Event ID 1012 source DNS Client Events user NETWORK SERVICE
There was an error while attempting to read the local hosts file
Hi,
What files are present in the C:\windows\system32\drivers\etc directory? Below are the contents of mine.
C:\> dir C:\windows\system32\drivers\etc
Directory: C:\windows\system32\drivers\etc
Mode LastWriteTime Length Name
-a--- 4/16/2014 1:03 PM 1807 hosts
-a--- 8/22/2013 8:35 AM 3683 lmhosts.sam
-a--- 8/22/2013 6:25 AM 407 networks
-a--- 8/22/2013 6:25 AM 1358 protocol
-a--- 8/22/2013 6:25 AM 17463 services
Thanks,
-Greg
Similar Messages
-
EVENT 1006, DNS Client Events
I have been getting these DNS client events And my internet connection has been limited and disconnected over and over again. My desktop (this event) is connected to my notebook computer that is connected to a wireless connection (Apt Managed)
Hi,
This issue can occur by incorrect DNS settings. I suggest you perform the following steps to troubleshoot the issue.
1. Click "Start", input "NCPA.CPL" (without quotation marks) and press Enter.
2. Right click on the connection that you use for the local connection, and then click "Properties".
3. Click to select "Internet Protocol Version 4 (TCP/IPv4)", and then click "Properties".
4. In the Internet Protocol window, let's change the "Preferred DNS server" to 208.67.222.222
5. Click 'OK' twice to complete the modification.
If the issue persists, please repeat the steps and change the "Preferred DNS server" to 208.67.220.220.
Kim Zhou
TechNet Community Support -
NPS: Event 6274 - Network Policy Server discarded the request for a user
Intermittently I will get desktop (wired) and laptop (wireless) computers experiencing issues with NPS (they drop off the network).
Some computers are affected more than others, although they are identical hardware and based on a standard image.
In the event log of the NPS servers I can see the following messages:
Log Name: Security
Source: Microsoft-Windows-Security-Auditing
Date: 2/05/2014 8:47:58 a.m.
Event ID: 6274
Task Category: Network Policy Server
Level: Information
Keywords: Audit Failure
User: N/A
Computer: NT147.domain.local
Description:
Network Policy Server discarded the request for a user.Contact the Network Policy Server administrator for more information.User:
Security ID: NULL SID
Account Name: host/DPC0387.domain.local
Account Domain: DOMAIN
Fully Qualified Account Name: DOMAIN\DPC0387$Client Machine:
Security ID: NULL SID
Account Name: -
Fully Qualified Account Name: -
OS-Version: -
Called Station Identifier: 3c-xx-xx-xx-xx-xx
Calling Station Identifier: 00-xx-xx-xx-xx-xxNAS:
NAS IPv4 Address: 10.nnn.nnn.nnn
NAS IPv6 Address: -
NAS Identifier: ND246
NAS Port-Type: Ethernet
NAS Port: 71RADIUS Client:
Client Friendly Name: Network Device Management Subnet
Client IP Address: 10.nnn.nnn.nnnAuthentication Details:
Connection Request Policy Name: NAP 802.1X (Wired)
Network Policy Name: -
Authentication Provider: Windows
Authentication Server: NT147.domain.local
Authentication Type: -
EAP Type: -
Account Session Identifier: 384F322E317838316564303034313030306230666632
Reason Code: 1
Reason: An internal error occurred. Check the system event log for additional information.
How do I debug when an internal error occurs but there is nothing in the system event log? Where else can I look?
Here's the packet trace that matches the event log entry above:
No. Time Source Destination Protocol Length Time from request Info
1 0.000000 JuniperN_xx:xx:xx Universa_xx:xx:xx EAP 60 Request, Identity
2 2.470423 Universa_xx:xx:xx Nearest EAPOL 60 Start
3 2.472870 JuniperN_xx:xx:xx Universa_xx:xx:xx EAP 60 Request, Identity
4 2.539416 Universa_xx:xx:xx Nearest EAP 60 Response, Identity
5 2.544206 Universa_xx:xx:xx Nearest EAPOL 60 Start
6 2.548804 JuniperN_xx:xx:xx Universa_xx:xx:xx EAP 60 Request, Identity
7 2.550050 Universa_xx:xx:xx Nearest EAP 60 Response, Identity
8 2.552597 10.switch 10.NPS_Server RADIUS 254 Access-Request(1) (id=249, l=208)
9 2.556043 10.NPS_Server 10.switch RADIUS 136 0.003446000 Access-Challenge(11) (id=249, l=90)
10 2.565876 JuniperN_xx:xx:xx Universa_xx:xx:xx EAP 60 Request, Protected EAP (EAP-PEAP)
11 2.569472 10.switch 10.NPS_Server RADIUS 254 Access-Request(1) (id=250, l=208)
12 2.572566 10.NPS_Server 10.switch RADIUS 136 0.003094000 Access-Challenge(11) (id=250, l=90)
13 2.580254 Universa_xx:xx:xx Nearest TLSv1 123 Client Hello
14 2.586544 10.switch 10.NPS_Server RADIUS 361 Access-Request(1) (id=251, l=315)
15 4.564841 Universa_xx:xx:xx Nearest EAPOL 60 Start
16 4.568530 JuniperN_xx:xx:xx Universa_xx:xx:xx EAP 60 Request, Identity
17 4.569876 Universa_xx:xx:xx Nearest EAP 60 Response, Identity
18 4.582263 10.switch 10.NPS_Server RADIUS 254 Access-Request(1) (id=252, l=208)
19 4.586006 10.NPS_Server 10.switch RADIUS 136 0.003743000 Access-Challenge(11) (id=252, l=90)
20 4.591896 JuniperN_xx:xx:xx Universa_xx:xx:xx EAP 60 Request, Protected EAP (EAP-PEAP)
21 4.592692 Universa_xx:xx:xx Nearest TLSv1 123 Client Hello
22 4.599634 10.switch 10.NPS_Server RADIUS 361 Access-Request(1) (id=253, l=315)
23 4.600887 10.NPS_Server 10.switch IPv4 1518 Fragmented IP protocol (proto=UDP 17, off=0, ID=07db)
24 4.609920 JuniperN_xx:xx:xx Universa_xx:xx:xx TLSv1 1514 Server Hello, Certificate, Certificate Request, Server Hello Done
25 4.610516 Universa_xx:xx:xx Nearest EAP 60 Response, Protected EAP (EAP-PEAP)
26 4.617407 10.switch 10.NPS_Server RADIUS 262 Access-Request(1) (id=254, l=216)
27 4.618352 10.NPS_Server 10.switch RADIUS 288 0.000945000 Access-Challenge(11) (id=254, l=242)
28 4.623650 JuniperN_xx:xx:xx Universa_xx:xx:xx TLSv1 176 Server Hello, Certificate, Certificate Request, Server Hello Done
29 4.643316 Universa_xx:xx:xx Nearest TLSv1 361 Certificate, Client Key Exchange, Change Cipher Spec, Encrypted Handshake Message
30 4.649607 10.switch 10.NPS_Server RADIUS 601 Access-Request(1) (id=255, l=555)
31 4.656950 10.NPS_Server 10.switch RADIUS 199 0.007343000 Access-Challenge(11) (id=255, l=153)
32 4.662734 JuniperN_xx:xx:xx Universa_xx:xx:xx TLSv1 87 Change Cipher Spec, Encrypted Handshake Message
33 4.681106 Universa_xx:xx:xx Nearest EAP 60 Response, Protected EAP (EAP-PEAP)
34 4.788536 10.switch 10.NPS_Server RADIUS 262 Access-Request(1) (id=2, l=216)
35 4.789735 10.NPS_Server 10.switch RADIUS 173 0.001199000 Access-Challenge(11) (id=2, l=127)
36 4.795723 JuniperN_xx:xx:xx Universa_xx:xx:xx TLSv1 61 Application Data
37 4.796372 Universa_xx:xx:xx Nearest TLSv1 93 Application Data
38 4.802368 10.switch 10.NPS_Server RADIUS 331 Access-Request(1) (id=3, l=285)
39 4.803363 10.NPS_Server 10.switch RADIUS 189 0.000995000 Access-Challenge(11) (id=3, l=143)
40 4.808905 JuniperN_xx:xx:xx Universa_xx:xx:xx TLSv1 77 Application Data
41 4.809501 Universa_xx:xx:xx Nearest TLSv1 77 Application Data
42 4.817342 10.switch 10.NPS_Server RADIUS 315 Access-Request(1) (id=4, l=269)
43 4.822986 10.NPS_Server 10.switch RADIUS 189 0.005644000 Access-Challenge(11) (id=4, l=143)
44 4.828973 JuniperN_xx:xx:xx Universa_xx:xx:xx TLSv1 77 Application Data
45 4.833318 Universa_xx:xx:xx Nearest TLSv1 829 Application Data
46 4.840610 10.switch 10.NPS_Server RADIUS 1073 Access-Request(1) (id=5, l=1027)
47 4.845946 10.NPS_Server 10.switch RADIUS 189 0.005336000 Access-Challenge(11) (id=5, l=143)
48 4.850938 JuniperN_xx:xx:xx Universa_xx:xx:xx TLSv1 77 Application Data
49 4.907924 Universa_xx:xx:xx Nearest TLSv1 141 Application Data
50 4.913390 10.switch 10.NPS_Server RADIUS 379 Access-Request(1) (id=6, l=333)
51 4.917535 10.NPS_Server 10.switch RADIUS 221 0.004145000 Access-Challenge(11) (id=6, l=175)
52 4.922877 JuniperN_xx:xx:xx Universa_xx:xx:xx TLSv1 109 Application Data
53 4.923472 Universa_xx:xx:xx Nearest TLSv1 61 Application Data
54 4.930319 10.switch 10.NPS_Server RADIUS 299 Access-Request(1) (id=7, l=253)
55 4.937348 10.NPS_Server 10.switch RADIUS 381 0.007029000 Access-Challenge(11) (id=7, l=335)
56 4.942543 JuniperN_xx:xx:xx Universa_xx:xx:xx TLSv1 269 Application Data
57 4.944791 Universa_xx:xx:xx Nearest TLSv1 125 Application Data
58 4.951408 10.switch 10.NPS_Server RADIUS 363 Access-Request(1) (id=8, l=317)
59 4.954022 10.NPS_Server 10.switch RADIUS 355 0.002614000 Access-Accept(2) (id=8, l=309)
60 4.981482 JuniperN_xx:xx:xx Universa_xx:xx:xx EAP 60 Success
61 32.590347 10.switch 10.NPS_Server RADIUS 361 Access-Request(1) (id=251, l=315)
62 62.592420 10.switch 10.NPS_Server RADIUS 361 Access-Request(1) (id=251, l=315)
63 92.595043 10.switch 10.NPS_Backup_Server RADIUS 361 Access-Request(1) (id=9, l=315)
64 122.597856 10.switch 10.NPS_Backup_Server RADIUS 361 Access-Request(1) (id=9, l=315)
65 152.600618 10.switch 10.NPS_Backup_Server RADIUS 361 Access-Request(1) (id=9, l=315)A belated thanks for your reply.
Our environment doesn't have NPS accounting configured so that was easy to rule out.
The mid-day drop outs have stopped after I added "set protocols dot1x authenticator no-mac-table-binding" to our Juniper switches (which prevents mac address aging from clearing the active dot1x client session).
I believe the above error message occurs because the RADIUS session ID is rejected / ignored because of some quirks in the RADIUS standard. At the start of a dot1x authentication request a RADIUS session ID is created. For whatever reason the
RADIUS/NAP server stops responding and the Juniper switch fails over to the backup RADIUS/NAP server configured. The session ID is kept (per RADIUS standard) but the backup RADIUS/NAP server doesn't know about the session, so this event: "Network
Policy Server discarded the request for a user." occurs.
It would be nice to see a clearer error message "Invalid RADIUS session" or similar.
There is a Microsoft guide on how to set up RADIUS/NAP servers in a highly available configuration - something to do with RADIUS proxy servers.
It would be even nicer to see some kind of RADIUS session synchronisation between NAP servers... if it doesn't already exist?
I am having the same exact issue you posted on here except I have Extreme Network switches. Some of my computers, various hardware, will randomly not authenticate during re-authentication. The switch says that it failed to contact the NPS server so then it
switches to my backup server. The client has a random time on how long it waits to authenticate so sometimes I end up having the disable/re-enable the port they are connected to so that the session is started again. I see that you basically removed the option
to force clients to re-authenticate Any downfall disabling that?. Any idea why the NPS server is no longer responding? Are you using Windows Server 2012? -
Windows 7 very slow logon, Waiting for the User Profile Service, winlogon event 6006
Hello,
Every so often one of our Windows 7 clients which is not normally having any delay at logon will take a very long time to login. This may be 10 or 20 minutes or up to an hour in some cases.
Typically the event log will contain entries like
The winlogon notification subscriber <Profiles> took 572 second(s) to handle the notification event (Logon).
There is no further information available from Event Log Online Help, nor any additional detail as to why the logon event was so slow. During the delay the user will just see "Waiting for the User Profile Service" on their screen.
We first started seeing this problem with Windows Vista and if anything the situation has not improved since then. It has never happened with any of our Windows XP users.
We are currently planning a migration of computers to Windows 7 but stuff like this which has not been resolved in Windows over a 2 year period will stall that migration. The least improvement is to increase the event notification to give a lot more
information on why the user profile processing has stalled.Hi,
When did the issue begin to occur? Did it occur after installing certain application or applying certain policy?
To troubleshoot the issue, please perform the following step.
1. Restart the machine in Safe Mode with Networking to check whether the system can login quicker.
2. Type “gpedit.msc” in Search box and press Enter. Navigate to the following location:
Computer Configuration->Administrative Templates->System->Logon
Please double click “Always wait for the network at computer startup and logon” policy and disable it.
3. Perform a
Clean Boot to check the result.
Thanks,
Novak -
Hi all,
We seem to be having some odd issues with about 50% of our Windows 7 clients. I'll give you a brief run down of what is occurring.
Server 2008 R2 Domain serving about 50 clients. Having changed a static entry in DNS to point an A record to a new server, the Windows 7 clients randomly can't resolve the IP.
So on testing using either the FQDN or just the host name the request doesn't resolve using ping.
Tried using NSLOOKUP and NSLOOKUP resolves just fine.
Tried ping again and no joy. Turned off the DNS Client Service and instantly the host name resolved to the correct IP.
Restart the DNS Client Service and there's about a 25% chance the hostname will no longer resolve. On ALL of the PCs that have this issue. Stopping or restarting the DNS Client Service resolves the problem.
Also it should be noted that running ipconfig /flushdns has no effect and the host still doesn't resolve to the IP. ONLY stopping the DNS Client service on the Windows 7 PCs does the trick.
Your suggestions are most welcome!
Thanks,
Simon.Hi Yolanda,
Nothing in any event log anywhere and I've checked all the AV logs and run scans already, drivers are up to date. Also there is no firewalling at the client end.
Had a read through the NRPT doc and I don't think that is relevant as the host they are trying to get to doesn't have anything different to anything else in the DNS Domain. All hosts are of the form host.contoso.com. All we've done is change
the IP address on one of the hosts manually within DNS.
It is almost as if on a reboot, the DNS Client Service picks up an old copy of the cache and refuses to overwrite it.
I'm considering changing the Parameters of the service to reduce the TTL of the cached entries from the default of one day to one hour and turn off caching of negative responses as follows:
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Dnscache\Parameters]
"MaxCacheTtl"=dword:e10
"MaxNegativeCacheTtl"=dword:0
Thanks,
Simon. -
Our company has recently changed our DNS settings for our network mail server, and upgraded our SBS to 2010 Microsoft Exchange. Since that change, most of our iPhone users have not been able to acquire e-mail from our mail server. We have three exceptions are 3GS and 4 phones. Any ideas???
Speak to your exchange & DNS administrators at your company.
It is likely a configuration issue on the server/network side. Event/IIS logs are key on your SBS. -
I’ve got a DNS client service issue:
I have a webserver in my local Domain, which is accessible locally only.
One client machine with Windows Server 2012 sometimes cannot access the websites situated on this local webserver. Its event viewer does not contain any issues. The machine can still access the internet. The thing I need to do then, is to restart the DNS client
service on this Windows Server client. After that these local websites are reachable again. The DNS Server is installed on the DC.
What approach could I follow to solve this issue?
PatrickAre you using the fqdn (host.domain.tld), a single label name or a custom dns name?
If you use the single label name, dns name resolution depends on the suffixes, make sure these are configured.
If the issue occurs, you could use nslookup to check if the communication with all configured dns servers is working and the required records are there.
Use ping to check if the correct ip with FQDN is returned. No FQDN implies netbios was used for name resolution - no good -> check the dns configuration
If you use a custom dns name, check what IP it resolves (ping/nslookup); is it a server local IP? If not, check if the issue resolves by putting the dns alias in the hostsfile with a local ip (or 127.0.0.1 if the bindings for your site allow)
The issue might also be solely related to the dns cache maintained by the service. You could check if ipconfig /flushdns resolves the issue to confirm. Their is not much configuration or debugging info available on this, but issues I've seen all boil down
to dns servers not being corretcly configured on the client's ip settings.
You could enable the DNS Client Events operational log (eventviewer->applications and services logs\Microsoft\Windows to maybe get more info on the issue.
MCP/MCSA/MCTS/MCITP -
How to Fire ondisconnect event when network disconnect suddenly
Hello Friends
can any body tell me how to clear the client entry from Adobe flash Media server 3.5. when net disconnect.
i was expecting that on netdisconnect from the client side end(which is connected to FMS) its onDisconnect event fire similarly as it fire for browser close.But when internet disconnect ondisconnect event not fires at FMS side is there any way to overcome this or any other event fire at that stage?
if it is possible to get any event on network disconnection at client sidetahn i can solve the issue.
Thanks and Regards
Vineet oshoYou must be getting the "NetConnection.Connect.Closed" as info.code in the onStatus for the NetConnection.
See http://livedocs.adobe.com/fms/2/docs/wwhelp/wwhimpl/common/html/wwhelp.htm?context=LiveDoc s_Parts&file=00000742.html
nc = new NetConnection();
nc.onStatus = function(info){
if (info.code == "NetConnection.Connect.Closed")
// Netconnection has closed. -
Hi, my system runs on windows 8 on hp laptop envy series. All of a sudden, system event log on service stopped, errors which prevented the system to log on services. It displayed error of STOP 0xC000021A when i use system restore to roll back to previous
configuration. Also when I tried to refresh my pc, it says i can't do changes as log in was switched to prevent the changes by notification.I don't know what to do next, I tried to put recovery dvds which I made when system was bought, now not at all working.
Internet is not active, not able to resolve by trouble shooting and system taking lot of time to get dsktop. Previously I used to get my desktop in 10 seconds. Now its 10 min. May be I m infected with virus. My files, they are there. I tried to transfer some
files by pendrive to another system, now the new system(where i put my files in another system) crashed, windows 7 system which does not display desktop, icons etc and not at all workable.
Also in my hp system, i m unable to open control panel. if its opened, it will not go off, when i use task manager, it says explorer and shuts down. I had to force restart the system. Please resolve something to get my hp laptop workable. I m waiting for
my MS thesis to be working on that. My files are locked and no way to transfer, I fear of infected by virus to another computer also.
Pls give instructions to hw to set my hp laptop at the earliest without losing any of the files. Idon't want to reinstall and lose all the data for timebeing. Else, inform me the option for copying data safely. I tried to change the adv startup and recovery
by changing the boot sequence by DVD but this also shows error 0xC000021A and asks us to see the details. I didn't understand all this. Pls help asap.
Thanks
venkata
STOP 0xC000021AMV
If you can boot either from the win 8 dvd or in safe mode we need the DMP files
We do need the actual DMP file as it contains the only record of the sequence of events leading up to the crash, what drivers were loaded, and what was responsible.
WE NEED AT LEAST TWO DMP FILES TO SPOT TRENDS AND CONFIRM THE DIAGNOSIS.
Please follow our instructions for finding and uploading the files we need to help you fix your computer. They can be found here
If you have any questions about the procedure please ask
Wanikiya and Dyami--Team Zigzag -
I've been wondering this for a while and can't seem to find the answer.
Whenever i set network.dns.disablePrefetch to true, the browser seems to load a bit more smoothly and even with the pref. disabled, the dns client service seems to still cache dns whenever i check on cmd using the ipconfig /displaydns command.
Does this mean that the browser still fetches dns even with the pref disabled?I'm not really sure if it speeds up the loading process or not since it's a bit hard to tell but like i said, the loading is smoother.
Is Dns Client service different from Dns prefetch? -
Adobe reader will not open pdf files I have saved as, or, export as pdf to my desktop (latest Maverick). The same file does open when I am on the source website (i.e. user manuals etc.). Why?
iMac G4, Mac OS X (10.4.9)
Make sure you have the latest Adobe Reader installed for your OS.
http://www.adobe.com/support/downloads/product.jsp?platform=macintosh&product=10
Did you try using Preview. If you control click on the PDF on your desktop you can use the "open with" option. -
DNS client in a non-global zone
Hello,
I want to configure only the non-global zone as a DNS client, with
/etc/resolv.conf
/etc/defaultdomain
/etc/nsswitch.conf
Is this ok or is this a global wide issue?
-- NickYes. The /etc file system is private to each zone (both in the sparse and whole root models) so each zone can have it's own DNS settings (as well as private things like a different time zone and such).
-
Hi,
I�m looking for an open source SFTP Client.
I�ve downloaded commons-net-ftp-2.0.0.jar from http://people.apache.org/~rwinston/commons-net-2.0/.
It is very useful and has support for FTP and FTPS protocols but I need to have support for SFTP protocol too.
So any update in this regard is highly helpful to me and the same is highly appreciated.
I�m looking NOT for any graphical or command line,�kind of implementation.
I�m expecting a jar like commons-net-ftp-2.0.0.jar which I can as use as part of (server side) java applications.corlettk wrote:
georgemc wrote:
And your Java question is?Relax, Thunderbird is written (predominantly) in Java.What? No! It isn't! Why do you think so?
Thunderbird is based on XULRunner, which is a lot of C++. And Thunderbird itself is a mix of C++, JavaScript and XUL. -
How to change the Client n user details for a model in Production
Hello Friends,
I have an application which is calling RFC function module from SAP R/3.
In development system while creating Model I have entered the Back end details like Client, User Name and Password.
If I transport the application into Production, The Client and user name will be different. In this case How would I change the client n user name details.
Do I have import again in Production. But does sounds a good idea.
ThanQ for Ur time.
Cheers.. SamWhen you create Model first time, to import Interface of RFC you would need to logon into R/3. But once you are done with the Interface, your connection to R/3 will be determined by the client and UID details in JCo connection.
Now when you transport your code from DEV to QA system, the JCo connection with the same name should be there. or else, you would need to create the same in the new server. I dont see a need to reimport the model. If that is the case, then developers would have to spend huge amount of time doing this job alone.
Hope this solves ur problem.
Regards
Murali. -
Domain Controllers that are DNS servers DNS Client settings
[Copying verbatim from a mail by Joe ]
So I have been pinged by a few folks recently on configuration of client DNS settings on Domain Controllers that are also functioning as DNS Servers. Lots of debate. I understand there has been long time debate within MSFT as well.
From http://blogs.technet.com/b/askds/archive/2010/07/17/friday-mail-sack-saturday-edition.aspx there
is the quote
"3.When referencing a DNS server on itself, a DNS client should always use a loopback address and not a real IP address."
From http://www.microsoft.com/en-us/download/confirmation.aspx?id=9166 (Windows
Server 2008 R2 Core Network Guide)
"9. In Preferred DNS server, type the IP address of your DNS server. If you plan to use the local computer as the preferred DNS server, type the IP address of the
local computer.
10. In Alternate DNS Server, type the IP address of your alternate DNS server, if any. If you plan to use the local computer as an alternate DNS server, type the IP address of
the local computer."
From http://technet.microsoft.com/en-us/library/dd378900(v=ws.10).aspx (DNS:
DNS servers on <adapter name> should include their own IP addresses on their interface lists of DNS servers)
"The inclusion of its own IP address in the list of DNS servers improves performance and increases availability of DNS servers. However, if the DNS server is also a domain controller and it points only to
itself for name resolution, it can become an island and fail to replicate with other domain controllers. For this reason, use caution when configuring the loopback address on an adapter if the server is also a domain controller. The loopback address should
be configured only as a secondary or tertiary DNS server on a domain controller...
Add the loopback IP address to the list of DNS servers on all active interfaces. The loopback IP address should not be the first server in the list."
ESPECIALLY "For this reason, use caution when configuring the loopback address on an adapter if the server is also a domain controller. The loopback address should be configured only as a secondary or tertiary
DNS server on a domain controller." and "Add the loopback IP address to the list of DNS servers on all active interfaces. The loopback IP address should not be the first server in the list."
Why shouldn't loopback not be first, the justification is why you shouldn't only use loopback, not why it shouldn't be first.
From http://technet.microsoft.com/en-us/library/ff807362(v=ws.10).aspx (DNS:
DNS servers on <adapter name> should include the loopback address, but not as the first entry)
"If the loopback IP address is the first entry in the list of DNS servers, Active Directory might be unable to find its replication partners.
The inclusion of its own IP address in the list of DNS servers improves performance and increases availability of DNS servers. However, if the DNS server is also a domain controller and it points only to itself,
or points to itself first for name resolution, this can cause a delay during startup. For this reason, use caution when configuring the loopback address on an adapter if the server is also a domain controller. The loopback address should be configured only
as a secondary or tertiary DNS server on a domain controller."
This also seems like justification against only using loopback versus using it first.
Are there any actual real documented issues for using loopback first and a remote DNS server second and perhaps third? If the local DNS server service isn't working yet (or at all), I would expect the DNS Client process
to try to connect to it, fail, and then failover to the secondary just like I would expect it to failover if the remote DNS server was secondary and it was unavailable and it failed back to the loopback. Am I making a bad assumption?
And by documented I don't mean random responses to questions on the internet or other such items. I mean a KB article or technet article or properly researched and tested other web article from a reliable resource.
thanks,
joeAs I understand it, the scenario whereby a DC could become an 'island' if it points only to itself, or to itself first, was repaired in the Windows Server 2003 product cycle. See
http://support.microsoft.com/kb/275278 for information about this scenario.
However, there is still a known problem of slow boot times that can occur. See
http://support.microsoft.com/kb/2001093 for information about this. The scenario that is discussed assumes there is a power failure and servers shut down due to overheating while on backup power. When
multiple servers come online simultaneously after power is restored, there can be a significant delay.
The recommended configuration is one that avoids a single point of failure, but also tries to optimize the speed of resource record registration, so that Active Directory can properly synchronize.
-Greg
Maybe you are looking for
-
How can I get my data back after a family member hacked into my iphone and replaced my data
A family member hacked into my iPhone and replaced my data with his own data. I am afraid to plug it into iTunes for fear of overwriting my backup. iCloud probably already overwrote. Can I restore the phone without synching first, and then use Time M
-
Need help with color management
I am looking for someone to help me. Please! I am looking for help with Photoshop/printer not printing correct colors. I have: Windows 7, Photoshop CS5, Photoshop Elements, HP Pavillion Laptop, new Okidata C530dn color laser printer Previously I had
-
Can I put an app i bought for my macbook pro onto my iphone without buying it again?
I was just wondering if I bought an app for my Macbook Pro and I want to use it on my iPhone as well, is there a way to download it onto my iPhone without purchasing it again?
-
Error connecting to Oracle on Red Hat 7.2 with WL 7.0
I able not able to connect to Oracle on Red Hat 7.2. I have tried both 9.0.1 and 9.2.0. I am able to use a very similar configuration and W2k and it works. Here is the situation: I have installed Weblogic 7.0.0.1 on Redhat 7.2. It works fine in gener
-
My iphone can't be recognized by itunes and it won't turn on fully..
My girlfriend bought an iphone today on craigslist..the man who bought it said that it was jailbroke but he didn't use it very much. The program was cydia. We went the the att store to get some accessories and the techician did a restore on the phone