netdiag/dcdiag question

R

Robert Zahm

I am having problems with my AV software, and they claim that it is a
networking issue. As such, I have performed the steps below, can anybody
make sense of it, or point me towards further tests that I should run? My
DC is an SBS2003 (sp1) machine, and the AV software is installed on a W2k
(sp4) member server. I have already tried removing the machine from the
domain, and adding it back in.

I will occasionally see a problem on the DC applying group policy, but it
always seems to correct itself, and when I run the command manually, no
errors are logged.


The AV support had me run the following : netstat -s 2 | find "Segments
Retransmitted"
This number kept rising, which they said indicated packet loss on the
network.

Here are the parts of netdiag and dcdiag that failed:

From Netdiag:
Netdiag from the w2k member server:
Kerberos test. . . . . . . . . . . : Failed
Cached Tickets:
Server: krbtgt/BRADFORDREALESTATESERVICESCORP.LOCAL
End Time: 9/30/2005 3:40:11
Renew Time: 10/6/2005 17:40:11
Server: krbtgt/BRADFORDREALESTATESERVICESCORP.LOCAL
End Time: 9/29/2005 19:06:43
Renew Time: 10/6/2005 9:06:43
Server:
LDAP/bradforddc01.BradfordRealEstateServicesCorp.local/BRADFORDREALES
End Time: 9/30/2005 3:40:11
Renew Time: 10/6/2005 17:40:11
Server: HOST/BRADFORDDC01
End Time: 9/29/2005 19:06:43
Renew Time: 10/6/2005 9:06:43
Server: HOST/bradforddc01.BradfordRealEstateServicesCorp.local
End Time: 9/29/2005 19:06:43
Renew Time: 10/6/2005 9:06:43
Server:
ldap/bradforddc01.BradfordRealEstateServicesCorp.local/BradfordRealEstateServicesCorp.local
End Time: 9/29/2005 19:06:43
Renew Time: 10/6/2005 9:06:43
Server: LDAP/bradforddc01.BradfordRealEstateServicesCorp.local
End Time: 9/29/2005 19:06:43
Renew Time: 10/6/2005 9:06:43
Server: host/bradford-w2k.bradfordrealestateservicescorp.local
End Time: 9/29/2005 19:06:43
Renew Time: 10/6/2005 9:06:43
[FATAL] Kerberos does not have a ticket for BRADFORD-W2K$.

Ran the following on the w2k member server: dcdiag /s:bradforddc01:
Starting test: Services
IsmServ Service is stopped on [BRADFORDDC01]
RPCLOCATOR Service is stopped on [BRADFORDDC01]
TrkWks Service is stopped on [BRADFORDDC01]
TrkSvr Service is stopped on [BRADFORDDC01]
......................... BRADFORDDC01 failed test Services

Thanks,

Rob
 
M

Matt Gibson

post an ipconfig /all from the member server and the SBS server.

Matt Gibson - GSEC
 
R

Robert Zahm

Matt,

SBS:

Windows IP Configuration
Host Name . . . . . . . . . . . . : bradforddc01
Primary Dns Suffix . . . . . . . : BradfordRealEstateServicesCorp.local
Node Type . . . . . . . . . . . . : Unknown
IP Routing Enabled. . . . . . . . : Yes
WINS Proxy Enabled. . . . . . . . : Yes
DNS Suffix Search List. . . . . . : BradfordRealEstateServicesCorp.local

Ethernet adapter Server Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel(R) PRO/1000 MT Network
Connection
Physical Address. . . . . . . . . : 00-C0-9F-46-FE-CB
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 216.5.223.251
Subnet Mask . . . . . . . . . . . : 255.255.255.0
IP Address. . . . . . . . . . . . : 216.5.223.201
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 216.5.223.17
DNS Servers . . . . . . . . . . . : 216.5.223.201
Primary WINS Server . . . . . . . : 216.5.223.201



W2K:
Windows 2000 IP Configuration

Host Name . . . . . . . . . . . . : bradford-w2k
Primary DNS Suffix . . . . . . . : BradfordRealEstateServicesCorp.local
Node Type . . . . . . . . . . . . : Broadcast
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : BradfordRealEstateServicesCorp.local

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : IBM 10/100 NetFinity Fault Tolerant
Adapter
Physical Address. . . . . . . . . : 00-06-29-57-5C-B5
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 216.5.223.202
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 216.5.223.17
DNS Servers . . . . . . . . . . . : 216.5.223.201


Thanks for any insight you can provide,

Rob

Matt Gibson said:
post an ipconfig /all from the member server and the SBS server.

Matt Gibson - GSEC

Robert Zahm said:
I am having problems with my AV software, and they claim that it is a
networking issue. As such, I have performed the steps below, can anybody
make sense of it, or point me towards further tests that I should run? My
DC is an SBS2003 (sp1) machine, and the AV software is installed on a W2k
(sp4) member server. I have already tried removing the machine from the
domain, and adding it back in.

I will occasionally see a problem on the DC applying group policy, but it
always seems to correct itself, and when I run the command manually, no
errors are logged.


The AV support had me run the following : netstat -s 2 | find "Segments
Retransmitted"
This number kept rising, which they said indicated packet loss on the
network.

Here are the parts of netdiag and dcdiag that failed:

From Netdiag:
Netdiag from the w2k member server:
Kerberos test. . . . . . . . . . . : Failed
Cached Tickets:
Server: krbtgt/BRADFORDREALESTATESERVICESCORP.LOCAL
End Time: 9/30/2005 3:40:11
Renew Time: 10/6/2005 17:40:11
Server: krbtgt/BRADFORDREALESTATESERVICESCORP.LOCAL
End Time: 9/29/2005 19:06:43
Renew Time: 10/6/2005 9:06:43
Server:
LDAP/bradforddc01.BradfordRealEstateServicesCorp.local/BRADFORDREALES
End Time: 9/30/2005 3:40:11
Renew Time: 10/6/2005 17:40:11
Server: HOST/BRADFORDDC01
End Time: 9/29/2005 19:06:43
Renew Time: 10/6/2005 9:06:43
Server: HOST/bradforddc01.BradfordRealEstateServicesCorp.local
End Time: 9/29/2005 19:06:43
Renew Time: 10/6/2005 9:06:43
Server:
ldap/bradforddc01.BradfordRealEstateServicesCorp.local/BradfordRealEstateServicesCorp.local
End Time: 9/29/2005 19:06:43
Renew Time: 10/6/2005 9:06:43
Server: LDAP/bradforddc01.BradfordRealEstateServicesCorp.local
End Time: 9/29/2005 19:06:43
Renew Time: 10/6/2005 9:06:43
Server: host/bradford-w2k.bradfordrealestateservicescorp.local
End Time: 9/29/2005 19:06:43
Renew Time: 10/6/2005 9:06:43
[FATAL] Kerberos does not have a ticket for BRADFORD-W2K$.

Ran the following on the w2k member server: dcdiag /s:bradforddc01:
Starting test: Services
IsmServ Service is stopped on [BRADFORDDC01]
RPCLOCATOR Service is stopped on [BRADFORDDC01]
TrkWks Service is stopped on [BRADFORDDC01]
TrkSvr Service is stopped on [BRADFORDDC01]
......................... BRADFORDDC01 failed test Services

Thanks,

Rob
Click to expand...
Click to expand...
 
M

Matt Gibson

Is there a reason you have two IP addresses on your SBS box?

Matt Gibson - GSEC

Robert Zahm said:
Matt,

SBS:

Windows IP Configuration
Host Name . . . . . . . . . . . . : bradforddc01
Primary Dns Suffix . . . . . . . : BradfordRealEstateServicesCorp.local
Node Type . . . . . . . . . . . . : Unknown
IP Routing Enabled. . . . . . . . : Yes
WINS Proxy Enabled. . . . . . . . : Yes
DNS Suffix Search List. . . . . . : BradfordRealEstateServicesCorp.local

Ethernet adapter Server Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel(R) PRO/1000 MT Network
Connection
Physical Address. . . . . . . . . : 00-C0-9F-46-FE-CB
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 216.5.223.251
Subnet Mask . . . . . . . . . . . : 255.255.255.0
IP Address. . . . . . . . . . . . : 216.5.223.201
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 216.5.223.17
DNS Servers . . . . . . . . . . . : 216.5.223.201
Primary WINS Server . . . . . . . : 216.5.223.201



W2K:
Windows 2000 IP Configuration

Host Name . . . . . . . . . . . . : bradford-w2k
Primary DNS Suffix . . . . . . . : BradfordRealEstateServicesCorp.local
Node Type . . . . . . . . . . . . : Broadcast
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : BradfordRealEstateServicesCorp.local

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : IBM 10/100 NetFinity Fault Tolerant
Adapter
Physical Address. . . . . . . . . : 00-06-29-57-5C-B5
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 216.5.223.202
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 216.5.223.17
DNS Servers . . . . . . . . . . . : 216.5.223.201


Thanks for any insight you can provide,

Rob

Matt Gibson said:
post an ipconfig /all from the member server and the SBS server.

Matt Gibson - GSEC

Robert Zahm said:
I am having problems with my AV software, and they claim that it is a
networking issue. As such, I have performed the steps below, can anybody
make sense of it, or point me towards further tests that I should run?
My DC is an SBS2003 (sp1) machine, and the AV software is installed on a
W2k (sp4) member server. I have already tried removing the machine from
the domain, and adding it back in.

I will occasionally see a problem on the DC applying group policy, but
it always seems to correct itself, and when I run the command manually,
no errors are logged.


The AV support had me run the following : netstat -s 2 | find "Segments
Retransmitted"
This number kept rising, which they said indicated packet loss on the
network.

Here are the parts of netdiag and dcdiag that failed:

From Netdiag:
Netdiag from the w2k member server:
Kerberos test. . . . . . . . . . . : Failed
Cached Tickets:
Server: krbtgt/BRADFORDREALESTATESERVICESCORP.LOCAL
End Time: 9/30/2005 3:40:11
Renew Time: 10/6/2005 17:40:11
Server: krbtgt/BRADFORDREALESTATESERVICESCORP.LOCAL
End Time: 9/29/2005 19:06:43
Renew Time: 10/6/2005 9:06:43
Server:
LDAP/bradforddc01.BradfordRealEstateServicesCorp.local/BRADFORDREALES
End Time: 9/30/2005 3:40:11
Renew Time: 10/6/2005 17:40:11
Server: HOST/BRADFORDDC01
End Time: 9/29/2005 19:06:43
Renew Time: 10/6/2005 9:06:43
Server: HOST/bradforddc01.BradfordRealEstateServicesCorp.local
End Time: 9/29/2005 19:06:43
Renew Time: 10/6/2005 9:06:43
Server:
ldap/bradforddc01.BradfordRealEstateServicesCorp.local/BradfordRealEstateServicesCorp.local
End Time: 9/29/2005 19:06:43
Renew Time: 10/6/2005 9:06:43
Server: LDAP/bradforddc01.BradfordRealEstateServicesCorp.local
End Time: 9/29/2005 19:06:43
Renew Time: 10/6/2005 9:06:43
Server: host/bradford-w2k.bradfordrealestateservicescorp.local
End Time: 9/29/2005 19:06:43
Renew Time: 10/6/2005 9:06:43
[FATAL] Kerberos does not have a ticket for BRADFORD-W2K$.

Ran the following on the w2k member server: dcdiag /s:bradforddc01:
Starting test: Services
IsmServ Service is stopped on [BRADFORDDC01]
RPCLOCATOR Service is stopped on [BRADFORDDC01]
TrkWks Service is stopped on [BRADFORDDC01]
TrkSvr Service is stopped on [BRADFORDDC01]
......................... BRADFORDDC01 failed test Services

Thanks,

Rob
Click to expand...
Click to expand...
Click to expand...
 
R

Robert Zahm

Matt,

It has two NICs. I think our ultimate goal was to have one NIC listen for
external traffic (eg, remote access and the extranet), and have the other
NIC handle the internal traffic. Do you think this is causing problems?

Thanks,

Rob


Matt Gibson said:
Is there a reason you have two IP addresses on your SBS box?

Matt Gibson - GSEC

Robert Zahm said:
Matt,

SBS:

Windows IP Configuration
Host Name . . . . . . . . . . . . : bradforddc01
Primary Dns Suffix . . . . . . . :
BradfordRealEstateServicesCorp.local
Node Type . . . . . . . . . . . . : Unknown
IP Routing Enabled. . . . . . . . : Yes
WINS Proxy Enabled. . . . . . . . : Yes
DNS Suffix Search List. . . . . . :
BradfordRealEstateServicesCorp.local

Ethernet adapter Server Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel(R) PRO/1000 MT Network
Connection
Physical Address. . . . . . . . . : 00-C0-9F-46-FE-CB
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 216.5.223.251
Subnet Mask . . . . . . . . . . . : 255.255.255.0
IP Address. . . . . . . . . . . . : 216.5.223.201
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 216.5.223.17
DNS Servers . . . . . . . . . . . : 216.5.223.201
Primary WINS Server . . . . . . . : 216.5.223.201



W2K:
Windows 2000 IP Configuration

Host Name . . . . . . . . . . . . : bradford-w2k
Primary DNS Suffix . . . . . . . : BradfordRealEstateServicesCorp.local
Node Type . . . . . . . . . . . . : Broadcast
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : BradfordRealEstateServicesCorp.local

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : IBM 10/100 NetFinity Fault Tolerant
Adapter
Physical Address. . . . . . . . . : 00-06-29-57-5C-B5
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 216.5.223.202
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 216.5.223.17
DNS Servers . . . . . . . . . . . : 216.5.223.201


Thanks for any insight you can provide,

Rob

Matt Gibson said:
post an ipconfig /all from the member server and the SBS server.

Matt Gibson - GSEC

I am having problems with my AV software, and they claim that it is a
networking issue. As such, I have performed the steps below, can
anybody make sense of it, or point me towards further tests that I
should run? My DC is an SBS2003 (sp1) machine, and the AV software is
installed on a W2k (sp4) member server. I have already tried removing
the machine from the domain, and adding it back in.

I will occasionally see a problem on the DC applying group policy, but
it always seems to correct itself, and when I run the command manually,
no errors are logged.


The AV support had me run the following : netstat -s 2 | find "Segments
Retransmitted"
This number kept rising, which they said indicated packet loss on the
network.

Here are the parts of netdiag and dcdiag that failed:

From Netdiag:
Netdiag from the w2k member server:
Kerberos test. . . . . . . . . . . : Failed
Cached Tickets:
Server: krbtgt/BRADFORDREALESTATESERVICESCORP.LOCAL
End Time: 9/30/2005 3:40:11
Renew Time: 10/6/2005 17:40:11
Server: krbtgt/BRADFORDREALESTATESERVICESCORP.LOCAL
End Time: 9/29/2005 19:06:43
Renew Time: 10/6/2005 9:06:43
Server:
LDAP/bradforddc01.BradfordRealEstateServicesCorp.local/BRADFORDREALES
End Time: 9/30/2005 3:40:11
Renew Time: 10/6/2005 17:40:11
Server: HOST/BRADFORDDC01
End Time: 9/29/2005 19:06:43
Renew Time: 10/6/2005 9:06:43
Server: HOST/bradforddc01.BradfordRealEstateServicesCorp.local
End Time: 9/29/2005 19:06:43
Renew Time: 10/6/2005 9:06:43
Server:
ldap/bradforddc01.BradfordRealEstateServicesCorp.local/BradfordRealEstateServicesCorp.local
End Time: 9/29/2005 19:06:43
Renew Time: 10/6/2005 9:06:43
Server: LDAP/bradforddc01.BradfordRealEstateServicesCorp.local
End Time: 9/29/2005 19:06:43
Renew Time: 10/6/2005 9:06:43
Server: host/bradford-w2k.bradfordrealestateservicescorp.local
End Time: 9/29/2005 19:06:43
Renew Time: 10/6/2005 9:06:43
[FATAL] Kerberos does not have a ticket for BRADFORD-W2K$.

Ran the following on the w2k member server: dcdiag /s:bradforddc01:
Starting test: Services
IsmServ Service is stopped on [BRADFORDDC01]
RPCLOCATOR Service is stopped on [BRADFORDDC01]
TrkWks Service is stopped on [BRADFORDDC01]
TrkSvr Service is stopped on [BRADFORDDC01]
......................... BRADFORDDC01 failed test Services

Thanks,

Rob
Click to expand...
Click to expand...
Click to expand...
 
M

Matt Gibson

Robert,

Did you copy and paste exactly what was shown?

What you've got there, is two IP addresses on the same subnet...which is
somewhat okay if they're on the same NIC, but you cannot have two NICs with
IP addresses on the same subnet.

Copy and paste the exact output of ipconfig /all if you haven't already.

Matt Gibson - GSEC

Robert Zahm said:
Matt,

It has two NICs. I think our ultimate goal was to have one NIC listen for
external traffic (eg, remote access and the extranet), and have the other
NIC handle the internal traffic. Do you think this is causing problems?

Thanks,

Rob


Matt Gibson said:
Is there a reason you have two IP addresses on your SBS box?

Matt Gibson - GSEC

Robert Zahm said:
Matt,

SBS:

Windows IP Configuration
Host Name . . . . . . . . . . . . : bradforddc01
Primary Dns Suffix . . . . . . . :
BradfordRealEstateServicesCorp.local
Node Type . . . . . . . . . . . . : Unknown
IP Routing Enabled. . . . . . . . : Yes
WINS Proxy Enabled. . . . . . . . : Yes
DNS Suffix Search List. . . . . . :
BradfordRealEstateServicesCorp.local

Ethernet adapter Server Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel(R) PRO/1000 MT Network
Connection
Physical Address. . . . . . . . . : 00-C0-9F-46-FE-CB
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 216.5.223.251
Subnet Mask . . . . . . . . . . . : 255.255.255.0
IP Address. . . . . . . . . . . . : 216.5.223.201
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 216.5.223.17
DNS Servers . . . . . . . . . . . : 216.5.223.201
Primary WINS Server . . . . . . . : 216.5.223.201



W2K:
Windows 2000 IP Configuration

Host Name . . . . . . . . . . . . : bradford-w2k
Primary DNS Suffix . . . . . . . : BradfordRealEstateServicesCorp.local
Node Type . . . . . . . . . . . . : Broadcast
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : BradfordRealEstateServicesCorp.local

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : IBM 10/100 NetFinity Fault Tolerant
Adapter
Physical Address. . . . . . . . . : 00-06-29-57-5C-B5
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 216.5.223.202
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 216.5.223.17
DNS Servers . . . . . . . . . . . : 216.5.223.201


Thanks for any insight you can provide,

Rob

post an ipconfig /all from the member server and the SBS server.

Matt Gibson - GSEC

I am having problems with my AV software, and they claim that it is a
networking issue. As such, I have performed the steps below, can
anybody make sense of it, or point me towards further tests that I
should run? My DC is an SBS2003 (sp1) machine, and the AV software is
installed on a W2k (sp4) member server. I have already tried removing
the machine from the domain, and adding it back in.

I will occasionally see a problem on the DC applying group policy, but
it always seems to correct itself, and when I run the command
manually, no errors are logged.


The AV support had me run the following : netstat -s 2 | find
"Segments Retransmitted"
This number kept rising, which they said indicated packet loss on the
network.

Here are the parts of netdiag and dcdiag that failed:

From Netdiag:
Netdiag from the w2k member server:
Kerberos test. . . . . . . . . . . : Failed
Cached Tickets:
Server: krbtgt/BRADFORDREALESTATESERVICESCORP.LOCAL
End Time: 9/30/2005 3:40:11
Renew Time: 10/6/2005 17:40:11
Server: krbtgt/BRADFORDREALESTATESERVICESCORP.LOCAL
End Time: 9/29/2005 19:06:43
Renew Time: 10/6/2005 9:06:43
Server:
LDAP/bradforddc01.BradfordRealEstateServicesCorp.local/BRADFORDREALES
End Time: 9/30/2005 3:40:11
Renew Time: 10/6/2005 17:40:11
Server: HOST/BRADFORDDC01
End Time: 9/29/2005 19:06:43
Renew Time: 10/6/2005 9:06:43
Server: HOST/bradforddc01.BradfordRealEstateServicesCorp.local
End Time: 9/29/2005 19:06:43
Renew Time: 10/6/2005 9:06:43
Server:
ldap/bradforddc01.BradfordRealEstateServicesCorp.local/BradfordRealEstateServicesCorp.local
End Time: 9/29/2005 19:06:43
Renew Time: 10/6/2005 9:06:43
Server: LDAP/bradforddc01.BradfordRealEstateServicesCorp.local
End Time: 9/29/2005 19:06:43
Renew Time: 10/6/2005 9:06:43
Server: host/bradford-w2k.bradfordrealestateservicescorp.local
End Time: 9/29/2005 19:06:43
Renew Time: 10/6/2005 9:06:43
[FATAL] Kerberos does not have a ticket for BRADFORD-W2K$.

Ran the following on the w2k member server: dcdiag /s:bradforddc01:
Starting test: Services
IsmServ Service is stopped on [BRADFORDDC01]
RPCLOCATOR Service is stopped on [BRADFORDDC01]
TrkWks Service is stopped on [BRADFORDDC01]
TrkSvr Service is stopped on [BRADFORDDC01]
......................... BRADFORDDC01 failed test Services

Thanks,

Rob
Click to expand...
Click to expand...
Click to expand...
 
R

Robert Zahm

Matt,

I did, that is the exact output. I was mistaken, both of those IPs are on
the same NIC, the other NIC is disabled.

Thanks,

Rob


Matt Gibson said:
Robert,

Did you copy and paste exactly what was shown?

What you've got there, is two IP addresses on the same subnet...which is
somewhat okay if they're on the same NIC, but you cannot have two NICs
with IP addresses on the same subnet.

Copy and paste the exact output of ipconfig /all if you haven't already.

Matt Gibson - GSEC

Robert Zahm said:
Matt,

It has two NICs. I think our ultimate goal was to have one NIC listen
for external traffic (eg, remote access and the extranet), and have the
other NIC handle the internal traffic. Do you think this is causing
problems?

Thanks,

Rob


Matt Gibson said:
Is there a reason you have two IP addresses on your SBS box?

Matt Gibson - GSEC

Matt,

SBS:

Windows IP Configuration
Host Name . . . . . . . . . . . . : bradforddc01
Primary Dns Suffix . . . . . . . :
BradfordRealEstateServicesCorp.local
Node Type . . . . . . . . . . . . : Unknown
IP Routing Enabled. . . . . . . . : Yes
WINS Proxy Enabled. . . . . . . . : Yes
DNS Suffix Search List. . . . . . :
BradfordRealEstateServicesCorp.local

Ethernet adapter Server Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel(R) PRO/1000 MT Network
Connection
Physical Address. . . . . . . . . : 00-C0-9F-46-FE-CB
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 216.5.223.251
Subnet Mask . . . . . . . . . . . : 255.255.255.0
IP Address. . . . . . . . . . . . : 216.5.223.201
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 216.5.223.17
DNS Servers . . . . . . . . . . . : 216.5.223.201
Primary WINS Server . . . . . . . : 216.5.223.201



W2K:
Windows 2000 IP Configuration

Host Name . . . . . . . . . . . . : bradford-w2k
Primary DNS Suffix . . . . . . . :
BradfordRealEstateServicesCorp.local
Node Type . . . . . . . . . . . . : Broadcast
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . :
BradfordRealEstateServicesCorp.local

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : IBM 10/100 NetFinity Fault Tolerant
Adapter
Physical Address. . . . . . . . . : 00-06-29-57-5C-B5
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 216.5.223.202
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 216.5.223.17
DNS Servers . . . . . . . . . . . : 216.5.223.201


Thanks for any insight you can provide,

Rob

post an ipconfig /all from the member server and the SBS server.

Matt Gibson - GSEC

I am having problems with my AV software, and they claim that it is a
networking issue. As such, I have performed the steps below, can
anybody make sense of it, or point me towards further tests that I
should run? My DC is an SBS2003 (sp1) machine, and the AV software is
installed on a W2k (sp4) member server. I have already tried removing
the machine from the domain, and adding it back in.

I will occasionally see a problem on the DC applying group policy,
but it always seems to correct itself, and when I run the command
manually, no errors are logged.


The AV support had me run the following : netstat -s 2 | find
"Segments Retransmitted"
This number kept rising, which they said indicated packet loss on the
network.

Here are the parts of netdiag and dcdiag that failed:

From Netdiag:
Netdiag from the w2k member server:
Kerberos test. . . . . . . . . . . : Failed
Cached Tickets:
Server: krbtgt/BRADFORDREALESTATESERVICESCORP.LOCAL
End Time: 9/30/2005 3:40:11
Renew Time: 10/6/2005 17:40:11
Server: krbtgt/BRADFORDREALESTATESERVICESCORP.LOCAL
End Time: 9/29/2005 19:06:43
Renew Time: 10/6/2005 9:06:43
Server:
LDAP/bradforddc01.BradfordRealEstateServicesCorp.local/BRADFORDREALES
End Time: 9/30/2005 3:40:11
Renew Time: 10/6/2005 17:40:11
Server: HOST/BRADFORDDC01
End Time: 9/29/2005 19:06:43
Renew Time: 10/6/2005 9:06:43
Server: HOST/bradforddc01.BradfordRealEstateServicesCorp.local
End Time: 9/29/2005 19:06:43
Renew Time: 10/6/2005 9:06:43
Server:
ldap/bradforddc01.BradfordRealEstateServicesCorp.local/BradfordRealEstateServicesCorp.local
End Time: 9/29/2005 19:06:43
Renew Time: 10/6/2005 9:06:43
Server: LDAP/bradforddc01.BradfordRealEstateServicesCorp.local
End Time: 9/29/2005 19:06:43
Renew Time: 10/6/2005 9:06:43
Server: host/bradford-w2k.bradfordrealestateservicescorp.local
End Time: 9/29/2005 19:06:43
Renew Time: 10/6/2005 9:06:43
[FATAL] Kerberos does not have a ticket for BRADFORD-W2K$.

Ran the following on the w2k member server: dcdiag /s:bradforddc01:
Starting test: Services
IsmServ Service is stopped on [BRADFORDDC01]
RPCLOCATOR Service is stopped on [BRADFORDDC01]
TrkWks Service is stopped on [BRADFORDDC01]
TrkSvr Service is stopped on [BRADFORDDC01]
......................... BRADFORDDC01 failed test Services

Thanks,

Rob
Click to expand...
Click to expand...
Click to expand...
 
M

Matt Gibson

Robert,

Try removing the second IP address, and running the connect to internet
wizard again.

(You'll find the second IP address, under the "Advanced" button on the TCP
options)

Matt Gibson - GSEC

Robert Zahm said:
Matt,

I did, that is the exact output. I was mistaken, both of those IPs are on
the same NIC, the other NIC is disabled.

Thanks,

Rob


Matt Gibson said:
Robert,

Did you copy and paste exactly what was shown?

What you've got there, is two IP addresses on the same subnet...which is
somewhat okay if they're on the same NIC, but you cannot have two NICs
with IP addresses on the same subnet.

Copy and paste the exact output of ipconfig /all if you haven't already.

Matt Gibson - GSEC

Robert Zahm said:
Matt,

It has two NICs. I think our ultimate goal was to have one NIC listen
for external traffic (eg, remote access and the extranet), and have the
other NIC handle the internal traffic. Do you think this is causing
problems?

Thanks,

Rob


Is there a reason you have two IP addresses on your SBS box?

Matt Gibson - GSEC

Matt,

SBS:

Windows IP Configuration
Host Name . . . . . . . . . . . . : bradforddc01
Primary Dns Suffix . . . . . . . :
BradfordRealEstateServicesCorp.local
Node Type . . . . . . . . . . . . : Unknown
IP Routing Enabled. . . . . . . . : Yes
WINS Proxy Enabled. . . . . . . . : Yes
DNS Suffix Search List. . . . . . :
BradfordRealEstateServicesCorp.local

Ethernet adapter Server Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel(R) PRO/1000 MT Network
Connection
Physical Address. . . . . . . . . : 00-C0-9F-46-FE-CB
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 216.5.223.251
Subnet Mask . . . . . . . . . . . : 255.255.255.0
IP Address. . . . . . . . . . . . : 216.5.223.201
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 216.5.223.17
DNS Servers . . . . . . . . . . . : 216.5.223.201
Primary WINS Server . . . . . . . : 216.5.223.201



W2K:
Windows 2000 IP Configuration

Host Name . . . . . . . . . . . . : bradford-w2k
Primary DNS Suffix . . . . . . . :
BradfordRealEstateServicesCorp.local
Node Type . . . . . . . . . . . . : Broadcast
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . :
BradfordRealEstateServicesCorp.local

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : IBM 10/100 NetFinity Fault
Tolerant Adapter
Physical Address. . . . . . . . . : 00-06-29-57-5C-B5
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 216.5.223.202
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 216.5.223.17
DNS Servers . . . . . . . . . . . : 216.5.223.201


Thanks for any insight you can provide,

Rob

post an ipconfig /all from the member server and the SBS server.

Matt Gibson - GSEC

I am having problems with my AV software, and they claim that it is a
networking issue. As such, I have performed the steps below, can
anybody make sense of it, or point me towards further tests that I
should run? My DC is an SBS2003 (sp1) machine, and the AV software is
installed on a W2k (sp4) member server. I have already tried
removing the machine from the domain, and adding it back in.

I will occasionally see a problem on the DC applying group policy,
but it always seems to correct itself, and when I run the command
manually, no errors are logged.


The AV support had me run the following : netstat -s 2 | find
"Segments Retransmitted"
This number kept rising, which they said indicated packet loss on
the network.

Here are the parts of netdiag and dcdiag that failed:

From Netdiag:
Netdiag from the w2k member server:
Kerberos test. . . . . . . . . . . : Failed
Cached Tickets:
Server: krbtgt/BRADFORDREALESTATESERVICESCORP.LOCAL
End Time: 9/30/2005 3:40:11
Renew Time: 10/6/2005 17:40:11
Server: krbtgt/BRADFORDREALESTATESERVICESCORP.LOCAL
End Time: 9/29/2005 19:06:43
Renew Time: 10/6/2005 9:06:43
Server:
LDAP/bradforddc01.BradfordRealEstateServicesCorp.local/BRADFORDREALES
End Time: 9/30/2005 3:40:11
Renew Time: 10/6/2005 17:40:11
Server: HOST/BRADFORDDC01
End Time: 9/29/2005 19:06:43
Renew Time: 10/6/2005 9:06:43
Server: HOST/bradforddc01.BradfordRealEstateServicesCorp.local
End Time: 9/29/2005 19:06:43
Renew Time: 10/6/2005 9:06:43
Server:
ldap/bradforddc01.BradfordRealEstateServicesCorp.local/BradfordRealEstateServicesCorp.local
End Time: 9/29/2005 19:06:43
Renew Time: 10/6/2005 9:06:43
Server: LDAP/bradforddc01.BradfordRealEstateServicesCorp.local
End Time: 9/29/2005 19:06:43
Renew Time: 10/6/2005 9:06:43
Server: host/bradford-w2k.bradfordrealestateservicescorp.local
End Time: 9/29/2005 19:06:43
Renew Time: 10/6/2005 9:06:43
[FATAL] Kerberos does not have a ticket for BRADFORD-W2K$.

Ran the following on the w2k member server: dcdiag /s:bradforddc01:
Starting test: Services
IsmServ Service is stopped on [BRADFORDDC01]
RPCLOCATOR Service is stopped on [BRADFORDDC01]
TrkWks Service is stopped on [BRADFORDDC01]
TrkSvr Service is stopped on [BRADFORDDC01]
......................... BRADFORDDC01 failed test Services

Thanks,

Rob
Click to expand...
Click to expand...
Click to expand...
 
R

Robert Zahm

Matt,

Thanks, I'll give that a try. Since this is a production domain controller,
I think I should wait until after hours today to run it, or will the wizard
update everything seamlessly (I'm also using remote access, if that makes a
difference)?

Thanks,

Rob


Matt Gibson said:
Robert,

Try removing the second IP address, and running the connect to internet
wizard again.

(You'll find the second IP address, under the "Advanced" button on the TCP
options)

Matt Gibson - GSEC

Robert Zahm said:
Matt,

I did, that is the exact output. I was mistaken, both of those IPs are
on the same NIC, the other NIC is disabled.

Thanks,

Rob


Matt Gibson said:
Robert,

Did you copy and paste exactly what was shown?

What you've got there, is two IP addresses on the same subnet...which is
somewhat okay if they're on the same NIC, but you cannot have two NICs
with IP addresses on the same subnet.

Copy and paste the exact output of ipconfig /all if you haven't already.

Matt Gibson - GSEC

Matt,

It has two NICs. I think our ultimate goal was to have one NIC listen
for external traffic (eg, remote access and the extranet), and have the
other NIC handle the internal traffic. Do you think this is causing
problems?

Thanks,

Rob


Is there a reason you have two IP addresses on your SBS box?

Matt Gibson - GSEC

Matt,

SBS:

Windows IP Configuration
Host Name . . . . . . . . . . . . : bradforddc01
Primary Dns Suffix . . . . . . . :
BradfordRealEstateServicesCorp.local
Node Type . . . . . . . . . . . . : Unknown
IP Routing Enabled. . . . . . . . : Yes
WINS Proxy Enabled. . . . . . . . : Yes
DNS Suffix Search List. . . . . . :
BradfordRealEstateServicesCorp.local

Ethernet adapter Server Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel(R) PRO/1000 MT Network
Connection
Physical Address. . . . . . . . . : 00-C0-9F-46-FE-CB
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 216.5.223.251
Subnet Mask . . . . . . . . . . . : 255.255.255.0
IP Address. . . . . . . . . . . . : 216.5.223.201
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 216.5.223.17
DNS Servers . . . . . . . . . . . : 216.5.223.201
Primary WINS Server . . . . . . . : 216.5.223.201



W2K:
Windows 2000 IP Configuration

Host Name . . . . . . . . . . . . : bradford-w2k
Primary DNS Suffix . . . . . . . :
BradfordRealEstateServicesCorp.local
Node Type . . . . . . . . . . . . : Broadcast
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . :
BradfordRealEstateServicesCorp.local

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : IBM 10/100 NetFinity Fault
Tolerant Adapter
Physical Address. . . . . . . . . : 00-06-29-57-5C-B5
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 216.5.223.202
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 216.5.223.17
DNS Servers . . . . . . . . . . . : 216.5.223.201


Thanks for any insight you can provide,

Rob

post an ipconfig /all from the member server and the SBS server.

Matt Gibson - GSEC

I am having problems with my AV software, and they claim that it is
a networking issue. As such, I have performed the steps below, can
anybody make sense of it, or point me towards further tests that I
should run? My DC is an SBS2003 (sp1) machine, and the AV software
is installed on a W2k (sp4) member server. I have already tried
removing the machine from the domain, and adding it back in.

I will occasionally see a problem on the DC applying group policy,
but it always seems to correct itself, and when I run the command
manually, no errors are logged.


The AV support had me run the following : netstat -s 2 | find
"Segments Retransmitted"
This number kept rising, which they said indicated packet loss on
the network.

Here are the parts of netdiag and dcdiag that failed:

From Netdiag:
Netdiag from the w2k member server:
Kerberos test. . . . . . . . . . . : Failed
Cached Tickets:
Server: krbtgt/BRADFORDREALESTATESERVICESCORP.LOCAL
End Time: 9/30/2005 3:40:11
Renew Time: 10/6/2005 17:40:11
Server: krbtgt/BRADFORDREALESTATESERVICESCORP.LOCAL
End Time: 9/29/2005 19:06:43
Renew Time: 10/6/2005 9:06:43
Server:
LDAP/bradforddc01.BradfordRealEstateServicesCorp.local/BRADFORDREALES
End Time: 9/30/2005 3:40:11
Renew Time: 10/6/2005 17:40:11
Server: HOST/BRADFORDDC01
End Time: 9/29/2005 19:06:43
Renew Time: 10/6/2005 9:06:43
Server: HOST/bradforddc01.BradfordRealEstateServicesCorp.local
End Time: 9/29/2005 19:06:43
Renew Time: 10/6/2005 9:06:43
Server:
ldap/bradforddc01.BradfordRealEstateServicesCorp.local/BradfordRealEstateServicesCorp.local
End Time: 9/29/2005 19:06:43
Renew Time: 10/6/2005 9:06:43
Server: LDAP/bradforddc01.BradfordRealEstateServicesCorp.local
End Time: 9/29/2005 19:06:43
Renew Time: 10/6/2005 9:06:43
Server: host/bradford-w2k.bradfordrealestateservicescorp.local
End Time: 9/29/2005 19:06:43
Renew Time: 10/6/2005 9:06:43
[FATAL] Kerberos does not have a ticket for BRADFORD-W2K$.

Ran the following on the w2k member server: dcdiag /s:bradforddc01:
Starting test: Services
IsmServ Service is stopped on [BRADFORDDC01]
RPCLOCATOR Service is stopped on [BRADFORDDC01]
TrkWks Service is stopped on [BRADFORDDC01]
TrkSvr Service is stopped on [BRADFORDDC01]
......................... BRADFORDDC01 failed test Services

Thanks,

Rob
Click to expand...
Click to expand...
Click to expand...
 
M

Matt Gibson

You can run the wizard with no problems...I've yet to see it bug anyone (and
I've run it over RDP)

If you CAN wait till after hours, that's always safer...just in case :)

Matt Gibson - GSEC

Robert Zahm said:
Matt,

Thanks, I'll give that a try. Since this is a production domain
controller, I think I should wait until after hours today to run it, or
will the wizard update everything seamlessly (I'm also using remote
access, if that makes a difference)?

Thanks,

Rob


Matt Gibson said:
Robert,

Try removing the second IP address, and running the connect to internet
wizard again.

(You'll find the second IP address, under the "Advanced" button on the
TCP options)

Matt Gibson - GSEC

Robert Zahm said:
Matt,

I did, that is the exact output. I was mistaken, both of those IPs are
on the same NIC, the other NIC is disabled.

Thanks,

Rob


Robert,

Did you copy and paste exactly what was shown?

What you've got there, is two IP addresses on the same subnet...which
is somewhat okay if they're on the same NIC, but you cannot have two
NICs with IP addresses on the same subnet.

Copy and paste the exact output of ipconfig /all if you haven't
already.

Matt Gibson - GSEC

Matt,

It has two NICs. I think our ultimate goal was to have one NIC listen
for external traffic (eg, remote access and the extranet), and have
the other NIC handle the internal traffic. Do you think this is
causing problems?

Thanks,

Rob


Is there a reason you have two IP addresses on your SBS box?

Matt Gibson - GSEC

Matt,

SBS:

Windows IP Configuration
Host Name . . . . . . . . . . . . : bradforddc01
Primary Dns Suffix . . . . . . . :
BradfordRealEstateServicesCorp.local
Node Type . . . . . . . . . . . . : Unknown
IP Routing Enabled. . . . . . . . : Yes
WINS Proxy Enabled. . . . . . . . : Yes
DNS Suffix Search List. . . . . . :
BradfordRealEstateServicesCorp.local

Ethernet adapter Server Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel(R) PRO/1000 MT Network
Connection
Physical Address. . . . . . . . . : 00-C0-9F-46-FE-CB
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 216.5.223.251
Subnet Mask . . . . . . . . . . . : 255.255.255.0
IP Address. . . . . . . . . . . . : 216.5.223.201
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 216.5.223.17
DNS Servers . . . . . . . . . . . : 216.5.223.201
Primary WINS Server . . . . . . . : 216.5.223.201



W2K:
Windows 2000 IP Configuration

Host Name . . . . . . . . . . . . : bradford-w2k
Primary DNS Suffix . . . . . . . :
BradfordRealEstateServicesCorp.local
Node Type . . . . . . . . . . . . : Broadcast
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . :
BradfordRealEstateServicesCorp.local

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : IBM 10/100 NetFinity Fault
Tolerant Adapter
Physical Address. . . . . . . . . : 00-06-29-57-5C-B5
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 216.5.223.202
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 216.5.223.17
DNS Servers . . . . . . . . . . . : 216.5.223.201


Thanks for any insight you can provide,

Rob

post an ipconfig /all from the member server and the SBS server.

Matt Gibson - GSEC

I am having problems with my AV software, and they claim that it is
a networking issue. As such, I have performed the steps below, can
anybody make sense of it, or point me towards further tests that I
should run? My DC is an SBS2003 (sp1) machine, and the AV software
is installed on a W2k (sp4) member server. I have already tried
removing the machine from the domain, and adding it back in.

I will occasionally see a problem on the DC applying group policy,
but it always seems to correct itself, and when I run the command
manually, no errors are logged.


The AV support had me run the following : netstat -s 2 | find
"Segments Retransmitted"
This number kept rising, which they said indicated packet loss on
the network.

Here are the parts of netdiag and dcdiag that failed:

From Netdiag:
Netdiag from the w2k member server:
Kerberos test. . . . . . . . . . . : Failed
Cached Tickets:
Server: krbtgt/BRADFORDREALESTATESERVICESCORP.LOCAL
End Time: 9/30/2005 3:40:11
Renew Time: 10/6/2005 17:40:11
Server: krbtgt/BRADFORDREALESTATESERVICESCORP.LOCAL
End Time: 9/29/2005 19:06:43
Renew Time: 10/6/2005 9:06:43
Server:
LDAP/bradforddc01.BradfordRealEstateServicesCorp.local/BRADFORDREALES
End Time: 9/30/2005 3:40:11
Renew Time: 10/6/2005 17:40:11
Server: HOST/BRADFORDDC01
End Time: 9/29/2005 19:06:43
Renew Time: 10/6/2005 9:06:43
Server: HOST/bradforddc01.BradfordRealEstateServicesCorp.local
End Time: 9/29/2005 19:06:43
Renew Time: 10/6/2005 9:06:43
Server:
ldap/bradforddc01.BradfordRealEstateServicesCorp.local/BradfordRealEstateServicesCorp.local
End Time: 9/29/2005 19:06:43
Renew Time: 10/6/2005 9:06:43
Server: LDAP/bradforddc01.BradfordRealEstateServicesCorp.local
End Time: 9/29/2005 19:06:43
Renew Time: 10/6/2005 9:06:43
Server: host/bradford-w2k.bradfordrealestateservicescorp.local
End Time: 9/29/2005 19:06:43
Renew Time: 10/6/2005 9:06:43
[FATAL] Kerberos does not have a ticket for BRADFORD-W2K$.

Ran the following on the w2k member server: dcdiag
/s:bradforddc01:
Starting test: Services
IsmServ Service is stopped on [BRADFORDDC01]
RPCLOCATOR Service is stopped on [BRADFORDDC01]
TrkWks Service is stopped on [BRADFORDDC01]
TrkSvr Service is stopped on [BRADFORDDC01]
......................... BRADFORDDC01 failed test
Services

Thanks,

Rob
Click to expand...
Click to expand...
Click to expand...
 
H

Hank Arnold

The order of the IP addresses can affect things, also. You could try
changing the order. I would *definitely* do any change that affects the IP
addresses or the order off shift.

--
Regards,
Hank Arnold

Matt Gibson said:
Robert,

Try removing the second IP address, and running the connect to internet
wizard again.

(You'll find the second IP address, under the "Advanced" button on the TCP
options)

Matt Gibson - GSEC

Robert Zahm said:
Matt,

I did, that is the exact output. I was mistaken, both of those IPs are
on the same NIC, the other NIC is disabled.

Thanks,

Rob


Matt Gibson said:
Robert,

Did you copy and paste exactly what was shown?

What you've got there, is two IP addresses on the same subnet...which is
somewhat okay if they're on the same NIC, but you cannot have two NICs
with IP addresses on the same subnet.

Copy and paste the exact output of ipconfig /all if you haven't already.

Matt Gibson - GSEC

Matt,

It has two NICs. I think our ultimate goal was to have one NIC listen
for external traffic (eg, remote access and the extranet), and have the
other NIC handle the internal traffic. Do you think this is causing
problems?

Thanks,

Rob


Is there a reason you have two IP addresses on your SBS box?

Matt Gibson - GSEC

Matt,

SBS:

Windows IP Configuration
Host Name . . . . . . . . . . . . : bradforddc01
Primary Dns Suffix . . . . . . . :
BradfordRealEstateServicesCorp.local
Node Type . . . . . . . . . . . . : Unknown
IP Routing Enabled. . . . . . . . : Yes
WINS Proxy Enabled. . . . . . . . : Yes
DNS Suffix Search List. . . . . . :
BradfordRealEstateServicesCorp.local

Ethernet adapter Server Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel(R) PRO/1000 MT Network
Connection
Physical Address. . . . . . . . . : 00-C0-9F-46-FE-CB
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 216.5.223.251
Subnet Mask . . . . . . . . . . . : 255.255.255.0
IP Address. . . . . . . . . . . . : 216.5.223.201
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 216.5.223.17
DNS Servers . . . . . . . . . . . : 216.5.223.201
Primary WINS Server . . . . . . . : 216.5.223.201



W2K:
Windows 2000 IP Configuration

Host Name . . . . . . . . . . . . : bradford-w2k
Primary DNS Suffix . . . . . . . :
BradfordRealEstateServicesCorp.local
Node Type . . . . . . . . . . . . : Broadcast
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . :
BradfordRealEstateServicesCorp.local

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : IBM 10/100 NetFinity Fault
Tolerant Adapter
Physical Address. . . . . . . . . : 00-06-29-57-5C-B5
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 216.5.223.202
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 216.5.223.17
DNS Servers . . . . . . . . . . . : 216.5.223.201


Thanks for any insight you can provide,

Rob

post an ipconfig /all from the member server and the SBS server.

Matt Gibson - GSEC

I am having problems with my AV software, and they claim that it is
a networking issue. As such, I have performed the steps below, can
anybody make sense of it, or point me towards further tests that I
should run? My DC is an SBS2003 (sp1) machine, and the AV software
is installed on a W2k (sp4) member server. I have already tried
removing the machine from the domain, and adding it back in.

I will occasionally see a problem on the DC applying group policy,
but it always seems to correct itself, and when I run the command
manually, no errors are logged.


The AV support had me run the following : netstat -s 2 | find
"Segments Retransmitted"
This number kept rising, which they said indicated packet loss on
the network.

Here are the parts of netdiag and dcdiag that failed:

From Netdiag:
Netdiag from the w2k member server:
Kerberos test. . . . . . . . . . . : Failed
Cached Tickets:
Server: krbtgt/BRADFORDREALESTATESERVICESCORP.LOCAL
End Time: 9/30/2005 3:40:11
Renew Time: 10/6/2005 17:40:11
Server: krbtgt/BRADFORDREALESTATESERVICESCORP.LOCAL
End Time: 9/29/2005 19:06:43
Renew Time: 10/6/2005 9:06:43
Server:
LDAP/bradforddc01.BradfordRealEstateServicesCorp.local/BRADFORDREALES
End Time: 9/30/2005 3:40:11
Renew Time: 10/6/2005 17:40:11
Server: HOST/BRADFORDDC01
End Time: 9/29/2005 19:06:43
Renew Time: 10/6/2005 9:06:43
Server: HOST/bradforddc01.BradfordRealEstateServicesCorp.local
End Time: 9/29/2005 19:06:43
Renew Time: 10/6/2005 9:06:43
Server:
ldap/bradforddc01.BradfordRealEstateServicesCorp.local/BradfordRealEstateServicesCorp.local
End Time: 9/29/2005 19:06:43
Renew Time: 10/6/2005 9:06:43
Server: LDAP/bradforddc01.BradfordRealEstateServicesCorp.local
End Time: 9/29/2005 19:06:43
Renew Time: 10/6/2005 9:06:43
Server: host/bradford-w2k.bradfordrealestateservicescorp.local
End Time: 9/29/2005 19:06:43
Renew Time: 10/6/2005 9:06:43
[FATAL] Kerberos does not have a ticket for BRADFORD-W2K$.

Ran the following on the w2k member server: dcdiag /s:bradforddc01:
Starting test: Services
IsmServ Service is stopped on [BRADFORDDC01]
RPCLOCATOR Service is stopped on [BRADFORDDC01]
TrkWks Service is stopped on [BRADFORDDC01]
TrkSvr Service is stopped on [BRADFORDDC01]
......................... BRADFORDDC01 failed test Services

Thanks,

Rob
Click to expand...
Click to expand...
Click to expand...
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

WCG Stats Friday 13 August 2021 1
WCG Stats Thursday 16 September 2021 1
WCG Stats Thursday 02 September 2021 1
WCG Stats Saturday 14 August 2021 1
WCG Stats Friday 07 July 2023 4
WCG Stats Thursday 03 February 2022 1
WCG Stats Monday 31 October 2022 2
WCG Stats Wednesday 06 October 2021 1

Top