Different Entries in DNS Servers

[msnews.microsoft.com]

We recently upgraded our 2 NT 4.0 DCs to Windows 2003 DCs. Both servers
were hosting DNS before and after the upgrade. All servers/clients point to
DC#2 as the primary and DC#1 as secondary (including the DCs themselves).
The Active Directory domain is setup as AD Integrated. Things are working
just fine, but there are alot more entries for the AD domain in DC#2 DNS
then DC#1 DNS (from Dynamic update). Shouldn't they have the same entries?
I ran DCDIAG on both DCs and all tests came back fine. Both DCs are listed
under the Name Servers tab.

 

[Kevin D. Goodknecht [MVP]]

In

We recently upgraded our 2 NT 4.0 DCs to Windows 2003 DCs. Both
servers were hosting DNS before and after the upgrade. All
servers/clients point to DC#2 as the primary and DC#1 as secondary
(including the DCs themselves). The Active Directory domain is setup
as AD Integrated. Things are working just fine, but there are alot
more entries for the AD domain in DC#2 DNS then DC#1 DNS (from
Dynamic update). Shouldn't they have the same entries? I ran DCDIAG
on both DCs and all tests came back fine. Both DCs are listed under
the Name Servers tab.

They should have the same records in them if replication is doing its job,
try running dcdiag with the /e /v switches

 

[msnews.microsoft.com]

Ran DCDIAG /e /v on both DCs. All tests were passed.

 

[Michael Johnston [MSFT]]

What entries are missing? Are the zones AD integrated? Please provide as much detail as possible about what specifically is
missing and how the zones are configured.

Thank you,
Mike Johnston
Microsoft Network Support
--

This posting is provided "AS IS" with no warranties, and confers no rights. Use of included script samples are subject to the
terms specified at
http://www.microsoft.com/info/cpyright.htm

Note: For the benefit of the community-at-large, all responses to this message are best directed to the newsgroup/thread from
which they originated.

 

[Ace Fekay [MVP]]

In

We recently upgraded our 2 NT 4.0 DCs to Windows 2003 DCs. Both
servers were hosting DNS before and after the upgrade. All
servers/clients point to DC#2 as the primary and DC#1 as secondary
(including the DCs themselves). The Active Directory domain is setup
as AD Integrated. Things are working just fine, but there are alot
more entries for the AD domain in DC#2 DNS then DC#1 DNS (from
Dynamic update). Shouldn't they have the same entries? I ran DCDIAG
on both DCs and all tests came back fine. Both DCs are listed under
the Name Servers tab.

Are both zones on each machine AD Integrated or is one a Primary and the
other an AD Integrated zone?

Are there any errors in your Event log? Post the Event ID #'s. As Michael
asked, what records are missing?

If they are both AD Integrated, then it's saying that AD replication is not
functioning. The Event log can tell us that with Netlogon and NTDSUtil
errors.

Could you also post an unedite ipconfig /all from both machines? That will
greatly help us.

Thanks


--
Regards,
Ace

Please direct all replies to the newsgroup so all can benefit.
This posting is provided "AS IS" with no warranties.

Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MVP
Microsoft Windows MVP - Active Directory

 

[msnews.microsoft.com]

I see no errors in any of the event logs on either DC.

The zone is AD Integrated on both DCs.

Keep in mind - these are NT 4.0 DC that were upgraded to 2003. There may be
"old" config stuff that is hanging around.

IPconfig for DC#1 (Old NT 4.0 PDC):

Windows IP Configuration
Host Name . . . . . . . . . . . . : nfapdc01
Primary Dns Suffix . . . . . . . : nfant01.futures.org
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : nfant01.futures.org
futures.org
futures.org
Ethernet adapter Local Area Connection 2:
Connection-specific DNS Suffix . : futures.org
Description . . . . . . . . . . . : HP NC3123 Fast Ethernet NIC
Physical Address. . . . . . . . . : 00-02-A5-44-9C-7A
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 10.1.1.1
Subnet Mask . . . . . . . . . . . : 255.255.0.0
Default Gateway . . . . . . . . . : 10.1.0.7
DNS Servers . . . . . . . . . . . : 10.1.1.2
10.1.1.1
Primary WINS Server . . . . . . . : 10.1.1.1
Secondary WINS Server . . . . . . : 10.1.1.2

IPconfig for DC#2 (Old NT 4.0 BDC):

Windows IP Configuration
Host Name . . . . . . . . . . . . : nfabdc01
Primary Dns Suffix . . . . . . . : nfant01.futures.org
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : nfant01.futures.org
futures.org
futures.org
Ethernet adapter Local Area Connection 2:
Connection-specific DNS Suffix . : futures.org
Description . . . . . . . . . . . : HP NC3123 Fast Ethernet NIC
Physical Address. . . . . . . . . : 00-02-A5-44-9D-04
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 10.1.1.2
Subnet Mask . . . . . . . . . . . : 255.255.0.0
Default Gateway . . . . . . . . . : 10.1.0.7
DNS Servers . . . . . . . . . . . : 10.1.1.2
10.1.1.1
Primary WINS Server . . . . . . . : 10.1.1.1
Secondary WINS Server . . . . . . : 10.1.1.2

"Ace Fekay [MVP]"

 

[msnews.microsoft.com]

Sorry - forgot about one of the questions:
DC#2 has over 250 entries (server/clients dynamic updates)
DC#1 has 20 (server/clients dynamic updates)

I see no errors in any of the event logs on either DC.

The zone is AD Integrated on both DCs.

Keep in mind - these are NT 4.0 DC that were upgraded to 2003. There may be
"old" config stuff that is hanging around.

IPconfig for DC#1 (Old NT 4.0 PDC):

Windows IP Configuration
Host Name . . . . . . . . . . . . : nfapdc01
Primary Dns Suffix . . . . . . . : nfant01.futures.org
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : nfant01.futures.org
futures.org
futures.org
Ethernet adapter Local Area Connection 2:
Connection-specific DNS Suffix . : futures.org
Description . . . . . . . . . . . : HP NC3123 Fast Ethernet NIC
Physical Address. . . . . . . . . : 00-02-A5-44-9C-7A
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 10.1.1.1
Subnet Mask . . . . . . . . . . . : 255.255.0.0
Default Gateway . . . . . . . . . : 10.1.0.7
DNS Servers . . . . . . . . . . . : 10.1.1.2
10.1.1.1
Primary WINS Server . . . . . . . : 10.1.1.1
Secondary WINS Server . . . . . . : 10.1.1.2

IPconfig for DC#2 (Old NT 4.0 BDC):

Windows IP Configuration
Host Name . . . . . . . . . . . . : nfabdc01
Primary Dns Suffix . . . . . . . : nfant01.futures.org
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : nfant01.futures.org
futures.org
futures.org
Ethernet adapter Local Area Connection 2:
Connection-specific DNS Suffix . : futures.org
Description . . . . . . . . . . . : HP NC3123 Fast Ethernet NIC
Physical Address. . . . . . . . . : 00-02-A5-44-9D-04
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 10.1.1.2
Subnet Mask . . . . . . . . . . . : 255.255.0.0
Default Gateway . . . . . . . . . : 10.1.0.7
DNS Servers . . . . . . . . . . . : 10.1.1.2
10.1.1.1
Primary WINS Server . . . . . . . : 10.1.1.1
Secondary WINS Server . . . . . . : 10.1.1.2

"Ace Fekay [MVP]"

 

[Ace Fekay [MVP]]

In

Sorry - forgot about one of the questions:
DC#2 has over 250 entries (server/clients dynamic updates)
DC#1 has 20 (server/clients dynamic updates)

Thanks for posting that information. They actually look pretty good. They
both show "Local Area Connection 2". Was or is there still another NIC on
these machines?

If both zones are AD Integrated and spelled exactly as:
nfant01.futures.org
Then I do not see why all the data is not available in the zones on each
computer, which should occur by default.

Is nfant01.futures.org the name of your AD DNS domain name or is it just
futures.org?

Are you doing any filtering of records in the GUI on the one machine not
showing up all that data? In W2k3, with AD Integrated zones, you can opt to
replicate that data to different application partitions. I'm assuming it's
still going into this domain's app partition, so it should be there. Check
the config on that just in case.



I would suggest to change DC2's

from:

to:

It just eliminates some minor boot time issues (5781 issues, for one) that
may occur.

You could also, on DC1, (since that doesn';t have all the records) delete
the zone and recreated it from scratch, making it AD Integrated again. By
default it should populate the zone information. You can also use ADSI Edit
(from the Tools on the cdrom) to check the zone in the app partition to see
exactly what records show up in there, which would be the records you would
see under the zone in the DNS GUI.


--
Regards,
Ace

Please direct all replies to the newsgroup so all can benefit.
This posting is provided "AS IS" with no warranties.

Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MVP
Microsoft Windows MVP - Active Directory

 

[msnews.microsoft.com]

I was not using any filters.
I deleted the zone on DC01 (being careful to not delete it from AD) and
receated it (AD Integrated). As of now it looks good, but I'll keep an eye
on it for awhile.

"Ace Fekay [MVP]"

 

[Ace Fekay [MVP]]

I was not using any filters.
I deleted the zone on DC01 (being careful to not delete it from AD) and
receated it (AD Integrated). As of now it looks good, but I'll keep an eye
on it for awhile.

The only way to "delete" the zone out of the AD database is if you were to
change the zone to a Primary. Then it pulls it out and places it into a text
file in the system32\dns folder. When you change it back ti AD Integrated,
it then pulls it out of systewm32\dns and places it into the Domain NC of
the AD database. I demo this all the time to my students. You can even
delete the SRV records. A simple restart of the netlogn service will return
them instantly.

Did you make those adjustments on DC2 I suggested in regards to which DNS
server? Here it is again:

from:

--
Regards,
Ace

Please direct all replies to the newsgroup so all can benefit.
This posting is provided "AS IS" with no warranties.

Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MVP
Microsoft Windows MVP - Active Directory

 

[msnews.microsoft.com]

Yes - I made that change. It sounded like great suggestion, thanks.
"Ace Fekay [MVP]"

 

[Ace Fekay [MVP]]

In

Yes - I made that change. It sounded like great suggestion, thanks.

Ok. Good. Still having problems?

--
Regards,
Ace

Please direct all replies to the newsgroup so all can benefit.
This posting is provided "AS IS" with no warranties.

Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MVP
Microsoft Windows MVP - Active Directory

 

[msnews.microsoft.com]

It seems fine now. I'm keeping an eye on it. Thanks for your help.

"Ace Fekay [MVP]"

 

[Ace Fekay [MVP]]

In

It seems fine now. I'm keeping an eye on it. Thanks for your help.

Good!
No prob for the help.

--
Regards,
Ace

Please direct all replies to the newsgroup so all can benefit.
This posting is provided "AS IS" with no warranties.

Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MVP
Microsoft Windows MVP - Active Directory