DNS lookups timing out

Similar Messages

• DNS request timed out. timeout was 2 seconds. *** Request to self timed-out

  I am having an issue with one of my domain controllers (Server 2012 R2). It is a DNS server as well and it times out 100% of then time when attempting connect to either of the two trusted forests that are setup as conditional forwarders. There is also a
  delay or a time out the first few times when attempting to resolve an external site such as google.com. The domain controller functions fine. All routing seems to fine, because I can telnet on port 53 to the trusted forest's DCs. They can even use the problem
  DNS server to resolve hosts. It just does work from my controller to the other forest. Here is an example of what is happening.
  > external.forest.dc
  Server:  problem.local.dc
  Address:  192.168.1.8
  DNS request timed out.
      timeout was 2 seconds.
  DNS request timed out.
      timeout was 2 seconds.
  *** Request to problem.local.dc timed-out
  > external.forest.dc
  Server:  problem.local.dc
  Address:  192.168.1.8
  DNS request timed out.
      timeout was 2 seconds.
  DNS request timed out.
      timeout was 2 seconds.
  *** Request to problem.local.dc timed-out
  Google will resolve eventually resolve
  > google.com
  Server:  problem.local.dc
  Address:  192.168.1.8
  DNS request timed out.
      timeout was 2 seconds.
  DNS request timed out.
      timeout was 2 seconds.
  *** Request to problem.local.dc timed-out
  > google.com
  Server:  problem.local.dc
  Address:  192.168.1.8
  DNS request timed out.
      timeout was 2 seconds.
  DNS request timed out.
      timeout was 2 seconds.
  *** Request to problem.local.dc timed-out
  > google.com
  Server:  problem.local.dc
  Address:  192.168.1.8
  Non-authoritative answer:
  Name:    google.com
  Addresses:  2607:f8b0:4006:808::1001
            74.125.226.67
            74.125.226.66
            74.125.226.72
            74.125.226.69
            74.125.226.68
            74.125.226.70
            74.125.226.73
            74.125.226.64
            74.125.226.65
            74.125.226.71
            74.125.226.78
  The other DC works as it should:
  > external.forest.dc
  Server:  working.local.dc
  Address:  192.168.1.7
  Non-authoritative answer:
  Name:    external.forest.dc
  Address:  10.1.1.1
  There is a firewall between these networks, they connect via campus fiber. I created an any rule to rule that out. I am thinking the DNS server is corrupt, but I cannot figure it out. 
  Dcdiag /test:dns says everything is great.
  Any suggestions?

  Hi,
  According to your description, my understanding is that the problem DC is configured with conditional forwarders to resolve names about other 2 trusted forests, and always times out. Besides, there is a delay or a time out the first few times when attempting
  to resolve an external name.
  Use NSlookup to confirm that if the conditional forwarder works. Open CMD on problem DC, type the command below and each line end with enter:
  Nslookup
  Server <IP address of the condition forwarder which used to resolve names on trust domain>
  <name of the trust forest which you want to resolve>
  If it works, try to increase time-out period:
  Properties of Conditional Forwarders – Number of seconds before forward queries times out
  – change the time.
  If it doesn’t work, turn on exhaustive debugging mode. Open CMD on problem DC, type the command below and each line end with enter:
  Nslookup
  Set d2
  Server <IP address of the condition forwarder which used to resolve names on trust domain>
  <name of the trust forest which you want to resolve>
  Post the result here.
  Besides, for internet/external name resolving problem, we usually have another DNS server(except for DCs) which connected to Internet/external and used to resolve external/Internet names. And on DCs, configure forwarder and use forwarder to resolve external/Internet
  names. If it is your case, check the forwarder setting on the problem DC, or use ping to test the network connectivity. Confirm that if the delay of name resolving caused by network delay.
  Best Regards,
  Eve Wang
  Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Support, contact
  [email protected]

• DNS request timed out. timeout was 2 seconds

  Hi
  Why it is saying DNS request timed out was 2 seconds and showing the IPs under non-authoritative answers?
  This is member DC windows 2008 R2. Primary DNS is set as 127.0.0.1 and secondary DNS is set to 192.168.10.6 which is main DC.
  C:\Users\admin>nslookup filter-servers.mailguard.com.au
  Server:  localhost
  Address:  127.0.0.1
  DNS request timed out.
      timeout was 2 seconds.
  DNS request timed out.
      timeout was 2 seconds.
  Non-authoritative answer:
  Name:    filter-servers.mailguard.com.au
  Addresses:50.23.252.165
  199.193.116.73.. more

  HI
  Use ISP DNS servers and forward DNS query from internal DNS to ISP DNS servers,

• Nslookup: DNS request timed out. time out was 2 seconds. (When the primary DNS is down)

  Hi All,
  I have set up 2 Windows Server 2012 domain controllers (DCA & DCB). DCA points at DCB as the primary DNS, and itself as the alternate DNS. DCB points at DCA as the primary DNS, and itself as the alternate DNS.
  When both DCs are running and if I do an nslookup on DCA: The result is as follows:
  Default Server: dcb.testdomain.com
  Address: 30.30.30.2
  nslookup on DCB:
  Default Server: dca.testdomain.com
  Address: 30.30.30.1
  Client PC (Windows 7 Pro):
  1st DNS : 30.30.30.31
  Alternate DNS: 30.30.30.32
  nslookup on the client PC
  Default Server: dca.testdomain.com
  Address: 30.30.30.1
  Up to here everything is fine. Now if I turn off DCA, and do an nslookup, the result is as follows:
  DCB nslookup:
  DNS request timed out.
         time out was 2 seconds.
  Default Server Unknown
  Address: 30.30.30.31
  Client PC nslookup:
  DNS request timed out.
         time out was 2 seconds.
  Default Server Unknown
  Address: 30.30.30.31
  I waited for more than 15 minutes an tried again, it didn't help.
  I have been reading a few similar posts on this matter, but couldn't find the answer.
  I would  expected it to display the DCB when I do an nslookup.
  Question 1: Shouldn't that display DCB rather than displaying a time out message when I do nslookup?
  Question 2: The fact that it displays a time out message, does it mean that more configuration needs to be done? If so please kindly advice what needs to be done. 
  I did an ipconfig /displaydns command. I realized that the order of DNS have changed on both DCB and the Client PC:
  Now, they both display DCB on the top of the list, whereas they were displaying DCA on the top of the list prior to the shut down.
  Question 3: Does it mean that the Client PC now knows that the 1st DNS is down and so it's using the 2nd DNS?
  If so, why does the nslookup display the time out message?
  Question 4: Is it possible to configure either of DNS Server or the DNS client, so it displays the 2nd DNS when the first DNS is not accessible and when I do nslookup?
  Thank you for. 

  Hi Ton_2013,
  Based on my understanding, the issue we are experiencing is that: when the primary DNS server is down, the result of the tool Nslookup is to diaplay the time out message at first. Right?
  Based on my knowledge, timed out message is means that the server did not respond to a request after a certain amount of time and a certain number of retries. Because the primary DNS server is down, it can't respond to this request and time is out. When
  the primary DNS server can't respond, the secondary DNS server works to ensure effective work. And the order is changed as you said.
  As to the reason why the result is still the same even when the order has changed, we can try to use Network Monitor to capture network traffic and view and analyze it to find the cause. And the cause may be the cache. For your information, please refer
  to the following link to download the tool Network Monitor:
  http://www.microsoft.com/en-hk/download/details.aspx?id=4865
  Regards,
  Lany Zhang

• DNS issues from one domain controller to another (but not the other way) nslookup DNS request timed out

  Hi All
  I've been trying to trudge my way through an issue our client is having but I'm getting nowhere fast. This issue was discovered when searching for why users at our second site were experiencing slow logons every morning (5-10minutes to login).
  Within our domain there are two domain controllers for the child domain we manage.
  DC1 has connection back to the parent DC's (managed by our clients parent company), and also replicates both ways with DC2. DC2 is at another site, on another subnet and replicates to and from DC1 only.
  DC2 appears to have no issues, it can resolve any address, nslookup either using itself or DC1 is fine and name servers resolve fine.
  DC1 has massive issues with DC2 - using it for nslookup gives me the following:
  I get this timeout error for internal and external names, but both DC's are able to ping and access internet with no issues.
  When trying to resolve name servers from DC1, DC2 sits at 'validating' for a while and then comes back with 'a timeout occurred during validation'.
  Restarting DNS Server, NETLOGON and registering in DNS from DC2 had DC1 talking to it fine for a few minutes, but then it went back how it is (and I haven't been able to replicate this fix since).
  Reverse DNS zones are setup for all the subnets used, there are A records and PTR's for both DC's.
  Performing 'ping -a dc2.ip.address' from DC1 comes back fine - it knows what it is in both directions (name and IP) but nslookup and nameserver resolution is still failing.
  I just don't know where to go from here - from everything I've read they should be happy... Any ideas?

  Hi,
  When NSLOOKUP starts, before anything else, it checks the computer's network configuration to determine the IP address of the DNS server that the computer uses.
  Then it does a reverse DNS lookup on that IP address to determine the name of the DNS server.
  If reverse DNS for that IP address is not setup correctly, then NSLOOKUP cannot determine the name associated with the IP address.
  http://support.simpledns.com/kb/a90/nslookup-cant-find-server-name___-default-server-unknown.aspx
  Also refer to:
  How to fix NSLOOKUP Default Server: UnKnown?
  http://www.randika.info/2013/01/how-to-fix-nslookup-default-server.html
  Regards.
  Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Support, contact [email protected]

• JDBC Lookup in PI 7.1 - SELECT ? FROM DUAL and Connection timed out

  Hi,
  We have a scenarios (Idoc to JMS) with JDBC lookup. We have used graphical JDBC lookup functionality.
  We are reading country names for a given country code from SAP in an external database table. The query is so simple. That  should not take much time
  Now the actual issues is,
  When we are executing the scenario, its taking quite a long time. Almost 6 minutes to excute a mapping. Which causing high performance issue in the Porduction.
  We started the inviestigation about found some interesting stuff. Here we have used Willy Introscope for the investigation.
  1. First few messages are taking quite a long time. LIke 6 minutes per messages. As i can see in the log i am getting below error in Willy,
  I dont know why PI is executing below queury apart from real secelt query to fetch the country name. I am getting below error: Error Message: Backends|ABCD2 mydatabase01-1526 (Oracle DB)|SQL|Dynamic|Query|SELECT ? FROM DUAL: java.sql.SQLException: Io exception: Connection timed out
  2. After couple of messages, interface works very normal. I mean rest of the messages works pretty fine.
  Please let me know if you have any idea about this error. What could be the problem for the issue.
  Thank you in advnace.
  Best Regards,
  Prasad.

  Did you check how many SQL requests were executed per one message ? Do you have a log of these SQL requests ?
  I assume that the country table is quite small, so that lookup should not be an issue.
  About this:
  >Message: Backends|ABCD2 mydatabase01-1526 (Oracle DB)|SQL|Dynamic|Query|SELECT ? FROM DUAL: >java.sql.SQLException: Io exception: Connection timed out
  1. I only know SELECT * FROM DUAL, not SELECT ? FROM DUAL. Better use the former
  2. the exception means that the database server can not be reached => check your network configuration
  So I assume that there is a network (performance) problem between PI and this Oracle server. Or the Oracle Server is so overloaded that it has (sometimes) problems in processing new requests.
  CSY
  Edited by: Christian Sy on Mar 9, 2010 10:17 AM

• ITUNES connection timing out etc

  Hello
  I got my IPOD in Jan this year. It was working fine until a Windows download wiped my hard drive (or something like that). Anyway, I got my laptop fixed and it's working fine now. I had to download ITUNES (8.0 I think) again and for the first two days, I could access ITUNES so I bought 1 album. When I tried to download it though, I kept getting the error 3259 thingy. I basically got REALLY annoyed after 6 hours or so, so I gave up.
  Next time I tried to access ITUNES, and ever since, I cannot even get in to it. It keeps telling me that my connection is timed out.
  I am completely irritated at this stage as it's been going on about 6 wks now. I could give up and say so what because I've plenty of CDs to put onto my IPOD but it's annoying me so much that I can't access ITUNES or download my album!!! It's so wierd because any albums I put on myself work fine and I'm able to download the artwork.
  My internet connection is fine because here I am on the internet now!! I've tried the Firewall thing and I've tried setting up my internet connection again. I also tried to download a newer version of ITUNES but I cant even do this.
  Can anyone help me?

  I am puzzled about that. If you use Wordpad to open your Hosts file (in XP anyway) it is generally an almost empty file. One use of the Hosts file is to boycott sites (e.g. known virus or ad sites). The Hosts file takes precedence over the usual DNS lookup so your browser knows where to go immediately - handy for e.g. going to Google directly at 209.85.129.104 without picking up the ad servers along the way as will happen if you go via DNS lookup.
  I wonder what would set up Hosts to block iTunes? All the block does is to point iTunes to your own computer so you never go anywhere at all.
    Windows XP Pro  

• [SOLVED] error: Resolving timed out after 10000 milliseconds

  EDIT: it was a DNS lookup problem. I don't know why but it is better to manually specify nameservers in resolv.conf than in the home router control panel (a NETGEAR DGN2200v3). See the #3 post.
  Hi
  I just installed arch and I need to downgrade to xorg 1.12 to be able to use catalyst proprietary driver (legacy).
  As I read into the wiki, I added the two required repos:
  [catalyst-hd234k]
  Server = http://catalyst.wirephire.com/repo/catalyst-hd234k/$arch
  [xorg112]
  Server = http://catalyst.wirephire.com/repo/xorg112/$arch
  when I try to do an update, I get "database file does not exist".
  In logs appears a curl error 28, timeout error, but the repository is online (I can ping it and I can browse its contents with firefox).
  What can I do?
  sudo LANG=C pacman -Syy
  warning: database file for 'xorg112' does not exist
  warning: database file for 'catalyst-hd234k' does not exist
  :: Synchronizing package databases...
  error: failed retrieving file 'xorg112.db' from catalyst.wirephire.com : Resolving timed out after 10000 milliseconds
  error: failed to update xorg112 (download library error)
  error: failed retrieving file 'catalyst-hd234k.db' from catalyst.wirephire.com : Resolving timed out after 10000 milliseconds
  error: failed to update catalyst-hd234k (download library error)
  core 105.0 KiB 122K/s 00:01 [######################] 100%
  extra 1412.9 KiB 418K/s 00:03 [######################] 100%
  community 1929.7 KiB 447K/s 00:04 [######################] 100%
  multilib 95.7 KiB 115K/s 00:01 [######################] 100%
  Last edited by yell! (2013-03-10 14:16:22)

  yell! wrote:
  thanks for replying. I edited the first post.
  Solved:
  After a lot of hours trying wget, aria2 and curl, with a lot of options, I just stopped observing pacman output behaviour in the console.
  Seemed that it was a DNS lookup problem but, in my resolv.conf, the specified nameserver was my home router.
  Anyway, I changed that specifying google's nameservers; is working now. It's a weird thing because in my homerouter I was already using google's nameservers. 
  Now I can open the repos in browser without lag.
  Example of my resolv.conf:
  Before:
  # home router nameserver
  nameserver 192.168.0.1
  After:
  #Google nameservers
  nameserver 8.8.8.8
  nameserver 8.8.4.4
  Thanks you help me so much love you

• Ssh: Operation timed out

  running 10.4.5 server and 10.4.5 on clients; network setup with different subnets (wlan, gigabit-ethernet):178-net for wlan and 2-net for gigabit-ethernet; dns-service for both subnets supplied by server;
  server: host g4d003.local gives 192.168.178.5 as does host g4d003.2-net; reverse lookup gives g4d003.2-net
  server: ssh [email protected] works well while ssh [email protected] always timed out (as does ssh [email protected])
  when trying to ssh from wlan-client to any client in the gigabit-subnet and vice versa the command timed out, too
  the firewall didn't report any denial
  what do i mess up???
  Power Book G4, PowerMac G5   Mac OS X (10.4.2)  

  Compare the output of "ssh -vvv ..." on the two clients.

• Resolving timed out after 10000 milliseconds

  i keep getting this error when trying to run pacman but my internet is working fine
  if you need more detailed info please ask
  error: failed retrieving file 'core.db' from mir.archlinux.fr : Resolving timed out after 10000 milliseconds
  error: failed retrieving file 'core.db' from mir1.archlinux.fr : Resolving timed out after 10000 milliseconds
  error: failed retrieving file 'core.db' from archlinux.limun.org : Resolving timed out after 10000 milliseconds

  Happens to me as well, however only on my home network. If i am on another connection it works, which really confuses me
  Edit : Found the solution to this, as I suspected it was a DNS lookup issue, caused by my router being the one doing the resolution.
  Follow these steps to solve it.
  Last edited by dpm3g10 (2013-03-25 09:50:59)

• DNS lookups to VPN hijacked by WRVS4400N (fw v1.1.13)?

  I have a WRVS4400N on the latest firmware offered by Cisco.  After a whole run of problems with previous firmware, this one seems to be almost perfect except for this odd issue I've been encountering now (that I hadn't encountered on previous firmware).
  It seems as though DNS lookups through the WRVS4400N are being redirected through a different DNS from the one set on the client (presumably, the router is taking all outbound UDP DNS queries and 'fixing' them to direct at the WAN DNS).
  I've verified this by using the 'host' command in UNIX (where 192.168.2.140 is the DNS server on the remote VPN network):
  1) Using a standard UDP DNS lookup from the LAN (192.168.1.0) to the VPN
  $ host test.intranetdomain.com 192.168.2.140
  Using domain server:
  Name: 192.168.2.140
  Address: 192.168.2.140#53
  Aliases:
  Host test.intranetdomain.com not found: 3(NXDOMAIN)
  2) Using a TCP DNS lookup from the LAN to the VPN
  $ host -T test.intranetdomain.com 192.168.2.140
  Using domain server:
  Name: 192.168.2.140
  Address: 192.168.2.140#53
  Aliases:
  test.intranetdomain.com has address 192.168.2.5
  3) Using a standard DNS lookup to an unassigned IP on the local LAN
  $ host test.intranetdomain.com 192.168.1.250
  ;; connection timed out; no servers could be reached
  4) Using a standard DNS lookup to a nonsense internet IP
  $ host test.intranetdomain.com 254.254.254.254
  Using domain server:
  Name: 254.254.254.254
  Address: 254.254.254.254#53
  Aliases:
  Host test.intranetdomain.com not found: 3(NXDOMAIN)
  These tests are pretty revealing:
  Test #1 shows a standard DNS query as a client system would typically perform it.  It's querying the server and the server is returning that the address I've asked it for is not known.  This is unexpected behaviour as the server at that IP address definitely knows test.intranetdomain.com exists.
  Test #2 shows that if queried using TCP instead of UDP, the DNS does know test.intranet.domain.com exists.  So, is the host command in Test #1 actually talking to my server?  It doesn't seem so.
  Test #3 is a demonstration of the expected response when host cannot talk to a remote DNS or that server doesn't exist. In this case, I'm using host to query an IP on my LAN that doesn't have anything on it.  This should be the response I get when I try to query a nonexistent server on the internet as well.
  Test #4 shows that in spite of the expected responses in Test #3, the WRVS4400N doesn't act as expected.  It shows the same type of response we saw in Test #1 even when querying non-existent IPs.
  In summary, the tests show that the WRVS4400N in firmware 1.1.13 is capturing all standard UDP DNS queries regardless of the IP they're directed to, and forwarding them to another DNS (I assume the WAN DNS).
  This seems like it may have been thrown in as an unmentioned 'feature' and is behaviour I might expect from a 'home' routing solution but not a small office solution such as this.  My company VPN requires DNS to be resolved by our servers inside the office network so this is not acceptible.
  Configuration Details:
  WAN: DHCP, dynamic IP, dyndns
  LAN: defaults for everything, static DNS set to use servers across the VPN
  VPN: IPSec tunnel to remote network 192.168.2.x
  IPS: Disabled
  Firewall: Defaults
  Any assistance or commentary from someone in-the-know would be appreciated.  Also, any comments from those also experiencing variations on this issue.
  Message Edited by litui on 03-10-2009 06:25 PM

  I've experienced the same DNS hijacking unable to use OpenDNS features unless I set the outside interface to static which is really DHCP by my cable provider. Of course, this is only a temporary work-around. Linksys/Cisco could allow for selectable DNS on the outside interface to resolve this problem, but they won't even look at a code change... unless EVERYONE complains. I requested this almost a year ago via a TAC case & their reaction was development almost never update unless they get many requests.

• For anyone who is experiencing slow DNS lookups...

  I finally worked out what was wrong with my network config last night and thought I'd share it with everyone in a simgle post in the hope it'll help someone else.
  I tried the BIND work around, but it wasn't all that much faster.
  I tried disabling IPv6, but that didn't do much...
  The solution?
  In 'System Preferences' -> 'Network'
  Go to configure the adaptor (Airport / Ethernet / etc)
  In 'DNS Servers' where you'd normally specify the DNS servers given to you by your ISP... don't do this! As crazy as it sounds don't
  Of course, if you're using newer routers you'd not be having this slow DNS lookup problem and specifying the ISPs DNS Servers would be appropriate... still
  What you want to specify here is your ROUTER's IP:
  eg. 192.168.0.1
  With this simple modifcation you'll be fine. Why? You ask?
  In Linux / OSX (I imagine in Unix as well) the way the lookups are carried out are different from Windows. I have other Windows computers on our network and they never had DNS lookup problems and they've been given the ISPs DNS IPs... anyway I think I'm talking out of my depth now heh.
  This works!
  Remember: Specify your router as the DNS Server!

  I've had this problem on a G4 PowerMac running Panther, and it still had it after a Tiger upgrade. I just replaced it with a Core Duo MacMini, 10.4.7, same problem of slow DNS lookups (i.e., slow initial start to loading a web page, then it goes quickly). Windows machines on the same subnet have no such problem. I've tried the various suggestions on various forums, none of which worked. I tried:
  - turn off IPv6 (no help)
  - directly enter my ISPs DNS servers (no help)
  - manually configure both IP and DNS (no help, went back to DHCP)
  - swear at the computer (a little help, mentally)
  After some more reading, I tried resolving some addresses using the host command from the Terminal:
  host -v www.apple.com 24.34.240.9
  where the IP address is one of the DNS servers for my ISP (Comcast). I got a no server found message! I then tried the second DNS server in the Comcast list (found from my router), also no server found. Tried the third one in Comcast's list of DNS servers, and it worked. Entered it in System Preferences -> Network as a DNS server, and now web browsing is zippy! I verified that the two DNS servers that MacOS couldn't see are also down as far as Windows was concerned (using the nslookup command in windows).
  What this tells me is that the OS X algorithm for handling unreachable or slow DNS servers is different from that in Windows. Maybe Windows remembers a bad experience with a DNS server and uses ones that it has success with, while OS X just keeps trying them in order, slowing timing them out until it finds one that works?
  This could also explain many of the puzzling symptoms people have been seeing (things work some times, other times not; some people have luck specifying the DNS server manually, others don't). It all depends on what DNS servers got distributed to the Mac via DHCP, and how far down the list you have to go to find one that is responsive.
  Anyone reading this forum with technical knowledge of both UNIX and Windows DNS lookup implementations? Is there some way to tweak in MacOS to make it perform more like Windows in this situation (like, maybe shortening the DNS server failure timeout)?

• GWIA doing DNS lookup for local address

  Hello,
  I am running GW8.0.2 on Netware 6.5sp8. I have a server that our recreation department uses to send out confirmation emails when a customer signs up for a class. The recreation server and the GWIA are on the same subnet.
  Here's the problem: When the Rec server sends out the first email confirmation, it gets sent out successfully. Subsequent emails after that fail. After about twenty minutes the next email will go out OK again but subsequent emails will fail.
  The verbose logs on the GWIA don't tell me much but the diagnostic logs show what looks like a reverse DNS lookup happening at the GWIA for my local IP address of 10.0.0.3 (the Rec server). This reverse DNS lookup fails (probably a timeout) and subsequent emails from this local Rec server get dropped by the GWIA without the DNS lookup.
  DNS is being done by DNS proxy on Bordermanager 9.2. I've bypassed the Bordermanager DNS and the same thing happens. I've made entries for the local Rec server into a route.cfg file but the GWIA seems to want to ignore these entries and keeps doing the DNS lookup.
  The wierdest part of the puzzle is that if I restart the proxy on the Bordermanager the next email will go out with, of course, subsequent emails failing. I've looked at the proxy dns cache and can't even find an entry for my Rec server.
  Attached are the entries from the Diagnostic logs of the GWIA. Novell tech support has assured me that the GWIA and the BM are working fine. I am also having this problem with a scanner that scans then emails but all other email and Bordermanager are functioning fine. This server and scanner were not having this problem before upgrading to GW8.0.2.
  I don't understand why GWIA is doing DNS lookups for a local address and I don't know what I can do to stop it. Any help would be greatly appreciated.
  This is a successful transfer right after restarting the proxy: 10.0.0.3 is the Rec server, 10.0.0.130 is the GWIA and 10.0.0.1 is the Bordermanager.
  16:04:13 D15 NgwResQuery(3.0.0.10.in-addr.arpa, 1, 12)
  16:04:13 D15 Querying server (# 1) address = 10.0.0.1
  16:04:13 D15 HEADER:
  16:04:13 D15 opcode = QUERY, id = 17615, rcode = SERVFAIL, flags: qr aa rd
  16:04:13 D15 query = 1, answer = 0, authority = 0, additional = 0
  16:04:13 D15
  16:04:13 D15 QUESTIONS:
  16:04:13 D15 3.0.0.10.in-addr.arpa, type = PTR, class = IN
  16:04:13 D15
  16:04:13 D15 rcode = 2, ancount=0
  16:04:13 D15 NgwResQuery failed
  16:04:13 D15 DMN: MSG 2000909 Accepted connection: [10.0.0.3] ()
  16:04:13 D15 Successful login with client/server access: 10.0.0.130:1677
  16:04:13 D15 DMN: MSG 2000909 Receiving file: ECMAIL/SYS:\PROGRAMS\GRPWISE\WPGATE\GWIA\3RD\receive\df30 fad4.221
  16:04:13 D15 DMN: MSG 2000909 SMTP session ended: [10.0.0.3] ()
  This is an unsuccessful transfer:
  16:06:08 D04 timeout
  16:06:08 D04 NgwResQuery: send error
  16:06:08 D04 NgwResQuery failed
  16:06:08 D04 DMN: MSG 2000933 Accepted connection: [10.0.0.3] ()
  16:06:08 D04 DMN: MSG 2000933 SMTP session ended: [10.0.0.3] ()
  Then the successful email comes back into the system:
  16:06:26 AA8 MSG 2000909 Processing inbound message: ECMAIL/SYS:\PROGRAMS\GRPWISE\WPGATE\GWIA\receive\DF30FAD4 .221
  16:06:26 AA8 MSG 2000909 Sender: [email protected]
  16:06:26 AA8 MSG 2000909 Recipient: [email protected]
  16:06:26 AA8 MSG 2000909 Queuing to MTA
  16:06:26 AA8 MSG 2000909 File: ECMAIL/SYS:\PROGRAMS\GRPWISE\WPGATE\GWIA\wpcsin\4\4daf048 2.8m1 Message Id: (4DAF66F2.B67:244:35687) Size: 163.3 Kb

  Thanks Massimo. I could have swore I already did that but when I did it again just to make sure it solved the problem. Appreciate the help. Have a good one.
  Originally Posted by mrosen
  On 02.05.2011 21:06, avanrav wrote:
  >
  > Hello,
  >
  > I am running GW8.0.2 on Netware 6.5sp8. I have a server that our
  > recreation department uses to send out confirmation emails when a
  > customer signs up for a class. The recreation server and the GWIA are on
  > the same subnet.
  >
  > Here's the problem: When the Rec server sends out the first email
  > confirmation, it gets sent out successfully. Subsequent emails after
  > that fail. After about twenty minutes the next email will go out OK
  > again but subsequent emails will fail.
  >
  > The verbose logs on the GWIA don't tell me much but the diagnostic logs
  > show what looks like a reverse DNS lookup happening at the GWIA for my
  > local IP address of 10.0.0.3 (the Rec server). This reverse DNS lookup
  > fails (probably a timeout) and subsequent emails from this local Rec
  > server get dropped by the GWIA without the DNS lookup.
  >
  > DNS is being done by DNS proxy on Bordermanager 9.2. I've bypassed the
  > Bordermanager DNS and the same thing happens. I've made entries for the
  > local Rec server into a route.cfg file but the GWIA seems to want to
  > ignore these entries and keeps doing the DNS lookup.
  >
  > The wierdest part of the puzzle is that if I restart the proxy on the
  > Bordermanager the next email will go out with, of course, subsequent
  > emails failing. I've looked at the proxy dns cache and can't even find
  > an entry for my Rec server.
  The reverse DNS done by GWIA is normal, and can't be stopped or tricked.
  That it fails in such odd ways must be a bug with the reverse DNS proxy
  of Bordermanager though. Apparently on the second lookups, it doesn't
  answer in a timely manner (the type of answer is irrelevant, just it
  *has* to answer). Use a different, "real" DNS server for your GWIA.
  CU,
  Massimo Rosen
  Novell Product Support Forum Sysop
  No emails please!
  Untitled Document

• "Licensing timed out" when creating to Remote Desktop Connection

  Our company have two site (SiteA and SiteB),  both have its own DC (SiteA.xx.local and SiteB.yy.local).  A Windows 2012 Server setup a Terminal Service.  All SiteB user will use remote desktop to connect to the Terminal Server.
  Sometime it will prompted an error "A licensing error occurred while the client was attempting to connect (Licensing timed out).  Please try connecting to the remote computer again."   Before this error message shown, the connection box
  will show the status "Estimating connection quality" for a while (my last test this will stay for 2 min 30 sec. before Licensing timed out prompt). 
  When we face this error,  the only way to solve it is to reboot the Terminal Server.  Once reboot,  everything will be fined,  all user can connect again.   But sometime later (no fixed time period, from two hours - two days), user
  will then have this problem.  But we need to reboot server again.
  I can't found in what situation this error will happened.  But we do experienced the following situation.
  1. Sometime the a RDS Connection just stopped directly.  Then try to reconnect but failed.  In this case,  all other users are still using it.  
  2. I try to unplug a network connection for a client, it show the connection is lost and trying to reconnect.  After I plug the network back.  Cancel the reconnect process.  Then open the remote desktop again it will have the error.
  3. there has two machine will never have this problem (we have this problem for 3 months).  no matter how the connection lost.  it can built up the connection once the connection is back
  I followed some forum to enable the netlogon.log.  On the Server, I found:
  1. [MISC] [872] In control handler (Opcode: 4):  This log must there when the problem happened.
  Not sure if the following log help:
  1. NetpDcGetName: SiteA.xx.local. using cached information ( NlDcCacheEntry = 0x000000DE96694D50 )
  2.DsGetDcName function returns 0 (client PID=2088): Dom:SiteA Acct:(null) Flags: NETBIOS RET_DNS
  3. NetpDcInitializeContext: DSGETDC_VALID_FLAGS is c03ffff1
  4. DsGetDcName function called: client PID=23532, Dom:(null) Acct:(null) Flags: LDAPONLY RET_DNS  (I found some log will be Dom:SiteA install of Dom:(null)   )
  5. NlTimeoutApiClientSession: Unbind from server \\SiteA-DC.Stingmars.hk.local (TCP) 0.
  6. NlPrintRpcDebug: Couldn't get EEInfo for I_NetLogonSamLogonEx: 1761 (may be legitimate for 0xc000006e)
  On the Client side:  Not sure if the log can help:
  07/11 11:56:01 [MISC] DsGetDcName function called: Dom:(null) Acct:(null) Flags: DS
  07/11 11:56:01 [DNS] NlDnsHasDnsServers: DNS Server is NOT configured on this machine.
  07/11 11:56:01 [MISC] NetpDcInitializeContext: DSGETDC_VALID_FLAGS is c01ffff1
  07/11 11:56:01 [MISC] NetpDcGetName: SiteB using cached information
  07/11 11:56:01 [MISC] DsGetDcName function returns 0: Dom:(null) Acct:(null) Flags: DS
  07/11 11:56:01 [MISC] DsGetDcName function called: Dom:(null) Acct:(null) Flags: FORCE DS
  07/11 11:56:01 [DNS] NlDnsHasDnsServers: DNS Server is NOT configured on this machine.
  07/11 11:56:01 [MISC] NetpDcInitializeContext: DSGETDC_VALID_FLAGS is c01ffff1
  07/11 11:56:01 [MAILSLOT] Sent 'Sam Logon' message to SiteB[1C] on all transports.
  07/11 11:56:01 [CRITICAL] NlBrowserSendDatagram: No transports available
  07/11 11:56:01 [CRITICAL] NetpDcGetNameNetbios: SiteB: Cannot NlBrowserSendDatagram. (1C) 53
  07/11 11:56:01 [MISC] NetpDcGetName: NetpDcGetNameNetbios returned 1355
  07/11 11:56:01 [CRITICAL] NetpDcGetName: SiteB: IP and Netbios are both done.
  07/11 11:56:01 [MISC] DsGetDcName function returns 1355: Dom:(null) Acct:(null) Flags: FORCE DS
  07/11 11:56:02 [MISC] DsGetDcName function called: Dom:(null) Acct:(null) Flags: LDAPONLY RET_DNS
  07/11 11:56:02 [DNS] NlDnsHasDnsServers: DNS Server is NOT configured on this machine.
  07/11 11:56:02 [MISC] NetpDcInitializeContext: DSGETDC_VALID_FLAGS is c01ffff1
  07/11 11:56:02 [MISC] NetpDcGetName: SiteB using cached information
  07/11 11:56:02 [MISC] DsGetDcName function returns 0: Dom:(null) Acct:(null) Flags: LDAPONLY RET_DNS
  07/11 11:56:03 [SESSION] V6 Winsock Addrs: fe80::bd63:1d49:d8fd:724%12 (1) V6WinsockPnpAddresses List used to be empty.
  07/11 11:56:04 [MISC] NlPingDcNameWithContext: Ping response timeout for SiteB-DC.Stingmars.cn.local.
  07/11 11:56:04 [CRITICAL] NlPingDcNameWithContext: Can't ping the DC SiteB-DC.Stingmars.cn.local.
  07/11 11:56:04 [MISC] NetpDcInitializeContext: DSGETDC_VALID_FLAGS is c01ffff1
  Thanks
  Kenneth Lai

  Hi Kenneth,
  Thank you for posting in Windows Server Forum. 
  Please check the setting and workaround as per below thread.
  RDP connection hangs on "estimating connection quality"
  http://social.technet.microsoft.com/Forums/en-US/18819bef-5c01-4849-9c61-afb7e8c8a581/rdp-connection-hangs-on-estimating-connection-quality?forum=winserverTS
  In addition, also check below details.
  Cause:  If you are using Internet Protocol security (IPsec) to help protect traffic over TCP between clients and terminal servers, then packet fragmentation might occur. As a result, some packets might not reach their destination, and
  client connections to terminal servers might fail.
  Solution:  Configure IPsec to help protect traffic over UDP rather than over TCP.
  Hope it helps!
  Thanks.
  Dharmesh Solanki

• TCP active open: Failed connect()    Error: Connection timed out SMTP

  Hi,
  Messaging server version is,
  ./imsimta version
  Sun Java(tm) System Messaging Server 6.2-6.01 (built Apr 3 2006)
  libimta.so 6.2-6.01 (built 11:20:35, Apr 3 2006)
  SunOS bglbbmr1-a-fixed 5.9 Generic_118558-28 sun4u sparc SUNW,Sun-Fire-V440
  17-Dec-2008 10:47:40.08 1730.8e.741
  tcp_local Q 4 [email protected] rfc822;[email protected] [email protected] /mta/queue/queue/tcp_local/013/ZUg0i1t9I0ZG~.00 <[email protected]>; TCP active open: Failed connect() Error: Connection timed out SMTP/xyz.my-domain.in
  I have been getting this above error on my mail server from last
  4-5 days. I am getting complaints from end users that the users can't
  send any mails using Outlook but I did check with my test user I can
  send mail by using webmail.
  The Failed MX lookup Errors also getting in my logs the error detail given bellow.
  17-Dec-2008 10:47:39.65 1730.91.737
  tcp_local - Y TCP|0.0.0.0||209.85.143.114|25 SMTP/airtelmail.in/aspmx.l.google.com
  17-Dec-2008 10:47:39.92 1754.41.255
  tcp_notify - Y SMTP/infomedia18.in/infomedia18.in
  17-Dec-2008 10:47:39.92 1754.41.256
  tcp_notify Q 7 rfc822;[email protected] [email protected] /mta/queue/queue/tcp_notify/017/ZXg0i1t3U_ZoD.00 <[email protected]>; Failed MX lookup; try again later
  17-Dec-2008 10:47:39.94 1754.41.257
  tcp_notify Q 6 rfc822;[email protected] [email protected] /mta/queue/queue/tcp_notify/010/ZXg0i1t3U_ZoF.00 <0KBZ003MRGU7MQ30@my-domain> Failed MX lookup; try again later
  I tried stopping and starting msg service using stop-msg and start-msg to sort out this above problem but no result. :(
  When I do check the tcp_local queue it has been growing every day as well the tcp_notification queue also.
  /opt/SUNWmsgsr/sbin/imsimta qm su
  Messages
  Channel Queued Size (Kb) Oldest
  tcp_notify 10741 1080610.61 16 Dec, 00:59:24
  tcp_local 8334 733849.31 15 Dec, 00:19:00
  tcp_lmtpcn 0 0.00
  tcp_be 0 0.00
  reprocess 0 0.00
  process 0 0.00
  conversion 0 0.00
  Totals 19075 1814459.92
  This queues are increasing day by day.
  One more thing is that I cant see a service/channel called CONVERSION running on my server when i do use this command.
  ps -aef | grep conversion
  root 6144 6000 0 11:14:28 pts/1 0:00 grep conversion
  When i try to start it using imsimta qm utility, output shows as
  qm.maint>; start conversion
  QM-I-STARTED, channel was not stopped
  qm.maint>;
  Later I stopped and started conversion channel
  qm.maint>; stop conversion
  QM-I-STOPPED, channel stopped
  qm.maint>; start conversion
  QM-I-STARTED, channel started
  qm.maint>;
  I can see that on other servers the conversion channel is running and few msges are in queue. I do have other servers which running the same messaging server. But I am not getting why don't on this server. Where both servers having the same configuration.
  Please, help me to sort out this issue.
  Thanks in advance....
  BSK

  Thanks Mr. Shane,
  The server which is running conversion channel.
  ps -eaf|grep conversion
  mailserv 16824 8472 3 17:08:11 ? 0:48 /opt/SUNWmsgsr/lib/conversion
  mailserv 28728 8472 0 17:17:30 ? 0:00 /opt/SUNWmsgsr/lib/conversion
  root 1057 26387 0 17:18:12 pts/1 0:00 grep conversion
  more /opt/SUNWmsgsr/config/conversions
  in-channel=*; in-type=application; in-subtype=*; in-disposition=*;
  parameter-symbol-0=NAME; parameter-copy-0=*;
  dparameter-symbol-0=FILENAME; dparameter-copy-0=*;
  message-header-file=2; original-header-file=1;
  override-header-file=1; override-option-file=1;
  command="/opt/SUNWmsgsr/private/virusscan.sh"
  in-channel=*; in-type=x-zip-compressed; in-subtype=*; in-disposition=*;
  parameter-symbol-0=NAME; parameter-copy-0=*;
  dparameter-symbol-0=FILENAME; dparameter-copy-0=*;
  message-header-file=2; original-header-file=1;
  override-header-file=1; override-option-file=1;
  command="/opt/SUNWmsgsr/private/virusscan.sh"
  in-channel=*; in-type=image; in-subtype=*; in-disposition=*;
  parameter-symbol-0=NAME; parameter-copy-0=*;
  dparameter-symbol-0=FILENAME; dparameter-copy-0=*;
  message-header-file=2; original-header-file=1;
  override-header-file=1; override-option-file=1;
  command="/opt/SUNWmsgsr/private/virusscan.sh"
  in-channel=*; in-type=audio; in-subtype=*; in-disposition=*;
  parameter-symbol-0=NAME; parameter-copy-0=*;
  dparameter-symbol-0=FILENAME; dparameter-copy-0=*;
  message-header-file=2; original-header-file=1;
  override-header-file=1; override-option-file=1;
  command="/opt/SUNWmsgsr/private/virusscan.sh"
  in-channel=*; in-type=video; in-subtype=*; in-disposition=*;
  parameter-symbol-0=NAME; parameter-copy-0=*;
  dparameter-symbol-0=FILENAME; dparameter-copy-0=*;
  message-header-file=2; original-header-file=1;
  override-header-file=1; override-option-file=1;
  command="/opt/SUNWmsgsr/private/virusscan.sh"
  Following entry from /opt/SUNWmsgsr/lib/config-templates/imta_tailor
  IMTA_CONVERSION_FILE=<msg.RootPathUNIX>/config/conversions
  The server which doesnt show running conversion channel
  #more /opt/SUNWmsgsr/config/conversions
  !in-channel=*; in-type=*; in-subtype=*; in-disposition=*;
  ! parameter-symbol-0=NAME; parameter-copy-0=*;
  ! dparameter-symbol-0=FILENAME; dparameter-copy-0=*;
  ! message-header-file=2; original-header-file=1;
  ! override-header-file=1; override-option-file=1;
  ! command="/opt/SUNWmsgsr/private/virusscan.sh"
  in-channel=*; in-type=application; in-subtype=*; in-disposition=*;
  parameter-symbol-0=NAME; parameter-copy-0=*;
  dparameter-symbol-0=FILENAME; dparameter-copy-0=*;
  message-header-file=2; original-header-file=1;
  override-header-file=1; override-option-file=1;
  command="/opt/SUNWmsgsr/private/virusscan.sh"
  in-channel=*; in-type=x-zip-compressed; in-subtype=*; in-disposition=*;
  parameter-symbol-0=NAME; parameter-copy-0=*;
  dparameter-symbol-0=FILENAME; dparameter-copy-0=*;
  message-header-file=2; original-header-file=1;
  override-header-file=1; override-option-file=1;
  command="/opt/SUNWmsgsr/private/virusscan.sh"
  in-channel=*; in-type=image; in-subtype=*; in-disposition=*;
  parameter-symbol-0=NAME; parameter-copy-0=*;
  dparameter-symbol-0=FILENAME; dparameter-copy-0=*;
  message-header-file=2; original-header-file=1;
  override-header-file=1; override-option-file=1;
  command="/opt/SUNWmsgsr/private/virusscan.sh"
  in-channel=*; in-type=audio; in-subtype=*; in-disposition=*;
  parameter-symbol-0=NAME; parameter-copy-0=*;
  dparameter-symbol-0=FILENAME; dparameter-copy-0=*;
  message-header-file=2; original-header-file=1;
  override-header-file=1; override-option-file=1;
  command="/opt/SUNWmsgsr/private/virusscan.sh"
  in-channel=*; in-type=video; in-subtype=*; in-disposition=*;
  parameter-symbol-0=NAME; parameter-copy-0=*;
  dparameter-symbol-0=FILENAME; dparameter-copy-0=*;
  message-header-file=2; original-header-file=1;
  override-header-file=1; override-option-file=1;
  command="/opt/SUNWmsgsr/private/virusscan.sh"
  Following entry from /opt/SUNWmsgsr/lib/config-templates/imta_tailor
  IMTA_CONVERSION_FILE=<msg.RootPathUNIX>/config/conversions
  Is this above information u r asking?
  As u wrote erlier, the conversion channel works some times and some times doesn't work.
  Thanks lot...
  BSKADAM