VPN DNS quit working

[Guest]

I am connecting to my network through a Firebox X500 using PPTP. Everything
was working fine until yesturday, when the DNS name resolution stopped
working correctly. I can ping everthing on the network by IP, but when I use
the names I get time outs from pjn.qsrch.net. I think my DNS requests are
going out to my works ISP and not to my domain DNS servers.I have tried
manually entering the DNS ip's into the VPN settings, but that hasn't changed
anything. I have looked at the local host file and only 127.0.0.1 LocalHost
is the only entry. Within the domain DNS is working correctly. This also
happened to another company PC yesturday. That one was running WIn 2000 SP4
and connecting through a different ISP than the one I am connecting through
at home. I am running Win XP SP2 w/all updates installed. Both pc's get the
same response from pjn.qsrch.net when trying DNS name resolution to domain
resources and both can browse the Internet just fine. Any ideas?

 

[Robert L [MS-MVP]]

1. use nslookup to check the DNS status.
2. If you use windows RRAS as VPN, check the DNS settings on the server.

Don't send e-mail or reply to me except you need consulting services. Posting on MS newsgroup will benefit all readers and you may get more help.

Bob Lin, MS-MVP, MCSE & CNE
How to Setup Windows, Network, VPN & Remote Access on http://www.HowToNetworking.com
Networking, Internet, Routing, VPN Troubleshooting on http://www.ChicagoTech.net
This posting is provided "AS IS" with no warranties.

I am connecting to my network through a Firebox X500 using PPTP. Everything
was working fine until yesturday, when the DNS name resolution stopped
working correctly. I can ping everthing on the network by IP, but when I use
the names I get time outs from pjn.qsrch.net. I think my DNS requests are
going out to my works ISP and not to my domain DNS servers.I have tried
manually entering the DNS ip's into the VPN settings, but that hasn't changed
anything. I have looked at the local host file and only 127.0.0.1 LocalHost
is the only entry. Within the domain DNS is working correctly. This also
happened to another company PC yesturday. That one was running WIn 2000 SP4
and connecting through a different ISP than the one I am connecting through
at home. I am running Win XP SP2 w/all updates installed. Both pc's get the
same response from pjn.qsrch.net when trying DNS name resolution to domain
resources and both can browse the Internet just fine. Any ideas?

 

[Guest]

I put entries of my four servers in my local host file and that allows me to
ping them by name, but I get the following for anything else.

C:\DOCUME~1\STRONG~1>tracert jkljk

Tracing route to pjn.qsrch.net [64.74.134.14]
over a maximum of 30 hops:

1 3 ms 2 ms 2 ms 192.168.0.1
2 * * * Request timed out.
3 11 ms 11 ms 11 ms 68.86.99.113
4 11 ms 11 ms 11 ms 68.86.96.21
5 11 ms 11 ms 15 ms 68.86.96.26
6 12 ms 14 ms 13 ms 68.86.96.121
7 32 ms 16 ms 14 ms 68.86.96.126
8 16 ms 11 ms 11 ms 68.86.96.238
9 34 ms 18 ms 16 ms 12.118.60.5
10 15 ms 13 ms 14 ms 12.123.44.194
11 30 ms 28 ms 28 ms tbr2-cl1.sffca.ip.att.net [12.122.12.113]
12 30 ms 28 ms 28 ms gar1-p390.sn1ca.ip.att.net [12.123.195.218]
13 30 ms 29 ms 31 ms 12.119.139.22
14 30 ms 30 ms 29 ms border3.pc2-0-bbnet2.sje.pnap.net
[66.151.144.71
]
15 30 ms 34 ms 29 ms newnet-2.border1.sje.pnap.net [66.151.157.146]
16 * * * Request timed out.
17 * * * Request timed out.
18 * * * Request timed out.
19 * * * Request timed out.
20 * * * Request timed out.
21 * ^C

When not using VPN

C:\DOCUME~1\STRONG~1>nslookup
*** Can't find server name for address 192.168.0.1: Non-existent domain
*** Default servers are not available
Default Server: UnKnown
Address: 192.168.0.1

exit

When using VPN

C:\DOCUME~1\STRONG~1>nslookup
*** Can't find server name for address 192.168.0.1: Non-existent domain
*** Can't find server name for address 192.168.1.3: Non-existent domain
*** Can't find server name for address 192.168.1.2: Non-existent domain
*** Default servers are not available
Default Server: UnKnown
Address: 192.168.0.1

192.168.1.3/1.2 are my DNS servers. I swapped out the other PC(win2000 SP4)
that was having the same problems with a brand new Win XP SP2 machine and
configured the VPN the same and it works just fine. I don't know whats
happened to these two.

Joe S.

 

[Guest]

From what I can determine is that the VPN connection is not using the DNS
settings I put in. It always uses the wireless cards DNS settings, I presume
since I don't know the DNS servers I get from comcast.net through my cable
modem. I got nslookup to correctly query my domain resources when I set the
DNS server to one of mine, but using ping I still get the responses from the
outside server. How do I get the VPN connection to use only my DNS servers,
they have their own forwarders. Do I need to uninstall my network adapter and
reinstall? ANy ideas?

I put entries of my four servers in my local host file and that allows me to
ping them by name, but I get the following for anything else.

C:\DOCUME~1\STRONG~1>tracert jkljk

Tracing route to pjn.qsrch.net [64.74.134.14]
over a maximum of 30 hops:

1 3 ms 2 ms 2 ms 192.168.0.1
2 * * * Request timed out.
3 11 ms 11 ms 11 ms 68.86.99.113
4 11 ms 11 ms 11 ms 68.86.96.21
5 11 ms 11 ms 15 ms 68.86.96.26
6 12 ms 14 ms 13 ms 68.86.96.121
7 32 ms 16 ms 14 ms 68.86.96.126
8 16 ms 11 ms 11 ms 68.86.96.238
9 34 ms 18 ms 16 ms 12.118.60.5
10 15 ms 13 ms 14 ms 12.123.44.194
11 30 ms 28 ms 28 ms tbr2-cl1.sffca.ip.att.net [12.122.12.113]
12 30 ms 28 ms 28 ms gar1-p390.sn1ca.ip.att.net [12.123.195.218]
13 30 ms 29 ms 31 ms 12.119.139.22
14 30 ms 30 ms 29 ms border3.pc2-0-bbnet2.sje.pnap.net
[66.151.144.71
]
15 30 ms 34 ms 29 ms newnet-2.border1.sje.pnap.net [66.151.157.146]
16 * * * Request timed out.
17 * * * Request timed out.
18 * * * Request timed out.
19 * * * Request timed out.
20 * * * Request timed out.
21 * ^C

When not using VPN

C:\DOCUME~1\STRONG~1>nslookup
*** Can't find server name for address 192.168.0.1: Non-existent domain
*** Default servers are not available
Default Server: UnKnown
Address: 192.168.0.1

exit

When using VPN

C:\DOCUME~1\STRONG~1>nslookup
*** Can't find server name for address 192.168.0.1: Non-existent domain
*** Can't find server name for address 192.168.1.3: Non-existent domain
*** Can't find server name for address 192.168.1.2: Non-existent domain
*** Default servers are not available
Default Server: UnKnown
Address: 192.168.0.1

192.168.1.3/1.2 are my DNS servers. I swapped out the other PC(win2000 SP4)
that was having the same problems with a brand new Win XP SP2 machine and
configured the VPN the same and it works just fine. I don't know whats
happened to these two.

Joe S.

1. use nslookup to check the DNS status.
2. If you use windows RRAS as VPN, check the DNS settings on the server.

Don't send e-mail or reply to me except you need consulting services. Posting on MS newsgroup will benefit all readers and you may get more help.

Bob Lin, MS-MVP, MCSE & CNE
How to Setup Windows, Network, VPN & Remote Access on http://www.HowToNetworking.com
Networking, Internet, Routing, VPN Troubleshooting on http://www.ChicagoTech.net
This posting is provided "AS IS" with no warranties.

I am connecting to my network through a Firebox X500 using PPTP. Everything
was working fine until yesturday, when the DNS name resolution stopped
working correctly. I can ping everthing on the network by IP, but when I use
the names I get time outs from pjn.qsrch.net. I think my DNS requests are
going out to my works ISP and not to my domain DNS servers.I have tried
manually entering the DNS ip's into the VPN settings, but that hasn't changed
anything. I have looked at the local host file and only 127.0.0.1 LocalHost
is the only entry. Within the domain DNS is working correctly. This also
happened to another company PC yesturday. That one was running WIn 2000 SP4
and connecting through a different ISP than the one I am connecting through
at home. I am running Win XP SP2 w/all updates installed. Both pc's get the
same response from pjn.qsrch.net when trying DNS name resolution to domain
resources and both can browse the Internet just fine. Any ideas?

 

[Rebecca Chen [MSFT]]

Hi Joe,

I am not quite catch this issue and would like to confirm the following
information regarding to this issue:

This issue only occurs on two problematic clients.
Where is the wireless cards, is the wireless card used for the client to
communicate with other workstations in the LAN?




I can ping everthing on the network by IP, but when I use
the names I get time outs from pjn.qsrch.net.

1. According to the output of tracert, the client use pjn.qsrch.net as the
DNS server to resolve the name.
2. From the output of the NSlookup, without VPN, the client only want to
find 192.168.0.1, have you static configure 192.168.0.1 as your DNS server
in wireless NIC TCP/IP properties?
3. Is the 192.168.1.2 and 192.168.1.3 the DNS server set in VPN connection
TCP properties? Is the DNS configured in VPN connection is the correct one?

According to my knowledge, there is configuration in VPC connection to use
VPN connection as the default gateway, however, Windows will according to
the binding order to find the connection and use the corresponding DNS
server. Please use the following steps to open up the protocol binding:

Right click My network places and choose Properties.
Click Advanced menu, click Advanced Settings and you can see the Adapters
and Bindings.
You can choose the connection which contains the DNS sever you desirabled
and click up arrow to change the order.

More details, can be found from the link below:

Configuring the Protocol Binding Order
http://www.microsoft.com/resources/documentation/Windows/XP/all/reskit/en-us
/Default.asp?url=/resources/documentation/Windows/XP/all/reskit/en-us/prcf_o
mn_xhsi.asp

If the issue persists, please let me know the details information about the
connections, please keep the VPN connection up and open CMD, issue the
following commands:
ipconfig /all > c:\ip.txt
route print > c:\route.txt

Send me the c:\ip.txt and c:\route.txt files at (e-mail address removed) for
research. Please also let me know the correct binding order and the which
DNS you want to use.

I look forward to your reply.

--------------------

Thread-Topic: VPN DNS quit working
thread-index: AcVuFtb8150UhaYWQ5iua3N+QtLKsQ==
X-WBNR-Posting-Host: 24.19.91.207
From: =?Utf-8?B?Sm9lIFMu?= <[email protected]>
References: <[email protected]>

Subject: Re: VPN DNS quit working
Date: Fri, 10 Jun 2005 16:48:02 -0700
Lines: 96
Message-ID: <[email protected]>
MIME-Version: 1.0
Content-Type: text/plain;
charset="Utf-8"
Content-Transfer-Encoding: 7bit
X-Newsreader: Microsoft CDO for Windows 2000
Content-Class: urn:content-classes:message
Importance: normal
Priority: normal
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.3790.0
Newsgroups: microsoft.public.windowsxp.network_web
NNTP-Posting-Host: TK2MSFTNGXA03.phx.gbl 10.40.2.250
Path: TK2MSFTNGXA01.phx.gbl!TK2MSFTNGXA03.phx.gbl
Xref: TK2MSFTNGXA01.phx.gbl microsoft.public.windowsxp.network_web:54468
X-Tomcat-NG: microsoft.public.windowsxp.network_web

From what I can determine is that the VPN connection is not using the DNS
settings I put in. It always uses the wireless cards DNS settings, I presume
since I don't know the DNS servers I get from comcast.net through my cable
modem. I got nslookup to correctly query my domain resources when I set the
DNS server to one of mine, but using ping I still get the responses from the
outside server. How do I get the VPN connection to use only my DNS servers,
they have their own forwarders. Do I need to uninstall my network adapter and
reinstall? ANy ideas?

I put entries of my four servers in my local host file and that allows me to
ping them by name, but I get the following for anything else.

C:\DOCUME~1\STRONG~1>tracert jkljk

Tracing route to pjn.qsrch.net [64.74.134.14]
over a maximum of 30 hops:

1 3 ms 2 ms 2 ms 192.168.0.1
2 * * * Request timed out.
3 11 ms 11 ms 11 ms 68.86.99.113
4 11 ms 11 ms 11 ms 68.86.96.21
5 11 ms 11 ms 15 ms 68.86.96.26
6 12 ms 14 ms 13 ms 68.86.96.121
7 32 ms 16 ms 14 ms 68.86.96.126
8 16 ms 11 ms 11 ms 68.86.96.238
9 34 ms 18 ms 16 ms 12.118.60.5
10 15 ms 13 ms 14 ms 12.123.44.194
11 30 ms 28 ms 28 ms tbr2-cl1.sffca.ip.att.net [12.122.12.113]
12 30 ms 28 ms 28 ms gar1-p390.sn1ca.ip.att.net [12.123.195.218]
13 30 ms 29 ms 31 ms 12.119.139.22
14 30 ms 30 ms 29 ms border3.pc2-0-bbnet2.sje.pnap.net
[66.151.144.71
]
15 30 ms 34 ms 29 ms newnet-2.border1.sje.pnap.net [66.151.157.146]
16 * * * Request timed out.
17 * * * Request timed out.
18 * * * Request timed out.
19 * * * Request timed out.
20 * * * Request timed out.
21 * ^C

When not using VPN

C:\DOCUME~1\STRONG~1>nslookup
*** Can't find server name for address 192.168.0.1: Non-existent domain
*** Default servers are not available
Default Server: UnKnown
Address: 192.168.0.1

exit

When using VPN

C:\DOCUME~1\STRONG~1>nslookup
*** Can't find server name for address 192.168.0.1: Non-existent domain
*** Can't find server name for address 192.168.1.3: Non-existent domain
*** Can't find server name for address 192.168.1.2: Non-existent domain
*** Default servers are not available
Default Server: UnKnown
Address: 192.168.0.1

192.168.1.3/1.2 are my DNS servers. I swapped out the other PC(win2000 SP4)
that was having the same problems with a brand new Win XP SP2 machine and
configured the VPN the same and it works just fine. I don't know whats
happened to these two.

Joe S.

1. use nslookup to check the DNS status.
2. If you use windows RRAS as VPN, check the DNS settings on the server.

Don't send e-mail or reply to me except you need consulting services. Posting on MS newsgroup will benefit all readers and you may get more help.

Bob Lin, MS-MVP, MCSE & CNE
How to Setup Windows, Network, VPN & Remote Access on http://www.HowToNetworking.com
Networking, Internet, Routing, VPN Troubleshooting on http://www.ChicagoTech.net
This posting is provided "AS IS" with no warranties.

I am connecting to my network through a Firebox X500 using PPTP. Everything
was working fine until yesturday, when the DNS name resolution stopped
working correctly. I can ping everthing on the network by IP, but when I use
the names I get time outs from pjn.qsrch.net. I think my DNS requests are
going out to my works ISP and not to my domain DNS servers.I have tried
manually entering the DNS ip's into the VPN settings, but that hasn't changed
anything. I have looked at the local host file and only 127.0.0.1 LocalHost
is the only entry. Within the domain DNS is working correctly. This also
happened to another company PC yesturday. That one was running WIn 2000 SP4
and connecting through a different ISP than the one I am connecting through
at home. I am running Win XP SP2 w/all updates installed. Both pc's get the
same response from pjn.qsrch.net when trying DNS name resolution to domain
resources and both can browse the Internet just fine. Any ideas?

Best regards,

Rebecca Chen

MCSE2000 MCDBA CCNA


Microsoft Online Partner Support
Get Secure! - www.microsoft.com/security

=====================================================

When responding to posts, please "Reply to Group" via your newsreader so
that others may learn and benefit from your issue.

=====================================================
This posting is provided "AS IS" with no warranties, and confers no rights.