Losing Resource Record. Why??? Niatross 6/18/2007 7:52:27 PM Domain: abc.local Servers: Srv1 (Win 2003SP1) Srv2 (Win 2003SP1) I like to setup DNS (first) and test it via NSLOOKUP before I promote standalone servers to DC's. I have two brand new servers (SRV1 and SRV2). I setup the Primary DNS Suffix on both servers Installed the DNS service on both servers. Pointed SRV1 to itself for DNS Pointed SRV2 to point to SRV1 Created a Standard Primary Zone on SRV1 (abc.local) Created a Standard Secondary Zone on SRV2 (abc.local) Setup Zone Tranfer to successfully transfer abc.local from SRV1 to SRV2 The servers are setup correctly and resolve to each other via NSLOOKUP. I successfully run DCPROMO on SRV1, reboot and logon. Perfect! Reboot SRV1 one more time to make sure there are no DNS issues, and to make sure that I can logon quickly without it hanging on "Preparing Network Connections". Perfect, no problems! Run DCPROMO on SRV2, reboot and logon. Perfect! Reboot SRV2 one more time to make sure there are no DNS issues, and to make sure that I can logon quickly without it hanging on "Preparing Network Connections". Perfect, no problems! Here's the issue: I reboot SRV1 (after SRV2 becomes a DC) and SRV1 hangs at "Preparing Network Connections" for 5 minutes, then the login screen appears. Something in DNS is amiss. What am I doing wrong? Remember, i'm running a Standard DNS zone (abc.local). The (abc.local) zone is NOT AD INTEGRATED. Why can't I get this to work? Here's the key to my problem: Once the 5 minutes passes, and I am able to logon to SRV1, I go into the DNS management console, go directly to "_tcp" and there is no "_gc" record. If I restart the "netlogon" service and do a "refresh", the "_gc._tcp" resource record appears. Why am I losing the "_gc" record??? If I can figure this out, i'll have my problem resolved. Why does the global catalog server (SRV1) keep losing the "_gc._tcp" record in DNS, once it's rebooted? Thanks, RB

Re: Losing Resource Record. Why??? "Kevin D. Goodknecht Sr. [MVP]" <admin[ at ]nospam.WFTX.US> 6/19/2007 4:07:52 PM Read inline please. In news:F9B037A0-18F1-4126-8B3D-FE3FC3A23EF1[ at ]microsoft.com, Niatross <niatross[ at ]newsgroup.nospam> typed: [Quoted Text] > I reboot SRV1 (after SRV2 becomes a DC) and SRV1 hangs at "Preparing > Network Connections" for 5 minutes, then the > > login screen appears. > > Something in DNS is amiss. > > What am I doing wrong? > > Remember, i'm running a Standard DNS zone (abc.local). The > (abc.local) zone is NOT AD INTEGRATED. Why can't I get > > this to work? > > Here's the key to my problem: > > Once the 5 minutes passes, and I am able to logon to SRV1, I go into > the DNS management console, go directly to > > "_tcp" and there is no "_gc" record. If I restart the "netlogon" > service and do a "refresh", the "_gc._tcp" > > resource record appears. Why am I losing the "_gc" record??? > > If I can figure this out, i'll have my problem resolved. > > Why does the global catalog server (SRV1) keep losing the "_gc._tcp" > record in DNS, once it's rebooted? Are you allowing dynamic updates on the Primray zone? Since you are using Standard Primary and Secondary zones, keep in mind you cannot the Secondary zone, only the Primary can be updated. Recommend deleting the Secondary zone, and converting the Primary to ADI with only secure updates allowed. Also, only the first DC is made a GC by default, you should make all DCs a GC in this environment. -- Best regards, Kevin D. Goodknecht Sr. [MVP] Hope This Helps =================================== When responding to posts, please "Reply to Group" via your newsreader so that others may learn and benefit from your issue, to respond directly to me remove the nospam. from my email address. =================================== http://www.lonestaramerica.com/ http://support.wftx.us/ http://message.wftx.us/ =================================== Use Outlook Express?... Get OE_Quotefix: It will strip signature out and more http://home.in.tum.de/~jain/software/oe-quotefix/ =================================== Keep a back up of your OE settings and folders with OEBackup: http://www.oehelp.com/OEBackup/Default.aspx ===================================

Re: Losing Resource Record. Why??? Niatross 6/19/2007 6:24:01 PM Hi Kevin, I posted in detail what Herb Martin and I have gone over in the thread "Global Catalog SRV record missing!" I agree that I should delete the secondary and convert to an ADI zone, but try a lab of your own and see what takes place. See the details in the post "Global Catalog SRV record missing!", and tell me if you have any ideas of what's causing this. Also my Primary zone is set to Dynamic Updates (Non-secure and Secure) Thanks, RB "Kevin D. Goodknecht Sr. [MVP]" wrote: [Quoted Text] > Read inline please. > > In news:F9B037A0-18F1-4126-8B3D-FE3FC3A23EF1[ at ]microsoft.com, > Niatross <niatross[ at ]newsgroup.nospam> typed: > > > > I reboot SRV1 (after SRV2 becomes a DC) and SRV1 hangs at "Preparing > > Network Connections" for 5 minutes, then the > > > > login screen appears. > > > > Something in DNS is amiss. > > > > What am I doing wrong? > > > > Remember, i'm running a Standard DNS zone (abc.local). The > > (abc.local) zone is NOT AD INTEGRATED. Why can't I get > > > > this to work? > > > > Here's the key to my problem: > > > > Once the 5 minutes passes, and I am able to logon to SRV1, I go into > > the DNS management console, go directly to > > > > "_tcp" and there is no "_gc" record. If I restart the "netlogon" > > service and do a "refresh", the "_gc._tcp" > > > > resource record appears. Why am I losing the "_gc" record??? > > > > If I can figure this out, i'll have my problem resolved. > > > > Why does the global catalog server (SRV1) keep losing the "_gc._tcp" > > record in DNS, once it's rebooted? > > Are you allowing dynamic updates on the Primray zone? > > Since you are using Standard Primary and Secondary zones, keep in mind you > cannot the Secondary zone, only the Primary can be updated. > > Recommend deleting the Secondary zone, and converting the Primary to ADI > with only secure updates allowed. > > Also, only the first DC is made a GC by default, you should make all DCs a > GC in this environment. > > > -- > Best regards, > Kevin D. Goodknecht Sr. [MVP] > Hope This Helps > > =================================== > When responding to posts, please "Reply to Group" > via your newsreader so that others may learn and > benefit from your issue, to respond directly to > me remove the nospam. from my email address. > =================================== > http://www.lonestaramerica.com/ > http://support.wftx.us/ > http://message.wftx.us/ > =================================== > Use Outlook Express?... Get OE_Quotefix: > It will strip signature out and more > http://home.in.tum.de/~jain/software/oe-quotefix/ > =================================== > Keep a back up of your OE settings and folders > with OEBackup: > http://www.oehelp.com/OEBackup/Default.aspx > =================================== > > >

Re: Losing Resource Record. Why??? "Kevin D. Goodknecht Sr. [MVP]" <admin[ at ]nospam.WFTX.US> 6/19/2007 9:12:02 PM Read inline please. In news:85187110-BC60-4C80-9ABB-66D0B29D350E[ at ]microsoft.com, Niatross <niatross[ at ]newsgroup.nospam> typed: [Quoted Text] > Hi Kevin, > > I posted in detail what Herb Martin and I have gone over in the thread > "Global Catalog SRV record missing!" > > I agree that I should delete the secondary and convert to an ADI > zone, but try a lab of your own and see what takes place. What does take place? I support more Active Directory environtments than I care to count out, I've never seen an issue so long as you delete the Secondary zone first. At first you will need to point both DCs to the one you are going to convert, but usually within 15 minutes the AD zone will replicate to the second DC. Then you can change the DNS Client on both DCs to point to the other as preferred, (Since the other DC should already be running when the DNS client starts), then to itself. -- Best regards, Kevin D. Goodknecht Sr. [MVP] Hope This Helps =================================== When responding to posts, please "Reply to Group" via your newsreader so that others may learn and benefit from your issue, to respond directly to me remove the nospam. from my email address. =================================== http://www.lonestaramerica.com/ http://support.wftx.us/ http://message.wftx.us/ =================================== Use Outlook Express?... Get OE_Quotefix: It will strip signature out and more http://home.in.tum.de/~jain/software/oe-quotefix/ =================================== Keep a back up of your OE settings and folders with OEBackup: http://www.oehelp.com/OEBackup/Default.aspx ===================================