Xserve Bad MAC address - Unable to reach DNS

Similar Messages

• Mac Mini unable to reach NAS while MacBook Air can

  Hi Everyone,
  I've got an issue with my LAN. One computer on the LAN, a Mac Mini, is unable to reach the NAS even though all other devices can.
  The setup is nothing exotic. It's a home wifi router from my local telco provider. On the Cabled interface I have a NAS, on the Wifi side I have several devices amongst which a Mac Mini and a Macbook Air. All IP addresses are handed out through DHCP. The DHCP server is set to assign a fixed address to both the NAS and the Mac Mini.
  The Macbook and the Mac Mini can see each other just fine, the Macbook can access the NAS but the Mini can not. The Mini has no other issues to speak of, it can access everything else just fine.
  The issue appears intermittent but I have not found a pattern. Rebooting the NAS, Mini or router individually had no effect. Below is a log of commands and output from the mac mini.
  What should I be looking for to troubleshoot this appropriately?
  [admin@htpc] ~ $ system_profiler SPSoftwareDataType
  Software:
      System Software Overview:
        System Version: OS X 10.8.4 (12E55)
        Kernel Version: Darwin 12.4.0
        Boot Volume: Macintosh HD
        Boot Mode: Normal
        Computer Name: HTPC
        User Name: admin (admin)
        Secure Virtual Memory: Enabled
        Time since boot: 25 minutes
  [admin@htpc] ~ $ ifconfig
  lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> mtu 16384
          options=3<RXCSUM,TXCSUM>
          inet6 fe80::1%lo0 prefixlen 64 scopeid 0x1
          inet 127.0.0.1 netmask 0xff000000
          inet6 ::1 prefixlen 128
  gif0: flags=8010<POINTOPOINT,MULTICAST> mtu 1280
  stf0: flags=0<> mtu 1280
  en0: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
          options=2b<RXCSUM,TXCSUM,VLAN_HWTAGGING,TSO4>
          ether 10:9a:dd:6d:8b:b7
          media: autoselect (none)
          status: inactive
  en1: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
          ether 10:9a:dd:ba:d4:96
          inet6 fe80::129a:ddff:feba:d496%en1 prefixlen 64 scopeid 0x5
          inet 192.168.1.19 netmask 0xffffff00 broadcast 192.168.1.255
          media: autoselect
          status: active
  fw0: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 4078
          lladdr 70:cd:60:ff:fe:5a:f2:30
          media: autoselect <full-duplex>
          status: inactive
  p2p0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 2304
          ether 02:9a:dd:ba:d4:96
          media: autoselect
          status: inactive
  [admin@htpc] ~ $ arp -a
  livebox.home (192.168.1.1) at 3c:81:d8:d7:bc:a4 on en1 ifscope [ethernet]
  lightmac.home (192.168.1.15) at 10:93:e9:7:a8:66 on en1 ifscope [ethernet]
  droboshare.home (192.168.1.20) at 0:1a:62:0:7:ce on en1 ifscope [ethernet]
  ? (192.168.1.255) at ff:ff:ff:ff:ff:ff on en1 ifscope [ethernet]
  [admin@htpc] ~ $ ping droboshare.home
  PING droboshare.home (192.168.1.20): 56 data bytes
  Request timeout for icmp_seq 0
  Request timeout for icmp_seq 1
  Request timeout for icmp_seq 2
  Request timeout for icmp_seq 3
  Request timeout for icmp_seq 4
  Request timeout for icmp_seq 5
  Request timeout for icmp_seq 6
  Request timeout for icmp_seq 7
  Request timeout for icmp_seq 8
  Request timeout for icmp_seq 9
  ^C
  --- droboshare.home ping statistics ---
  11 packets transmitted, 0 packets received, 100.0% packet loss

  Hi Linc,
  The NAS responds to pings from other devices on the network.
  The Mac Mini has no other issues with regards to accessing the network or the Internet.
  I'll restart the router once more to see if this has an effect, but so far no positive change.

• 3com 3c905C No crash, bad MAC address

  Hello,
  Thankfully, the 3c905C is now in the machine and doesn't crash it. It boots up great, with no errors.
  The next question, is how do I get the NIC to return the correct MAC address for the card?
  netstat -p shows:
  elxl0 hostname 255.255.255.255 SP 00:00:00:00:00:00
  Something tells me this is not the right MAC address, and that this may explain why attempts to bring up an IP on the NIC 'seems' to work, but to the outside world it is unreacheable.
  Someone else posted about nvram, not sure if this could be the issue....
  Mike

  As root you can either do 'ifconfig elxl0' or 'arp `hostname`'. Either should show you the MAC for your card. If you can't get that up, have a look at this thread:
  http://forum.sun.com/thread.jsp?forum=11&thread=5065
  It may be an issue with the driver not loading properly.
  Alex

• T61s, T60s & older model unable to PXE boot to SCCM (MAC address problem)

  Hi, 
  We have a series of T60, T61 & older machines that are unable to PXE boot to SCCM. The T400 & X series & other newer models can boot just fine. 
  After checking further, we realised that only a certain range of MAC addresses are unable to pxe boot i.e 
  00-1A-XXXXXXX
  00-1C-XXXXXXX 
  range.. all the other range of MAC addresses are fine to boot via network. 
  The error when doing network boot  is "bad or missing discovery server list" 
  Also, we are running on SCCM 2012 at the moment. Our branch office who is running SCCM 2008 can have all the machines - regardless of models & brand boot just fine. 
  Any ideas?  Much appreciated. 

  did it obtain IP address from DHCP server? is DNS server address is configured in DHCP scope? can you ping using IP address?
  if drivers are proper will suggest to update it in boot media & enable command line support to make it easy for deployment & troubleshooting.
  Prashant Patil

• Unable to import Mac address book

  I am unable to import my Mac Address Book into Thunderbird.
  In thunderbird, I have gone to tools>import>address book>text file . Address Book is not highlighted, so I am not able to choose it.
  I have also tried to export it from Address Book. In Address Book I have also gone to file>export>export Group vCard, and it's the same porblem, Address Book is not highlighted, so I am not able to choose it.
  What am I missing? Can someone please help?

  I just installed MFFAB 0.7 in a test profile of TB 31.1.1 with no problems, but on Win 7. Perhaps there is an issue installing it on the Mac OS, in which case I would contact the add-on author. Almost all add-ons can be installed on Win, OSX or Linux.
  Otherwise, what happens if you open TB Address Book, Tools/Import, select Address Books, then vCard file, then select the .vcf file created from Mail app?

• A fix for Mac users encountering "unable to reach Adobe servers" error

  Seemingly out of nowhere - i.e., not coinciding with any Mac OS, or app updates - I started getting the "unable to reach Adobe servers" error from the Creative Cloud desktop app.  Signing into the Adobe website was impossible, too.  When I say impossible, I mean it literally - the login window would not display, in Safari or Chrome.
  I'm sure this is posted somewhere here, but just in case, here's the solution that worked for me (posted by phatfish81 on Feb 7, 2015 4:35 PM): 
  https://discussions.apple.com/message/27683395?tstart=0

  Luciac15720559 have you utilized the steps listed in Sign in, activation, or connection errors | CS5.5 and later to locate the cause of the connection error?  If so do you have any questions regarding the steps listed within the document?  What type of network environment is your computer located?

• WGA54G V1 mac address is somehow changed. And i can't get the dns to wor.k.

  I have an old WGA54G. V 1.0, I think.
  I pulled it ou to use it.  I plugged it all in and into ethernet on my switch, it booted up ok and it was connected to my dsl router.
  I noticed it's MAC address in my router.Same as the sticker.
  So all that worked.
  I went into it with it's IP address and it all looked normal, it had it's own MAC address listed on the web UI and all.
  I put in my local wep key and told it to connect to my wireless so I could take it and plug it into the XBOX 360 in the livingroom.
  That all seemed to work OK too. It connected to the wireless.So far so good Then it became unresponsive.  Now this is connected to ethernet and also wireless.
  Connection timed out
  But then I noticed the MAC address listed on the web UI is well, mostly blank.
  1f:c0:00:00:00:00
  I looked in the router again and it's listed as being connected wired and the MAC is correct.
  So what's up with this mac address as listed on the web UI?
  How can that be changed back to normal?
  I reflashed the unit to the latest firmware.
  I hooked it to the Xbox 360
  The Xbox 360 liked it and asked me what the wep key was, all of which I had put on that unit before I hooed it to the xbox 360.  But it connected.
  It seemed ok but it couldn't get an IP from the DHCP so I gave it one outside my DHCP range. Then it complained it couldn't get DNS from the router.  So I gave it the google public DNS 8.8.8.8 and 8.8.4.4.  Then it complained it couldnt' find Xbox Live in DNS.  I tried my ISPs dns.  Same error.
  Can anyone shed light on this?  Am i doing something wrong?

  Did you reset the WGA54G after updating it with the latest firmware? It is recommended to reset the device after upgrading the firmware. Try to reset the WGA54G.
  Here is the steps to reset the router:
  Push the reset button on WGA54G for 30 seconds, turn off the WGA54G wait for 30 seconds and then power it on. Power light should blink when you perform the reset process.
  Before trying to connect your Wireless-G Game Adapter to a wireless network, please know the following: SSID, Wireless Security and/or Network Key. Make sure that the Xbox™ works when wired to the router before proceeding.
  Here is the link for setting up Wireless-G Game Adapter: http://www6.nohold.net/Cisco2/ukp.aspx?pid=93&login=1&vw=1&app=search&articleid=4536&userrole=Linksy...

• Unable to clone zone on solaris11 (MAC address is already in use )

  I have an x86 box running solaris11_FCS which I want to use for cloning zones. I have a 'gold' zone with my exact setup (mysql/tomcat + java application) and I want to be able to clone this so that I can preserve the 'gold' zone and mess around with the clones knowing I can recreate them at will
  I created 2 vnics (one for my gold zone and one for a new clone)
  root>dladm create-vnic -l net0 vnic1
  root>dladm create-vnic -l net0 vnic2
  root>dladm show-vnic
  LINK OVER SPEED MACADDRESS MACADDRTYPE VID
  vnic1 net0 1000 2:8:20:78:4f:ba random 0
  vnic2 net0 1000 2:8:20:6f:87:53 random 0
  // Here is the configuration of my gold zone (created and up&running)
  root>zonecfg -z gold-z1 export
  create -b
  set zonepath=/zones/gold-z1
  set brand=solaris
  set autoboot=true
  set ip-type=exclusive
  add anet
  set linkname=net0
  set lower-link=auto
  set configure-allowed-address=false
  set link-protection=mac-nospoof
  set mac-address=2:8:20:18:e1:98
  end
  //I have created the clone as follows :-
  root>zonecfg -z gold-z1 export -f /zones/new-z2-profile
  // I have edited 'new-z2-profile' to make approp adjustments
  // here is the configuration of the clone
  root>zonecfg -z new-z2 export
  create -b
  set zonepath=/zones/new-z2
  set brand=solaris
  set autoboot=true
  set ip-type=exclusive
  add anet
  set linkname=net0
  set lower-link=auto
  set configure-allowed-address=false
  set link-protection=mac-nospoof
  set mac-address=2:8:20:6f:87:53
  end
  root>
  // I created "/zones/new-z2-template.xml" using "sysconfig create-profile" command on gold-z1
  root>zonecfg -z new-z2 -f /zones/new-z2-profile
  root>zoneadm -z new-z2 clone -c /zones/new-z2-template.xml gold-z1
  /// when I try and boot the clone, I get an error
  root>zoneadm -z new-z2 boot
  zone 'new-z2': failed to create vnic for vnic1: MAC address is already in use
  zoneadm: zone 'new-z2': call to zoneadmd failed
  root>
  what does this error mean? The 2 vnics have different MAC addresses (see output from dladm above) ??
  Also - how can I take the image from my 'gold' zone and install a zone on a separate machine from that image?

  See if this helps:
  iOS: FaceTime is 'Unable to verify email because it is in use'

• Device in the data base getting PXE aborted --unable to find machine using Mac address /resouce iD

  hi
  when I deploy osd to my unknown collection iam getting PXE aborted  ..earlier we used to delete machines from sccm
  by searching query based on Mac address .and clear last pxe advertisement option , but iam finding certain machines getting PXE aborted  shows device in data base when we search these machines using mac address /resouce iD unable to find in sccm or
  sccm data base . I have found some blogs where unknown collection parameters are changed to decommissioned value from "o" to "1"
  but unable to build new unknown collection , its very difficult to delete machines from SCCM console every time when pxe aborted . machines are getting pxe aborted some way its known to SCCM ,its difficult to import machines every time before machines are
  image .is there any permanent solution to override pxe aborted ,even systems are known to SCCM ,we are in sccm 2012 infrastructure
  hoping a positive replay from all technical leads
  thanks in advance
  ankith

  Hi,
  "is there any permanent solution to override pxe aborted ,even systems are known to SCCM ,we are in sccm 2012 infrastructure"
  I think there is not a permanent solution.  
  It could help if you first run the configuration manager report to locate a particular MAC address.
  Best Regards,
  Joyce
  We
  are trying to better understand customer views on social support experience, so your participation in this
  interview project would be greatly appreciated if you have time.
  Thanks for helping make community forums a great place.

• Attendant Console unable to change MAC address

  Hi there,
  I'm having a problem with attendant Console that's rather annoying and i'm unable to get it to work!
  When I attempt to connect using the software the sw returns the error "Not a valid device. Specify another device", and I find that I don't get an option to select anything other than the Person_DeviceProfile rather than the MAC address of the phone they are logged on to. I also found that in the xml file under the data folder in Windows gets populated with Person_DeviceProfile too - but overwriting this with the MAC address of the phone has no effect.
  Interestingly enough is that if I were to log out of EM, and use the extension number of the logged out phone in Attendant Console, it works fine and as expected. It's as if the Device Profile has no concept of access to the phone.
  So far I have made sure that all devices are associated with the ac user; I have associated the physical phone with the End user (as well as the device profile obviously), and also done the usual uninstall/install of sw and restart of services.
  Version is CallManager 6.
  Any other suggestions? Much appreciated!

  We soon discovered two other bugs that were supposedly fixed in previous versions of CUCM.
  We found the following bugs other than the one described here, in version 6.0.1.3000-7:
  - Adding a new device profile to CUCM causes ccm.exe to hang. Symptoms include phones refusing to register correctly when logging in/out of EM, and CFWD all not responding.
  - Device profile Service URL is being overwritten by the actual devices' SURL. The symptom presents itself as the service URL that was being shown on the phone when the phone is EM logged out can still be seen when the phone has been logged into EM.
  All three bugs were fixed when Cisco TAC provided us with patch UCOS_ES_6.0.1.3103-1

• Unable to read MAC address of router at login

  I'm using the following bash function to get the MAC address of the current router when logging in. The script works when I run it after logging in but doesn't work from my login hook (running as root). The script fails even after sleeping for 30 seconds prior to running. I know the interface is up because my mail client is finished checking mail by the time the script pings the router runs the arp command. I could run it as a cron job, but I'd like to understand why it fails during login.
  <pre style="border: 1px solid #ddd; padding-left: .75ex; padding-top: .25em; padding-bottom: .25em; margin-top: .5em; margin-bottom: .5em; margin-left: 1ex; max-width: 80ex; overflow: auto; font-size: 10px; font-family: Monaco, 'Courier New', Courier, monospace; color: #444; background: #eee; line-height: normal">get_route_mac() {
  ip=$(netstat -nrfinet | awk '/^default/{print $2; exit}')
  [[ "$ip" = *.*.*.* ]] || return 1
  [ ${1:-0} -gt 0 ] && ping -nc$1 $ip 2>&1 >/dev/null
  arp -n $ip | sed -n 's/.* at \(.*:.*:.*:.*:.*:.*\) on .*/\1/p'
  </pre>
  The idea is to do certain things when joining different networks. Especially when connected to an unknown network (stolen laptop recovery). I would like to support 10.3.9, so I'm avoiding launchd for now.

  PWD=/
  SHLVL=1
  SECURITYSESSIONID=ceb19270
  _=/usr/bin/printenv
  uid=0(root) gid=0(wheel) groups=0(wheel)
  The script works much better when it can find the required programs. :0)
  which netstat awk ping arp sed
  /usr/sbin/netstat
  /usr/local/bin/awk
  /sbin/ping
  /usr/sbin/arp
  /usr/bin/sed
  <pre style="border: 1px solid #ddd; padding-left: .75ex; padding-top: .25em; padding-bottom: .25em; margin-top: .5em; margin-bottom: .5em; margin-left: 1ex; max-width: 80ex; overflow: auto; font-size: 10px; font-family: Monaco, 'Courier New', Courier, monospace; color: #444; background: #eee; line-height: normal">get_route_mac() {
  ip=$(/usr/sbin/netstat -nrfinet | /usr/local/bin/awk '/^default/{print $2; exit}')
  [[ "$ip" = *.*.*.* ]] || return 1
  [ ${1:-0} -gt 0 ] && /sbin/ping -nc$1 $ip 2>&1 >/dev/null
  /usr/sbin/arp -n $ip | /usr/bin/sed -n 's/.* at (.*:.*:.*:.*:.*:.*) on .*/ /p'
  }</pre>
  Thanks for your help, Bob!

• Runcluvfy.sh stage -pre crsinst: error Unable to reach any of the nodes

  Hii all,
  Well, I've gone through the pre-reqs for trying to install 11G clusterware on RHEL 5.3.
  I'm to the point where i'm trying to run:
  ./runcluvfy.sh stage -pre crsinst -n node1 -verbose
  I get this:
  Performing pre-checks for cluster services setup
  Checking node reachability...
  Node reachability check failed from node "node1 ".
  Check failed on nodes:
  node1
  ERROR:
  Unable to reach any of the nodes.
  Verification cannot proceed.
  Pre-check for cluster services setup was unsuccessful on all the nodes.
  I'm just wanting right now, to install a one node RAC system (I will add servers later as I get them online).
  I've verified that ssh is working (thinking it may be trying to connect to itself by ssh). I have the keys generated and installed...if I connect ssh as the oracle user back to the same machine, it gets me right on with no prompts for passwords.
  nslookup on node1 looks great.
  This box has 2 cards....eth0 and eth1. Right now in the /etc/hosts file, I have node1 to the IP for eth0, and node1-priv set for the IP address eth1.
  I do have a little trouble understanding what the node1-vip is supposed to do or be set. I found the an IP address one higher than for eth0 wasn't being used, and set node1-vip to be that.
  (Can someone explain to me a little more about the vip host?? Is it supposed to somehow point to node1's IP address on eth0 like the regular one does?)
  Since this is a one box, one node install...hoping clusterware and checks are just looking at the /etc/hosts file. I've tried playing around, and setting node1-vip to be the same as node1 (IP)...that doesn't work either.
  One thing I can guess 'might' be wrong. Does runcluvfy use "ping"? I found the oracle user cannot ping this box from this box. The box (node1) can be pinged from outside the box...it is registered on DNS, I can ssh into it no problem, and again, oracle can ssh into himself on same box with keys properly generated).
  I've been looking around, and I just don't see much of what to look at to troubleshoot with this error, I guess everyone gets past the verification the first time with no host unreachable errors?
  I'm a bit weak when it comes to networking. Any help greatly appreciated...suggestions, links...etc!!
  cayenne

  Ok...looks like this was the problem. It appears the SA's, per newer policy, had turned off "ping" for any other user on the box besides root.
  I took a shot in the dark, and had them turn it on (as that ssh'ing and other items to check seemed to work outside the runcluvfy script). They turned on ping. The nodes from the script are now reachable and test positive for equivalency.
  Performing pre-checks for cluster services setup
  Checking node reachability...
  Check: Node reachability from node "node1"
  Destination Node Reachable?
  node1 yes
  Result: Node reachability check passed from node "node1".
  Checking user equivalence...
  Check: User equivalence for user "oracle"
  Node Name Comment
  node1 passed
  Result: User equivalence check passed for user "oracle".
  Pre-check for cluster services setup was unsuccessful on all the nodes.
  I"m guessing that last line...was due to not having the clusterware running on any other boxes?
  Anyway, will try to config. RAC, and get things installed.

• E4200 v2 - Uses multiple MAC addresses for the same device

  This unit seems pretty good at first but on looking at the Web interface I noticed that it was using multiple mac addresses for the same device and showing devices on the lan on the Wireless side and other odd things.
  After a week of running it the home server network started to get erratic, it would seem to all point to dns and dhcp issues in the router.
  Seems the V1 had the same issues that they did not fix on this.
  The Cisco connect software shows 5 devices the Web based utility shows 3??.
  Its pretty bad that they charge nearly $200 and cannot be bothered to finish the unit or address the issues that were in V1.

  I am afraid I didn't get the clear picture of the issue mentioned in the post. Could you please elaborate a little bit? If you connect a device/computer wired and then later you connect it wirelessly. It is obvious that you would get to see two different MAC addresses for the same device, one for the LAN adaptor and other one for WLAN adaptor. If that is what you are referring to?
  Secondly, may I  know, what issues did you face with DNS and DHCP in the router? Is it not able to resolve the DNS or something else or DHCP is not sending IP address to the clients?

• Could not provision the RemoteApp collection. Error: Could not join the domain. Unable to reach the domain.

  Hi
  I am trying to set up an Azure RemoteApp Hybrid solution.
  I have created RemoteApp net and uploaded a custom image and all that is fine.
  When I link my template to my Collection it fails after provisioning for about an hour.
  I recive the following message: Could not provision the RemoteApp collection. Error: Could not join the domain. Unable to reach the domain.
  The join domin works fine and I have tryed with account with different lvl of access to my AD.
  Any suggestion how to solve this?

  Hello Eric,
     I am landing into the same Problem and i read your guidance on this issue. Let me answer it point by point. 
  1. Check the VPN state to ensure it is active or connected state:
  Sundesh:My Azure RemoteApp Virtual Network after successfull S2S configuration shows as Ready. Is that what you mean by Connected State? Earlier to S2S, it was just under connecting state.
  2. Verify your VNET configurations have proper IP address ranges
  Sundesh: The VNET address range, the Local address range and DNS has already been verified twice. In fact the same address ranges(with exception to VNET) are working fine on a VENT config on Azure VM instance. Verified.
  3. Verify your DNS IP configurations are valid, (often this is the problem)
  Sundesh: Yes its done and verified
  4. Verify the credentials entered for domain join are valid.
  Sundesh: Tested these credentials by joining a regular Azure VM to domain and it works there.
  5. Make sure your VPN endpoint that Azure RemoteApp service is connecting to is not blocking traffic.
  Sundesh: Can you please let us know the specific port numbers that we need to consider and i can have it checked with the Network team
  Thanks
  SUndesh

• SMTP 5.4.7 - Delivery expired - unable to reach nameserver on any valid IP

  We recently started having issues delivering email to hotmail.com, aol.com, and amtrak.com addresses (possibly more domains, but
  haven't heard of others yet).  They return the following error (email addresses have been altered):
  Diagnostic information for administrators:
  Generating server: edmironport.internal.edmondok.com
  [email protected]
  #< #5.0.0 smtp; 5.4.7 - Delivery expired (message too old) 'DNS Soft Error looking up aol.com (MX) while asking recursive_nameserver1.parent. Error was: unable to reach nameserver on any valid IP' (delivery attempts: 0)> #SMTP#
  Original message headers:
  Received: from exch01.internal.edmondok.com ([192.168.xxx.xxx])  by
  edmironport.edmondok.com with ESMTP; 29 Dec 2009 09:15:36 -0600
  Received: from exch01.internal.edmondok.com ([192.168.xxx.xxx])
    by edmironport.edmondok.com with ESMTP; 29 Dec 2009 09:15:40 -0600
  Received: from EXCH01.internal.edmondok.com ([fe80::45fe:26d:54cd:6aeb]) by
  EXCH01.internal.edmondok.com ([fe80::xxxx:xxxx:xxxx:xxxx%10]) with mapi; Tue, 29
  Dec 2009 09:15:19 -0600
  From: Internal User <[email protected]>
  To: User <[email protected]>
  Date: Tue, 29 Dec 2009 09:15:18 -0600
  Subject: Blood Drive Today
  Thread-Topic: Blood Drive Today
  Thread-Index: AcqImccN9I6lWOw9QuGSrMji25lA2A==
  Message-ID: [email protected]com
  Accept-Language: en-US
  Content-Language: en-US
  X-MS-Has-Attach:
  X-MS-TNEF-Correlator:
  acceptlanguage: en-US
  Content-Type: multipart/alternative;
              boundary="_000_08B7F743EE3EF44F8B51C43EEB8902C4034FF1F5EXCH01interaled_"
  MIME-Version: 1.0
  X-Auto-Response-Suppress: DR, OOF, AutoReply
  Any ideas as to why this is occuring?  I have the ironport appliance's (C150) DNS pointing to our internal DNS servers.  I am able to resolve all mailservers to IPs via nslookup and can ping hotmail.com's servers, but not aol.com's or amtrak.com's (possibly by their design?).  There are some MX issues with AOL and Amtrak, but not Hotmail.  Any help is appreciated.  Thanks,
  Hans Schroeder | Network Specialist
  City of Edmond | www.edmondok.com
  [email protected]

  /* Style Definitions */
  table.MsoNormalTable
  {mso-style-name:"Table Normal";
  mso-tstyle-rowband-size:0;
  mso-tstyle-colband-size:0;
  mso-style-noshow:yes;
  mso-style-parent:"";
  mso-padding-alt:0cm 5.4pt 0cm 5.4pt;
  mso-para-margin:0cm;
  mso-para-margin-bottom:.0001pt;
  mso-pagination:widow-orphan;
  font-size:10.0pt;
  font-family:"Times New Roman";
  mso-ansi-language:#0400;
  mso-fareast-language:#0400;
  mso-bidi-language:#0400;}
  Hello Hans,
  It looks like your DNS server(s) are overloaded or refusing their job for some other reason.
  What is the response of your DNS servers when you request the problematic domains? Please try from Ironport nslookup and from any other nslookup/dig that is using the same DNS servers.
  One thing that once bothered us was that our DNS servers where allowed to perform UDP queries only, some MX targets with a lot (in this case 18) of servers in their MX records exceeded the UDP packet size and DNS tried to switch over to TCP. that traffic was dropped so the DNS server never got it's result back. I think the MX records of AOL and Amtrak are not that bid (4 and 3 mail servers) but maybe it's a start.
  You can also try to enable query logging on your DNS servers and check the results of that.
  Good luck,
  Steven