
akinbeslan
(@akinbeslan)
Üye

Merhaba,


netdom komutunu kullanmaya calistim ancak parolamin icinde bosluk oldugu icin tanimiyor sanirim


C:\Documents and Settings\Administrator.ASBIS>netdom resetpwd /Server:mailtr.asb
is.com.tr /UserD:Xxxx /PasswordD:32154 aofıhjsf1
The machine account password for the local machine could not be reset.


Logon failure: unknown user name or bad password.


The command failed to complete successfully.


 


 


yukardaki gibi bir sey cikiyor.

CevapAlıntı
Gönderildi : 23/11/2008 21:02
engin keskin
(@enginkeskin)
Üye

Bende event id 4007 hatası alıyorum ve replikasyonda sorun olduğunu gösteren uyarılarda düşüyor evetnlara,


İnternetde araştırdığımda regisrtydeki HKLM\System\ControlSet\ Services\DNS kaydını sildikden sonra bu sorunun düzeldiğini yazmışlar ama size danışmadan silmek istemedim,


Dns imiz ad. integrated,


Zaman zaman tüm sistemde aynı anda donmalar oluyor,file servera remote desktop ve ping gidiyor ama paylaşımdan girilemiyor v.b. gibi sorunlar oluyor ve sadece dc1 ile birlikte file serveri  restart ettiğimde bu sorunlar düzeliyor,ama onca user varken file server ve dc yi kapatmak açık olan,kaydedilmeyen tüm dosyaların kaybolması,ve bi sürü zaman kaybı demek


Bu registy kaydını silsem sorunum dfüzelirmi yada sistemde başka problem olurmu,* 


 


 

CevapAlıntı
Gönderildi : 01/12/2008 15:42
Paylaş:

Lütfen Giriş yap yada Kayıt ol