Site to Site Replication only works for a few hours in the morning (each morning)

We have been fighting an odd active directory replication issue for over a month now and I am hoping that someone can provide some insight. We have 5 AD servers in the following orientation...
Site HQ
- PRIME running Windows 2008 R2
- AD2 running Windows 2008 R2
Site COLO
- AD3 running Windows 2008 (not R2)
- AD3NEW running Windows 2008 R2
Site BRANCH
- AD4 running Windows 2008 R2
The domain is at the Windows 2008 Functional Level.
There are always on site to site VPNs between all 3 sites and IP Intersite Transports Site Links defined for all 3 possible connections with Cost of 100 and interval of 15. Each IP site link is configured with a schedule of available all day long.
Every day the following sequence of events happens...
* Somewhere between 6:30 and 7:30am all the servers start to sync with each other perfectly. We can make AD changes and they replicate across all servers without issues. During this time all the repadmin commands work well across all servers.
* Typically somewhere in the 10:30 to 11:30am time frame we start to get errors replicating data - specifically between the HQ and COLO sites. This manifests itself as Event 1232 Call Timeout from the DC RPC Client and and Event 1925 from the KCC. Additionally
repadmin commands fail when attempting to connect to the BRANCH servers.
* For the rest of the day the intra-site replication between PRIME and AD2 work fine - and periodically the BRANCH AD server is updated as well. But the COLO sites remain unreplicated and continue to get errors for the remainder of the day. While this down
- the ability to ping and remote desktop between the servers is perfectly fine - so even if there were a network hiccup that happens - the network is stable for hours without the sites recovering.
* Magically the next morning around 6:30 and 7:30am all the servers are able to replicate without issue and we get 3-5 hours of immediate replication and then it happens again.
As I stated above - there is always on site-to-site VPN connections between all 3 sites that are actively monitored by PRTG. These connections remain open all day long. The Site topology has the COLO servers attempting to replicate with the HQ servers -
and both sites have 100MB data connections that remain active during the entire time. Additionally PRTG bandwidth monitoring shows that these links have no spikes in traffic anywhere near the max capacity of those links during the time that the outages begin
nor during the rest of the day.
Does anyone have any insight as to why these servers would stop communicating with each other about the same time every day and report errors? Also why it would magically start to work again each day without any changes being made to the network or the AD
configuration?
This has been going on for over a month now. When it first started to happen we had 1 Windows 2008 server and 2 Windows 2003 servers in the HQ. We phased out the Windows 2003 servers and upgraded the functional level to Windows 2008 - that did not solve
the problem. We tried to put a new Windows 2008 R2 server out at the COLO site hoping that if it was limited to the other server then only the one server would be impacted. But now they both appear to be having connectivity issues at the same time.
It is as if there is one hung connection that is blocking all the other syncs to this site and then someone each morning that bottleneck is released.
Thank you in advance for any direction you can provide.

As was stated above - ALL Domain Controllers have direct access to each other through Firewall to Firewall site to site VPNs and the Inter-Site Transport Links mirror that setup. So from the OS perspective any of the AD servers can directly connect to any
other one.
There are 3 IP Inter-Site Transport Links defined
HQ < - > COLO   (Contains HQ and COLO sites) Cost 100  Replication Interval 15
HQ < - > BRANCH  (Contains HQ and Branch sites) Cost 100 Replication Interval 15
COLO < - > BRANCH  (Contains COLO and Branch sites) Cost 100 Replication Interval 15
And on IP Inter-Site Transports "Bridge all site links" is enabled (although disabling it doesn't fix this problem as we have already tried that).
Right now the servers are claiming (via Active Directory) to be unable to replicate with each other. But I am able to do direct pings as well as open stream sockets using "telnet <otherserver> <port>" on ports 3268 (gc), 88 (kerberos),
389 (ldap), 135 (replication), 636 (ldap ssl), 53 (DNS). So there is nothing that I can see between the servers that is blocking TCP connectivity.
I cannot seem to make this any clearer. The sites are 100% functional and responsive for several hours per day - and then mysteriously go into a state of complete denial for a lack of a better word for the rest of the day - only to return back to normal
again reliably each morning.
It is as if the sites get into a mode where something in the RPC area are simply refusing to talk to each other despite the servers having full access at the network level.
Another data point to add to this mystery. While it is in the state where the HQ and COLO servers are refusing to sync with each other. You can launch the AD Users and Computers snap-in, right mouse click on the domain, change the Current Directory server
and all 5 servers show up as ONLINE. You can pick any of them (including the one that is unable to replicate with) and make a direct change on that server.
So while the servers are complaining about being unable to talk to each other - the snap in is connecting between those servers and is able to modify it without issue.
Conversely - when the replication is failing the DNS management tool is unable to connect to the remote servers (i.e. COLO can show itself and the other COLO server. HQ can show PRIME, DC2, and DC4 without issue. But no overlap).
Not sure that helps at all - but shows our frustration when two servers refuse to replicate but you can easily remote connect from one to the other and make the change.

Similar Messages

  • Safari and firefox stop working after a few minutes of browsing, regardless of what site I'm on. I have to restart my computer to get internet access again but it only works for a few more minutes, then I have to restart again. Please help!

    Safari and firefox stop working after a few minutes of browsing, regardless of what site I'm on. I have to restart my computer to get internet access again but it only works for a few more minutes, then I have to restart again. I don't get a spinning ball, it just stops working at whatever page it's on. I can close the program just fine but when I re-open it, either safari or firefox, it freezes trying to load the hompage. This started a few days ago after trying to stream a movie on my computer. I'm on a Mac Air OS X Version 10.6.8 and have downloaded all updates. When I go into finder, it says I have over 80 gigs available. Is there some other memory cache that I need to check? Thanks so much for your help.

    ejwoodall wrote:
    It's not a router problem as I explained in my post. If it was a router problem then I wouldn't have the problem everywhere I go. It is an issue with the software.
    Then I guess the millions of people running 10.5.7 with no issues are just hallucinating that their machines are working fine?
    I'm not trying to belittle your issues; you're certainly having them and I know first hand how annoying an intermittent AirPort issue can be. (In fact, mine was due to an AirPort driver bug that no one else seemed to suffer from.)
    The single best diagnostic you could do is take your system running 10.5.7 to an Apple Store, and try using their in-store network.
    If your machine performs flawlessly, it may be a router issue.
    If your machine has connectivity issues there, it may be a hardware problem with your machine.
    There have been numerous people in multiple threads over the years who swore that an update was buggy because things used to work, but returned later to sheepishly admit that they took their machine in, a problem was found and fixed, and now their Mac works flawlessly with the newer software.
    But simply reinstalling 10.5.5 in no way means the explanation of how firmware bugs may be at play here is incorrect.
    In the context of that explanation, all you've done is possibly reinstall software that asks to add "2 + 3."

  • HT4059 I got definition of a word by tapping twice on a word. But it only works for a few time. Ater i tap a word for speak, the feature for definition does appear anymore?

    I got definition of a word by tapping twice on a word. But it only works for a few times. Ater i tap a word for speak, the feature for definition does not appear anymore?

    I got definition of a word by tapping twice on a word. But it only works for a few times. Ater i tap a word for speak, the feature for definition does not appear anymore?

  • I downloaded the new software on my iphone 4 and it worked for a few hours and now won't turn on

    i downloaded the new software on my iphone 4 and it worked for a few hours and now won't turn on

    Reset, hold both home and power buttons until the iPhone begins to restart. If still nothing, connect to Wall Charger for 10 minutes, iPhone may turn ON itself. If still nothing keep on charger and Reset. It can take about 20 seconds of holding both buttons while on charger.

  • My computer struggles to log in. I have to shut it down each time the computer has been shut and asleep for a few hours. The first day it happened my desktop photo was reset.

    My computer struggles to log in. I have to shut it down each time the computer has been shut and asleep for a few hours. The first day it happened my desktop photo was reset.

    Have you tried a PRAM reset?
    http://support.apple.com/kb/HT1379
    Ciao.

  • My reset iCloud password only works for a few days

    I have a MacBookPro and iPhone 4. About 2 months ago, I began to get notices on the MBP that there was a password problem with my iCloud/AppleID.
    When I try to log in using my current password, I get a reject telling me that the password is incorrect (also I'm unable to dl updates on the iPhone4 at this point).
    I'll go to forgotmypassword, go through the security questions, reset the password and can now log in as normal (I can now dl updates on the iPhone4)..but this fix will only "last" for a few days. I reset it today 1/7/14..the last reset was 12/30.

    This should fix the issue:
    Special thanks to Roger Wilmut for providing the detailed instructions below.
    https://discussions.apple.com/people/Roger%20Wilmut1
    1. Shut down Mail.  Next, deselect "iCloud Mail" in the iCloud preferences pane in System Preferences FIRST.  If not, it will automatically pre-populate the wrong p9X.mail.me.com server names again overwriting all your work.
    2. Now restart Mail and go to preferences.  If "iCloud" mail is still showing, select it and click on the "-" at the bottom to remove it.
    3. Now follow the instructions here: http://www.wilmut.webspace.virginmedia.com/notes/icloudmail.html (disregard that this is for Snow Leopard, it DOES work on Lion) paying attention to the use of the "option" key when needed to avoid Mail automatically "creating" the account and closing out the preferences window.
    4. Ensure the correct server names of "imap.mail.me.com and smtp.mail.me.com" are still there and close Mail preferences and now select "get mail".  It may prompt one last time for your iCloud password, enter it and you are done.
    Good Luck.

  • I have reset this firefox daily... it works for a few hours, then will not open a website for 15 mins, and I cannot get emails addresses to show up when sending

    This new updated firefox is awful.. I cannot get websites to open for about 10-15 mins it keeps showing S1 Yimg.com ans s.ytimg, and says shockwave plug in is bad, and all other kinds of crap..
    The connection was reset.. I got this msg below and had to reopen this page in another window, and reload it to be able to write on this now... and my network connection is working xlnt, and there is no firewall blocking firefox...
    The connection to the server was reset while the page was loading.
    The site could be temporarily unavailable or too busy. Try again in a few moments.
    If you are unable to load any pages, check your computer's network connection.
    If your computer or network is protected by a firewall or proxy, make sure that Firefox is permitted to access the Web.
    Try Again
    I never had this until I got all these new automatic updates with this new firefox.. I did a system restore, which helped for 1 day, and I have had to reset firefox daily to use it.. And now it took 10 mins to open this page, and then I had to reload this page twice to write this..
    I've used firefox for years, and never never had any problems with it. And I see alot of similiar complaints like mine on this forum now..
    What suggestions do you have for me NOW... much appreciated, Cyrus

    I uninstalled all the old flash players and installed the flash player v16.0.0.235 from the Adobe website posted.
    And Firefox is still the same. It takes forever to web search, It takes a long time to get on Youtube, and a longer time now to open a video..
    It's actual worse since I upgraded to the newer flash player.
    I'll do one more fifefox reset (this is the 8th one in a week)
    and it works for a few hrs, and goes back to the slowww way of working...
    Many of my friends I talked to about this, told me to switch over to Chrome like they had to do..
    I guess that's the only alternative now..
    Thankyou all for your help and suggestions anyway.. :)

  • Just submitted a podcast to i-tunes, when users are dowloaded it, images are only appering for a few seconds not the entire length of the relvant chapter.

    Built in garage band with artwork and chapters - saved as an podcast and set live to i-tunes (and checked in quicktime) but once downloaded images only appear for a few seconds.

    I subscribed to your podcast and downloaded episode 20 (in iTunes): it plays perfectly normally and the images appear as you would expect. I also dragged it out to the Desktop and opened it in the Quicktime Player and again everything was normal.
    The problem you do have is that you have not entered a duration for this and a few other episodes, so that the default 1 second is there. As a result when you play the episode in the Store page (as opposed to subscribing) it only plays the first second.
    As to the problem you describe, I can't explain it - there's nothing wrong with the file, so it must be a local issue with your iTunes.

  • Speakers are only working for a few seconds at a time

    Hi,
    My hard drive crashed had it replaced by apple.  They did that and put the lion operating system on it....... now i have speakers that work for only a few minutes or sometimes not at all.... when I go into settings it is telling me that i have no outputs to select.... i am not overly computer savoy any help is appreciated.
    thanks

    If this MB was just recently serviced by Apple, I would take it right back and make them aware. Also, read this Apple troubleshooting article: http://support.apple.com/kb/TS1574

  • After charging iPad completely I can only use for a few hours of games or searching web and I have to charge it?

    After charging iPad completely I can only use a few hours and then I have to charge it all over again?

    Games can be very taxing for the iPad and thus drain the battery quickly.
    How many hours does the battery last? What games are you playing?
    ~Lyssa

  • Multi Master Replication - Only works for some tables?

    I have a multi master replication between a 9i and an 816 database.
    All the tables are in the same tablespace and have the same owner. The replication user has full privs on all the tables.
    When setting up the replication some tables create properly, but others fail with a "table not found" error.
    Ideas anyone ?
    Andrew

    You said that you have a 9i replicated with a 816.
    I try the same thing but with two 9i enterprise version databases, free downloaded from www.oracle.com.
    when i ran
    exec dbms_repcat.add_master_database(gname=>'groupname', master=>'replica_link')
    this error appears
    ERROR at line 1:
    ORA-23375: feature is incompatible with database version at replica_link
    ORA-06512: at "SYS.DBMS_SYS_ERROR", line 86
    ORA-06512: at "SYS.DBMS_REPCAT_MAS", line 2159
    ORA-06512: at "SYS.DBMS_REPCAT", line 146
    ORA-06512: at line 1
    please help me if u have any idea.

  • 5.0 update loads whether I want it to or not, and afterwards is open, but does not appear open on the screen, so I have to uninstall Firefox and reinstall 4.o, which works for a few days until the 5.0 update loads by itself, and I repeat the process.

    After Firefox automatically updates to 5.0, I cannot open Firefox from the desktop icon, because it's apparently already open, yet I don't see it, and can't find it! It has effectively rendered the internet unusable for me until I uninstall Firefox, and then reinstall 4.0 without the update 5.0. This only lasts a few days before it automatically updates again.
    A backup question is, in the event you have no idea what's going on, is how do I prevent 5.0 from automatically installing itself?

    First of all, are you aware that Spry is a dead technology and the code you're wrestling with is over 7 years old and will not work with mobile touchscreen devices (essential in today's web world)?
    Even though it's included in older versions of Dreamweaver, Adobe formally abandoned Spry last year
    http://blogs.adobe.com/dreamweaver/2012/08/update-on-adobe-spry-framework-availability.htm l'
    Point being, few people will advise you to continue along this Spry path.
    You're better off investing your energy in a modern up-to-date menu system.
    Free ones try
    http://forums.adobe.com/message/5070444
    If funds will allow then try
    http://www.projectseven.com/products/menusystems/pmm3/index.htm

  • My trial version ps cs5 worked for a few hours, now there are errors?

    I am trying out cs5, and might possibly buy it soon. I want to try some of the new features while cleaning up an old pixelated logo. last night i was able to use ai. and ps. no problemo, but this morning every time i open a new file to the clipboard size of my image, this error signature and a lot of other stuff i cant copy and paste pops up ...
    AppName: photoshop.exe     AppVer: 12.0.0.0     ModName: photoshop.exe
    ModVer: 12.0.0.0     Offset: 017950a9
    anyone?

    That's not enough info... If there is "otehr stuff" then the answer is probably there somewhere. And without providing info on your system hardware, scanners, plug-ins, otehr software and other things like virus scanners/ security tools that might interfere, even that extra info is useless. You will have to tell us a lot more than just saying that it stopped working...
    Mylenium

  • HT1766 i have been trying to update my wifes iphone 4 for a few hours now. the update it fine i cant seem to get the phnoe off the the et up phone sceen! help

    ok my last back up was on itunes @3 :22 now its connected with itunes but i cant get the phone back to making call yet why?

    Why not?
    What is displaying on the screen?

  • Safari auto fill only works for some sites on my new iMac

    Hi, Safari autofill only works for a few websites on my new iMac. Apple Care tried to change some settings which did not help. Autofill is checked in preference and we worked on Keychain access.
    Thank you for your advice.

    Select your card in Address Book. Then select
    Card ▹ Make This My Card
    from the menu bar. In Safari, select
    Safari ▹ Preferences ▹ AutoFill ▹ AutoFill web forms: Using info from my Address Book card.

Maybe you are looking for