Follow up - DNS (internal domain has same name as external website)

Similar Messages

• DNS (internal domain has same name as external website)

  Our internal domain name is called "abc.com"  and our company website is called "abc.com".  I have created an "A" record that points to
  www.abc.com so staff can browse the website from within the office.  The problem is that if people enter "abc.com" from a web browser with the office it does not resolve in an efficient manner.  Can someone please
  help?
  Interflex

  Hi Interflex,
  I agree with Ace’s option 2 and 3 just like what I thought.
  I still consider the idea which Jorge provided about prevent register DC’s A record . This probably cause some un-expected issues,
  because this record is used for DFS and GPOs. So I don’t recommend this method.
  Meanwhile , I have thought as same as Ace’s second suggestion, if the environment or policy of your company allow deploy IIS on your
  DC server , I thought this could be a possible resolution.
  And I have a tips for your reference. If client’s browser is IE, by default, when you type web address in address bar,
  and press “ Ctrl + Shift +Enter “,IE will auto add Prefix WWW to the beginning of typed web address. In your case , users just type “abc” in address bar, and press  “ Ctrl + Shift +Enter “
  You can set this at “Prefix and Suffix option” which located at  “Internet Options”/ “General”
  Tab / ”language” button.
  Thank.
  Tiger Li
  Hi Tiger,
  I've actually found by default, just hitting Ctrl + Enter (without the shift key) puts in the 'www' and 'com.' but it only works for the 'com' TLD' by deffault. I guess you could add 'net' in the General tab, Language, suffix option to use ctrl-shift-enter,
  or whatever the actual internal TLD name is.
  Cheers!
  Ace
  Ace Fekay, MVP, MCT, MCITP EA, MCTS Windows 2008 & Exchange 2007, MCSE & MCSA 2003/2000, MCSA Messaging 2003, Microsoft Certified Trainer, Microsoft MVP - Directory Services. This posting is provided AS-IS with no warranties or guarantees and confers no
  rights.

• Server 2012 - Can't access external website from internal domain with same name. Tried everything.

  Hello All.
  I have read loads of forums and tried numerous fixes and configurations, but nothing seems to work and I am extremely frustrated at this point.
  I have a client where I setup Server 2012 Standard with Exchange 2013. After reading best practice documentation for DNS naming and reasons not to use ".LOCAL" I opted to use ".com.na" in which case the Internal Domain Name and Internet
  Website now has the same name.
  When attempting to open the extarnal website eg. "www.company.com.na" from a client PC within the internal "company.com.na" Domain, I keep getting error "403 - Forbidden: Access is denied. You do not have permission to view this
  directory or page using the credentials that you supplied."
  I should also mention, the website is hosted by an ISP and not locally.
  I added a "www" Host record in the Forward Lookup Zone, I have added the url and ip address to the Hosts file on a client pc (Windows 7) and even tried setting up Split-Brains DNS. Nothing seems to work.
  Running a Tracert takes me to the correct public ip address of the website, but I keep getting this 403 error.
  I am so sick and tired of this issue that iI am at the point of backing up the Exchange and re-rolling the entire server with the ".local" DNS domain name. I have a mirror setup in a VMWare environment and simply using "rendom" to rename
  the domain seems to cause new issues with Exchange connectivity.
  Any pointers and help will be greatly appreciated.
  Thanks in advance.
  Hentie Loots

  I opted to use ".com.na" in which case the Internal Domain Name and Internet Website
  now has the same name.
  This ends up with a split-DNS stup for internal and external resolution which requires extra administration tasks and attention from the administrators.
  When attempting to open the extarnal website eg. "www.company.com.na" from a client PC within the internal "company.com.na" Domain, I keep getting error "403 - Forbidden: Access is denied. You do not have permission to view
  this directory or page using the credentials that you supplied."
  I should also mention, the website is hosted by an ISP and not locally.
  I added a "www" Host record in the Forward Lookup Zone, I have added the url and ip address to the Hosts file on a client pc (Windows 7) and even tried setting up Split-Brains DNS. Nothing seems to work.
  Running a Tracert takes me to the correct public ip address of the website, but I keep getting this 403 error.
  This means that you are able to reach the Website but it is responding with the access denied error message. That should be checked on the middleware level so if this is IIS running then I would recommend asking them in IIS forum: http://forums.iis.net/
  If this is a Website that is completely managed by your ISP then I would recommend checking with them.
  This posting is provided AS IS with no warranties or guarantees , and confers no rights.
  Ahmed MALEK
  My Website Link
  My Linkedin Profile
  My MVP Profile

• Can I run 2 different domains with same name but on 2 different machines?

  I am trying to setup 2 domains with same name (sharedcds1) on 2 different machines (Machine1 and Machine2).
            When I start the weblogic managed server 1 (sharedcds1managedserver1) on Machine2, it throws an error saying it has some conflicts with the managed server 1 running on Machine1. How did the managed server of one machine know about the other server. Can I run 2 different domains with same name but on 2 different machines?
            Here is the error in the log -
            <Jun 14, 2005 10:53:29 AM EDT> <Error> <Cluster> <BEA-000123> <Conflict start: You tried to bind an
            object under the name weblogic.transaction.coordinators.sharedcds1managedserver1 in the JNDI tree.
            The object from 4596206652609838848S:130.170.61.153:[9505,9505,-1,-1,9505,-1,-1,0,0]:sharedcds1:s
            haredcds1managedserver1 is non-clusterable, and you have tried to bind more than once from two or m
            ore servers. Such objects can only be deployed from one server.>
            <Jun 14, 2005 10:53:29 AM EDT> <Error> <Cluster> <BEA-000123> <Conflict start: You tried to bind an
            object under the name weblogic.transaction.coordinators.sharedcds1managedserver1 in the JNDI tree.
            The object from 8842351474821025197S:130.170.61.154:[9505,9505,-1,-1,9505,-1,-1,0,0]:sharedcds1:s
            haredcds1managedserver1 is non-clusterable, and you have tried to bind more than once from two or m
            ore servers. Such objects can only be deployed from one server.>
            Thanks
            Satish

  Yes you can. Make sure that domains configured to use different multicast address. WLS uses multicast for communications between nodes in domain.
            although your configuration will work, you could have troubles if you going to execute inter-domain calls between domains/servers with the same names.

• Can i rejoin ny SCVMM 2012 server to domain with same name & IP address?

  Dear all..
  I am in situation where i have to rejoin my scvmm server to  domain with same name & ip address.one of the fool admin has deleted my SCVMM's computer object from AD. I have recreated the object & tried to log on but no luck.. i have to rejoin
  the server.
  Does it have any risks involved or its just fine?

  Hi,
  First the behavior is normal. If an computer accounts is deleted, you cannot continue using the server without rejoining.
  SCVMM it's not depending (integration) on active directory in such way as Exchange.
  So, if the computer accounts has been deleted, there is no issue in creating a new one and rejoin the server. As long as the application on the server is able to look up any required directory services, it should be happy again.
  Best Regards,
  Jesper Vindum, Denmark
  Systems Administrator
  Help the forum: Monitor(alert) your threads and vote helpful replies or mark them as answer, if it helps solving your problem.

• When I try to import, I receive the following message: "An internal error has occurred: not enough memory".  I always download my photos onto an external hard drive.

  Yesterday,I downloaded an update for Lightroom 5.  Now when I try to import, I receive the following message: "An internal error has occurred: not enough memory".  The message comes up right after I click import, before I choose a file to upload.Here is the information I can think of that might be needed to answer this question:
  - I always download my photos onto an external hard drive.It is about 10 % full.
  - It says I have Lightroom 5.6  64 bit
  - I am working from a newer laptop (Windows).  The internal drive on the laptop has 289 gb and I am using 61 gb total memory.
  - I have edited 2794 photos in Lightroom and it is all in one catalog.
  - I did not have this problem until I made the update.  I did have my first "bug" earlier this week when one of my photos had a line show up through the middle of it when I exported it. I was able to export it a second time without the line.
  If there is more info. needed, let me know.  I do photography as a hobby and know enough about Lightroom to edit out blemishes and adjust color balance, but not too much more, so forgive my ignorance if this is an obvious fix.
  Sincerely,
  Adrianne

  Not Enough Memory typically refers to RAM.  How much RAM do you have on your 64-bit OS computer?  Do you have other programs running that may be using most of the memory?

• Two soa domain with same name "TestSOADomain" sharing same SOA schema ?

  I tried creating two soa domain with same name "TestSOADomain" (different path) sharing same SOA schema .However one domain came UP to Running mode and other domain going to AdminMode and "soa-infra" application of that domain is not active.
  I do want to understand can this be possible with SOA ,ie. two soa domain sharing same SOA schema ?
  If possible what are all the problems might come
  1. While executing soa composites with asyncronous behaviour ?
  2. How the polling services will work ?
  3. will the XREF_DATA table ROW_NUMBER column inserted uniquely while inserting data from two different domain into same SOA schema ?
  4. Other issues ?
  Thanks

  Each domain is expected to refer to its own unique database schema. Same SOA schema should not be shared by multiple SOA clusters/domains. It is technically possible though, I suppose, and still can run fine any one SOA environment at any given time with the other SOA environments/domains (sharing the same SOA schema) shutdown. It is not the general/recommended practice to share SOA schema across domains and there could be potential implications and unexpected behavior, particularly when the SOA environments pointing to the same schema are all running at a time.

• Regarding Lightroom Slideshow module: When I click on the preview button I get the following error: An internal error has occurred: ?:0: attempt at index a nil value. This occurs with any group of images I select in my catalog.

  Regarding Lightroom Slideshow module: When I click on the preview button I get the following error: An internal error has occurred: ?:0: attempt at index a nil value. This occurs with any group of images I select in my catalog.

  Jeannine,
       If you follow the advice of the previous poster Julie Kmoch and then gradualy add presets back in one at a time you might be able to find the one that is causing the issue. I may be guessing, but I believe the issue has something to do with either an incompatible Preset setting (eg a older preset in newer version of LR) or a corrupt Preset.
  Say you bought LR2 and imported a bunch of Presets from the internet, cuz 'Hey these effects are cool and I don't have to recreate the wheel', and then you upgraded to LR3 (not a clean install) and now one of the Presets that calls a certain slider setting or value that is different in LR3 doesn't work anymore. This might be why it throws the error, but again I am just speculating.
  Location of LR Preset folder in Windows Vista/ Windows 7
  C:/Users/<YourUserName>/AppData/Roaming/Adobe/Lightroom/Develop Presets
  If you do not see the folder AppData, you may need to change the settings in Windows Explorer to 'Show Hidden Files and Folders'. To do that in Windows Vista/ Windows 7, open a Windows Explorer window, Click on Organize, then Foler and Search Options. Then click on the View tab and select the option button next to Show hidden files, folders and drives.
  Hope this helps a bit,
  Glenn

• Migrating multiple domains with same name - how? Rename? Migrate through temporary domain?

  Hi,
  we have acquired another company, and they have multiple, separate domains with the same name (every site has a domain with NetBIOS name "COMPANY" and DNS name "company.local"). Now we want to migrate all these domains into ours using
  ADMT.
  Unfortunately, we did not manage to migrate one of these domains completely, so the trust must remain established for some time. But we have to continue with the second domain - which normally would require a trust, but of course we can't establish a trust
  to two domains with the same name at the same time.
  I found two potential solutions for the dilemma, but I'm not sure if both are reasonable:
  1) Rename the domain with RENDOM.EXE to COMPANY2 and company2.local and then migrate with ADMT
  2) Migrate COMPANY to a temporary domain such as COMPANYTEMP and then migrate from COMPANYTEMP to our domain
  Given that there are roughly 100 users, 2 domain controllers and 8 other servers, what would be the better approach? Is option 2 possible at all, so would I be able to use the sidHistory attribute migrated from the original COMPANY domain in our domain at
  all?
  There is also an Exchange 2007 server, which seems to make option 1 impossible unless we find another way to migrate it (like, export all mailboxes to PST before migration) ...

  Ok, that's what I expected. Still, I have servers in the old domain, so if I do these steps:
  first create a new temporary domain i.e COMPANYTEMP and
  create trust between COMPANYTEMP -
  COMPANY(Right)
  then do the migration with sidHistory from COMPANY(right) --> COMPANYTEMP ,
  disconnect the domain COMPANY(right) ,
  users will lose connectivity to any servers in the domain. I understand that it does not work with all domains connected? Of course I can't make OURCOMPANY's domain controllers see the DCs of COMPANY (right) in DNS (though I could achieve it the other way
  round).
  My original plan was:
  first create a new temporary domain i.e COMPANYTEMP and
  create trust between COMPANYTEMP -
  COMPANY(Right)
  then do the migration with sidHistory from COMPANY(right) --> COMPANYTEMP ,
  create trust between OURDOMAIN and COMPANYTEMP
  then do the migration with sidHistory from
  COMPANYTEMP --> OURDOMAIN,
  Migrate users
  Migrate computers
  Migrate servers
  remove trusts and old domain
  But I see that this will not work out, right? So, my only option would be:
  first create a new temporary domain i.e COMPANYTEMP and
  create trust between COMPANYTEMP -
  COMPANY(Right)
  then do the migration with sidHistory from COMPANY(right) --> COMPANYTEMP ,
  Migrate computers and servers to COMPANYTEMP
  Install new Exchange server in COMPANYTEMP
  migrate mailboxes to COMPANYTEMP
  disconnect / abandon COMPANY(right)
  create trust between OURDOMAIN and COMPANYTEMP
  then do the migration with sidHistory from COMPANYTEMP
  --> OURDOMAIN,
  Migrate users
  Migrate computers
  Migrate servers
  Migrate mailboxes
  remove trusts and old domain
  And to minimize user impact, all this would have to be done in one go (over night), which is hardly possible .........................

• Changing a DC in Domain, with Same name and IP

  hey we have a domain with 3DC (srv1, DC Operation Master and GC ; srv2 DC and GC ; and srv3 only DC)
  srv3 is a file server with many shares like //srv3/folder/myfiles 
  so i really want to keep the name and IP!!
  my plan is to degrade the srv3 to normal server and add to a workgroup. 
  Delete it from ad under domain controllers. So my domain only works with my two domain controllers.
  Wait 1 or 2 Days. perhaps do a manuel replication ... so be clear tat the srv3 is really removed from the domain.
  And after all i would take my brand new Server give him same name and ip an add him to the domain. level him up to a dc and i hope all would be fine :)

  Greetings!
  Just demote the DC successfully (No Force Removal!)and check the replication between two domain controllers. If everything were in good condition you can use the same IP and Name in a new server. No need to wait for couple of days.
  Regards.
  Mahdi Tehrani   |  
    |  
  www.mahditehrani.ir
  Please click on Propose As Answer or to mark this post as
  and helpful for other people.
  This posting is provided AS-IS with no warranties, and confers no rights.
  How to query members of 'Local Administrators' group in all computers?

• Import of transport from a system that has same name as target system

  Hi,
  We have an ECC6.0 SPS10 system with SID as "RD2" and the transport
  number range on this system is from RD2K900000 to RD2K999999.
  If we import a transport into our ECC system(SID is RD2)from an
  external system(vendor system) which has the same SID (RD2) and this
  external system transport number is RD2K9A0505, does the transprot
  number range change in our system?
  After the import of the transport(RD2K9A0505) into our system, if we
  create new transport request, what would be the transport number
  assigned to it?
  will it change to RD2K9AXXXX or will it be the same number range it has
  before as RD2K9XXXXX.?
  Appreciate your answers.
  Thanks,
  Vinod.

  Hi,
  This was very unusual to see, anyways let me put my answers
  1. the systems has to be configured in landscape to import the transport requests, and in landscape no two systems can have same SID.
  2. The transport system has a specific order tht need to be followed, DEV>QAS>PRD, so you did not mentioned the scenario here(please put doenthe scenario if you are importing from DEV of vendor to your DEV), and the SP level and kernel and everything need to be maintained on same level between source and Target else there is possibility for import error or chnages donot meet the criteria in target.
  3. Usually when you do imports between the DEV and QAS or PRD the Change request numbers in DEV are usually high but by importing this into QAS the number range for CR will not change,( here the SID are different). In your case i was uncertain since SID are same and number range format is different.
  4. Kindly note that SAP recommends no two SID in landscape can be same, so your source system should be from different landscape where transports can be done only through manually from OS level using tp command, and im in doubt wether tp can recognize the change request that was different in format as a change request number.
  Regards....
  Edited by: Sita Rr Uppalapati on Dec 8, 2008 8:32 PM
  Edited by: Sita Rr Uppalapati on Dec 8, 2008 8:34 PM

• DNS not querying/ recognizing/ resolving internal domain name using nslookup

  I've setup a virtual lab for practice purpose on VMware 8 workstation.
  I have already asked this question in vm community but still got no answers hence asking it here.
  In my vmware workstation 8, for practice lab purpose my setup is as follows:-
  1] Win 2k8R2 Enetrprise edi.vm as my DC with DNS & DHCP configured and working perfect. DNS is getting resolved internally via NSLOOKUP. Server has manual ip assigned...192.168.1.xx series.
  2] Win xp vm as my Client and getting dhcp lease address from the above DC and also the DNS is getting resolved internally via NSLOOKUP.
  Now that these two vms are communicating perfectly with each other, I thought about connecting them to my physical internet.
  So, in the Virtual network editor, I added a Host-only type network named
  VMnet 04 with Use local dhcp service checkbook Disabled and on each of these vms, in network adapter settings, selected specific virtual network and pointed it to
  VMnet 04 in both vms.
  Now, in both the vms, an additional network connection got added and hence was successfully able to browse internet from both vms.
  Now the REAL problem:--
  After the above configuration, when I do NSLOOKUP on the DC, the DNS doesnt resolves external sites on the internet.
  I havent specified any kind of conditional forwarding etc.., its a simple DNS setup.
  I want it to resolve to the internal domain and also be connected to the internet .
  What setting do I need to do in DNS or in VM network?
  I tried almost all types of settings in vm virtual network editor by specifying dns manually and so on but none worked.

  Sorry my bad.... slight mistake in my question...Here is my corercted query--
  After successfully connecting to the internet, when I do NSLOOKUP on the DC, the DNS doesnt resolve my internal domain/site but instead resolves external sites on the internet.
  My computer FQDN is nri.wwe.com
  Domain dns name is wwe.com
  The above should get resolve internally but it searches on the internet.
  This is how it should work
  & it works perfect when I disable the other NAT network adapter (i.e. disable internet connectivity on my virtual DC)
  C:\>nslookup nri.wwe.com
  Server:  nri.wwe.com
  Address:  192.168.1.11
  Name:    nri.wwe.com
  Address:  192.168.1.11
  But when I again enable internet connectivity, this it what happens.
  C:\nslookup www.wwe.com
  DNS request timed out.
      timeout was 2 seconds.
  Server:  UnKnown
  Address:  192.168.12.2
  DNS request timed out.
      timeout was 2 seconds.
  Non-authoritative answer:
  DNS request timed out.
      timeout was 2 seconds.
  Name:    www.wwe.com.nsatc.net
  Address:  64.152.0.124
  Aliases:  www.wwe.com
  And when I again nslookup, this is what I get,
  C:\>nslookup www.wwe.com
  DNS request timed out.
      timeout was 2 seconds.
  Server:  UnKnown
  Address:  192.168.12.2
  DNS request timed out.
      timeout was 2 seconds.
  DNS request timed out.
      timeout was 2 seconds.
  DNS request timed out.
      timeout was 2 seconds.
  *** Request to UnKnown timed-out
  Now this 192.168.12.2 is VM assigned DNS via VM Natting with its own DHCP. If we do it manually, none of the virtual machines can connect to the internet. So I cannot fiddle with it anymore as I have already that as well.

• Joining to domain on same computer account name

  Hi, 
  I have a critical server. I need to reinstall it with clean installation an same name. I don't have permissions to delete computer account from AD, but I have permissions to add to domain. If I remove server from domain reinstall it and will join to domain
  with same name. Does this can cause any issues? Do I have to delete server computer account before joining to domain?
  thank you, 

  Hi
  If you are reinstalling server and do not want to delete the existing computer account, you'll get error "Computer account usually exists already, and security on that account does not allow you to join — usually because the computer was joined
  previously by using different computer account credentials."(Assuming you did not joined it to domain in present case). So you must first delete the existing account or get full permissions on the account.
  If you receive the error "Failure to create a computer account," it usually means that either the account already exists or that there are insufficient access rights available to the user who is trying to join. Table 10.8 shows the error codes
  that come under this category.
  Table   10.8    "
  Failure to create a computer account " Error Codes
  Description
  Actual Error
  Error Code
  Computer account usually exists already, and security on that account does not allow you to join — usually because the computer was joined previously by using different computer account credentials.
  ERROR_ACCESS_DENIED
  5
  The user has joined so many computers that he has exceeded the default per user computer quota (by default, 10).
  ERROR_DS_MACHINE_ACCOUNT_QUOTA_EXCEEDED
  8557
  The specified user already exists.
  ERROR_USER_EXISTS
  2224
  Also pls refer the article for in-depth details :
  Join and Authentication Issues
  http://technet.microsoft.com/en-us/library/cc961817.aspx
  Hope this helps. :)
  Thanks

• LDAP configuration - An internal error has occurred in the secLdap plug-in

  Hi,
  I am trying to configure my BOE to a LDAP (Microsoft Active Directory Application).
  After completing all the configuration steps, I get the following error:
  "An internal error has occurred in the secLdap plug-in"
  I chose "No SSL" and "No SSO" and used all the default values in the "Please configure how new LDAP users and aliases are created by BusinessObjects Enterprise" screen.
  Can someone assist?
  -Doron

  Hi,
  I'm having the same type of problem as Doran authenticating against LDAP.
  The LDAP configuration is syntactically clean, not sure whether it is correct though.
  Adding LDAP groups failed miserably for all listed entries, see below in Config Parms:
  Configuring without LDAP groups fails with the Login Error,
  Login Error Message:               Account Information Not Recognized: LDAP Authentication could not log you on.
                                        Please make sure your logon information is correct.
                                        If your account is under any root other than dc=lgc,dc=com you must enter your dn.
                                        (FWM 00007)
  The DN for my local account,
  uid=hb37406,ou=people,o=hou,dc=lgc,dc=com
  Crystal Report Server 2008 authenticated against an Sun iPlanet LDAP Server.
  Build Date:         2008/09/13:08:31:32
  Build Number:      882
  Product Version:      12.1.0.882
  Config Parms:
                                                  LDAP Host:hourdldap01.lgc.com:389,ldap.corp.halliburton.com:389
                                LDAP Server Type: Sun Directory Server
                                Base LDAP Distinguished Name:   dc=lgc,dc=com
                                                                           ou=people,o=hou,dc=lgc,dc=com
                                LDAP Referral Credentials:cn=cmldap,dc=lgc,dc=com;
                                Password:xxxxxxxx
                                Number of Hops: 1
                                SSL authentication:Basic
                                LDAP single sign-on authentication:Basic
                                Configure new LDAP users:
                                     Assign each added LDAP alias to an account
                                     Creae new aliases only when user logs on
                                     New users are created as concurrent users
                                Mapped LDAP Member Groups
                                Add LDAP group (by cn or dn)
  LDAP search on local account **
                                                              uid=hb37406,ou=people,o=hou,dc=lgc,dc=com
                                     cn=dev
                                     cn=dev,ou=group,o=hou,dc=lgc,dc=com
                                     ou=people,o=hou,dc=lgc,dc=com
                                     ou=people,dc=lgc,dc=com
                                     o=hou,dc=lgc,dc=com
                                     dc=lgc,dc=com
                                     dc=lgc.com
                                                          lgc.com
                                     ou=HalUsers,dc=corp,dc=halliburton,dc=com
                                     ou=people,dc=corp,dc=halliburton,dc=com
                                     dc=halliburton,dc=com
  LDAP configuration Error:          The secLdap plugin failed to get the dn for the group xxx.

• Oracle vm 2.2.1 domain has crashed

  Hello
  We are facing actually a problem. We have installed ovm 2.2.1 and installed 3 (A15, A16, A17) windows virtual machines on a HP Proliant DL380 G7 server.
  A17 machine restart unexpectedly when the load is high on the network
  Part of logs are:
  /var/log/messages:
  Sep 25 15:22:18 xxxxx avahi-daemon[7250]: Interface tap23.0.IPv6 no longer relevant for mDNS.
  Sep 25 15:22:18 xxxxx avahi-daemon[7250]: Leaving mDNS multicast group on interface tap23.0.IPv6 with address fe80::c40f:d1ff:fe14:ce79.
  Sep 25 15:22:18 xxxxx avahi-daemon[7250]: Withdrawing address record for fe80::c40f:d1ff:fe14:ce79 on tap23.0.
  Sep 25 15:22:18 xxxxx kernel: xenbr1: port 2(tap23.0) entering disabled state
  Sep 25 15:22:18 xxxxx kernel: device tap23.0 left promiscuous mode
  Sep 25 15:22:18 xxxxx kernel: type=1700 audit(1348586538.915:90): dev=tap23.0 prom=0 old_prom=256 auid=4294967295 ses=4294967295
  Sep 25 15:22:18 xxxxx kernel: xenbr1: port 2(tap23.0) entering disabled state
  Sep 25 15:22:20 xxxxx kernel: xenbr1: port 3(vif23.0) entering disabled state
  /var/log/xen/xend.log:
  [2012-09-25 15:22:18 8235] WARNING (image:490) domain 10_xxxxx: device model failure: pid 11149: died due to signal 11; see /var/log/xen/qemu-dm-10_xxxxx.log
  [2012-09-25 15:22:19 8235] WARNING (XendDomainInfo:1907) Domain has crashed: name=10_xxxxx id=23.
  [2012-09-25 15:22:19 8235] DEBUG (XendDomainInfo:2757) XendDomainInfo.destroy: domid=23
  [2012-09-25 15:22:20 8235] DEBUG (XendDomainInfo:2230) Destroying device model
  [2012-09-25 15:22:20 8235] DEBUG (XendDomainInfo:2237) Releasing devices
  [2012-09-25 15:22:20 8235] DEBUG (XendDomainInfo:2250) Removing vif/0
  [2012-09-25 15:22:20 8235] DEBUG (XendDomainInfo:1144) XendDomainInfo.destroyDevice: deviceClass = vif, device = vif/0
  [2012-09-25 15:22:20 8235] DEBUG (XendDomainInfo:2250) Removing vbd/768
  [2012-09-25 15:22:20 8235] DEBUG (XendDomainInfo:1144) XendDomainInfo.destroyDevice: deviceClass = vbd, device = vbd/768
  [2012-09-25 15:22:20 8235] DEBUG (XendDomainInfo:2250) Removing vbd/832
  [2012-09-25 15:22:20 8235] DEBUG (XendDomainInfo:1144) XendDomainInfo.destroyDevice: deviceClass = vbd, device = vbd/832
  [2012-09-25 15:22:20 8235] DEBUG (XendDomainInfo:2250) Removing vbd/5696
  [2012-09-25 15:22:20 8235] DEBUG (XendDomainInfo:1144) XendDomainInfo.destroyDevice: deviceClass = vbd, device = vbd/5696
  [2012-09-25 15:22:20 8235] DEBUG (XendDomainInfo:2250) Removing vbd/2048
  [2012-09-25 15:22:20 8235] DEBUG (XendDomainInfo:1144) XendDomainInfo.destroyDevice: deviceClass = vbd, device = vbd/2048
  [2012-09-25 15:22:20 8235] DEBUG (XendDomainInfo:2250) Removing vbd/5632
  [2012-09-25 15:22:20 8235] DEBUG (XendDomainInfo:1144) XendDomainInfo.destroyDevice: deviceClass = vbd, device = vbd/5632
  [2012-09-25 15:22:20 8235] DEBUG (XendDomainInfo:2250) Removing vfb/0
  [2012-09-25 15:22:20 8235] DEBUG (XendDomainInfo:1144) XendDomainInfo.destroyDevice: deviceClass = vfb, device = vfb/0
  [2012-09-25 15:22:20 8235] DEBUG (XendDomainInfo:2250) Removing console/0
  [2012-09-25 15:22:20 8235] DEBUG (XendDomainInfo:1144) XendDomainInfo.destroyDevice: deviceClass = console, device = console/0
  [2012-09-25 15:22:20 8235] DEBUG (XendDomainInfo:117) XendDomainInfo.create_from_dict({'vcpus_params': {'cap': 0, 'weight': 256}, 'PV_args': '', 'features': '', 'cpus': [[], [], [], [], [], [], [], [], [], [], [], []], 'paused': 0, 'domid': 23, 'shutdown': 0, 'VCPUs_live': 12, 'PV_bootloader': '/usr/bin/pygrub', 'actions_after_crash': 'restart', 'vbd_refs': ['0b8eb7e0-91cb-1dd8-93ba-92b1a3ff26b3', 'cd42c91a-1f15-053e-78c4-d2ea9876e6d9', '16e4af8e-048d-7be9-5fc1-e14070ff3551', '4b836ae6-2352-73f0-94e8-b570764113b4', '9a5ce3cb-8a63-60ed-c8b1-ef00d666fe06'], 'PV_ramdisk': '', 'memory_dynamic_min': 8589934592L, 'name_label': '10_xxxxx', 'VCPUs_at_startup': 1, 'HVM_boot_params': {'order': 'c'}, 'platform': {'videoram': '4', 'hpet': '0', 'stdvga': '0', 'vnclisten': '0.0.0.0', 'loader': '/usr/lib/xen/boot/hvmloader', 'vncconsole': '1', 'serial': 'pty', 'vncunused': '1', 'xen_platform_pci': '1', 'monitor': '0', 'boot': 'c', 'rtc_timeoffset': -967, 'vncpasswd': 'XXXXXXXX', 'pci': [], 'pae': '1', 'vpt_align': '1', 'hap': '1', 'viridian': '0', 'acpi': '1', 'localtime': '0', 'timer_mode': '0', 'vnc': '1', 'nographic': '0', 'pci_msitranslate': '1', 'apic': '1', 'usb': '0', 'guest_os_type': 'default', 'device_model': '/usr/lib/xen/bin/qemu-dm', 'keymap': 'fr', 'pci_power_mgmt': '0', 'xauthority': '//.Xauthority', 'isa': '0'}, 'PV_kernel': '', 'console_refs': ['db501a0b-36a5-a080-dab2-d42bace0b21b', 'eba3a0c2-a3ff-00cf-4e40-7c6b433801a1'], 'online_vcpus': 12, 'blocked': 0, 'on_xend_stop': 'ignore', 'memory_static_min': 0, 'HVM_boot_policy': 'BIOS order', 'shutdown_reason': 3, 'VCPUs_max': 12, 'start_time': 1348534061.3324931, 'memory_static_max': 8589934592L, 'actions_after_shutdown': 'destroy', 'on_xend_start': 'ignore', 'crashed': 0, 'memory_dynamic_max': 8589934592L, 'actions_after_suspend': '', 'is_a_template': False, 'PV_bootloader_args': '-q', 'is_control_domain': False, 'uuid': 'c33d113b-46b3-91d3-0984-8c8b192e23c3', 'cpu_time': 22146.567213627, 'shadow_memory': 76, 'dying': 0, 'vcpu_avail': 4095, 'notes': {'SUSPEND_CANCEL': 1}, 'other_config': {}, 'auto_power_on': False, 'running': 0, 'actions_after_reboot': 'restart', 'vif_refs': ['ee5890ab-345b-479b-1504-f3a9405d4dbf'], 'target': 0, 'vtpm_refs': [], 's3_integrity': 1, 'devices': {'cd42c91a-1f15-053e-78c4-d2ea9876e6d9': ('vbd', {'uuid': 'cd42c91a-1f15-053e-78c4-d2ea9876e6d9', 'bootable': 0, 'devid': 832, 'driver': 'paravirtualised', 'dev': 'hdb', 'uname': 'file:/var/ovs/mount/58F85FD535AC460495D6CD8D56EF0E94/running_pool/10_xxxxx/JDEdwards.img', 'mode': 'w'}), 'eba3a0c2-a3ff-00cf-4e40-7c6b433801a1': ('console', {'location': '14', 'devid': 0, 'protocol': 'vt100', 'uuid': 'eba3a0c2-a3ff-00cf-4e40-7c6b433801a1', 'other_config': {}}), 'ee5890ab-345b-479b-1504-f3a9405d4dbf': ('vif', {'bridge': 'xenbr1', 'mac': '00:16:3E:03:AF:B3', 'devid': 0, 'type': 'ioemu', 'uuid': 'ee5890ab-345b-479b-1504-f3a9405d4dbf'}), '4b836ae6-2352-73f0-94e8-b570764113b4': ('vbd', {'uuid': '4b836ae6-2352-73f0-94e8-b570764113b4', 'bootable': 0, 'devid': 2048, 'driver': 'paravirtualised', 'dev': 'sda', 'uname': 'file:/var/ovs/mount/58F85FD535AC460495D6CD8D56EF0E94/running_pool/10_xxxxx/Backup.img', 'mode': 'w'}), 'db501a0b-36a5-a080-dab2-d42bace0b21b': ('vfb', {'vncunused': 1, 'other_config': {'vncunused': 1, 'vncpasswd': 'XXXXXXXX', 'vnclisten': '0.0.0.0', 'vnc': '1'}, 'vnc': '1', 'uuid': 'db501a0b-36a5-a080-dab2-d42bace0b21b', 'vnclisten': '0.0.0.0', 'vncpasswd': 'XXXXXXXX', 'location': '0.0.0.0:5901', 'devid': 0}), '0b8eb7e0-91cb-1dd8-93ba-92b1a3ff26b3': ('vbd', {'uuid': '0b8eb7e0-91cb-1dd8-93ba-92b1a3ff26b3', 'bootable': 1, 'devid': 768, 'driver': 'paravirtualised', 'dev': 'hda', 'uname': 'file:/var/ovs/mount/58F85FD535AC460495D6CD8D56EF0E94/running_pool/10_xxxxx/System.img', 'mode': 'w'}), '16e4af8e-048d-7be9-5fc1-e14070ff3551': ('vbd', {'uuid': '16e4af8e-048d-7be9-5fc1-e14070ff3551', 'bootable': 0, 'devid': 5696, 'driver': 'paravirtualised', 'dev': 'hdd', 'uname': 'file:/var/ovs/mount/58F85FD535AC460495D6CD8D56EF0E94/running_pool/10_xxxxx/MSSQL.img', 'mode': 'w'}), '9a5ce3cb-8a63-60ed-c8b1-ef00d666fe06': ('vbd', {'uuid': '9a5ce3cb-8a63-60ed-c8b1-ef00d666fe06', 'bootable': 0, 'devid': 5632, 'driver': 'paravirtualised', 'dev': 'hdc:cdrom', 'uname': '', 'mode': 'r'})}, 'PV_superpages': 0})
  [2012-09-25 15:22:20 8235] DEBUG (XendDomainInfo:2327) XendDomainInfo.constructDomain
  [2012-09-25 15:22:20 8235] DEBUG (balloon:181) Balloon: 3208900 KiB free; need 4096; done.
  [2012-09-25 15:22:20 8235] DEBUG (XendDomain:452) Adding Domain: 24
  [2012-09-25 15:22:20 8235] DEBUG (XendDomainInfo:2528) XendDomainInfo.initDomain: 24 256
  Any idea ???

  if it is really urgent, contact Oracle support. you are paying for it.
  here you are not paying for any body. so be patient for volunteers responses.
  we cannot simply understand why performance will be degraded after upgrade.there could be many factors involving.
  metalink provides good doc to debug this problem. please go through it.
  about memory increasing and all, we cant decide on that.
  generate AWR report and use ADDM and follow those recommendations.
  If you dont know how to generate statspack report or AWR report dont ask here,instead search in this forum (before asking) or in google.