DNS Resolution Problem

[Asif Attari]

hello,

I have a system with two NICs,one for the LAN which is
connected to win2k server with AD configured up and
running fine,and the other NIC is connected to DSL router
for browsing services,browsing is done through ISA clients.

when I disable Lan NIC it starts pinging the WAN DNS or
Gateway,provided by DSL service provider and when enabled
it stops pinging.AD DNS is on the seperate machine.

plz help me out with this problem

nadeem
karachi,pakistan

 

[William Stacey [MVP]]

Please expand. What starts pinging what? A client, the server?

 

[Asif Attari]

DSL service provider's Gateway & DNS Server.

-----Original Message-----
Please expand. What starts pinging what? A client, the server?

--
William Stacey, MVP



.

 

[William Stacey [MVP]]

Sorry Asif, this does not help much. Walk us down the path of what your
doing and what your seeing step by step. Cheers!

 

[Ace Fekay [MVP]]

In

hello,

I have a system with two NICs,one for the LAN which is
connected to win2k server with AD configured up and
running fine,and the other NIC is connected to DSL router
for browsing services,browsing is done through ISA clients.

when I disable Lan NIC it starts pinging the WAN DNS or
Gateway,provided by DSL service provider and when enabled
it stops pinging.AD DNS is on the seperate machine.

plz help me out with this problem

nadeem
karachi,pakistan

Not understanding what is pinging what, but maybe if I see past this, I
believe what's happening is a config issue with the dual NICs.

Nadeem, try these steps:

Suggestions, and keep in mind, when mentioning "other NICs", they are the
subnets that the NICs are on that your AD infrastructure is not on.

1. Insure that both the NICS only point to your internal DNS server(s) only
and none others.

2. In Network & Dialup properties, Advanced Menu item, Advanced Settings,
move the internal NIC (the network that AD is on) to the top of the binding
order (top of the list).

3. Disable NetBIOS on the outer NIC.

Do you have RRAS installed? Is so, you may want
to take a look at this to stop NetBIOS on teh RRAS interfaces:
296379 - How to Disable NetBIOS on an Incoming Remote Access Interface [Reg
Entry]:
http://support.microsoft.com/?id=296379
Otherwise, RRAS or not, it will cause duplicate name errors because Windows
sees itself with multi names thru the Browser service but with different
IPs.

4. Disable File and Print services and disable MS Client on the outer NIC.
Uncheck reg this connection in DNS tab of IP properties/Advanced. Now if you
need these for whatever reason for resource access from clients, then you
would probably have to keep them on but since its only for the external
interface, just disable it.

5. Since you say this machine is a Domain Controller, in DNS properties,
delete the other NIC references for the LdapIpAddress - the blank
domain FQDN - that looks like (same as parent). If this is a GC, you need
to also stop the GC record as well.
To stop these from registering that info, use this method (this was taken
from):
http://support.microsoft.com/?id=295328)

6. Whether DNS is installed on this machine or a different machine
internally, and you are using ISA, then create a rule and apply it to allow
DNS traffic from this machine or the other machine's IP.

--
Regards,
Ace

Please direct all replies ONLY to the Microsoft public newsgroups
so all can benefit.

This posting is provided "AS-IS" with no warranties or guarantees
and confers no rights.

Ace Fekay, MCSE 2003 & 2000, MCSA 2003 & 2000, MCSE+I, MCT, MVP
Microsoft Windows MVP - Active Directory

HAM AND EGGS: A day's work for a chicken;
A lifetime commitment for a pig.