DNS to a MAMP server

Similar Messages

• DNS Issues - Can ping server name and IPs but not FQDNs.

  Hi All, 
  Hopefully some one can help me here, I am having an issue where one of my domain attached servers cannot ping any FQDNs in the environment but it can ping the host names and the IPs and look up the host names from a reverse look up. 
  We have done the following troubleshooting:
  Flushed and registered DNS cache.
  Restarted the DNS client and net logon services on the effected server
  Preformed standard checks and commands such as:
  Checked the event logs and found there were warnings for DNS registration.
  Compared the DNS settings in the network adapters across the rest of the servers in the environment and found that they were all the same. DNS Suffixes are added in the correct order and are set to register.
  Pinging FQDNs which is not giving any results.
  Tracert FQDNs which is also not giving any results.
  Nslookup which is querying the DNS server directly and giving results as expected
  Ran the command which reported successful: dcdiag /test:registerindns /dnsdomain:sub.domain.net /v
  Checked and updated the permissions on DNS for the affected server to give the server full control of its own DNS entry. 
  Replaced the DNS Client service DLL with one from a server that is working as expected. 
  Also worth noting is that the affected server (as well as every other server in the environment) has 2 NICs, one that communicates with DNS and AD and the other does not have any DNS IPs set. 
  Not this is not the first time this happened, a reboot fixed the issue before but it seems to be a reoccurring problem now. 
  If any one can shed some light on this issue I would be grateful.
  Regards,
  Steve. 

  Hi Steve,
  First, we should confirm if this issue is caused by DNS.
  When you ping the FQDN, does the server show the correct corresponding IP address?
  If no, there should be some error messages. If it is possible, please post the screenshot of this issue.
  To check the process about how does server resolve the FQDN, please follow the steps below:
  clear local DNS cache with command ipconfig /flushdns
  perform the network capture
  ping the specified FQDN
  Check the DNS traffic
  To download Network Monitor, please click the link below:
  http://www.microsoft.com/en-hk/download/details.aspx?id=4865
  Besides, have you tried to update the NIC driver to the latest version?
  Best Regards.
  Steven Lee Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Support, contact [email protected]

• How To Set Up Mountain Lion Server/Point DNS to Mac Mini Server

  Hello, First of all I have no experience with setting up servers whatsoever. Below is what I have
  - Mac Mini with Mountain Lion Server
  - Time Capsule as my router
  - Comcast as my service provider
  My goal is to set up my MacMini as a sharepoint for files and other data with my other partners.
  - I have purchased a domaine name from NetworkSolutions. Does this mean that they are my DNS hosting as well? Not really sure. My biggest question is how to point my DNS to my mac mini server correctly.
  1. How do you point the DNS to my mac mini server.
  2. I've read somewhere to use the IP address from my mac mini server. The only IP address I see is from my Time Capsule (router). I know what my public IP adress is but I am not sure if that's the one to use. I think once I figure this DNS thing I can figure out the rest.
  Thanks - Need lots of help.

  Here's a detailed write-up on setting up internal (private) DNS on OS X Server, and no, you're probably not going to be setting up external DNS on your servers.  Your public DNS service will be hosted on and served from the Network Solutions DNS servers.

• Can't delete primary zone in DNS after moving the server

  Woe is me!
  Our MacMini was hosted at a Colo site and working fine. No firewall in front of the machine, so we turned on the server firewall and only allowed mail, web, ftp, and a couple of other services. This worked great using our external public DNS wired to our domain names and public fixed IP address. Later, we got VPN up a running (the trick was to create a second, local IP address for the ethernet port), but this also required us to turn on the server's DNS to create a split-brained DNS server.
  Everything was working swimmingly... and then we had a hard drive crash. Since we were thinking about moving the server onsite anyway (our POS system was accessed through the VPN, but it could be slow and made our tasting room dependent on Internet access in order to run the POS), we ordered Comcast business class internet with a fixed IP address.
  We updated the external public DNS to the new public fixed ip. Rather than plug the mini directly to the Comcast router (which is in pass-through mode), we elected to put a AirPort Extreme in front of it, mainly so we could get all of the POS computers on the same local network without using the mini as a DHCP/NAT router. We created a DHCP reservation on the Extreme so that the mini had a fixed local IP address. We port forwarded everything we wanted to expose to the Internet. Email started to work again. However, web services and VPN are nada.
  This being Snow Leopard Server and having spent literally hours debugging DNS issues when we first got the server, I knew it wouldn't be straightforward. And it hasn't been. Even changing the IP address of the server has been a chore.
  We ran "sudo changeip <old IP address> <new IP address>".
  Then we ran "sudo changeip -checkhostname" and received:
  "$ sudo changeip -checkhostname
  Primary address     = 10.0.8.2 <new static internal IP address>
  Current HostName    = <servername>.<domainname>.com
  The DNS hostname is not available, please repair DNS and re-run this tool.
  dirserv:success = "success""
  Oh no, the black pit of death.
  Even though I tried to modify the machine record in the local DNS to reflect the new internal static IP address, Nada.
  So, looking back on my previous research from Mr Hoffman and others, I stopped the DNS service, and I deleted the primary zone and reverse lookups in order to rebuild them from scratch. Except that no matter what I do, I can't delete the primary zone - it comes back like Dracula (even though the reverse zone and all of the zone records are gone). I tried rebuilding everything using the undeletable zone, but after a few services (saved each one separately), they would suddenly disappear.
  I am leery of messing with the DNS files on the server as I don't want to hose up Server Admin (my command line skills are rudimentary and slow). I have so much installed on the machine now that I am concerned about someone saying "reinstall".
  Help!
  Related to this is that it is not clear to me in web services which IP address you should use for the sites. The internal IP? The public IP? I thought Apache cared about the external IP address. And I think Apache is hosed at the moment due to my DNS troubles anyway.
  Thanks in advance!

  Morris Zwick wrote:
  And does anyone know which IP you enter for your sites in the web service? The public static IP or the internal private static IP?
  For the external DNS server I am sure you have already deduced that it should be the static IP issued you by Comcast and this will be forwarded by your router to your server.
  For your internal DNS server you could use either the internal LAN IP, or the external IP although the later might be affected by your firewall so this you will need to test.
  For the Web Server service in Server admin, if your only running a single website you could avoid the issue by just using the wildcard entry which will respond to any IP address, so this would be an empty host name and an IP address of *
  In fact you don't have to specify an IP address you could just use the hostname, so it will listen to traffic arriving at your server addressed to any IP address and as long as the URL that was requested includes the hostname you define for the site it will get responded to. So if as an example you have two websites you want to serve
  www.example.com
  site2.example.com
  then as long as both have the IP address for the site as an * (asterisk) then both should work as separate sites for traffic addressed to either the LAN or WAN IP address of the server.
  You will still need to use two IP addresses on the server to enable VPN, you could use a USB Ethernet adapter for the second one. Port forwarding for VPN is not as simple as other traffic as VPN requires traffic different to the standard IP and UDP packets. Routers that support 'VPN Passthrough' are specifically designed to accomodate this but I don't know if the AirPort Extreme does this. I have also found PPTP copes better with this sort of setup than L2TP although PPTP is generally regarded as less secure.

• Configure DNS on Snow Leopard Server for Web Hosting

  Hi Everyone,
  I put together an article on my blog about Snow Leopard DNS setup for web hosting. http://www.mkahn.com/?p=279
  I'll be revising it over the next few weeks to make it more informative based around feedback. Let me know if you have any questions or trouble setting up DNS on Snow Leopard Server for web hosting.

  Thanks for your replies. I realize I'm not making clear the way this network is configured . Also, the only services running on the Snow Leopard server are (at this time):
  dhcpd - in the 10.136.31.x range;
  dns - same as before;
  planned to add are:
  Open Directory (for network logins)
  Software update;
  Web (only on the 10.136.31.x Ethernet);
  mySQL (localhost only - for moodle);
  NAT is not set up on the Snow Leopard server itself. We have an outside router, a Cisco 2811. This router provides routing for both the public IP range, and the NAT range is configured in this router. The forwarding dns is located in LR and Fayetteville. So what I need is dns on Snow Leopard to forward outside queries to the state DNS servers, and resolve the local NAT IP only for Open Directory and a set of Snow Leopard clients.
  Is this going to be possible?

• 2008 R2 PDC with DNS, File and Print Server Roles

  Hi all,
  we have a brand new Canon iRA7260 setup on 2008 R2 print server, which is also our DC, DNS, DHCP and File Server with latest PCL5c drivers downloaded from Canon's website as recommended at that time by the canon technician who assembled the
  machine. All our laptops and desktops are running Windows 7 64-bit and after creating a GPO everyone got connected to the printer no problem, the printer has a static IP, same subnet as the print server and PDC, printer's port has been setup to RAW
  and to spool documents, driver isolation setup to default.
  All users are setup for secure print, so every print job they send to the printer stays on the printer until they walk up to the machine and release it by punching in a department's pin. Everything works great except for every morning a get a few complaints
  that the jobs sent to the printer did not appear in the secure print folder. There is no errors of any kind on workstations and all I see in the print job logs on the print server is that document been spooled, printed and deleted. The strange thing is that
  the size of the document that disappears is always shown as 0 bytes in size and 1 page long. And the whole process of spooling printing and deleting happens within 1 second according to logs. There is no errors or warnings in the log except for informational
  events.
  I just discovered that what actually fixes this issue for me is not even restarting the print spooler on the print server, but just login into the print server from my workstation via RDP with admin credentials. Once I login into the server remotely,
  every print job sent to the printer afterwards from every workstation in our office appears as usual in users secure print mailboxes. Users don't even have to reboot their work stations, everything just starts working as usual. There is no overnight activities
  on that server as all our staff leaves the offices by 8 p.m. the latest and the only thing that is running overnight is the Symantec's Backup Executive backup jobs. Is it possible that a back up job could somehow affect the print server/print driver settings
  or put it into a "sleep" mode so it would require a domain admin login to the server to bring it back into operational state?

  Hi, the print server had default permissions set after the role was installed. I just added domain users and authenticated users with print and view server rights. I don't think this is a problem though because Samsungs Brothers and Xerox printers
  are working. It looks like some process that runs at night on the print server disallows users to print to the Canon printer when they come in in the morning. Login remotely with admin credentials into the 2008 R2 that has print server role installed and this
  canon printer deployed via GPO fixes this immediately for all users. After the printer works fine until the last staff leaves the office. However when I come in in the morning everyone reports to me the same problem which again I'm able to fix by login with
  my domain admin credentials. Could this be due to some special permissions that canon drivers require to be added that I'm not aware of? Or could this be caused by the overnight Backup Executive 2010 R3 backup job that kicks in at 9 p.m. every night?
  Thanks

• I've been getting this message all day long, WHY? "Oops! This link appears broken. DNS error occurred. Server cannot be found.

  I've been getting this message all day long, WHY?
  "Oops! This link appears broken.
  DNS error occurred. Server cannot be found.

  I've been getting this message all day long, WHY?
  "Oops! This link appears broken.
  DNS error occurred. Server cannot be found.

• DNS Fails for NFS Server Shares

  When I boot, I get a message that DNS has failed for the NFS server mounts, and the shares do not mount. The message says, "mount.nfs: DNS resolution failed for server: name or service unknown." I have to mount the shares myself. Then when rebooting, I get the same error saying it can't unmount the shares.
  this is /etc/resolv.conf:
  $ cat /etc/resolv.conf
  # Generated by dhcpcd from eth0
  # /etc/resolv.conf.head can replace this line
  nameserver 208.67.222.222
  nameserver 208.67.220.220
  # /etc/resolv.conf.tail can replace this line
  this is /etc/conf.d/nfs:
  # Number of servers to be started up by default
  NFSD_OPTS=8
  # Options to pass to rpc.mountd
  # e.g. MOUNTDOPTS="-p 32767"
  MOUNTD_OPTS="--no-nfs-version 1 --no-nfs-version 2"
  # Options to pass to rpc.statd
  # N.B. statd normally runs on both client and server, and run-time
  # options should be specified accordingly. Specifically, the Arch
  # NFS init scripts require the --no-notify flag on the server,
  # but not on the client e.g.
  # STATD_OPTS="--no-notify -p 32765 -o 32766" -> server
  # STATD_OPTS="-p 32765 -o 32766" -> client
  STATD_OPTS=""
  # Options to pass to sm-notify
  # e.g. SMNOTIFY_OPTS="-p 32764"
  SMNOTIFY_OPTS=""
  Do I need to add some option to rpc.statd, or is there some other misconfiguration there? AFAIK it is the default. What else should I look at to fix this? I can ping the server by name, and log in with ssh by name, just fine. It's only the nfs that is failing with DNS.

  airman99 wrote:
  Yahoo! Good news, I've finally solved the problem on my laptop. The message I was receiving turned out merely to be a network timing issue.
  The error I was receiving was exactly correct and informative. When /etc/rc.d/netfs ran and executed a 'mount -a -t nfs...' the network was indeed NOT reachable. I am running networkmanager, and apparently during bootup, networkmanager gets loaded, but there is a delay between when networkmanager is loaded and when the network is available. In other words, networkmanager allows the boot process to continue before the network is available.
  My daemons are loaded in this order (rc.conf):
  DAEMONS=(syslog-ng hal dhcdbd networkmanager crond cups ntpdate ntpd portmap nfslock netfs)
  Consequently, if I add a delay to /etc/rc.d/netfs to allow time for the network to come up, then when the NFS shares are mounted, the network is up. In my case I had to add a 3 second delay.
  sleep 3
  I'm sure this isn't the best way to solve the problem, by editing the system file /etc/rc.d/netfs, because the next upgrade where changes occur to netfs, my fix will get overwritten. But I'll keep it until I figure out the "right" fix.
  The real solution is to not load networkmanager in the background, but to force startup to wait for the networok to be up before continuing.
  there is the _netdev option you can use in fstab, but that doesn't always work:
  http://linux.die.net/man/8/mount
  _netdev
      The filesystem resides on a device that requires network access (used to prevent the system from attempting to mount these filesystems until the network has been enabled on the system).
  Alternatively, you could just add a cronjob to do a mount -a with a sleep 20 in there or something. You might have to play with the sleep value a little to make sure it's long enough

• ACE 4710 use dns name in real server

  Is there any way to use a DNS name in real server and not a static IP.

  Hi,
  This is not possible at the moment. With ACE EOL, i don't think it would be added either.
  Regards,
  Kanwal
  Note: Please mark answers if they are helpful.

• Shared Printers - Using a DNS record instead of server name for failover

  I have a Server 2012 Print Server. I plan on creating a second one for failover purposes. I will be installing the shared printers on client PCs using Group policy preferences.  Instead of using
  \\servername\printer as the path, can I create a DNS record for the server name and use
  \\dnsname\printer?  That way, if the first server dies, I just edit the dns record to point to the second server instead of renaming the second server and changing the IP of the second server.

  Hi,
  Based on your description, we can try creating a DNS alias for our printer server and use the alias instead of the host name in the UNC path. When this server goes down, we
  can make the alias pointing to another printer server.
  Regarding how to create an alias for a DNS host name, the following article can be referred to for more information.
  Add an Alias (CNAME) Resource Record to a Zone
  http://technet.microsoft.com/en-us/library/cc772053.aspx
  Hope it helps.
  Best regards,
  Frank Shen

• Unity Express Backup: Can we use DNS name of FTP server instead of IP address?

  Gentlemen!
  In the Unity Express system, can we use DNS name of FTP server (Microsoft FTP Server) instead of IP address in the General configuartion for Backup Server?
  e.g.  FTP://FTP_Server_Name/Directory
  Additionally we need to configure/add DNS server name in the Domain Name settings under system menu. Is there any additional configuration would require for setting up FTP server with DNS entry & above config?
  Regards,
  Sky_Voice

  Hi Sky_Voice,
  This is a supported config
  Backing Up and Restoring Data
  Last Updated: May 12, 2010
  Cisco Unity Express backup and restore functions use an FTP server to store and retrieve data. The backup function copies the files from the Cisco Unity Express application to the FTP server and the restore function copies the files from the FTP server to the Cisco Unity Express application. The FTP server can reside anywhere in the network if the backup and restore functions can access it with an IP address or hostname.
  We recommend that backups be done regularly to preserve voice-mail messages and configuration data.
  Backup and restore commands are available in configuration mode and in offline mode.
  •In configuration mode, commands are available to set the following parameters:
  –Number of backup files to keep (the oldest file is deleted).
  –URL of the FTP server where the files will be stored.
  •In offline mode, perform the backup or restore procedure. Decide the following:
  –Type of files to be backed up: all files (configuration and data), only configuration files, or only data files. Data files consist of voice-mail messages. Configuration files consist of all other system and application parameters.
  –URL of the FTP server where the files will be stored.
  http://www.cisco.com/en/US/docs/voice_ip_comm/unity_exp/rel3_2/administrator/voicemail/11bkrst_ps5520_TSD_Products_Administration_Guide_Chapter.html
  Cheers!
  Rob

• DNS problem on WIndows Server 2008 R2

  Dear All
  I have windows 2008 R2 Server which is a DOmain Controller for a Domain. It is also DNS server.
  We are using Class A ip addresses for the private LAN behind a firewall.
  The DC & DNS Server has IP address of 80.5.0.1.  The CLient machines in the network has WinXP & WIN7. They have gateway address of Firewall LAN port. And the above DC/DNS Server address as primary DNS. The secondary DNS is the ISP provided DNS
  Server IP Address.
  The issue is sometimes the clients are not able to resolve the DC/DNS IP address. If you do nslookup on the client the DC IP is resolved to another server on the internet. It should actually return the Local DC name & address. 
  ANy suggestions?
  From : shekhar-nsk

  Gateway : 192.168.1.1 ( or it should be 192.168.1.100-Firewall IP ?)--Pls clarify this point.
  It definately should not be server IP, If firewall is also doing routing then yes gateway should be address of firewall.
  Primary DNS : 192.168.1.1( My DC& DNS Server)
  Correct
  Alternate DNS :  ( None)
  127.0.0.1
  FOrwarders : as given above ( Google's Open DNS Addresses)
  Correct
  In short all DNS queries from Windows Clients should go to local DC & DNS server. & from there is should go out .
  Correct again.
  Regards, Dave Patrick ....
  Microsoft Certified Professional
  Microsoft MVP [Windows]
  Disclaimer: This posting is provided "AS IS" with no warranties or guarantees , and confers no rights.

• Since updating to FF 5.0, I can no longer access my MAMP server (Mac/Apache/MySQL/PHP) Wordpress development site on my Localhost computer (MacBook Pro, OSX 10.6.4). Why not? It's running EXTREMELY SLOWLY when I try to access the pages on my site.

  PROBLEM WITH LOCALHOST SITE LOADING VERY SLOWLY (IF AT ALL) AFTER I UPGRADED FIREFOX TO 5.0 FROM 3.6
  I have been successfully running MAMP, a personal Apache server with MySQL, on my MacBook Pro using OSX 10.6.4. This is so I can create a Wordpress blog locally to later upload to my remote website.
  Yesterday, I updated my Firefox browser from 3.6 to 5.0 (and added the following extensions: Better Privacy 1.51, Bloody Vikings! 0.5.3, Copy as HTML Link 2.0, Firebug 1.7.3, Firepicker 1.3.4, NoScript 2.1.1.2, and Ultimate Free Stock Photo Search Add-on 1.0.1, TypeGauge 0.5, and Zotero 2.1.8)
  Now, I'm having trouble: At first, MySQL database server in MAMP wouldn't turn on at all. I restarted both Firefox and MAMP a few times. Finally, MySQL turned on and MAMP started to load into the browser. But it got only as far as the top bar on the MyPHP page, and would not load the rest of the page. Finally, pages do load, but I'm getting a "Waiting for localhost…" message looping at the lower left screen for a VERY LONG TIME (30-60 sec?) before my localhost web page appears (sometimes it says "Read localhost…").
  But even when the localhost pages appears, it continues to run VERY SLOWLY when the browser tries to load the pages (although it runs a little less slowly when I use only the backend Wordpress administration pages). In short, it seems that something is stopping Firefox from accessing the MySQL database properly so that my site can show up as quickly as it did before.
  Since this mess only happened after I upgraded to Firefox 5.0 and added the plugins, and nothing else has changed on my computer, it seems the Firefox 5.0 app and/or an extension is the culprit.
  Can you advise me ASAP about what to do? If not, I'll have to downgrade to 4.0 or something. I've got deadlines to meet.
  Thank you.

  PROBLEM WITH LOCALHOST SITE LOADING VERY SLOWLY (IF AT ALL) AFTER I UPGRADED FIREFOX TO 5.0 FROM 3.6
  I have been successfully running MAMP, a personal Apache server with MySQL, on my MacBook Pro using OSX 10.6.4. This is so I can create a Wordpress blog locally to later upload to my remote website.
  Yesterday, I updated my Firefox browser from 3.6 to 5.0 (and added the following extensions: Better Privacy 1.51, Bloody Vikings! 0.5.3, Copy as HTML Link 2.0, Firebug 1.7.3, Firepicker 1.3.4, NoScript 2.1.1.2, and Ultimate Free Stock Photo Search Add-on 1.0.1, TypeGauge 0.5, and Zotero 2.1.8)
  Now, I'm having trouble: At first, MySQL database server in MAMP wouldn't turn on at all. I restarted both Firefox and MAMP a few times. Finally, MySQL turned on and MAMP started to load into the browser. But it got only as far as the top bar on the MyPHP page, and would not load the rest of the page. Finally, pages do load, but I'm getting a "Waiting for localhost…" message looping at the lower left screen for a VERY LONG TIME (30-60 sec?) before my localhost web page appears (sometimes it says "Read localhost…").
  But even when the localhost pages appears, it continues to run VERY SLOWLY when the browser tries to load the pages (although it runs a little less slowly when I use only the backend Wordpress administration pages). In short, it seems that something is stopping Firefox from accessing the MySQL database properly so that my site can show up as quickly as it did before.
  Since this mess only happened after I upgraded to Firefox 5.0 and added the plugins, and nothing else has changed on my computer, it seems the Firefox 5.0 app and/or an extension is the culprit.
  Can you advise me ASAP about what to do? If not, I'll have to downgrade to 4.0 or something. I've got deadlines to meet.
  Thank you.

• DNS timeout and Name Server timeout between two DC's

  Hi All
  My clients have a brand new domain built for them, with two domain controllers at separate sites, and one site is having some issues.
  At one site (where DC2 is hosted), all users are having 5-10 minute log on delays - once in everything is running without issues. Site where DC1 is has zero issues - they run smoothly, get a nice quick login etc. All users are using redirected folders and
  all have the same GPO's applying to them.
  DC1 also has periodic issues communicating with DC2 - nslookup using DC2 gives "DNS request timed out. timeout was 2 seconds" on external AND internal queries, but then 5 minutes later will resolve perfectly. During the "DNS time out"
  period, trying to resolve DC2 as a Name Server also gives the error "A timeout occurred during validation".
  Not sure if these (slow logon and DNS/NameServer time out issues) issues are related but I am at a loss.
  Reverse lookup zones are fully created and populated, entries aren't randomly deleting themselves. Replication between both DC's is working fine, no errors and SYSVOL/NETLOGON are sharing fine from both DC's. Occassionally restarting the DNS server services
  on both servers will kick them back into talking - but only for around 30sec-1minute, after that they communicate periodically without problems and spend the rest of the time not resolving.
  Any ideas floating around, as I am at a loss here. We haven't been able to join more than a few test users to DC2's site for fear of them all calling every day due to long log on periods.

  Hi,
  Are you pointing each DC/DNS to the other one as primary dns in tcp/ip properties? Can you post a dcdiag /a /f:dcdiag.log from the DC2?
  Any warnings/errors in Application log on the client(s) facing issues after they get logged in ? Can you also confirm that users from site with DC2 are having DC at : set | find /I "LOGONSERVER" output?
  Hope it helps.
  Regards,
  Calin
  Hi Calin
  The DC's were originally pointing at each other for the primary but others prior to posting here suggested that was not best practice anymore and said they should be the other way around - in any case, either direction doesn't resolve the issues.
  The only application error the users are getting is :
  The winlogon notification subscriber <SessionEnv> was unavailable to handle a notification event.
  The winlogon notification subscriber <GPClient> took 84 second(s) to handle the notification event (Logon)
  DCDIAG of DC2 :
  Directory Server Diagnosis
  Performing initial setup:
  Trying to find home server...
  Home Server = CAB1-DC-V01
  * Identified AD Forest.
  Done gathering initial info.
  Doing initial required tests
  Testing server: AUS\NDC1-DC-V01
  Starting test: Connectivity
  ......................... NDC1-DC-V01 passed test Connectivity
  Testing server: AUS\CAB1-DC-V01
  Starting test: Connectivity
  ......................... CAB1-DC-V01 passed test Connectivity
  Doing primary tests
  Testing server: AUS\NDC1-DC-V01
  Starting test: Advertising
  ......................... NDC1-DC-V01 passed test Advertising
  Starting test: FrsEvent
  ......................... NDC1-DC-V01 passed test FrsEvent
  Starting test: DFSREvent
  ......................... NDC1-DC-V01 passed test DFSREvent
  Starting test: SysVolCheck
  ......................... NDC1-DC-V01 passed test SysVolCheck
  Starting test: KccEvent
  ......................... NDC1-DC-V01 passed test KccEvent
  Starting test: KnowsOfRoleHolders
  ......................... NDC1-DC-V01 passed test KnowsOfRoleHolders
  Starting test: MachineAccount
  ......................... NDC1-DC-V01 passed test MachineAccount
  Starting test: NCSecDesc
  ......................... NDC1-DC-V01 passed test NCSecDesc
  Starting test: NetLogons
  ......................... NDC1-DC-V01 passed test NetLogons
  Starting test: ObjectsReplicated
  ......................... NDC1-DC-V01 passed test ObjectsReplicated
  Starting test: Replications
  ......................... NDC1-DC-V01 passed test Replications
  Starting test: RidManager
  ......................... NDC1-DC-V01 passed test RidManager
  Starting test: Services
  ......................... NDC1-DC-V01 passed test Services
  Starting test: SystemLog
  A warning event occurred. EventID: 0x80000109
  Time Generated: 12/17/2014 08:25:05
  Event String:
  A pointer device did not report a valid unit of angular measurement.
  A warning event occurred. EventID: 0x80000101
  Time Generated: 12/17/2014 08:25:05
  Event String:
  A pointer device reported a bad angular physical range.
  A warning event occurred. EventID: 0x80000102
  Time Generated: 12/17/2014 08:25:05
  Event String:
  A pointer device reported a bad angular logical range.
  A warning event occurred. EventID: 0x80000109
  Time Generated: 12/17/2014 08:25:06
  Event String:
  A pointer device did not report a valid unit of angular measurement.
  A warning event occurred. EventID: 0x80000101
  Time Generated: 12/17/2014 08:25:06
  Event String:
  A pointer device reported a bad angular physical range.
  A warning event occurred. EventID: 0x80000102
  Time Generated: 12/17/2014 08:25:06
  Event String:
  A pointer device reported a bad angular logical range.
  A warning event occurred. EventID: 0x80000109
  Time Generated: 12/17/2014 08:47:55
  Event String:
  A pointer device did not report a valid unit of angular measurement.
  A warning event occurred. EventID: 0x80000101
  Time Generated: 12/17/2014 08:47:55
  Event String:
  A pointer device reported a bad angular physical range.
  A warning event occurred. EventID: 0x80000102
  Time Generated: 12/17/2014 08:47:55
  Event String:
  A pointer device reported a bad angular logical range.
  A warning event occurred. EventID: 0x80000109
  Time Generated: 12/17/2014 08:47:55
  Event String:
  A pointer device did not report a valid unit of angular measurement.
  A warning event occurred. EventID: 0x80000101
  Time Generated: 12/17/2014 08:47:55
  Event String:
  A pointer device reported a bad angular physical range.
  A warning event occurred. EventID: 0x80000102
  Time Generated: 12/17/2014 08:47:55
  Event String:
  A pointer device reported a bad angular logical range.
  A warning event occurred. EventID: 0x80000109
  Time Generated: 12/17/2014 08:47:55
  Event String:
  A pointer device did not report a valid unit of angular measurement.
  A warning event occurred. EventID: 0x80000101
  Time Generated: 12/17/2014 08:47:55
  Event String:
  A pointer device reported a bad angular physical range.
  A warning event occurred. EventID: 0x80000102
  Time Generated: 12/17/2014 08:47:55
  Event String:
  A pointer device reported a bad angular logical range.
  ......................... NDC1-DC-V01 failed test SystemLog
  Starting test: VerifyReferences
  ......................... NDC1-DC-V01 passed test VerifyReferences
  Testing server: AUS\CAB1-DC-V01
  Starting test: Advertising
  ......................... CAB1-DC-V01 passed test Advertising
  Starting test: FrsEvent
  ......................... CAB1-DC-V01 passed test FrsEvent
  Starting test: DFSREvent
  There are warning or error events within the last 24 hours after the
  SYSVOL has been shared. Failing SYSVOL replication problems may cause
  Group Policy problems.
  ......................... CAB1-DC-V01 passed test DFSREvent
  Starting test: SysVolCheck
  ......................... CAB1-DC-V01 passed test SysVolCheck
  Starting test: KccEvent
  ......................... CAB1-DC-V01 passed test KccEvent
  Starting test: KnowsOfRoleHolders
  ......................... CAB1-DC-V01 passed test KnowsOfRoleHolders
  Starting test: MachineAccount
  ......................... CAB1-DC-V01 passed test MachineAccount
  Starting test: NCSecDesc
  ......................... CAB1-DC-V01 passed test NCSecDesc
  Starting test: NetLogons
  ......................... CAB1-DC-V01 passed test NetLogons
  Starting test: ObjectsReplicated
  ......................... CAB1-DC-V01 passed test ObjectsReplicated
  Starting test: Replications
  ......................... CAB1-DC-V01 passed test Replications
  Starting test: RidManager
  ......................... CAB1-DC-V01 passed test RidManager
  Starting test: Services
  ......................... CAB1-DC-V01 passed test Services
  Starting test: SystemLog
  An error event occurred. EventID: 0x0000272C
  Time Generated: 12/17/2014 08:30:22
  Event String:
  DCOM was unable to communicate with the computer 139.130.4.4 using any of the configured protocols; requested by PID 1810 (C:\Windows\system32\dcdiag.exe).
  An error event occurred. EventID: 0x0000272C
  Time Generated: 12/17/2014 08:30:43
  Event String:
  DCOM was unable to communicate with the computer 203.50.2.71 using any of the configured protocols; requested by PID 1810 (C:\Windows\system32\dcdiag.exe).
  An error event occurred. EventID: 0x0000272C
  Time Generated: 12/17/2014 08:31:05
  Event String:
  DCOM was unable to communicate with the computer 8.8.4.4 using any of the configured protocols; requested by PID 1810 (C:\Windows\system32\dcdiag.exe).
  An error event occurred. EventID: 0x0000272C
  Time Generated: 12/17/2014 08:31:27
  Event String:
  DCOM was unable to communicate with the computer 8.8.8.8 using any of the configured protocols; requested by PID 1810 (C:\Windows\system32\dcdiag.exe).
  ......................... CAB1-DC-V01 failed test SystemLog
  Starting test: VerifyReferences
  ......................... CAB1-DC-V01 passed test VerifyReferences
  Running partition tests on : DomainDnsZones
  Starting test: CheckSDRefDom
  ......................... DomainDnsZones passed test CheckSDRefDom
  Starting test: CrossRefValidation
  ......................... DomainDnsZones passed test
  CrossRefValidation
  Running partition tests on : aus
  Starting test: CheckSDRefDom
  ......................... aus passed test CheckSDRefDom
  Starting test: CrossRefValidation
  ......................... aus passed test CrossRefValidation
  Running partition tests on : ForestDnsZones
  Starting test: CheckSDRefDom
  ......................... ForestDnsZones passed test CheckSDRefDom
  Starting test: CrossRefValidation
  ......................... ForestDnsZones passed test
  CrossRefValidation
  Running partition tests on : Schema
  Starting test: CheckSDRefDom
  ......................... Schema passed test CheckSDRefDom
  Starting test: CrossRefValidation
  ......................... Schema passed test CrossRefValidation
  Running partition tests on : Configuration
  Starting test: CheckSDRefDom
  ......................... Configuration passed test CheckSDRefDom
  Starting test: CrossRefValidation
  ......................... Configuration passed test CrossRefValidation
  Running enterprise tests on : swms.com
  Starting test: LocatorCheck
  ......................... swms.com passed test LocatorCheck
  Starting test: Intersite
  Doing intersite inbound replication test on site AUS:
  ......................... swms.com passed test Intersite
  SYSVOL is sharing OK, these errors are occurring when DC1 is performing backups and comes good a few seconds later)
  The DNS failures are not on the NIC of each server they are the forwarders for the server, not sure why they are failing as DNS lookup is running fine and the IP's are resolving correctly within the forwarders.
  set | find /I "LOGONSERVER"
  C:\Users\Christopher.McCartne>set | find /I "LOGONSERVER"
  LOGONSERVER=\\NDC1-DC-V01
  NDC1 = DC1
  CAB1 = DC2
  The users are logging onto NDC1 currently as I did switch around their DNS servers to have DC1 as their primary to test if this resolved the logon times. It didn't so I've switched them back and will re-run the check to see which server is the logonserver.

• Do I need to run DNS on a colo server being accessed remotely via VPN?

  My Mac Mini Server is located in a colo site. We generally use it for Web, email and a couple of application-specific services. It has a dedicated IP address. We have a separate DNS service we use to point to the domains on the server located remotely from the server. Forward and reverse lookups work fine from the server, even though the local DNS service is turned off.
  However, we now have a couple of things we want to access remotely on the server via VPN (for example, some files via AFP). The firewall blocks remote AFP requests (using the built-in firewall, not a separate box). We can connect via VPN without problems. However, AFP does not work. If I allow AFP in the firewall and try to connect, no problems at all.
  Since the Mini is located by itself and will never likely have anything connected to a "local network" (never running DHCP, etc.), there generally doesn't seem to be a need to run DNS on the server.
  I suspect the problem is that when you VPN into the server you are on its "local network", whatever that means, so the DNS does not resolve since the local DNS service is not running. However, I am not positive of this.
  Must we run local DNS? Does it have to mirror the remote DNS that we currently reference? Can we somehow "reference" the local DNS from VPN clients trying to access local services?
  I hope this question makes some sense.

  Bear with me please....
  The Mac Mini is in a data center on a shelf, getting a direct connection to the Internet via ethernet with a fixed IP address (under the covers, I suspect that the data center is using some sort of router or switch, but I am not paying for a hardware firewall or other gateway). There is no local network for the Mini. It is not running DHCP, not handing out NAT addresses, etc. DNS is currently off. Rather than using the local DNS, the Mini is resolving its DNS needs with a DNS server located at another site, over the Internet. This seems to work fine (i.e., changeip confirms it is working and services seem to work).
  I am currently using the software firewall built into SLS.
  I want to turn on VPN so that remotely located computers can access services on the Mini without having to make the services visible through the firewall.
  I am able to connect devices via VPN with little difficulty (iPhones, Macs, etc.). However, when I try to access services (let's use AFP as an example), I cannot access them UNLESS they are allowed through the firewall. This tells me that I am not seeing the services through the VPN, but rather through the Internet directly.
  What I meant by "local network" is that the VPN allocates local IP addresses when devices log into the VPN service (10.0.x.x). There is no DHCP allocating these addresses, just VPN.
  My question is: why can I not see the services on the Mini blocked by the firewall when successfully logged into VPN on the server? Isn't the whole point of the VPN to gain access to services behind the firewall?
  I am guessing (with no particular information to support my thesis) that somehow without DNS running on the Mini, VPN clients are unable to access services on the Mini. I do not know for sure, however, if this is the problem. If it IS a problem, then the question is whether I should completely copy the DNS entries from the remote DNS server to the Mini and start the service. Will that solve the issue? Create conflicts with the DNS (since it is now located on both a remote service and on the Mini)? It certainly will create a maintenance headache since now I will have to maintain the DNS in both places.
  I am hesitant to migrate all of my DNS services to the Mini (because I will also have to go to the domain registrars to change where they point, etc.) to eliminate the remote one. And I am not sure it will solve this problem anyway.
  Sorry for all of the typing!