DNS trace
DNS requests seem to have slowed on our network and I'm trying to find a way to test DNS requests and see a report of the routing of the request.
1) are the requests (i.e. from a client web browser) of outside domains being passed on to my ISP nameservers as specified in /etc/named.conf as forwarders
2) and if they are, why have DNS requests slowed in recent days?
I'm hoping a tool that shows the request and associated connections/times will help me diagnose the problem.
Thanks.
I cannot comment on the firewall question but...
If you have not entered forwarders manually then you do end up being slow.
A previous explanation I had on file...
The default activity for the Apple Server DNS (excluding domains for which it is authoritative or for which it has a previously cached answer) is to query the internet Root servers . This does tend to take longer than querying your ISPs DNS server unless there is sufficient traffic in your local LAN to build up a good cache. (Apparently, stuff to do with Recursive versus Non-Recursive queries
To bypass this behaviour you can configure your DNS to query only your ISPs DNS servers, not the internet Root servers. This way, even if your ISP's server does not have the answer cached, they still do all the work and then pass it back to you. Essentially, you only add the one extra step from having your ISP's DNS in the client... Instead of Client-> ISP DNS, you have Client-> Server-> ISP DNS. This difference should be milli-seconds. And once the server caches the response, it should be even faster.
File: /etc/named.conf
Add a forwarders statement to the existing Options clause, for example...
options {
directory "/var/named";
allow-transfer {none;};
recursion true;
forwarders {
199.168.4.100;
199.168.8.100;
forward only;
But change the IP addresses to the IPs of your ISP's DNS servers (the ones I have listed do not exist!)
The forward only statement tells your server to ONLY query the listed servers (if it does not already have a cached answer or is not authoritative for the domain being queried). 'forward first' would query the forwarders then the root servers (if no answer from forwarders).
This manual edit of /etc/named.conf, in my experience, does not get overwritten by any later changes to the DNS services in Server Admin GUI nor does it prevent the GUI from working properly. It does make a big difference to resolving speed though.
-david
Server 10.4.8
Similar Messages
-
Bouts of packet loss and complete loss of connection
Ok forum, I give up! I need your help.
I have an E1200 and am time out and packet loss issues. The internet connection is fine for 30 seconds to five minuets and then everything times out for 15-20 seconds. Although it’s only a minor incontinence to web browsing, it makes playing games and watching videos a nightmare. “Lost connection to server error.” and the like…
This is what I have done to remedy the problem.
I upgraded to a new router, the e1200 I am currently using, from my Tenda 10/100 N. The problems where the same that I am experience currently and the reason I bought it in the firs place.
When I directly connect to the cable modem, I have no issues and everything is fine.
I have run a trace route and the second hop, (the router to the modem) is the choke point.
I have cloned the MAC address
I have updated the firmware and hard reset
I have throttled my MTU to automatic, 1500, and 1472. None making any difference.
I have disabled NAT and all that does is kill my internet connection
I have disabled all firewalls router and windows, no change.
I replaced the physical wire from the router to the modem.
I have disconnected all devices except one computer, and no difference.
I ran a DNS trace and I have… non routable local internet address 192.168.1.1
DNS-cac-lb-01.rr.com and DNS-cac-lb-02.rr.com
I am using windows 7 and my ISP is time Warner so-cal. Help me obiwan, you’re my only hope.Sorry friend. I have not had the gaul to load the 1.0 firmware. I am 99% sure I have the 2.0 hardware. I did however unplug my modem for an hour and then try and reconnect. The result was a lossless environment for fifteen to twenty minuets (a long time for me.). But, I am right back still having the same problem. A friend gave me a new netgear router, I am going to try that and I am going to go to Timewarner and have them replace my modem just to make sure there is nothing wrong with the surfboard. I will report back with my findings.
-
Trace Route Doesn't Return DNS Name
I changed from a Linksys E4200 to a 5505 and when I use trace route, it doesn't return a DNS name for each hop. I can see the hops shown as asterisks. Do I have to add something to inspect for this to work?
Hi,
You could try the following. (Depending if your "policy-map" configuration is as its default settings)
policy-map global_policy
class inspection_default
inspect icmp error
inspect icmp
Then you could add the following to your ACL attached to your "outside" interface or configure a new ACL to your "outside" interface if it doesnt yet exist
access-list OUTSIDE-IN remark Allow ICMP return messages
access-list OUTSIDE-IN permit icmp any any unreachable
access-list OUTSIDE-IN permit icmp any any time-exceeded
access-list OUTSIDE-IN permit icmp any any echo-reply
access-group OUTSIDE-IN in interface outside
You will naturally use the existing ACL if you have one. If no ACL exists you can use the above configuration as it is.
Hope this helps
Please remember to mark the reply as the correct answer if it answered your question.
Ask more if needed
- Jouni -
I originally posted this question to the community section and was advised to post it here. Please bear with me as this will be a long post. I'm including the scenarios involving this reoccurring issue, the trouble shooting steps I've already
taken and the results of several diagnostic tools and logs.
I have a Sony VAIOS VPCEBB33FM lap top since 2011. I have had this issue on an off for a long time. I'm at my wit's end. Any new insights or suggestions would be greatly appreciated.
Scenario Details
1) Some times it's on and off through out the day, sometimes it won't work all day, and once in a while it will work fine for the entire day.
2) I've had this issue across several wireless services, Clear Network accessed with WiMax, Library Wi-fi, Comcast cable internet using wireless router and Wi-fi, and Comcast Xfinity Wi-Fi, to name a few examples.
3) Other devices in the household or library will work with no problems such as my smart phone or my roommates' laptops or desktop computers.
4) Once in a while, the built-in wireless adapter is not found and I have to reinstall the driver. Also the diagnostic tool has had to reset my adapter on an increasing basis.
5) I had my hard drive replaced in December 2014 and my system restored from the System Restore disks that came with it when I bought the laptop. Even though I've been online on an infrequent basis it worked just fine for a while. Now that
I've been online a bit more I'm having the same issues again.
Below are my attempts at trouble shooting so far but I still have not been able to consistently resolve my DNS issues
1) Restarting my adapter
2) Turning off my laptop and removing the power supply for 5-10 minutes before turning it back on.
3) Using the IP Config in Command Prompt
ipconfig /flushdns
ipconfig /registerdns
ipconfig /release
ipconfig /renew
4) Using the NetSh reset in Command Prompt and restarting my laptop
netsh int ip reset c:\resetlog.txt
netsh winsock reset
ipconfig /flushdns
[restart laptop]
5) Configuring the TCP/IP in several settings
Select Internet Protocol Version 4 (TCP/IPv4), and then click Properties.
I have used the following settings:
a) Obtain an DNS server address automatically
b) OpenDNS
208 67 222 222
208 67 220 220
c) Google DNS
8 8 8 8
8 8 4 4
6) Updating the driver for my Intel Centrino(R) Advanced-N 6250 AGN and Intel Centrino(R) WIMAX 6250 from the Intel website previous having my laptop wiped clean in 2014. It still did not resolve the issue. My laptop
manufacturer as not come up with an driver update for my adapter since 2010. I haven't tried to update the adapter driver from Intel's website since having my laptop repaired due to the fact that Intel strongly recommending using the manufacturer's updates
instead and frankly it didn't make much of a difference when I did it the first time.
7) The last one I've tried as of today is going into Services and changing the start up type to automatic for the following:
Computer Browser [changed from manual to automatic]
DHCP Client [already set to automatic]
DNS Client [already set to automatic]
Network Connections [already set to automatic]
Network Location Awareness [changed from manual to automatic]
Remote Procedure Call (RPC) [already set to automatic]
Server [already set to automatic]
TCP/IP Netbios helper [already set to automatic]
Workstation [already set to automatic]
...and I'm still having DNS issues.
My only guessing are that my laptop came with a lemon adapter that needs to be replaced, some advanced setting(s) that I'm not aware off, or my firewall/anti-virus is interfering. I've used Symmantic Anti-virus and Firewall in the past and currently
Avast Anti-Virus with Microsoft Network Firewall. I've had DNS issues with both anti-virus/firewall set ups.
Below are the results from the diagnostics and tests that I've ran.
Windows Network Diagnostics
Your computer appears to be correctly configured, but the device or resource (DNS server) is not responding Detected Detected
Contact your network administrator or Internet service provider (ISP) Completed
Windows can't communicate with the device or resource (DNS server). The computer or service you are trying to reach might be...
Details about network adapter diagnosis:
Network adapter Wireless Network Connection driver information:
Description . . . . . . . . . . : Intel(R) Centrino(R) Advanced-N 6250 AGN
Manufacturer . . . . . . . . . : Intel Corporation
Provider . . . . . . . . . . . : Intel
Version . . . . . . . . . . . : 13.2.1.5
Inf File Name . . . . . . . . . : C:\Windows\INF\oem17.inf
Inf File Date . . . . . . . . . : Monday, June 14, 2010 9:05:44 AM
Section Name . . . . . . . . . : Install_MPCIEX_GEN_6250_AGN_2x2_HMC_WIN7_64_MOW
Hardware ID . . . . . . . . . . : pci\ven_8086&dev_0087&subsys_13018086
Instance Status Flags . . . . . : 0x180200a
Device Manager Status Code . . : 0
IfType . . . . . . . . . . . . : 71
Physical Media Type . . . . . . : 9
Informational Diagnostics Information (Wireless Connectivity)
Details about wireless connectivity diagnosis:
Information for connection being diagnosed
Interface GUID: 70a0781d-6329-45e4-8d7c-34aeca294c39
Interface name: Intel(R) Centrino(R) Advanced-N 6250 AGN
Interface type: Native WiFi
Connection incident diagnosed
Auto Configuration ID: 1
Connection ID: 1
Connection status summary
Connection started at: 2015-03-07 19:57:14-186
Profile match: Success
Pre-Association: Success
Association: Success
Security and Authentication: Success
List of visible access point(s): 22 item(s) total, 22 item(s) displayed
BSSID BSS Type PHY Signal(dB) Chnl/freq SSID
60-02-92-C6-D3-E8 Infra <unknown> -62 11 HOME-C7D4-2.4
60-02-92-A1-75-E0 Infra <unknown> -58 6 HOME-B917-2.4
00-1D-D5-D5-34-F0 Infra <unknown> -73 6 HOME-34F2
60-02-92-A1-75-E1 Infra <unknown> -58 6 (Unnamed Network)
06-1D-D5-D5-34-F0 Infra <unknown> -78 6 xfinitywifi
C4-27-95-C9-C4-2D Infra <unknown> -57 1 HOME-C42D
02-1D-D5-D5-34-F0 Infra <unknown> -74 6 (Unnamed Network)
00-0D-97-07-E0-79 Infra g -75 6 (Unnamed Network)
00-1D-CF-2A-44-C0 Infra <unknown> -86 6 HOME-44C2
02-1D-CF-2A-44-C0 Infra <unknown> -86 6 (Unnamed Network)
F8-E4-FB-3C-87-A2 Infra <unknown> -89 6 YVNM7
06-1D-CF-2A-44-C0 Infra <unknown> -87 6 xfinitywifi
0C-F8-93-7A-13-50 Infra b -87 6 PKennedy
06-F8-93-7A-13-50 Infra b -89 6 xfinitywifi
02-F8-93-7A-13-50 Infra b -87 6 (Unnamed Network)
E0-88-5D-C8-A9-DC Infra <unknown> -80 1 HOME-A9DC
E2-88-5D-C8-A9-DD Infra <unknown> -79 1 (Unnamed Network)
16-CF-E2-43-0B-30 Infra <unknown> -88 1 xfinitywifi
60-02-92-F0-A8-C0 Infra <unknown> -90 11 HOME-96A6-2.4
60-02-92-C6-D3-E9 Infra <unknown> -63 11 (Unnamed Network)
02-1D-D4-EB-87-00 Infra <unknown> -88 11 (Unnamed Network)
06-1D-D4-EB-87-00 Infra <unknown> -88 11 xfinitywifi
Connection History
Information for Auto Configuration ID 1
List of visible networks: 13 item(s) total, 13 item(s) displayed
BSS Type PHY Security Signal(RSSI) Compatible SSID
Infra <unknown> Yes 63 Yes HOME-C7D4-2.4
Infra <unknown> Yes 70 Yes HOME-B917-2.4
Infra <unknown> Yes 43 Yes HOME-34F2
Infra <unknown> Yes 70 Yes (Unnamed Network)
Infra <unknown> No 40 Yes xfinitywifi
Infra <unknown> Yes 71 Yes HOME-C42D
Infra g No 43 Yes (Unnamed Network)
Infra <unknown> Yes 28 Yes HOME-44C2
Infra <unknown> Yes 20 Yes YVNM7
Infra b Yes 21 Yes PKennedy
Infra <unknown> Yes 33 Yes HOME-A9DC
Infra <unknown> Yes 35 Yes (Unnamed Network)
Infra <unknown> Yes 16 Yes HOME-96A6-2.4
List of preferred networks: 3 item(s)
Profile: xfinitywifi
SSID: xfinitywifi
SSID length: 11
Connection mode: Infra
Security: No
Set by group policy: No
Connect even if network is not broadcasting: No
Connectable: Yes
Profile: HTC Portable Hotspot 9F50
SSID: HTC Portable Hotspot 9F50
SSID length: 25
Connection mode: Infra
Security: Yes
Set by group policy: No
Connect even if network is not broadcasting: No
Connectable: No
Reason: 0x00028002
Profile: belkin.332
SSID: belkin.332
SSID length: 10
Connection mode: Infra
Security: Yes
Set by group policy: No
Connect even if network is not broadcasting: No
Connectable: No
Reason: 0x00028002
Information for Connection ID 1
Connection started at: 2015-03-07 19:57:14-186
Auto Configuration ID: 1
Profile: xfinitywifi
SSID: xfinitywifi
SSID length: 11
Connection mode: Infra
Security: No
Pre-Association and Association
Connectivity settings provided by hardware manufacturer (IHV): No
Security settings provided by hardware manufacturer (IHV): No
Profile matches network requirements: Success
Pre-association status: Success
Association status: Success
Last AP: 06-1d-d5-d5-34-f0
Security and Authentication
Configured security type: Open
Configured encryption type: None
802.1X protocol: No
Key exchange initiated: Yes
Unicast key received: No
Multicast key received: No
Number of security packets received: 0
Number of security packets sent: 0
Security attempt status: Success
Connectivity
Packet statistics
Ndis Rx: 2068
Ndis Tx: 2543
Unicast decrypt success: 0
Multicast decrypt success: 0
Unicast decrypt failure: 0
Multicast decrypt failure: 0
Rx success: 3954
Rx failure: 0
Tx success: 537
Tx failure: 4
Tx retry: 2
Tx multiple retry: 2
Tx max lifetime exceeded: 0
Tx ACK failure: 18
Roaming history: 0 item(s)
InformationalDiagnostics Information (Wireless Connectivity)
Details about wireless connectivity diagnosis:
For complete information about this session see the wireless connectivity information event.
Helper Class: Auto Configuration
Initialize status: Success
Information for connection being diagnosed
Interface GUID: 70a0781d-6329-45e4-8d7c-34aeca294c39
Interface name: Intel(R) Centrino(R) Advanced-N 6250 AGN
Interface type: Native WiFi
Result of diagnosis: There may be problem
Network Connection details from Command Prompt (some info hidden for security reasons)
Connection-specific DNS Suffix:
Description: Intel(R) Centrino(R) Advanced-N 6250 AGN
Physical Address: 00-23-15-54-19-B8
DHCP Enabled: Yes
IPv4 Address: 192.168.X.XX
IPv4 Subnet Mask: 255.255.XX.X
Lease Obtained: Saturday, March 07, 2015 7:57:14 PM
Lease Expires: Saturday, March 07, 2015 8:24:44 PM
IPv4 Default Gateway: 192.168.X.X
IPv4 DHCP Server: 192.168.X.X
IPv4 DNS Servers: 75.75.75.75, 75.75.76.76
IPv4 WINS Server:
NetBIOS over Tcpip Enabled: Yes
Link-local IPv6 Address: fe80::b8de:3ac9:e166:XXX%XX
IPv6 Default Gateway:
IPv6 DNS Server:
Results of Ping and Trace Route in Command Prompt
Microsoft Windows [Version 6.1.7601]
Copyright (c) 2009 Microsoft Corporation. All rights reserved.
C:\Windows\system32>ping 127.0.0.1
Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Ping statistics for 127.0.0.1:
Packets: Sent = 4, Received = 4, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
C:\Windows\system32>ping www.youtube.com
Pinging youtube-ui.l.google.com [173.194.121.6] with 32 bytes of data:
Reply from 173.194.121.6: bytes=32 time=24ms TTL=55
Reply from 173.194.121.6: bytes=32 time=19ms TTL=55
Request timed out.
Request timed out.
Ping statistics for 173.194.121.6:
Packets: Sent = 4, Received = 2, Lost = 2 (50% loss),
Approximate round trip times in milli-seconds:
Minimum = 19ms, Maximum = 24ms, Average = 21ms
C:\Windows\system32>ping 74.125.239.34
Pinging 74.125.239.34 with 32 bytes of data:
Request timed out.
Request timed out.
Reply from 74.125.239.34: bytes=32 time=3286ms TTL=50
Request timed out.
Ping statistics for 74.125.239.34:
Packets: Sent = 4, Received = 1, Lost = 3 (75% loss),
Approximate round trip times in milli-seconds:
Minimum = 3286ms, Maximum = 3286ms, Average = 3286ms
C:\Windows\system32>ping www.hotmail.com
Pinging dispatch.kahuna.glbdns2.microsoft.com [65.55.157.204] with 32 bytes of data:
Reply from 65.55.157.204: bytes=32 time=111ms TTL=237
Request timed out.
Request timed out.
Reply from 65.55.157.204: bytes=32 time=1537ms TTL=237
Ping statistics for 65.55.157.204:
Packets: Sent = 4, Received = 2, Lost = 2 (50% loss),
Approximate round trip times in milli-seconds:
Minimum = 111ms, Maximum = 1537ms, Average = 824ms
C:\Windows\system32>ping 207.46.11.236
Pinging 207.46.11.236 with 32 bytes of data:
Request timed out.
Request timed out.
Request timed out.
Request timed out.
Ping statistics for 207.46.11.236:
Packets: Sent = 4, Received = 0, Lost = 4 (100% loss),
C:\Windows\system32>tracert www.youtube.com
Tracing route to youtube-ui.l.google.com [173.194.121.5]
over a maximum of 30 hops:
1 19 ms 13 ms 17 ms xfwsr12-nwca-01.sys.comcast.net [68.85.15.244]
2 13 ms 13 ms 27 ms ae-14-32767-ar03.newcastle.de.panjde.comcast.net [68.85.192.205]
3 20 ms 26 ms 21 ms he-5-10-0-0-cr01.ashburn.va.ibone.comcast.net [68.86.94.249]
4 18 ms 34 ms 22 ms he-0-13-0-0-pe07.ashburn.va.ibone.comcast.net [68.86.86.50]
5 19 ms 18 ms 18 ms 50-248-116-190-static.hfc.comcastbusiness.net [50.248.116.190]
6 35 ms 18 ms 18 ms 209.85.249.217
7 21 ms 19 ms 19 ms 72.14.233.93
8 * * * Request timed out.
9 * 2509 ms 677 ms iad23s25-in-f5.1e100.net [173.194.121.5]
Trace complete.
C:\Windows\system32>tracert 74.125.239.34
Tracing route to nuq04s19-in-f2.1e100.net [74.125.239.34]
over a maximum of 30 hops:
1 54 ms 23 ms 12 ms xfwsr12-nwca-01.sys.comcast.net [68.85.15.244]
2 22 ms 19 ms 17 ms ae-14-32767-ar03.newcastle.de.panjde.comcast.net[68.85.192.205]
3 19 ms 19 ms 18 ms he-5-14-0-0-cr01.ashburn.va.ibone.comcast.net [68.86.166.121]
4 18 ms 18 ms 18 ms he-0-15-0-0-cr01.350ecermak.il.ibone.comcast.net[68.86.85.74]
5 19 ms 18 ms 22 ms 50-248-116-190-static.hfc.comcastbusiness.net [50.248.116.190]
6 22 ms 36 ms 19 ms 209.85.249.217
7 26 ms 23 ms 25 ms 209.85.143.112
8 * * * Request timed out.
9 * * * Request timed out.
10 972 ms * * 216.239.51.97
11 148 ms 97 ms 95 ms 216.239.46.241
12 324 ms 130 ms 432 ms 209.85.246.252
13 * * * Request timed out.
14 1403 ms 101 ms 126 ms nuq04s19-in-f2.1e100.net [74.125.239.34]
Trace complete.
C:\Windows\system32>tracert www.hotmail.com
Tracing route to dispatch.kahuna.glbdns2.microsoft.com [65.55.157.144]
over a maximum of 30 hops:
1 13 ms 13 ms 25 ms xfwsr12-nwca-01.sys.comcast.net [68.85.15.244]
2 13 ms 15 ms 13 ms ae-14-32767-ar03.newcastle.de.panjde.comcast.net[68.85.192.205]
3 20 ms 19 ms 17 ms he-5-13-0-0-cr01.ashburn.va.ibone.comcast.net [68.86.95.145]
4 17 ms 20 ms 20 ms he-0-13-0-0-pe07.ashburn.va.ibone.comcast.net [68.86.86.50]
5 17 ms 18 ms 38 ms as8075-2-c.ashburn.va.ibone.comcast.net [173.167.58.82]
6 18 ms 18 ms 36 ms ae4-0.ash-96cbe-1a.ntwk.msn.net [207.46.36.172]
7 * * * Request timed out.
8 * 2191 ms 35 ms ae0-0.atb-96cbe-1b.ntwk.msn.net [191.234.81.167]
9 * * * Request timed out.
10 * * * Request timed out.
11 86 ms 84 ms 84 ms ae4-0.lax-96cbe-1a.ntwk.msn.net [191.234.83.150]
12 86 ms 86 ms 87 ms ae9-0.by2-96c-1a.ntwk.msn.net [207.46.42.176]
13 * * * Request timed out.
14 * * * Request timed out.
15 * * * Request timed out.
16 * * * Request timed out.
17 87 ms 84 ms 85 ms origin.by173w.bay173.mail.live.com [65.55.157.144]
Trace complete.
C:\Users\C.Cunningham>tracert 207.46.11.236
Tracing route to origin.by181w.bay181.mail.live.com [207.46.11.236]
over a maximum of 30 hops:
1 16 ms 16 ms 19 ms xfwsr12-nwca-01.sys.comcast.net [68.85.15.244]
2 18 ms 13 ms 13 ms ae-14-32767-ar03.newcastle.de.panjde.comcast.net[68.85.192.205]
3 21 ms 19 ms 21 ms he-5-12-0-0-cr01.ashburn.va.ibone.comcast.net [68.86.95.141]
4 18 ms 21 ms 18 ms he-0-13-0-0-pe07.ashburn.va.ibone.comcast.net [68.86.86.50]
5 * * * Request timed out.
6 * * * Request timed out.
7 * * * Request timed out.
8 * * * Request timed out.
9 * * * Request timed out.
10 * * * Request timed out.
11 * * * Request timed out.
12 * * * Request timed out.
13 * * * Request timed out.
14 * * * Request timed out.
15 * * * Request timed out.
16 * * * Request timed out.
17 * * * Request timed out.
18 * * * Request timed out.
19 * * * Request timed out.
20 * * * Request timed out.
21 * * * Request timed out.
22 * * * Request timed out.
23 * * * Request timed out.
24 * * * Request timed out.
25 * * * Request timed out.
26 * * * Request timed out.
27 * * * Request timed out.
28 * * * Request timed out.
29 * * * Request timed out.
30 * * * Request timed out.
Trace complete.
Results of Intel WiFi Manual Diagnostics
Test Name Test Result Test Summary
Hardware Test Passed Wireless Hardware is enabled
Driver Test Passed Diver is loaded. NETwNs64 Version 13.3.0.24
Radio Test Passed Radio is ON
Scan Test Passed There are 25 Networks available to connect
Association Test Passed Associated
Authentication Test Passed Authenticated
Signal Test Passed Signal Quality: Poor
Ping Test Failed No Reponse: default gateway, DHCP server
I hope this information is enough to get to the root of this problem once and for all. Please let me know if you any other information such as event logs or statistics.
Thanks in advance.Results of Intel WiFi Event View Log (I deleted some lines since there were basically repeats of the same messages)
#Event Source Time
Error Severity Domain
User Description
45 EvtEngine
3/8/2015 20:40 Success
Connection SYSTEM
iAMT - Failed to read Windows Events Log
46 S24EvMon
3/8/2015 20:41 Information
AppDriver
SYSTEM
Getting List of adapters.
47 S24EvMon
3/8/2015 20:41 Information
AppDriver
SYSTEM
Intel adapter(s) found.
156 S24EvMon
3/8/2015 20:47 Information
Driver SYSTEM
AddToExclude 06:1d:d5:d5:34:f0 xfinitywifi 6 WEV_EXCLUDE_LIST_REASON_802_11_AUTH_FAILURE
157 S24EvMon
3/8/2015 20:47 Information
Driver SYSTEM
ATC 06:1d:cf:2a:44:c0 xfinitywifi 6 RSSI=-88
158 S24EvMon
3/8/2015 20:47 Error
Driver SYSTEM
AssociationFailure 06:1d:cf:2a:44:c0 xfinitywifi 6 CNCT_GENERAL_FAILURE
159 S24EvMon
3/8/2015 20:47 Information
Driver SYSTEM
AddToExclude 06:1d:cf:2a:44:c0 xfinitywifi 6 WEV_EXCLUDE_LIST_REASON_802_11_ASSOC_FAILURE
160 S24EvMon
3/8/2015 20:47 Information
Driver SYSTEM
ATC 06:1d:d5:d5:34:f0 xfinitywifi 6 RSSI=-79
161 S24EvMon
3/8/2015 20:47 Success
Driver SYSTEM
RxAuthSuccess 06:1d:d5:d5:34:f0 6
162 S24EvMon
3/8/2015 20:47 Success
Driver SYSTEM
RxAssocResp 06:1d:d5:d5:34:f0 6 -77
163 S24EvMon
3/8/2015 20:49 Information
TCP/IP SYSTEM
VoIP: Got link down - deleting flows .
164 S24EvMon
3/8/2015 20:49 Information
Driver SYSTEM
ATC 06:1d:d4:eb:87:00 xfinitywifi 11 RSSI=-88
165 S24EvMon
3/8/2015 20:49 Error
Driver SYSTEM
AssociationFailure 06:1d:d4:eb:87:00 xfinitywifi 11 CNCT_GENERAL_FAILURE
166 S24EvMon
3/8/2015 20:49 Information
Driver SYSTEM
AddToExclude 06:1d:d4:eb:87:00 xfinitywifi 11 WEV_EXCLUDE_LIST_REASON_802_11_ASSOC_FAILURE
167 S24EvMon
3/8/2015 20:49 Information
Driver SYSTEM
ATC 06:1d:d4:eb:87:00 xfinitywifi 11 RSSI=-89
168 S24EvMon
3/8/2015 20:49 Error
Driver SYSTEM
AssociationFailure 06:1d:d4:eb:87:00 xfinitywifi 11 CNCT_GENERAL_FAILURE
169 S24EvMon
3/8/2015 20:49 Information
Driver SYSTEM
AddToExclude 06:1d:d4:eb:87:00 xfinitywifi 11 WEV_EXCLUDE_LIST_REASON_802_11_ASSOC_FAILURE
170 S24EvMon
3/8/2015 20:49 Information
Driver SYSTEM
ATC 06:1d:d4:eb:87:00 xfinitywifi 11 RSSI=-90
171 S24EvMon
3/8/2015 20:49 Error
Driver SYSTEM
AssociationFailure 06:1d:d4:eb:87:00 xfinitywifi 11 CNCT_GENERAL_FAILURE
172 S24EvMon
3/8/2015 20:49 Information
Driver SYSTEM
ATC 06:1d:d5:d5:34:f0 xfinitywifi 6 RSSI=-82
173 S24EvMon
3/8/2015 20:49 Success
Driver SYSTEM
RxAuthSuccess 06:1d:d5:d5:34:f0 6
174 S24EvMon
3/8/2015 20:49 Success
Driver SYSTEM
RxAssocResp 06:1d:d5:d5:34:f0 6 -81
175 S24EvMon
3/8/2015 20:50 Information
Driver SYSTEM
AddToExclude 06:1d:d5:d5:34:f0 xfinitywifi 6 WEV_EXCLUDE_LIST_REASON_802_11_AUTH_FAILURE
176 S24EvMon
3/8/2015 20:50 Information
Driver SYSTEM
ATC 06:1d:d5:d5:34:f0 xfinitywifi 6 RSSI=-79
177 S24EvMon
3/8/2015 20:50 Success
Driver SYSTEM
RxAuthSuccess 06:1d:d5:d5:34:f0 6
178 S24EvMon
3/8/2015 20:50 Success
Driver SYSTEM
RxAssocResp 06:1d:d5:d5:34:f0 6 -80
179 S24EvMon
3/8/2015 21:03 Information
Driver SYSTEM
RoamTrigger 06:1d:d5:d5:34:f0 xfinitywifi 6 RSSI=-81 MisBcn=8 RSSITh=-85 Roam Other Reason
186 S24EvMon
3/8/2015 21:21 Information
General
SYSTEM
DeviceIoCtrlS24NDIS: (2) Failed to send OID 0xff100055 to driver. Error - 31
187
S24EvMon
3/8/2015 21:21 Information
General
SYSTEM
DeviceIoCtrlS24NDIS - Dot11ExtNicSpecificExtension failed (31) -
Question on a safari symptom that implies dns wierdness
This question is posted here because to problem shows up best in Safari. However, as I understand the process, I do not believe the core of the problem is specifically Safari.
When I try to browse to a nonexistant domain (for example, typing in xyzzy.apple.com into Safari's browser), I am shown a Network Solutions page which reads among other things:
This Site Is Under Construction and Coming Soon.
This Domain Is Registered with Network Solutions
It's not as robust as the usual Network Solutions Under construction page.
A screen shot of this can be seen at
http://www.notnap.com/browsing/UnderConstruction.png
I also get this when I type in partial urls. For example, if I simply type in ford to the address bar in Safari, I get the same page. Once upon a time, the browser would assume I meant to add a .com to the end of the url if I did not do so. While showing as a sign of laziness, I must admit I like this "feature."
I NEVER see the standard Safari page saying "Safari can't find the page you are looking for."
Some details:
- Network consists of a DSL connection to Verizon.
DSL modem - Linksys router = iMac G5, iMac G3
Router is connecting to modem via PPPoE
Router is configuring local network (192.168.1.x) via DHCP
- I see the same results from IE5 on the OS9 Imac G3
- I know I did not have these results until recently. Recent changes include:
- upgrading firmware on linksys
- changing internal network range from 192.0.1.x (wsa a typo) to 192.168.1.x
Here is my thinking:
There are two "problems" going on here.
1) I'd like the browser address bar to assume I mean .com when I do not include a standard TLD
2) I'd like to know how Network Solutions is rerouting my browser when my dns resolver falis to find an ip when searching on behalf of my browser.
(1) is admitedly a behavioral preference.
(2) is getting me worried. Doesn't this mean some local process is doing this?
Here's a simplification of the entire process as I understand how dns and web browsing works...
1) In Safari, I enter a bogus url domain, like "xyzzy.apple.com"
2) the Safari process realizes I have not entered an IP number, and goes to the network stack in search of my dns resolver
3) I've entered no custom host information, so the dns resolver on my system must go to whatever dns servers I have configured for use on my ethernet connection. (The only active connection, by the way). There are two dns servers, both in Verizon's space (they are my ISP)
4) My system makes a query on port 53 to their first server. Let's assume they are playing by the rules and not proxying without my knowledge. Let's also assume there is nothing in their dns server cache for xyzzy.apple.com. After all, why should there be? Finally, let's assume their dns servers are recursive.
5) Their dns server checks it's cache and realizes it has nothing for xyzzy.apple.com. It also quickly realizes it has no zone for apple.com, so it goes out on the quest. It hits the root servers, gets directed to the GTLD-SERVERS, gets directed to nserver.apple.com, which finally answers no such host.
6) Verizon's dns server tells my computer's dns resolver no such host
7) My computers dns resolver tells Safari no such host
8) Safari should display the typical site not found page.
As far as I can tell, when I do the search from a purely dns query standpoint, I get the expected results. Here's a clip from the terminal. Comments in italics:
xxxxx:~ xxxxx$ cat /etc/resolv.conf
domain xxx.com
search xxx.com
nameserver 141.154.0.68
nameserver 151.203.0.84
........these are the correct names servers as provided by my isp........
xxxxxx:~ xxxxxx$ dig @141.154.0.68 xyzzy.apple.com +trace
; <<>> DiG 9.2.2 <<>> @141.154.0.68 xyzzy.apple.com +trace
;; global options: printcmd
. 197789 IN NS C.ROOT-SERVERS.NET.
.........skipping a bit.........
. 197789 IN NS B.ROOT-SERVERS.NET.
;; Received 436 bytes from 141.154.0.68#53(141.154.0.68) in 55 ms
com. 172800 IN NS A.GTLD-SERVERS.NET.
.........skipping a bit.........
com. 172800 IN NS M.GTLD-SERVERS.NET.
;; Received 493 bytes from 192.33.4.12#53(C.ROOT-SERVERS.NET) in 40 ms
apple.com. 172800 IN NS nserver.apple.com.
apple.com. 172800 IN NS nserver.asia.apple.com.
apple.com. 172800 IN NS nserver.euro.apple.com.
apple.com. 172800 IN NS nserver2.apple.com.
apple.com. 172800 IN NS nserver3.apple.com.
apple.com. 172800 IN NS nserver4.apple.com.
;; Received 274 bytes from 192.5.6.30#53(A.GTLD-SERVERS.NET) in 34 ms
apple.com. 86400 IN SOA nserver.apple.com. hostmaster.apple.com. 2006032800 1800 900 2016000 86500
;; Received 88 bytes from 17.254.0.50#53(nserver.apple.com) in 94 ms
In other words, it got what you'd expect - the host does not exist.
So what I want to know is, how is it that Safari is set to shown a Network Solutions page instead of the default Server not Found page? As far as I can tell, that page is not on my system, so Safari must be retrieving it from elsewhere.
But how? When the local process trying to resolve the bogus host xyzzy.apple.com is dig, host, nslookup or the like, I get the correct host not found. How then is that information being changed between my local dig process and the safari process, so that Safari then shows the Network Solutions page? Remember that the only processes which "know" this query was originated by a browser and not by a dns utility like dig are local to my box. So, how can this substitution be done without local access?
Wouldn't this imply a local security problem?
I've tried (although I cannot imagine how some of these would affect a resolution):
- Reset Safari
- emptying cache and history
- manually entering the dns information in system prefs (allowing the system to be configured via dhcp does work - according to network utils, the dns info is there - but they do not show up in the network prefs panel.
- adding ".com" "com" or a few other variations to the default domain in the network prefs.
- Deleting Safari's prefs (~/Library/Safari/)
I did find some discussion about something similar from back around 2002 complaining that similar action could potentially cause host verification problems for email servers and the like. Though, I'd guess most of these kinds of verifications would be for the reverse lookups. Still, I dould not find an exmplanation of how it was done, or more importantly, how to stop it, short of petitioning the ISP's to upgrade their version of BIND.
I'd love to be able to stop this annoying free ad for Network Solutions from appearing whenever I'm wither lazy or sloppy typing in the url. But more importantly, I want to know how this process works. The fact I see similar results on my OS9 ImacG3 strongly implies I'm not looking at a security issue - it's unlikely my conclusion there is a local process intercepting the dns results between my resolver process and my safari process is correct, as the same thing seems to be happening there as well. But I gotta know. How is this happening? How did Network Solutions do this?What you're describing sounds suspiciously like
VeriSign's SiteFinder from ... the
fall of 2003, which is when it was up and running.
That's one thing I did find from my searches. What I didn't find was an understanding of how they did it then, and by inference how they're doing it now, assuming we're seeing a recurrance.
I find thousands of similar hits by searching on the text in the page, though it's unclear how many of these are legit - some of these pages are truthful. Hitting xyzzy.apple.com and being told "This Domain Is Registered with Network Solutions" is another matter entirely.
This looks like your page doesn't it:
http://underconstruction.networksolutions.com/
You know what would be interesting? The output of
this Terminal command:
curl -I
http://xyzzy.apple.comSee what headers get
returned from whatever server is answering the
call...
I'll do you one better... from terminal:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
notnAP:~ notnap$ curl -Iv http://www.apple.com
* About to connect() to www.apple.com port 80
* Trying 17.112.152.32... * connected
* Connected to www.apple.com (17.112.152.32) port 80
HEAD / HTTP/1.1
User-Agent: curl/7.13.1 (powerpc-apple-darwin8.0) libcurl/7.13.1 OpenSSL/0.9.7i zlib/1.2.3
Host: www.apple.com
Pragma: no-cache
Accept: /
< HTTP/1.1 200 OK
HTTP/1.1 200 OK
< Age: 7
Age: 7
< Date: Fri, 31 Mar 2006 03:13:09 GMT
Date: Fri, 31 Mar 2006 03:13:09 GMT
< Content-Length: 30692
Content-Length: 30692
< Content-Type: text/html
Content-Type: text/html
< Expires: Fri, 31 Mar 2006 03:18:09 GMT
Expires: Fri, 31 Mar 2006 03:18:09 GMT
< Cache-Control: max-age=300
Cache-Control: max-age=300
< nnCoection: close
nnCoection: close
< Server: Apache/1.3.33 (Darwin) PHP/4.3.10
Server: Apache/1.3.33 (Darwin) PHP/4.3.10
* Connection #0 to host www.apple.com left intact
* Closing connection #0
notnAP:~ notnap$ curl -Iv http://xyzzy.apple.com
* About to connect() to xyzzy.apple.com port 80
* Trying 216.168.224.70... * connected
* Connected to xyzzy.apple.com (216.168.224.70) port 80
HEAD / HTTP/1.1
User-Agent: curl/7.13.1 (powerpc-apple-darwin8.0) libcurl/7.13.1 OpenSSL/0.9.7i zlib/1.2.3
Host: xyzzy.apple.com
Pragma: no-cache
Accept: /
< HTTP/1.1 200 OK
HTTP/1.1 200 OK
< Server: Sun-ONE-Web-Server/6.1
Server: Sun-ONE-Web-Server/6.1
< Date: Fri, 31 Mar 2006 02:59:12 GMT
Date: Fri, 31 Mar 2006 02:59:12 GMT
< Content-type: text/html
Content-type: text/html
* Connection #0 to host xyzzy.apple.com left intact
* Closing connection #0
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
I'll save you the trouble:
VeriSign Infrastructure & Operations NSI-NETBLK1 (NET-216-168-224-0-1)
216.168.224.0 - 216.168.255.255
Network Solutions, Inc. NETSOL-SWIP-216-168-224 NET-216-168-224-0-2)
216.168.224.0 - 216.168.224.255
So what does it mean, and can anyone tell me how they're doing this? I hate not understanding how this is being done, and it directly proves my understanding of dns and the network stack on my iMacs is wrong, or at least incomplete. Inconceivable! -
Wireless Intermittent Super Slow DNS lookup bug in 10.6.4
I don't normally post things on forums these days, as usually I can find just about any solution by searching long enough, but this issue has perplexed me to the point I actually had to come on here.
Believe me, that's a big deal, I don't give up easily.
I have spent -countless- hours searching, on here, on google, on any "solutions" or "technical" sites I could find, and the closest I can find to a solution are countless people complaining about the EXACT SAME PROBLEM that I have observed and, repeatedly, reproduced again and again, which in every single case boil down to this:
You had 10.6.x (x being 3 or less) with a wireless connection on your home network and all is well.
You upgraded to 10.6.4 and all seemed fine for maybe 24 hours or so... then it happens. You go to load a website, and it's "looking for site" or "waiting for site" in your status bar... hmm, maybe it's just this site you say, so you try another, or a few others in other tabs, but they all have the same problem.
You try to ping the sites, but the network utility can't resolve the domain to even ping them.
Your roommate, all the while, is surfing and gaming just fine on the exact same router you are on, so no, it's not the network hardware, it's not your ISP, hmm, what could it be?
All of a sudden, ALL of the sites you had in like 20 tabs load up at screaming speeds, "WOW" you say, "guess there must have just been some gunk in the wires or something" (notice the irony of the situation: no wires)... anyway, all seems fine again suddenly, surfing is fine for a few minutes, you're back to normal... and it happens again, suddenly NO site will resolve, NO dns will resolve, you can't check email or ping any domain... and so the cycle begins. Of course, you can just plug an ethernet cable straight into the router, but doesn't that kind of defeat the purpose of having wireless networking in the first place?
It continues like this, indefinitely, and it all starts roughly 24 hours after 10.6.4 has been installed.
I have read reports of people on macbooks, people on imacs, people on all sorts of different wireless hardware, but the symptoms are the same.
I know the problem is with the OS update, it's purely software. I know that it has nothing to do with hardware because simply reverting to 10.6.3 solves the problem -every single time- and then "upgrading" to 10.6.4 causes the problem to come back within 24 hours -every single time- (have been reverting using Time Machine to simplify this testing process), so no, where the problem is isn't what perplexes me; what perplexes me is that there are posts that started almost a few days after 10.6.4 came out, and so far there's STILL no fix? Are you freaking serious? Does the Apple programming team not have access to anything other than Apple-Branded Airport Extreme Base Stations to perform wireless network QA testing on?
Get a Linksys guys, grab a D-Link, go get some of the hardware people actually USE and test it on that and see what happens, it doesn't take long to see what's happening.
I blame the programmers because I am one myself and know how easy it is to screw up a rock-solid system with one little typo. Heck, which patch was it, 10.5.7 or 10.5.8 I think? Can't remember exactly, but it was supposed to be such a great "bug fix" patch... and it came with the config file for Apache set to DENY ALL INCOMING EXTERNAL CONNECTIONS by default (in a hidden file that can only be modified by the root user mind you... so much for the average user running a personal web server on THAT version), so yeah, one tiny mistake and it has huge consequences, my question is: what's taking so long to track down what's going on in 10.6.4 and fix it? Can we at least get a patch or something?
I find it really lame and really such a cop-out to see so many irrelevant "solutions" offered, "try specifying different DNS servers" (doesn't matter, whatever causes this bug doesn't care which servers you have specified, it simply sits there and does NOTHING for 2-3 minutes, and THEN when it actually DOES do a dns lookup, it gets the results in the time expected: instantly), to more extreme matters, like resetting hardware, which again has absolutely nothing to do with this bug.
Here is why anyone can see this is an obvious bug that the programming team needs to admit, investigate and correct:
A. happens immediately after the software update
B. happens to EVERYONE who uses traditional wireless routers for internet use
C. is 100% repeatedly reproducible
D. occurs on all different models of computers and all different ISP's and with all different DNS servers specified.
E. has the same symptoms on every system (lightning fast internet for 2-3 minutes, then "waiting for site" for 1-3 minutes)
F. affects EVERY network-using program on the computer (email, network utility, firefox, safari) SIMULTANEOUSLY
G. does not affect surfing to or interacting with IP addresses directly, only with trying to perform DNS lookups from ANY program with ANY dns server (or no dns server) set in network preferences.
Come on guys, just read it through, think about it for a few minutes, for anyone that has worked with and knows the underlying source code, and what changes went in between 10.6.3 and 10.6.4 specifically to networking, should have a light bulb pop up over their head and say "oh YEAH, we never uncommented that one line..." or something to that effect.I see a very similar issue, but it's been occurring on my laptop for 4 or 5 months, which must be way before 10.6.4. My roommate and friend's laptops all work fine on my network. And my laptop works fine on anyone else's network. But MY laptop on MY network always gives the abysmal DNS performance as described in the original post: 40% of requests time out. Wireless or wired, it doesn't matter. Exact same behavior.
It also doesn't matter whether I use my Netgear router as DNS server, or my ISP, or OpenDNS, or Google. Exact same behavior.
When I do a network trace, it looks like most DNS requests my computer sends out simply never get responded to. (Could they be malformed when they hit the wire? I don't even see an error reply) A few make it through. And when there's a IPv6 (AAAA) record sent, my computer returns a "port unreachable" ICMP message. A screenshot of all of this dialogue is here:
http://img545.imageshack.us/i/screenshot20100913at114.png/
I recently had opportunity to cancel my cable service, and reinstate it for a lower price. They came out, tested the line (strong signal), gave me a new cable box. Yet the issue persists. Exact same behavior.
Firewall is disabled. I've deleted the network interfaces and added them back. Nothing helps.
(As I recall, this issue may even have been present before I reinstalled 10.6 over 10.5, so I'm not too confident a total reinstall would help.)
Any help? I'm about ready to buy a new laptop to fix this damned problem. Web browsing is nearly impossible, as is. -
XE and "Cannot find server or DNS Error"
I read other articles and here is some data for your to go over.
=====================================================================
SQL*Plus: Release 10.2.0.1.0 - Production on Tue Nov 28 09:37:18 2006
Copyright (c) 1982, 2005, Oracle. All rights reserved.
SQL> connect / as sysdba
ERROR:
ORA-12631: Username retrieval failed
SQL>
==================
C:\>lsnrctl status
LSNRCTL for 32-bit Windows: Version 10.2.0.1.0 - Production on 28-NOV-2006 08:19
:39
Copyright (c) 1991, 2005, Oracle. All rights reserved.
Connecting to (DESCRIPTION=(ADDRESS=(PROTOCOL=IPC)(KEY=EXTPROC_FOR_XE)))
STATUS of the LISTENER
Alias LISTENER
Version TNSLSNR for 32-bit Windows: Version 10.2.0.1.0 - Produ
ction
Start Date 27-NOV-2006 16:14:11
Uptime 0 days 16 hr. 5 min. 27 sec
Trace Level off
Security ON: Local OS Authentication
SNMP OFF
Default Service XE
Listener Parameter File C:\oraclexe\app\oracle\product\10.2.0\server\network\a
dmin\listener.ora
Listener Log File C:\oraclexe\app\oracle\product\10.2.0\server\network\l
og\listener.log
Listening Endpoints Summary...
(DESCRIPTION=(ADDRESS=(PROTOCOL=ipc)(PIPENAME=\\.\pipe\EXTPROC_FOR_XEipc)))
(DESCRIPTION=(ADDRESS=(PROTOCOL=tcp)(HOST=jantar)(PORT=15
21)))
Services Summary...
Service "CLRExtProc" has 1 instance(s).
Instance "CLRExtProc", status UNKNOWN, has 1 handler(s) for this service...
Service "PLSExtProc" has 1 instance(s).
Instance "PLSExtProc", status UNKNOWN, has 1 handler(s) for this service...
The command completed successfully
Also netstat does not show anything running on port 8080.
============================================
C:\Documents and Settings\N0139838>net start
These Windows 2000 services are started:
Alerter
COM+ Event System
Computer Browser
DHCP Client
Diskeeper
Distributed Link Tracking Client
Distributed Transaction Coordinator
DNS Client
EPAService
Event Log
Infrared Monitor
Logical Disk Manager
Machine Debug Manager
Messenger
Net Logon
Network Connections
OracleServiceXE
OracleXETNSListener
Plug and Play
Print Spooler
Protected Storage
Remote Access Connection Manager
Remote Procedure Call (RPC)
Remote Registry Service
Removable Storage
RunAs Service
SafeBoot Configuration Manager
SavRoam
Security Accounts Manager
Server
SMS Agent Host
SMS Remote Control Agent
SU Service
Symantec AntiVirus
Symantec AntiVirus Definition Watcher
Symantec Event Manager
Symantec Settings Manager
System Event Notification
Task Scheduler
TCP/IP NetBIOS Helper Service
Telephony
Windows Management Instrumentation
Windows Management Instrumentation Driver Extensions
Windows Time
WMDM PMSP Service
Workstation
The command completed successfully.
===========================================
Ping 127.0.0.1 or localhost is successfull.
===============================================
C:\Documents and Settings\N0139838>netstat -a
Nothing is running on port 8080.Accoding to your listener status, it is actively listening on behalf of host 'jantar', but NOT listening on behalf of host 'locahost'.
What happens when you "ping jantar"?
Are you using DHCP? -
IPhone 4, iOS 6 update, and wifi - cannot browse WWW via DNS
Apologies for the long post in advance. Hopefully it's exhaustive enough for Apple to take notice.
tl;dr:
updated iPhone 4 (VZW) to iOS 6 on home wi-fi. now phone will not browse to WWW on home wi-fi, EXCEPT WHEN BYPASSING DNS (ie, browsing by IP address). tried lots. no success
full events detail:
I updated my iPhone 4 to iOS 6 yesterday evening (via iTunes on my Win 7 x64 PC). Upon completion, I ran into some trouble trying to sign in with my AppleID in order to restore from my iCloud backup. Suspecting that Apple's servers were just experiencing trouble (though nothing indicated iCloud was down), I skipped signing in and went about my day. The rest of my settings copied across from my computer. At that point, I slept on it.
The following morning (today), I noticed that I still could not sign in, but was off to work and did not have time to examine it further. At the office, all seemed well, and I used the phone with the updated OS largely without issue, including connecting to two new wifi networks. Returning home, however, I noticed that the behavior was the same as the previous evening, ie I could not connect to things like the App Store in order to install updates, the web to look for information, etc. Now having time to troubleshoot, I pressed forward with the investigation and immediately found a number of support community and web threads detailing wi-fi issues on devices after updating to iOS 6. I followed the steps I found, but I still have the same issue. Below is the list of things I've attempted, to the best of my ability to recollect.
1. forget network, rejoin - same symptoms
2. power off phone, power on - same symptoms
3. set wi-fi network HTTP proxy to Auto - same symptoms
3. forget network, power off wi-fi, power off cellular data, power on wi-fi, rejoin network (same symptoms), power on cellular data (same symptoms)
4. power off bluetooth (already done, no change), power on bluetooth - same symptoms
5. forget network, airplane mode on, power on wi-fi, rejoin network - same symptoms
6. clear cookies, cache, website data - same symptoms
7. try another browser (Opera) - same symptoms
8. try static IP on wi-fi network - same symptoms
9. forget network, power off router, turn off wi-fi, power off phone, power on phone, reset network settings, power on wi-fi, power on router (after 5+ mins), rejoin - same symptoms
10. restore phone to factory defaults (same symptoms) and restore from backup (same symptoms)
11. enable SSID broadcast on router - same symptoms
12. enable WMM on 802.1n router - already enabled, same symptoms
13. disable 40MHz channels on 802.1n router - same symptoms
14. set router to 802.1g operation - same symptoms
15. remove wireless security from wi-fi network - same symptoms
16. change SSID - same symptoms
17. update router firmware - no updates available, also, same router was working prior to update and continues to work without trouble with all other wi-fi devices in the house
18. try another router - already verified this works, but as a result of the particulars of this case, is not relevant as my home router is not at fault, so much as the update to iOS 6 is on my iPhone 4. as other routers work and as a factory restore did not resolve (prior to backup restoration), I also do not believe my iPhone 4 to be at fault, so much as the software update itself
Having exhausted all of those suggestions, I dug further. The phone was working without issue up until the moment it needed to reboot to apply the downloaded iOS 6 update. I initially encountered the incorrect password scenario during the post-update configuration, but after forgetting and setting up the wireless profile from scratch (from the iOS 6 setup wizard), it joined my wi-fi network. The phone DID pull an IP address from my router, and responded to pings from other devices on my network without issue. In addition, using the Safari browser to web to a local network device, such as my router, was successful, indicating that the wi-fi network was established and routing appropriately. All other devices on the network, wired or otherwise, were working without issue. I then attempted to trace traffic and found that none of my phone's web requests were reaching my router, except for those targeted at the LAN. I then tried browsing to an IP to ensure there was not a DNS issue, and my phone browsed successfully. I then tried another site by domain name and failed, and then its IP and was successful. I verified against my router's logs that the web requests were routing through it to ensure that my cellular data wasn't taking over, and the logs confirmed it. At that point, I tried changing DNS from my standard servers to another set, but the behavior remained the same. I then tried setting my router as the DNS server, but the issue remained.
In conclusion, it appears to be some sort of DNS issue specific to the update. I would also hazard a guess that this is impacting people on the networks where they downloaded the update and/or were connected when the phone actually updated. I've tried setting the profile to use local, ISP, and public DNS servers, but as the requests never reach my router, I am inclined to believe it's being restricted by a setting on the phone itself. Because the problem persists through a factory restore, it would seem to point to all data not being truly erased during that process. Recall that I'm having the same issue prior to a backup being restored to the device, and that this issue prevents iCloud from being accessed during the setup process while on the problematic wi-fi network, so that should rule out the backup playing any part in the trouble.
Any thoughts?The OP is correct, I have done many tests. With IOS6 there appears to be a dns issue in some cases with IOS for both ipad(2) at lease (my wife won't let me upgrade here v1) and the iPhone4s in my case. Pretty easy to diagonse, I wish Apple would fix it.
1.) I use a Juniper 5GT wireless firewall and all of my other devices (many apple, ipad, MBP, iMAC,3 ipods etc) are fine: Not ipad2 or iphone4s running IOS6
2.) after upgrade nothing worked. narrowed it down by messing with dns (I have my own dns server)
3.) Strange thing; dns works over MiFI (Verizon) and Carrier
4.) confirmed that it is a dns and not network issue.
-down load free tool called ping-scope-lite. (obviously you need to turn off wifi to do this)
http://itunes.apple.com/us/app/ping-scope-lite/id431500107?mt=8
turn on wifi
- ping Level3 dns server 4.2.2.2 or Googlesdns servers 8.8.8.8 or 8.8.4.4 these worked.
-now ping by name google.com or ipchicken.com
- try others; same result.
Apple did say that they would give me another iphone 4s: I just wasn't sure that would fix my issue. I tried downgrading to 5.1.1 but I got an error saying my device wasn't able to do so (tried even blocking itunes from contacting Apple) I whis this could be fixed. I did even have it working using my own dns server but now I can see that my phone over wifi isn't even trying to make a dns request now.
Stuck -
10.6.8 can ping /trace but no connection online
hi there i was using my macbook this morning and closed it all down and went out all day, came home powerd up my macbook pro again and none of my online services worked (dropbox, skype, google drive) then i tried to collect my email and the same, so i thought i would try the browser same..
so i fired up terminal and stated pinging the outside work (www.bbc.co.uk) i got good healthy pings back so i decided to do traceroute and that was the same, mmm i thought...
so i pinged the default gateway on my router the same all good and then the same again with the dns servers still the same ... so i disabled my wireless connection and fired up the my other dektop mac and tested that that's working fine... then i connected a ethernet cable to my macbook same thing i can ping /trace ok but i can not get and outside connection. very strange so i thought i know i will chnage the dns servers to google 8.8.8.8 and 4.4.4.4 same thing mmmm so i fired up disk utility and checked the permissions all fine... so if my other mac is working fine and this one is not ok i though i will create a new user account on the macbook and test that nope still the same.. *scatchers chin* so i opend terminal again and ran these commands "sudo killall mDNSResponder" and also this one sudo "dscacheutil -flushcache"
Nope nothing seems to work i have rebooted and ran the latest combo update to see if that repairs anything no nothing i am at a loss now, i really need my macbook working on the old back up desktop is a nightmare and i have the feeling that i will have to start backing everything up and reinstalling LONG JOB!
i would appriciate any advice or pointers that you can give me to fix this and get it working before i have to reinstall it
thanks
timone thing i have just tested i can copy files from my mac desktop to my macbook fine mmm!
-
DNS not resolving on one Mac but the other works fine in same local network
Snow Leopard is doing something strange to the DNS or the permission to ping.
I have 2 Macs on the same local network, connect through the same ISP (verizon FIOS). One has no problem resolving any domain, but the other is constantly not resolving some domains.
The problem progresses like this:
* All of a sudden, DNS is not resolving from Ethernet (when it did perfectly well a minute ago).
* Then I switched to wireless (using the same LAN), and it resolved fine.
* Then it failed completely a few minutes later.
* Then I reboot my Mac, and it seemed to clear that, and worked for a day.
* Then it failed again in both Ethernet and Wireless; rebooting does not fix it.
* I cleared all the caches using Onyx, did "dscacheutil -flushcache", zapped the PRAM, reinstalled 10.6.2 combo update, repaired the permission, nothing works.
* Since the unresolved domain is my own domain, I changed the nameserver, and waited for it to propagate to see if that may be the problem, since it appeared that it is not resolving the A Record, and I waited 72 hours, and it is not resolved or propagating to the local DNS, but it worked perfectly well on my other Mac within the same network.
* Then I added other DNS, such as google DNS 8.8.8.8 or openDNS servers to it, but it didn't fix anything.
* Then I "ping" either the unresolved domain or my own Mac .local, and it gave me the error "permission denied". (Whereas I have no problem pinging my own Mac or the unresolved domain in my other Mac that works!).
* Then I "sudo ping" the unresolved domain or my own Mac, and it pinged perfectly well.
* Then I tried "ping6" my own Mac or the unresolved domain on the broken Mac, and it worked fine!
* Also, I used http://network-tools.com to ping it, and noticed that during the trace, somewhere along the route through te7-2.dsr02.dllstx3.theplanet.com and po2.car04.dllstx5.theplanet.com, it timed out along the route, so I don't know if the timeout could have been causing the reject, but I doubted, because "sudo ping" locally will get through but "ping" does not.
So I think I traced the Snow Leopard DNS problem as follows:
* Why does "ping6" works, but "ping" permission is denied unless the user is root?
* I tried to "chmod 4755 ping" but it won't let me.
* Is it because DNS is resolving using IPv6 but not IPv4?
* Or is Snow Leopard somehow screwed up the permission to access ping or similar DNS service?
* Why DNS has no problem in one Mac but caused problem on the other Mac, even though they are in the same local network?
* The only difference between the Macs maybe because I have Parallels installed in the Mac that failed to resolve DNS (with the extra Parallels Shared Ethernet), which may be interfering with it, but I tried to turn Parallels Shared Ethernet off, and it did not fix the problem.
Can anyone help or have any idea that I can fix this nagging bug with DNS? The DNS had worked before, but it simply quit working all of a sudden, and nothing can resurrect it.
Thanks.Shut down Parallels and restart w/o letting any of Parallels TCP/IP stack resurrect itself. So many network issues with VM solutions. See if the problem persists. Create a new account and ping from there. Are your search domains manually entered on the 10.6 box?
-
DNS Error on OS X 10.6 Server: unexpected RCODE (REFUSED) resolving
Hello
At one of our server we have properly an DNS error.
Portforward to router ist correct. Router has the entries of the Erxternal DNS Server. On the OS X server runs the DNS und DHCP services.
The log is complete full with errors
Access to website is relativly slow.
Any idea how to solve it?
Gérard
10-Sep-2014 00:51:08.633 host unreachable resolving 'blackhole-1.iana.org/A/IN': 2001:500:89::53#53
10-Sep-2014 00:51:09.017 host unreachable resolving 'g2.nstld.com/AAAA/IN': 2001:503:a83e::2:31#53
10-Sep-2014 00:51:09.018 host unreachable resolving 'f2.nstld.com/AAAA/IN': 2001:503:a83e::2:31#53
10-Sep-2014 00:51:09.314 host unreachable resolving 'ns102.nstld.net/A/IN': 2001:503:231d::2:30#53
10-Sep-2014 00:51:09.370 unexpected RCODE (REFUSED) resolving 'h2.nstld.com/A/IN': 172.24.10.1#53
10-Sep-2014 00:51:09.370 unexpected RCODE (REFUSED) resolving 'h2.nstld.com/AAAA/IN': 172.24.10.1#53
10-Sep-2014 00:51:09.579 unexpected RCODE (REFUSED) resolving 'ytstatic.l.google.com/A/IN': 172.24.10.1#53
10-Sep-2014 00:51:09.690 unexpected RCODE (REFUSED) resolving 'ocsp.comodoca.com/A/IN': 172.24.10.1#53
10-Sep-2014 00:51:10.792 host unreachable resolving 'a.iana-servers.net/AAAA/IN': 2001:500:8d::53#53
10-Sep-2014 00:51:10.793 host unreachable resolving 'a.iana-servers.net/AAAA/IN': 2001:500:8e::53#53
10-Sep-2014 00:51:10.793 host unreachable resolving 'a.iana-servers.net/A/IN': 2001:500:8d::53#53
10-Sep-2014 00:51:10.805 host unreachable resolving 'c.iana-servers.net/A/IN': 2001:500:8e::53#53
10-Sep-2014 00:51:11.821 success resolving 'db._dns-sd._udp.0.10.24.172.in-addr.arpa/PTR' (in '24.172.in-addr.arpa'?) after reducing the advertised EDNS UDP packet size to 512 octets
10-Sep-2014 00:51:11.863 success resolving 'r._dns-sd._udp.0.10.24.172.in-addr.arpa/PTR' (in '24.172.in-addr.arpa'?) after reducing the advertised EDNS UDP packet size to 512 octets
10-Sep-2014 00:51:11.946 unexpected RCODE (REFUSED) resolving 'ns0.comododns.net/A/IN': 172.24.10.1#53
10-Sep-2014 00:51:11.946 unexpected RCODE (REFUSED) resolving 'ns0.comododns.net/AAAA/IN': 172.24.10.1#53
10-Sep-2014 00:51:11.953 unexpected RCODE (REFUSED) resolving 'ns1.comododns.net/A/IN': 172.24.10.1#53
10-Sep-2014 00:51:11.953 unexpected RCODE (REFUSED) resolving 'ns1.comododns.net/AAAA/IN': 172.24.10.1#53
10-Sep-2014 00:51:12.055 success resolving 'dnn506yrbagrg.cloudfront.net/A' (in 'dnn506yrbagrg.cloudfront.net'?) after reducing the advertised EDNS UDP packet size to 512 octets
10-Sep-2014 00:51:13.652 success resolving 'dr._dns-sd._udp.0.10.24.172.in-addr.arpa/PTR' (in '24.172.in-addr.arpa'?) after reducing the advertised EDNS UDP packet size to 512 octets
10-Sep-2014 00:51:13.729 success resolving 'cf._dns-sd._udp.0.10.24.172.in-addr.arpa/TXT' (in '24.172.in-addr.arpa'?) after reducing the advertised EDNS UDP packet size to 512 octets
10-Sep-2014 00:51:14.164 success resolving 'lb._dns-sd._udp.0.10.24.172.in-addr.arpa/PTR' (in '24.172.in-addr.arpa'?) after reducing the advertised EDNS UDP packet size to 512 octets
10-Sep-2014 00:51:14.164 success resolving 'b._dns-sd._udp.0.10.24.172.in-addr.arpa/PTR' (in '24.172.in-addr.arpa'?) after reducing the advertised EDNS UDP packet size to 512 octets
10-Sep-2014 00:51:14.265 host unreachable resolving 'ocsp.verisign.net/A/IN': 2001:503:3227:10ff::206#53
10-Sep-2014 00:51:14.303 success resolving 'ocsp.verisign.net/A' (in 'ocsp.verisign.net'?) after reducing the advertised EDNS UDP packet size to 512 octets
10-Sep-2014 00:51:14.326 unexpected RCODE (REFUSED) resolving 'ssl.gstatic.com/A/IN': 172.24.10.1#53
10-Sep-2014 00:51:14.499 unexpected RCODE (REFUSED) resolving 'www.gstatic.com/A/IN': 172.24.10.1#53
10-Sep-2014 00:51:14.499 unexpected RCODE (REFUSED) resolving 'apis.google.com/A/IN': 172.24.10.1#53
10-Sep-2014 00:51:14.531 unexpected RCODE (REFUSED) resolving 'ads.yahoo.com/A/IN': 172.24.10.1#53
10-Sep-2014 00:51:14.559 unexpected RCODE (REFUSED) resolving 'pix04.revsci.net/A/IN': 172.24.10.1#53
10-Sep-2014 00:51:17.330 unexpected RCODE (REFUSED) resolving 'plus.l.google.com/A/IN': 172.24.10.1#53
10-Sep-2014 00:51:17.380 host unreachable resolving 'ns1.comododns.net/AAAA/IN': 2a02:1788:0:200::5bd1:c404#53
10-Sep-2014 00:51:17.708 unexpected RCODE (REFUSED) resolving 'www.gillette.com/A/IN': 172.24.10.1#53
10-Sep-2014 00:51:17.797 host unreachable resolving 'ns0.comododns.net/A/IN': 2a02:1788:0:200::5bd1:c404#53
10-Sep-2014 00:51:21.142 unexpected RCODE (REFUSED) resolving 'ad.yieldmanager.com/A/IN': 172.24.10.1#53
10-Sep-2014 00:51:21.306 unexpected RCODE (REFUSED) resolving 'ns01.savvis.net/A/IN': 172.24.10.1#53
10-Sep-2014 00:51:21.306 unexpected RCODE (REFUSED) resolving 'ns01.savvis.net/AAAA/IN': 172.24.10.1#53
10-Sep-2014 00:51:21.307 unexpected RCODE (REFUSED) resolving 'ns02.savvis.net/A/IN': 172.24.10.1#53
10-Sep-2014 00:51:21.315 unexpected RCODE (REFUSED) resolving 'ns02.savvis.net/AAAA/IN': 172.24.10.1#53
10-Sep-2014 00:51:21.315 unexpected RCODE (REFUSED) resolving 'ns03.savvis.net/A/IN': 172.24.10.1#53
10-Sep-2014 00:51:21.316 unexpected RCODE (REFUSED) resolving 'ns03.savvis.net/AAAA/IN': 172.24.10.1#53
10-Sep-2014 00:51:21.316 unexpected RCODE (REFUSED) resolving 'ns04.savvis.net/A/IN': 172.24.10.1#53
10-Sep-2014 00:51:21.316 unexpected RCODE (REFUSED) resolving 'ns04.savvis.net/AAAA/IN': 172.24.10.1#53
10-Sep-2014 00:51:21.316 unexpected RCODE (REFUSED) resolving 'ns05.savvis.net/A/IN': 172.24.10.1#53
10-Sep-2014 00:51:21.316 unexpected RCODE (REFUSED) resolving 'ns05.savvis.net/AAAA/IN': 172.24.10.1#53
10-Sep-2014 00:51:24.798 host unreachable resolving 'ns02.savvis.net/A/IN': 2001:503:a83e::2:30#53
10-Sep-2014 00:51:29.129 unexpected RCODE (REFUSED) resolving 'fd-world.ngd.gysm.yahoodns.net/A/IN': 172.24.10.1#53
10-Sep-2014 00:51:33.723 success resolving 'www.gillette.com/A' (in 'gillette.com'?) after reducing the advertised EDNS UDP packet size to 512 octets
10-Sep-2014 00:51:38.595 unexpected RCODE (REFUSED) resolving 'yf1.yahoo.com/A/IN': 172.24.10.1#53
10-Sep-2014 00:51:38.596 unexpected RCODE (REFUSED) resolving 'yf1.yahoo.com/AAAA/IN': 172.24.10.1#53
10-Sep-2014 00:51:38.596 unexpected RCODE (REFUSED) resolving 'yf2.yahoo.com/A/IN': 172.24.10.1#53
10-Sep-2014 00:51:38.596 unexpected RCODE (REFUSED) resolving 'yf2.yahoo.com/AAAA/IN': 172.24.10.1#53
10-Sep-2014 00:51:38.596 unexpected RCODE (REFUSED) resolving 'yf3.a1.b.yahoo.net/A/IN': 172.24.10.1#53
10-Sep-2014 00:51:38.596 unexpected RCODE (REFUSED) resolving 'yf3.a1.b.yahoo.net/AAAA/IN': 172.24.10.1#53
10-Sep-2014 00:51:38.596 unexpected RCODE (REFUSED) resolving 'yf4.a1.b.yahoo.net/A/IN': 172.24.10.1#53
10-Sep-2014 00:51:38.596 unexpected RCODE (REFUSED) resolving 'yf4.a1.b.yahoo.net/AAAA/IN': 172.24.10.1#53
10-Sep-2014 00:51:49.413 success resolving 'fd-world.ngd.gysm.yahoodns.net/A' (in 'gysm.yahoodns.net'?) after reducing the advertised EDNS UDP packet size to 512 octets
10-Sep-2014 00:51:49.422 unexpected RCODE (REFUSED) resolving 'ds-world.ngdg.gysm.yahoodns.net/A/IN': 172.24.10.1#53
10-Sep-2014 00:51:55.354 unexpected RCODE (REFUSED) resolving 'ds-any-world.ngd.ysm.yahoodns.net/A/IN': 172.24.10.1#53
10-Sep-2014 00:52:21.228 unexpected RCODE (REFUSED) resolving 'swscan.apple.com/A/IN': 172.24.10.1#53
10-Sep-2014 00:52:35.516 unexpected RCODE (REFUSED) resolving 'p01-swscan.apple.com.akadns.net/A/IN': 172.24.10.1#53
10-Sep-2014 00:52:43.068 unexpected RCODE (REFUSED) resolving 'a5-130.akadns.org/A/IN': 172.24.10.1#53
10-Sep-2014 00:52:43.069 unexpected RCODE (REFUSED) resolving 'a5-130.akadns.org/AAAA/IN': 172.24.10.1#53
10-Sep-2014 00:52:43.075 unexpected RCODE (REFUSED) resolving 'a4-131.akadns.org/A/IN': 172.24.10.1#53
10-Sep-2014 00:52:43.076 unexpected RCODE (REFUSED) resolving 'a4-131.akadns.org/AAAA/IN': 172.24.10.1#53
10-Sep-2014 00:52:43.082 unexpected RCODE (REFUSED) resolving 'a10-128.akadns.org/A/IN': 172.24.10.1#53
10-Sep-2014 00:52:43.082 unexpected RCODE (REFUSED) resolving 'a10-128.akadns.org/AAAA/IN': 172.24.10.1#53
10-Sep-2014 00:52:43.083 unexpected RCODE (REFUSED) resolving 'a13-130.akadns.org/A/IN': 172.24.10.1#53
10-Sep-2014 00:52:43.083 unexpected RCODE (REFUSED) resolving 'a13-130.akadns.org/AAAA/IN': 172.24.10.1#53
10-Sep-2014 00:52:43.083 unexpected RCODE (REFUSED) resolving 'a28-129.akadns.org/A/IN': 172.24.10.1#53
10-Sep-2014 00:52:43.083 unexpected RCODE (REFUSED) resolving 'a28-129.akadns.org/AAAA/IN': 172.24.10.1#53
10-Sep-2014 00:52:49.925 host unreachable resolving 'a13-130.akadns.org/A/IN': 2001:500:b::1#53
10-Sep-2014 00:52:50.064 host unreachable resolving 'a10-128.akadns.org/AAAA/IN': 2001:500:48::1#53
10-Sep-2014 00:52:50.345 host unreachable resolving 'a4-131.akadns.org/AAAA/IN': 2001:500:c::1#53
10-Sep-2014 00:52:50.493 host unreachable resolving 'a4-131.akadns.org/A/IN': 2001:500:c::1#53
10-Sep-2014 00:52:50.791 host unreachable resolving 'a5-130.akadns.org/A/IN': 2001:500:b::1#53
10-Sep-2014 00:52:57.784 unexpected RCODE (REFUSED) resolving 'swcdn.apple.com/A/IN': 172.24.10.1#53
10-Sep-2014 00:53:05.726 unexpected RCODE (REFUSED) resolving 'swcdn.apple.com.akadns.net/A/IN': 172.24.10.1#53
10-Sep-2014 00:53:05.737 connection refused resolving 'swcdn.apple.com.akadns.net/A/IN': 195.186.4.162#53
10-Sep-2014 00:53:05.777 unexpected RCODE (REFUSED) resolving 'nlams2.cdn-apple.com.akadns.net/A/IN': 172.24.10.1#53
10-Sep-2014 00:53:46.040 unexpected RCODE (REFUSED) resolving 'nlams2.cdn-apple.com.akadns.net/A/IN': 172.24.10.1#53No experiences here with that exact combination.
Something general:
Make sure access rights on the application support folder are correctly set for the user account that you're using to launch InDesign.
Run the OSX repair privileges utility.
Compare the general folder structure to your desktop installation, or the earlier installation (replacing an old hardware?).
If that fails:
Launch the application from within Instruments (which comes with the optional installation of developer tools, e.g. XCode)
Trace file access and watch out for error results.
Dirk -
Why is the router sending reverse DNS queries ?
Hi all,
While doing a trace for a traceroute command, i realize that the router is actually doing a reverse DNS query for the ip that I am doing the traceroute.
Although this does not impact my traceroute, I can't help to wonder why the need to do the reverse DNS for ?
1 0.000000000 192.168.5.1 255.255.255.255 DNS 84 Standard query 0x2f3e PTR 2.5.168.192.in-addr.arpa
3 5.750328000 192.168.5.1 255.255.255.255 DNS 84 Standard query 0x2f3e PTR 2.5.168.192.in-addr.arpa
5 10.828742000 192.168.5.1 192.168.5.2 UDP 60 Source port: 49246 Destination port: 33435
6 10.859994000 192.168.5.2 192.168.5.1 ICMP 70 Destination unreachable (Port unreachable)
Regards,
NoobHi Jon,
Thanks. I hope you really dont mind me asking - to assist to take a look at these 2 related threads below (as i spend an entire day doing testing and researching but to no avail)... ;(
Hope you are able to shed some light ;(
https://supportforums.cisco.com/discussion/12492246/pinging-remote-broadcast-address-cant-understand-response
https://supportforums.cisco.com/discussion/12490926/ping-no-response-found-what-does-it-meant
Thank you -
Changed DC IP address, still wrong in DNS
Hi
I've been banging my head for a few hours on this and can't seem to correct it. Here's what's going on:
We have 2 domains in our forest. The DC with the problem is part of the child domain. It's IP changed from a 10.90.0.x to 10.238.0.x static IP.
I noticed some replication problems with the Replication Status Tool and what I've found is a DNS problem between the Parent and Child DNS servers.
If I do an nslookup on the cfc5a4e4-53ea-4232-b66e-41d6cc681cb3._msdcs.xxx.net record in the child domain DNS server, it resolves to the new IP address. If I do it on the parent domain DNS server, it resolves to the old IP address.
I've tried deleting that msdcs record in both sets of DNS servers and restarting NETLOGON, but within a few minutes, the parent gives the old IP address again and stops replication from happening.
Is there some way to scrub the DNS servers of any trace of that old IP address? Is there something on the DC itself that could be giving the wrong IP to the DNS servers?
Thanks for any suggestions anyone hasHi Spencer,
After changing the ip addreess of the DC, have you run the following commands?
ipconfig /flushdns
ipconfig /registerdns
Checkout the below thread on similar discussion,
http://social.technet.microsoft.com/Forums/windowsserver/en-US/32001a26-f7c6-4adf-a48c-8245ddd63215/domain-controller-ip-change?forum=winserverDS
Regards,
Gopi
www.jijitechnologies.com
This has nothing to do with the problem.
The record is properly registering locally, the issue is with the zone being properly replicated to the parent. I suspect that you have (Or had) to wait for the zone to be replicated up to the parent. Depending on the zone transfer schedule it
can take time. My guess is everything is now working correctly.
Paul Bergson
MVP - Directory Services
MCITP: Enterprise Administrator
MCTS, MCT, MCSE, MCSA, Security, BS CSci
2012, 2008, Vista, 2003, 2000 (Early Achiever), NT4
Twitter @pbbergs http://blogs.dirteam.com/blogs/paulbergson
Please no e-mails, any questions should be posted in the NewsGroup.
This posting is provided AS IS with no warranties, and confers no rights. -
DNS load balancing for Enterprise serevrs
Hi All
In my test Lync 2010 Enterprise environments, recently i have implemented the DNS load balancing with webservices
My environment is two lync 2010 ent servers , 1 SQL server, 1 Monitoring + Archive server (Same Box)
The below steps was performed from me for DNS load balancing.
PLEASE NOTE: NO HARDWARE LOAD BALANCING IN MY SETUP
Create a Host record for the Pool name with respective front end servers
Pool name : Pool2.doitnow.com with 2 lync 2010 enterprise servers named lyncfe01n.doitnow.com (192.168.1.5) and lyncfe02.doitnow.com (192.168.1.6)
Two host A records in DNS as POOl2 with IP of 192.168.15 and 192.168.1.6
1. From the Lync Server 2010 program group, open Topology Builder.
2. From the console tree, expand the Enterprise Edition Front End pools node.
3. Right-click the pool, click Edit Properties, and then click
Web Services.
4. Below Internal web services, select the Override FQDN check box.
5. Type the pool FQDN that resolves to the physical IP addresses of the servers in the pool. in
(my case it is Pool2.doitnow.com )
6. Below External web services, type the external pool FQDN that resolves to the virtual IP addresses of the pool, and then click
OK. ((my case it is Pool2.doitnow.com ) - is that REQUIRED ?
7. From the console tree, select Lync Server 2010 , and then in the
Actions pane, click Publish Topology.
IS THERE ANY THING TO BE DONE APART fROM ABOVE POINTS
Now
what i did is. in lyncfe01n.doitnow.com - i have disabled the network card and try to login lync 2010 client , but not succeesfull
my assumption is, it should work via lyncfe02.doitnow.com, since load balanace in DNS is in already in place
do i need to open / firewall rule to be creany port in second lync server
here is the below seqeunce of event viwer from lync
Log Name: Lync Server
Source: LS User Services
Date: 1/14/2014 3:34:31 PM
Event ID: 32108
Task Category: (1006)
Level: Warning
Keywords: Classic
User: N/A
Computer: lyncfe01n.doitnow.com
Description:
Pool Manager changed state of Registrar with FQDN: lyncfe02.doitnow.com to Inactive.
======
Log Name: Lync Server
Source: LS User Services
Date: 1/14/2014 3:35:01 PM
Event ID: 32109
Task Category: (1006)
Level: Information
Keywords: Classic
User: N/A
Computer: lyncfe01n.doitnow.com
Description:
Pool Manager changed state of Registrar with FQDN: lyncfe02.doitnow.com to Active
====
Log Name: Lync Server
Source: LS Routing Data Sync Agent
Date: 1/14/2014 3:50:58 PM
Event ID: 48003
Task Category: (1058)
Level: Information
Keywords: Classic
User: N/A
Computer: lyncfe01n.doitnow.com
Description:
The Routing Data Sync Agent has initiated a sync cycle with: [pool2.doitnow.com]
=====
Log Name: Lync Server
Source: LS User Services
Date: 1/14/2014 3:56:21 PM
Event ID: 32108
Task Category: (1006)
Level: Warning
Keywords: Classic
User: N/A
Computer: lyncfe01n.doitnow.com
Description:
Pool Manager changed state of Registrar with FQDN: lyncfe02.doitnow.com to Inactive.
===============
Log Name: Lync Server
Source: LS File Transfer Agent Service
Date: 1/14/2014 3:56:45 PM
Event ID: 1008
Task Category: (1121)
Level: Error
Keywords: Classic
User: N/A
Computer: lyncfe01n.doitnow.com
Description:
Failed to read Central Management database information from AD connection point. Microsoft Lync Server 2010, File Transfer Agent will continuously attempt to retrieve this information.
While this condition persists, configuration changes will not be delivered to replica machines.
Exception:
Microsoft.Rtc.Management.ADConnect.ADTransientException: Active Directory error "-2147016646" occurred while searching for domain controllers in domain "doitnow.com": "The server is not operational.
Name: "doitnow.com"
" ---> System.DirectoryServices.ActiveDirectory.ActiveDirectoryServerDownException: The server is not operational.
Name: "doitnow.com"
---> System.Runtime.InteropServices.COMException (0x8007203A): The server is not operational.
at System.DirectoryServices.DirectoryEntry.Bind(Boolean throwIfFail)
at System.DirectoryServices.DirectoryEntry.Bind()
at System.DirectoryServices.DirectoryEntry.get_AdsObject()
at System.DirectoryServices.PropertyValueCollection.PopulateList()
at System.DirectoryServices.PropertyValueCollection..ctor(DirectoryEntry entry, String propertyName)
at System.DirectoryServices.PropertyCollection.get_Item(String propertyName)
at System.DirectoryServices.ActiveDirectory.PropertyManager.GetPropertyValue(DirectoryContext context, DirectoryEntry directoryEntry, String propertyName)
--- End of inner exception stack trace ---
at System.DirectoryServices.ActiveDirectory.PropertyManager.GetPropertyValue(DirectoryContext context, DirectoryEntry directoryEntry, String propertyName)
at System.DirectoryServices.ActiveDirectory.Domain.GetDomain(DirectoryContext context)
at Microsoft.Rtc.Management.ADConnect.Connection.DirectoryServicesTopologyProvider.GetDCForDomain(String fqdn, NetworkCredential networkCredential)
--- End of inner exception stack trace ---
at Microsoft.Rtc.Management.ADConnect.Connection.DirectoryServicesTopologyProvider.GetDCForDomain(String fqdn, NetworkCredential networkCredential)
at Microsoft.Rtc.Management.ADConnect.Connection.DirectoryServicesTopologyProvider.DiscoverDC()
at Microsoft.Rtc.Management.ADConnect.Connection.DirectoryServicesTopologyProvider.ReportDownServer(String serverName, ADServerRole role)
at Microsoft.Rtc.Management.ADConnect.Connection.ADConnection.MarkDown(LdapError ldapError, String message)
at Microsoft.Rtc.Management.ADConnect.Connection.ADConnection.AnalyzeDirectoryError(DirectoryException de)
at Microsoft.Rtc.Management.ADConnect.Session.ADSession.AnalyzeDirectoryError(ADConnection connection, DirectoryRequest request, DirectoryException de, Int32 totalRetries, Int32 retriesOnServer)
at Microsoft.Rtc.Management.ADConnect.Session.ADSession.Find(ADObjectId rootId, String optionalBaseDN, QueryScope scope, QueryFilter filter, SortBy sortBy, Int32 maxResults, IEnumerable`1 properties, CreateObjectDelegate objectCreator, CreateObjectsDelegate
arrayCreator, Boolean includeDeletedObjects)
at Microsoft.Rtc.Management.ADConnect.Session.ADSession.Find(ADObjectId rootId, QueryScope scope, QueryFilter filter, SortBy sortBy, Int32 maxResults, IEnumerable`1 properties, CreateObjectDelegate objectCtor, CreateObjectsDelegate arrayCtor)
at Microsoft.Rtc.Management.ADConnect.Session.ADSession.Find[TResult](ADObjectId rootId, QueryScope scope, QueryFilter filter, SortBy sortBy, Int32 maxResults, IEnumerable`1 properties)
at Microsoft.Rtc.Management.ADConnect.Session.ADSession.GetTopologySetting()
at Microsoft.Rtc.Management.ADConnect.Session.ADSession.GetBackEndServer()
at Microsoft.Rtc.Xds.Replication.Common.Utils.TryGetConnectionPointFromAD(String& sqlStorePath, Exception& exception)
Cause: Possible issues with configuration or AD access.
Resolution:
Ensure that activation is completed and AD is accessible from this machine.
at Microsoft.Rtc.Xds.Replication.Common.Utils.TryGetConnectionPointFromAD(String& sqlStorePath, Exception& exception)</Data>
====================
Log Name: Lync Server
Source: LS Master Replicator Agent Service
Date: 1/14/2014 3:56:45 PM
Event ID: 2014
Task Category: (2122)
Level: Error
Keywords: Classic
User: N/A
Computer: lyncfe01n.doitnow.com
Description:
Failed to read Central Management database information from AD connection point. Microsoft Lync Server 2010, Master Replicator Agent will continuously attempt to retrieve this information.
While this condition persists, configuration changes will not be delivered to replica machines.
Exception:
System.ApplicationException: Domain "doitnow.com" cannot be contacted or does not exist. ---> System.DirectoryServices.ActiveDirectory.ActiveDirectoryObjectNotFoundException: The specified domain does not exist or cannot be contacted.
at System.DirectoryServices.ActiveDirectory.Domain.GetDomain(DirectoryContext context)
at Microsoft.Rtc.Management.ADConnect.Connection.DirectoryServicesTopologyProvider.GetDCForDomain(String fqdn, NetworkCredential networkCredential)
--- End of inner exception stack trace ---
at Microsoft.Rtc.Management.ADConnect.Connection.DirectoryServicesTopologyProvider.GetDCForDomain(String fqdn, NetworkCredential networkCredential)
at Microsoft.Rtc.Management.ADConnect.Connection.DirectoryServicesTopologyProvider.DiscoverDC()
at Microsoft.Rtc.Management.ADConnect.Connection.DirectoryServicesTopologyProvider.ReportDownServer(String serverName, ADServerRole role)
at Microsoft.Rtc.Management.ADConnect.Connection.ADConnection.MarkDown(LdapError ldapError, String message)
at Microsoft.Rtc.Management.ADConnect.Connection.ADConnection.AnalyzeDirectoryError(DirectoryException de)
at Microsoft.Rtc.Management.ADConnect.Session.ADSession.AnalyzeDirectoryError(ADConnection connection, DirectoryRequest request, DirectoryException de, Int32 totalRetries, Int32 retriesOnServer)
at Microsoft.Rtc.Management.ADConnect.Session.ADSession.Find(ADObjectId rootId, String optionalBaseDN, QueryScope scope, QueryFilter filter, SortBy sortBy, Int32 maxResults, IEnumerable`1 properties, CreateObjectDelegate objectCreator, CreateObjectsDelegate
arrayCreator, Boolean includeDeletedObjects)
at Microsoft.Rtc.Management.ADConnect.Session.ADSession.Find(ADObjectId rootId, QueryScope scope, QueryFilter filter, SortBy sortBy, Int32 maxResults, IEnumerable`1 properties, CreateObjectDelegate objectCtor, CreateObjectsDelegate arrayCtor)
at Microsoft.Rtc.Management.ADConnect.Session.ADSession.Find[TResult](ADObjectId rootId, QueryScope scope, QueryFilter filter, SortBy sortBy, Int32 maxResults, IEnumerable`1 properties)
at Microsoft.Rtc.Management.ADConnect.Session.ADSession.GetTopologySetting()
at Microsoft.Rtc.Management.ADConnect.Session.ADSession.GetBackEndServer()
at Microsoft.Rtc.Xds.Replication.Common.Utils.TryGetConnectionPointFromAD(String& sqlStorePath, Exception& exception)
Cause: Possible issues with configuration or AD access.
Resolution:
Ensure that activation is completed and AD is accessible from this machine.
===============
Log Name: Lync Server
Source: LS Inbound Routing
Date: 1/14/2014 3:56:46 PM
Event ID: 45005
Task Category: (1037)
Level: Error
Keywords: Classic
User: N/A
Computer: lyncfe01n.doitnow.com
Description:
Unexpected exception occurred in the Inbound Routing Application.
======================================
Log Name: Lync Server
Source: LS User Services
Date: 1/14/2014 3:56:53 PM
Event ID: 30975
Task Category: (1006)
Level: Warning
Keywords: Classic
User: N/A
Computer: lyncfe01n.doitnow.com
Description:
Encountered a connection failure while executing a request against the back-end.
Back-end: sql.doitnow.com\rtc
Log Name: Lync Server
Source: LS User Services
Date: 1/14/2014 3:56:53 PM
Event ID: 32134
Task Category: (1006)
Level: Error
Keywords: Classic
User: N/A
Computer: lyncfe01n.doitnow.com
Description:
Failed to connect to back-end database. Lync Server will continuously attempt to reconnect to the back-end. While this condition persists, incoming messages will receive error responses.
Back-end Server: sql.doitnow.com\rtc Database: rtc Connection string of:
driver={SQL Server Native Client 10.0};Trusted_Connection=yes;AutoTranslate=no;server=sql.doitnow.com\rtc;database=rtc;
Cause: Possible issues with back-end database.
Resolution:
Ensure the back-end is functioning correctly.
=================
Log Name: Lync Server
Source: LS User Services
Date: 1/14/2014 3:56:53 PM
Event ID: 32112
Task Category: (1006)
Level: Warning
Keywords: Classic
User: N/A
Computer: lyncfe01n.doitnow.com
Description:
Pas with FQDN: Pool2.doitnow.com has been detected to be down.
=================
Log Name: Lync Server
Source: LS User Services
Date: 1/14/2014 3:56:54 PM
Event ID: 32098
Task Category: (1006)
Level: Warning
Keywords: Classic
User: N/A
Computer: lyncfe01n.doitnow.com
Description:
Failed processing conference status requests. This error might delay the freeing up of PSTN meeting ids in conference directories homed on this pool.
Error code: 0x800407D0
Cause: Possible issues with back-end or Lync Server health.
Resolution:
Ensure the Lync Server service is healthy.
===========
Log Name: Lync Server
Source: LS User Replicator
Date: 1/14/2014 3:58:33 PM
Event ID: 30022
Task Category: (1009)
Level: Warning
Keywords: Classic
User: N/A
Computer: lyncfe01n.doitnow.com
Description:
The connection to domain controller DC01.doitnow.com appears to have been terminated. The domain controller could have gone down. User Replicator will attempt to reconnect to an available domain controller for this domain.
=====
Log Name: Lync Server
Source: LS File Transfer Agent Service
Date: 1/14/2014 3:58:43 PM
Event ID: 1035
Task Category: (1121)
Level: Error
Keywords: Classic
User: N/A
Computer: lyncfe01n.doitnow.com
Description:
Failed to register with back-end database. Microsoft Lync Server 2010, File Transfer Agent will continuously attempt to reconnect to the back-end. While this condition persists, no replication will be done.
The Connection string: Data Source = sql.doitnow.com\rtc;
Database = xds;
Max Pool Size = 5;
Connection Timeout = 60;
Connection Reset = false;
Enlist = false;
Integrated Security = true;
Pooling = true;
Exception: [-1] Could not connect to SQL server : [Exception=System.Data.SqlClient.SqlException: A network-related or instance-specific error occurred while establishing a connection to SQL Server. The server was not found or was not accessible. Verify that
the instance name is correct and that SQL Server is configured to allow remote connections. (provider: SQL Network Interfaces, error: 26 - Error Locating Server/Instance Specified)
at System.Data.SqlClient.SqlInternalConnection.OnError(SqlException exception, Boolean breakConnection)
at System.Data.SqlClient.TdsParser.ThrowExceptionAndWarning(TdsParserStateObject stateObj)
at System.Data.SqlClient.TdsParser.Connect(ServerInfo serverInfo, SqlInternalConnectionTds connHandler, Boolean ignoreSniOpenTimeout, Int64 timerExpire, Boolean encrypt, Boolean trustServerCert, Boolean integratedSecurity, SqlConnection owningObject)
at System.Data.SqlClient.SqlInternalConnectionTds.AttemptOneLogin(ServerInfo serverInfo, String newPassword, Boolean ignoreSniOpenTimeout, Int64 timerExpire, SqlConnection owningObject)
at System.Data.SqlClient.SqlInternalConnectionTds.LoginNoFailover(String host, String newPassword, Boolean redirectedUserInstance, SqlConnection owningObject, SqlConnectionString connectionOptions, Int64 timerStart)
at System.Data.SqlClient.SqlInternalConnectionTds.OpenLoginEnlist(SqlConnection owningObject, SqlConnectionString connectionOptions, String newPassword, Boolean redirectedUserInstance)
at System.Data.SqlClient.SqlInternalConnectionTds..ctor(DbConnectionPoolIdentity identity, SqlConnectionString connectionOptions, Object providerInfo, String newPassword, SqlConnection owningObject, Boolean redirectedUserInstance)
at System.Data.SqlClient.SqlConnectionFactory.CreateConnection(DbConnectionOptions options, Object poolGroupProviderInfo, DbConnectionPool pool, DbConnection owningConnection)
at System.Data.ProviderBase.DbConnectionFactory.CreatePooledConnection(DbConnection owningConnection, DbConnectionPool pool, DbConnectionOptions options)
at System.Data.ProviderBase.DbConnectionPool.CreateObject(DbConnection owningObject)
at System.Data.ProviderBase.DbConnectionPool.UserCreateRequest(DbConnection owningObject)
at System.Data.ProviderBase.DbConnectionPool.GetConnection(DbConnection owningObject)
at System.Data.ProviderBase.DbConnectionFactory.GetConnection(DbConnection owningConnection)
at System.Data.ProviderBase.DbConnectionClosed.OpenConnection(DbConnection outerConnection, DbConnectionFactory connectionFactory)
at System.Data.SqlClient.SqlConnection.Open()
at Microsoft.Rtc.Common.Data.DBCore.PerformSprocContextExecution(SprocContext sprocContext)]
Cause: Possible issues with back-end database.
Resolution:
Ensure the back-end is functioning correctly.
=================Thanks Andrew.
may be i missed to create SRV records for the second FE server - Let me check this point and come back -- is it mandatory to create the SRV records for second FE server?
Are the clients using "Automatic Configuration"? Yes.
so web service need a hardware load balancer right? -
IP Pool doesn't apply the DNS configuration to Linux based vm
Hi,
Under scvmm 2012r2, I created a IP Pool in my virtual switch as follow :
IP subnet : 192.168.1.0/24 (192.168.1.100 to 192.168.1.200)
Gateway : 192.168.1.1
DNS : 192.168.1.2, 192.168.1.3
Then I created some templates using the IP Pool. From these templates, when I created a Windows vm, all is OK. When i created a Linux based vm like RHEL6, only the IP address and gateway were applied. The DNS setting was missing in the new created
vm.
Thanks for your help !
ztHello,
Here is the output of resolv.conf :
# Generated by NetworkManager
# No nameservers found; try putting DNS servers into your
# ifcfg files in /etc/sysconfig/network-scripts like so:
# DNS1=xxx.xxx.xxx.xxx
# DNS2=xxx.xxx.xxx.xxx
# DOMAIN=lab.foo.com bar.foo.com
Output of the log :
2014-04-09T08:25:31,619Z Trace [scx.vmmguestagent.osspecializationreader:427:1589:140519122646816] DNS Search Suffix read as: test.com
2014-04-09T08:26:34,209Z Trace [scx.vmmguestagent.osspecializationreader:427:1623:139799840220960] DNS Search Suffix read as: test.com
2014-04-09T08:26:38,234Z Info [scx.vmmguestagent.osconfigurator.networkconfigurator:235:1623:139799840220960] Shell Command:/opt/microsoft/scvmmguestagent/bin/cfgnetadapter macaddress=00:1D:D8:B7:1C:20 ipv4addresstype=static
ipv4address=192.168.1.133/24 ipv6addresstype=dhcp gateways=192.168.1.1, nameservers=192.168.1.2,192.168.1.3, dnssearchsuffix=test.com,
Thanks
zt
Maybe you are looking for
-
Restricting developer toolbar when database authentication
hi, When definying an application with authentication=database, and as I do not mark any database user as developer or not, I am not sure how to restrict the access to the developer toolbar. Could you please help me? Thanks,
-
Hi, i got an Hp officejet 7000 wide format model E809a I have to print on a thick black paper size A3 I tried doing it and what i got was only some darker sqaures on the paper where the images and text should be. anyone can help me with this problem?
-
Very Urgent - Target Group count
Hi, When I create a profile and click on count, it gives me No. of BPs and when I click on "Create Target Group" the No. of BP changes. It always reduces. Why is this happenning? Can someone pls help. Regards, Monica
-
ThreadPool Related-few question
Hi, I am using Thread pool in my application . where i am creating threads (and assigning name ChildThread1,ChildThread2 ..) and put them in the Thread pool using the execute() method. In my application i try to get the name of the current active thr
-
Updated lenovo g460 bios crashed
I upgraded my lenovo g460 old bios NIWE-29CN18WW VER1.06 TO 29CN38WW V2.15 but it crashed. how can i reinstall the old bios version. please. could anybody help me please.