none
Синхронизация двух контроллеров домена RRS feed

  • Общие обсуждения

  •  

    Коллеги, день добрый!

     

    Есть такой вопрос:

     

    Имеется офис А и офис Б.

     

    В офисе А контроллер домена на 2003 R2. На нем два интерфейса: один LAN, другой WAN.

     

    Домен contoso.local

     

    LAN - 10.0.0.1

    mask - 255.0.0.0

     

    WAN - 192.168.0.1

    mask - 255.255.255.0

     

     

    В офисе Б так же контроллер домена на 2003 R2. На нем так же два интерфейса:  один LAN, другой WAN.

     

    Домен contoso.local

     

    LAN - 10.1.0.1

    mask - 255.255.0.0

     

    WAN - 192.168.0.2

    mask - 255.255.255.0

     

     

    Почему не проходит репликация?? Не доводилось делать такие вещи.

     

    Пытаюсь смоделировать ситуацию на виртуальных машинах.

     

    21 ноября 2008 г. 9:27

Все ответы

  • результат

    ipconfig /all

    netdiag

    dcdiag

    tracert сервера1 от сервера2

    tracert сервера2 от сервера1

    с обоих серверов в студию.

    21 ноября 2008 г. 9:52
  • Это с первого:

     

     

    C:\Documents and Settings\Administrator>ipconfig /all

    Windows IP Configuration

       Host Name . . . . . . . . . . . . : dc01
       Primary Dns Suffix  . . . . . . . : contoso.local
       Node Type . . . . . . . . . . . . : Unknown
       IP Routing Enabled. . . . . . . . : No
       WINS Proxy Enabled. . . . . . . . : No
       DNS Suffix Search List. . . . . . : contoso.local

    Ethernet adapter LAN:

       Connection-specific DNS Suffix  . :
       Description . . . . . . . . . . . : Intel(R) PRO/1000 MT Network Connection
       Physical Address. . . . . . . . . : 00-0C-29-DF-7C-62
       DHCP Enabled. . . . . . . . . . . : No
       IP Address. . . . . . . . . . . . : 10.0.0.2
       Subnet Mask . . . . . . . . . . . : 255.0.0.0
       Default Gateway . . . . . . . . . : 10.0.0.2
       DNS Servers . . . . . . . . . . . : 192.168.0.1

    Ethernet adapter WAN:

       Connection-specific DNS Suffix  . :
       Description . . . . . . . . . . . : Intel(R) PRO/1000 MT Network Connection #
    2
       Physical Address. . . . . . . . . : 00-0C-29-DF-7C-6C
       DHCP Enabled. . . . . . . . . . . : No
       IP Address. . . . . . . . . . . . : 192.168.0.1
       Subnet Mask . . . . . . . . . . . : 255.255.255.0
       Default Gateway . . . . . . . . . :

    C:\Documents and Settings\Administrator>

     

     


    C:\Program Files (x86)\Support Tools>netdiag

    ......................................

        Computer Name: DC01
        DNS Host Name: dc01.contoso.local
        System info : Microsoft Windows Server 2003 (Build 3790)
        Processor : EM64T Family 6 Model 15 Stepping 11, GenuineIntel
        List of installed hotfixes :
            Q147222


    Netcard queries test . . . . . . . : Passed

     

    Per interface results:

        Adapter : WAN

            Netcard queries test . . . : Passed

            Host Name. . . . . . . . . : dc01
            IP Address . . . . . . . . : 192.168.0.1
            Subnet Mask. . . . . . . . : 255.255.255.0
            Default Gateway. . . . . . :
            Dns Servers. . . . . . . . :

            AutoConfiguration results. . . . . . : Passed

            Default gateway test . . . : Skipped
                [WARNING] No gateways defined for this adapter.

            NetBT name test. . . . . . : Passed
                No names have been found.

            WINS service test. . . . . : Skipped
                There are no WINS servers configured for this interface.

        Adapter : LAN

            Netcard queries test . . . : Passed

            Host Name. . . . . . . . . : dc01
            IP Address . . . . . . . . : 10.0.0.2
            Subnet Mask. . . . . . . . : 255.0.0.0
            Default Gateway. . . . . . : 10.0.0.2
            Dns Servers. . . . . . . . : 192.168.0.1


            AutoConfiguration results. . . . . . : Passed

            Default gateway test . . . : Passed

            NetBT name test. . . . . . : Passed
                No names have been found.

            WINS service test. . . . . : Skipped
                There are no WINS servers configured for this interface.


    Global results:


    Domain membership test . . . . . . : Passed


    NetBT transports test. . . . . . . : Passed
        List of NetBt transports currently configured:
            NetBT_Tcpip_{F078BE10-EC1B-4501-B5A9-ED886DABBC1D}
            NetBT_Tcpip_{9F509D8C-43B1-469C-AB9B-15E68577759C}
        2 NetBt transports currently configured.


    Autonet address test . . . . . . . : Passed


    IP loopback ping test. . . . . . . : Passed


    Default gateway test . . . . . . . : Passed


    NetBT name test. . . . . . . . . . : Passed
        [WARNING] You don't have a single interface with the <00> 'WorkStation Servi
    ce', <03> 'Messenger Service', <20> 'WINS' names defined.


    Winsock test . . . . . . . . . . . : Passed


    DNS test . . . . . . . . . . . . . : Failed
              [WARNING] Cannot find a primary authoritative DNS server for the name
                'dc01.contoso.local.'. [ERROR_TIMEOUT]
                The name 'dc01.contoso.local.' may not be registered in DNS.
        [FATAL] Could not open file C:\WINDOWS\system32\config\netlogon.dns for read
    ing.
        [FATAL] No DNS servers have the DNS records for this DC registered.


    Redir and Browser test . . . . . . : Failed
        List of NetBt transports currently bound to the Redir
            NetBT_Tcpip_{F078BE10-EC1B-4501-B5A9-ED886DABBC1D}
            NetBT_Tcpip_{9F509D8C-43B1-469C-AB9B-15E68577759C}
        The redir is bound to 2 NetBt transports.

        List of NetBt transports currently bound to the browser
            NetBT_Tcpip_{F078BE10-EC1B-4501-B5A9-ED886DABBC1D}
            NetBT_Tcpip_{9F509D8C-43B1-469C-AB9B-15E68577759C}
        The browser is bound to 2 NetBt transports.
        [FATAL] Cannot send mailslot message to 'CONTOSO*' via browser. [ERROR_INVAL
    ID_FUNCTION]


    DC discovery test. . . . . . . . . : Passed


    DC list test . . . . . . . . . . . : Passed


    Trust relationship test. . . . . . : Skipped


    Kerberos test. . . . . . . . . . . : Failed
        [FATAL] Cannot lookup package Kerberos.
        The error occurred was: (null)


    LDAP test. . . . . . . . . . . . . : Passed
        [WARNING] Failed to query SPN registration on DC 'dc01b.contoso.local'.


    Bindings test. . . . . . . . . . . : Passed


    WAN configuration test . . . . . . : Skipped
        No active remote access connections.


    Modem diagnostics test . . . . . . : Passed

    IP Security test . . . . . . . . . : Skipped

        Note: run "netsh ipsec dynamic show /?" for more detailed information


    The command completed successfully

    C:\Program Files (x86)\Support Tools>

     

     

     

     

     

     

    C:\Program Files (x86)\Support Tools>dcdiag

    Domain Controller Diagnosis

    Performing initial setup:
       Done gathering initial info.

    Doing initial required tests

       Testing server: OfficeA\DC01
          Starting test: Connectivity
             ......................... DC01 passed test Connectivity

    Doing primary tests

       Testing server: OfficeA\DC01
          Starting test: Replications
             ......................... DC01 passed test Replications
          Starting test: NCSecDesc
             ......................... DC01 passed test NCSecDesc
          Starting test: NetLogons
             ......................... DC01 passed test NetLogons
          Starting test: Advertising
             ......................... DC01 passed test Advertising
          Starting test: KnowsOfRoleHolders
             ......................... DC01 passed test KnowsOfRoleHolders
          Starting test: RidManager
             ......................... DC01 passed test RidManager
          Starting test: MachineAccount
             ......................... DC01 passed test MachineAccount
          Starting test: Services
             ......................... DC01 passed test Services
          Starting test: ObjectsReplicated
             ......................... DC01 passed test ObjectsReplicated
          Starting test: frssysvol
             ......................... DC01 passed test frssysvol
          Starting test: frsevent
             ......................... DC01 passed test frsevent
          Starting test: kccevent
             An Warning Event occured.  EventID: 0x8000051B
                Time Generated: 11/21/2008   12:53:45
                Event String: The Knowledge Consistency Checker (KCC) has
             An Warning Event occured.  EventID: 0x8000061E
                Time Generated: 11/21/2008   12:53:45
                Event String: All domain controllers in the following site that
             An Error Event occured.  EventID: 0xC000051F
                Time Generated: 11/21/2008   12:53:45
                Event String: The Knowledge Consistency Checker (KCC) has
             An Warning Event occured.  EventID: 0x80000749
                Time Generated: 11/21/2008   12:53:45
                Event String: The Knowledge Consistency Checker (KCC) was
             An Warning Event occured.  EventID: 0x8000061E
                Time Generated: 11/21/2008   12:53:45
                Event String: All domain controllers in the following site that
             An Error Event occured.  EventID: 0xC000051F
                Time Generated: 11/21/2008   12:53:45
                Event String: The Knowledge Consistency Checker (KCC) has
             An Warning Event occured.  EventID: 0x80000749
                Time Generated: 11/21/2008   12:53:45
                Event String: The Knowledge Consistency Checker (KCC) was
             An Warning Event occured.  EventID: 0x80000785
                Time Generated: 11/21/2008   12:54:07
                Event String: The attempt to establish a replication link for
             ......................... DC01 failed test kccevent
          Starting test: systemlog
             ......................... DC01 passed test systemlog
          Starting test: VerifyReferences
             ......................... DC01 passed test VerifyReferences

       Running partition tests on : ForestDnsZones
          Starting test: CrossRefValidation
             ......................... ForestDnsZones passed test CrossRefValidation

          Starting test: CheckSDRefDom
             ......................... ForestDnsZones passed test CheckSDRefDom

       Running partition tests on : DomainDnsZones
          Starting test: CrossRefValidation
             ......................... DomainDnsZones passed test CrossRefValidation

          Starting test: CheckSDRefDom
             ......................... DomainDnsZones passed test CheckSDRefDom

       Running partition tests on : Schema
          Starting test: CrossRefValidation
             ......................... Schema passed test CrossRefValidation
          Starting test: CheckSDRefDom
             ......................... Schema passed test CheckSDRefDom

       Running partition tests on : Configuration
          Starting test: CrossRefValidation
             ......................... Configuration passed test CrossRefValidation
          Starting test: CheckSDRefDom
             ......................... Configuration passed test CheckSDRefDom

       Running partition tests on : contoso
          Starting test: CrossRefValidation
             ......................... contoso passed test CrossRefValidation
          Starting test: CheckSDRefDom
             ......................... contoso passed test CheckSDRefDom

       Running enterprise tests on : contoso.local
          Starting test: Intersite
             ......................... contoso.local passed test Intersite
          Starting test: FsmoCheck
             ......................... contoso.local passed test FsmoCheck

    C:\Program Files (x86)\Support Tools>

     

     


    C:\Documents and Settings\Administrator>tracert 192.168.0.2

    Tracing route to dc01b [192.168.0.2]
    over a maximum of 30 hops:

      1    <1 ms    <1 ms    <1 ms  dc01b [192.168.0.2]

    Trace complete.

    C:\Documents and Settings\Administrator>

     

     

     

     


    Это со второго:

     

    C:\Documents and Settings\Administrator.CONTOSO>ipconfig /all

    Windows IP Configuration

       Host Name . . . . . . . . . . . . : dc01b
       Primary Dns Suffix  . . . . . . . : contoso.local
       Node Type . . . . . . . . . . . . : Unknown
       IP Routing Enabled. . . . . . . . : No
       WINS Proxy Enabled. . . . . . . . : No
       DNS Suffix Search List. . . . . . : contoso.local

    Ethernet adapter LAN:

       Connection-specific DNS Suffix  . :
       Description . . . . . . . . . . . : Intel(R) PRO/1000 MT Network Connection
       Physical Address. . . . . . . . . : 00-0C-29-A2-9B-AD
       DHCP Enabled. . . . . . . . . . . : No
       IP Address. . . . . . . . . . . . : 10.1.0.1
       Subnet Mask . . . . . . . . . . . : 255.255.0.0
       Default Gateway . . . . . . . . . :
       DNS Servers . . . . . . . . . . . : 10.1.0.1

    Ethernet adapter WAN:

       Connection-specific DNS Suffix  . :
       Description . . . . . . . . . . . : Intel(R) PRO/1000 MT Network Connection #
    2
       Physical Address. . . . . . . . . : 00-0C-29-A2-9B-B7
       DHCP Enabled. . . . . . . . . . . : No
       IP Address. . . . . . . . . . . . : 192.168.0.2
       Subnet Mask . . . . . . . . . . . : 255.255.255.0
       Default Gateway . . . . . . . . . :

    C:\Documents and Settings\Administrator.CONTOSO>

     

     

     


    C:\Program Files\Support Tools>netdiag

    ......................................

        Computer Name: DC01B
        DNS Host Name: dc01b.contoso.local
        System info : Microsoft Windows Server 2003 R2 (Build 3790)
        Processor : x86 Family 6 Model 15 Stepping 11, GenuineIntel
        List of installed hotfixes :
            Q147222


    Netcard queries test . . . . . . . : Passed

     

    Per interface results:

        Adapter : WAN

            Netcard queries test . . . : Passed

            Host Name. . . . . . . . . : dc01b
            IP Address . . . . . . . . : 192.168.0.2
            Subnet Mask. . . . . . . . : 255.255.255.0
            Default Gateway. . . . . . :
            Dns Servers. . . . . . . . :

            AutoConfiguration results. . . . . . : Passed

            Default gateway test . . . : Skipped
                [WARNING] No gateways defined for this adapter.

            NetBT name test. . . . . . : Passed
            [WARNING] At least one of the <00> 'WorkStation Service', <03> 'Messenge
    r Service', <20> 'WINS' names is missing.

            WINS service test. . . . . : Skipped
                There are no WINS servers configured for this interface.

        Adapter : LAN

            Netcard queries test . . . : Passed

            Host Name. . . . . . . . . : dc01b
            IP Address . . . . . . . . : 10.1.0.1
            Subnet Mask. . . . . . . . : 255.255.0.0
            Default Gateway. . . . . . : 192.168.0.2
            Dns Servers. . . . . . . . : 10.1.0.1

            IpConfig results . . . . . : Failed

                [WARNING] Your default gateway is not on the same subnet as your IP
    address.

            AutoConfiguration results. . . . . . : Passed

            Default gateway test . . . : Passed

            NetBT name test. . . . . . : Passed
            [WARNING] At least one of the <00> 'WorkStation Service', <03> 'Messenge
    r Service', <20> 'WINS' names is missing.
                No remote names have been found.

            WINS service test. . . . . : Skipped
                There are no WINS servers configured for this interface.


    Global results:


    Domain membership test . . . . . . : Passed


    NetBT transports test. . . . . . . : Passed
        List of NetBt transports currently configured:
            NetBT_Tcpip_{A401604C-A789-4A2C-866F-BDDEC9638540}
            NetBT_Tcpip_{E718DEAE-1B1F-4A30-8BB6-E420831D4A09}
        2 NetBt transports currently configured.


    Autonet address test . . . . . . . : Passed


    IP loopback ping test. . . . . . . : Passed


    Default gateway test . . . . . . . : Passed


    NetBT name test. . . . . . . . . . : Passed
        [WARNING] You don't have a single interface with the <00> 'WorkStation Servi
    ce', <03> 'Messenger Service', <20> 'WINS' names defined.


    Winsock test . . . . . . . . . . . : Passed


    DNS test . . . . . . . . . . . . . : Failed
              [WARNING] Cannot find a primary authoritative DNS server for the name
                'dc01b.contoso.local.'. [ERROR_TIMEOUT]
                The name 'dc01b.contoso.local.' may not be registered in DNS.
              [WARNING] Cannot find a primary authoritative DNS server for the name
                'dc01b.contoso.local.'. [ERROR_TIMEOUT]
                The name 'dc01b.contoso.local.' may not be registered in DNS.
           [WARNING] The DNS entries for this DC cannot be verified right now on DNS
     server 10.1.0.1, ERROR_TIMEOUT.
        [FATAL] No DNS servers have the DNS records for this DC registered.


    Redir and Browser test . . . . . . : Passed
        List of NetBt transports currently bound to the Redir
            NetBT_Tcpip_{A401604C-A789-4A2C-866F-BDDEC9638540}
            NetBT_Tcpip_{E718DEAE-1B1F-4A30-8BB6-E420831D4A09}
        The redir is bound to 2 NetBt transports.

        List of NetBt transports currently bound to the browser
            NetBT_Tcpip_{E718DEAE-1B1F-4A30-8BB6-E420831D4A09}
            NetBT_Tcpip_{A401604C-A789-4A2C-866F-BDDEC9638540}
        The browser is bound to 2 NetBt transports.


    DC discovery test. . . . . . . . . : Passed


    DC list test . . . . . . . . . . . : Passed


    Trust relationship test. . . . . . : Failed
        [FATAL] Secure channel to domain 'CONTOSO' is broken. [ERROR_NO_LOGON_SERVER
    S]


    Kerberos test. . . . . . . . . . . : Passed


    LDAP test. . . . . . . . . . . . . : Passed
        [WARNING] Failed to query SPN registration on DC 'dc01.contoso.local'.


    Bindings test. . . . . . . . . . . : Passed


    WAN configuration test . . . . . . : Skipped
        No active remote access connections.


    Modem diagnostics test . . . . . . : Passed

    IP Security test . . . . . . . . . : Skipped

        Note: run "netsh ipsec dynamic show /?" for more detailed information


    The command completed successfully

    C:\Program Files\Support Tools>

     

     

     

     


    C:\Program Files\Support Tools>dcdiag

    Domain Controller Diagnosis

    Performing initial setup:
       Done gathering initial info.

    Doing initial required tests

       Testing server: OfficeB\DC01B
          Starting test: Connectivity
             The host aee1d553-d3e2-43a2-9377-71fbf129acc1._msdcs.contoso.local coul
    d not be resolved to an
             IP address.  Check the DNS server, DHCP, server name, etc
             Although the Guid DNS name
             (aee1d553-d3e2-43a2-9377-71fbf129acc1._msdcs.contoso.local) couldn't
             be resolved, the server name (dc01b.contoso.local) resolved to the IP
             address (192.168.0.2) and was pingable.  Check that the IP address is
             registered correctly with the DNS server.
             ......................... DC01B failed test Connectivity

    Doing primary tests

       Testing server: OfficeB\DC01B
          Skipping all tests, because server DC01B is
          not responding to directory service requests

       Running partition tests on : Schema
          Starting test: CrossRefValidation
             ......................... Schema passed test CrossRefValidation
          Starting test: CheckSDRefDom
             ......................... Schema passed test CheckSDRefDom

       Running partition tests on : Configuration
          Starting test: CrossRefValidation
             ......................... Configuration passed test CrossRefValidation
          Starting test: CheckSDRefDom
             ......................... Configuration passed test CheckSDRefDom

       Running partition tests on : contoso
          Starting test: CrossRefValidation
             ......................... contoso passed test CrossRefValidation
          Starting test: CheckSDRefDom
             ......................... contoso passed test CheckSDRefDom

       Running enterprise tests on : contoso.local
          Starting test: Intersite
             ......................... contoso.local passed test Intersite
          Starting test: FsmoCheck
             Warning: DcGetDcName(GC_SERVER_REQUIRED) call failed, error 1355
             A Global Catalog Server could not be located - All GC's are down.

     

     

     

     

    C:\Program Files\Support Tools>tracert 192.168.0.1

    Tracing route to dc01 [192.168.0.1]
    over a maximum of 30 hops:

      1    <1 ms    <1 ms    <1 ms  dc01 [192.168.0.1]

    Trace complete.

    C:\Program Files\Support Tools>

     

     


     

     

    21 ноября 2008 г. 10:13
  • На DC01 делаем:

    Ethernet adapter LAN:

       Connection-specific DNS Suffix  . :
       IP Address. . . . . . . . . . . . : 10.0.0.2
       Subnet Mask . . . . . . . . . . . : 255.0.0.0
       Default Gateway . . . . . . . . . : убираем
       DNS Servers . . . . . . . . . . . : изменяем на 10.0.0.2

    Ethernet adapter WAN:

       IP Address. . . . . . . . . . . . : 192.168.0.1
       Subnet Mask . . . . . . . . . . . : 255.255.255.0
       Default Gateway . . . . . . . . . : изменяем на 192.168.0.2

     

    На DC01b делаем:

    Ethernet adapter LAN:

       IP Address. . . . . . . . . . . . : 10.1.0.1
       Subnet Mask . . . . . . . . . . . : 255.255.0.0
       Default Gateway . . . . . . . . . :
       DNS Servers . . . . . . . . . . . : 10.1.0.1

    Ethernet adapter WAN:

       IP Address. . . . . . . . . . . . : 192.168.0.2
       Subnet Mask . . . . . . . . . . . : 255.255.255.0
       Default Gateway . . . . . . . . . : изменяем на 192.168.0.1

     

     

    - после этого - перезагрузки обоих серверов

    - выполняем netdiag на обоих серверах

    - в случае ошибки теста DNS - делаем netdiag /fix

    21 ноября 2008 г. 12:22
  • Проверьте также работу DNS серверов на каждом контроллере (эта роль должна быть на обоих ваших серверах).

    Проверьте, что зона contoso.local - имеет тип "Интегрированная в AD".

    После устранения проблем с DNS серверами (если они были) или если DNS сервера не было на одном из контроллеров и вы его установили позже Wink (сейчас) - рекомендую выполнить netdiag /fix (лишним не будет).

     

    21 ноября 2008 г. 12:27
  •  

    Все исправил.

    Но че-то проблема с DNS все равно есть.

    netdiag /fix выполнил на обоих серверах. Вот что сейчас:

     

    на DC01:

    C:\Program Files (x86)\Support Tools>netdiag /fix

    ......................................

        Computer Name: DC01
        DNS Host Name: dc01.contoso.local
        System info : Microsoft Windows Server 2003 (Build 3790)
        Processor : EM64T Family 6 Model 15 Stepping 11, GenuineIntel
        List of installed hotfixes :
            Q147222


    Netcard queries test . . . . . . . : Passed

     

    Per interface results:

        Adapter : WAN

            Netcard queries test . . . : Passed

            Host Name. . . . . . . . . : dc01
            IP Address . . . . . . . . : 192.168.0.1
            Subnet Mask. . . . . . . . : 255.255.255.0
            Default Gateway. . . . . . : 192.168.0.2
            Dns Servers. . . . . . . . :

            AutoConfiguration results. . . . . . : Passed

            Default gateway test . . . : Passed

            NetBT name test. . . . . . : Passed
                No names have been found.

            WINS service test. . . . . : Skipped
                There are no WINS servers configured for this interface.

        Adapter : LAN

            Netcard queries test . . . : Passed

            Host Name. . . . . . . . . : dc01
            IP Address . . . . . . . . : 10.0.0.2
            Subnet Mask. . . . . . . . : 255.0.0.0
            Default Gateway. . . . . . :
            Dns Servers. . . . . . . . : 10.0.0.2


            AutoConfiguration results. . . . . . : Passed

            Default gateway test . . . : Skipped
                [WARNING] No gateways defined for this adapter.

            NetBT name test. . . . . . : Passed
                No names have been found.

            WINS service test. . . . . : Skipped
                There are no WINS servers configured for this interface.


    Global results:


    Domain membership test . . . . . . : Passed


    NetBT transports test. . . . . . . : Passed
        List of NetBt transports currently configured:
            NetBT_Tcpip_{9F509D8C-43B1-469C-AB9B-15E68577759C}
            NetBT_Tcpip_{F078BE10-EC1B-4501-B5A9-ED886DABBC1D}
        2 NetBt transports currently configured.


    Autonet address test . . . . . . . : Passed


    IP loopback ping test. . . . . . . : Passed


    Default gateway test . . . . . . . : Passed


    NetBT name test. . . . . . . . . . : Passed
        [WARNING] You don't have a single interface with the <00> 'WorkStation Servi
    ce', <03> 'Messenger Service', <20> 'WINS' names defined.


    Winsock test . . . . . . . . . . . : Passed


    DNS test . . . . . . . . . . . . . : Failed
              [WARNING] Cannot find a primary authoritative DNS server for the name
                'dc01.contoso.local.'. [ERROR_TIMEOUT]
                The name 'dc01.contoso.local.' may not be registered in DNS.
        [FATAL] Could not open file C:\WINDOWS\system32\config\netlogon.dns for read
    ing.
        [FATAL] No DNS servers have the DNS records for this DC registered.


    Redir and Browser test . . . . . . : Failed
        List of NetBt transports currently bound to the Redir
            NetBT_Tcpip_{9F509D8C-43B1-469C-AB9B-15E68577759C}
            NetBT_Tcpip_{F078BE10-EC1B-4501-B5A9-ED886DABBC1D}
        The redir is bound to 2 NetBt transports.

        List of NetBt transports currently bound to the browser
            NetBT_Tcpip_{F078BE10-EC1B-4501-B5A9-ED886DABBC1D}
            NetBT_Tcpip_{9F509D8C-43B1-469C-AB9B-15E68577759C}
        The browser is bound to 2 NetBt transports.
        [FATAL] Cannot send mailslot message to 'CONTOSO*' via browser. [ERROR_INVAL
    ID_FUNCTION]


    DC discovery test. . . . . . . . . : Passed


    DC list test . . . . . . . . . . . : Passed


    Trust relationship test. . . . . . : Skipped


    Kerberos test. . . . . . . . . . . : Failed
        [FATAL] Cannot lookup package Kerberos.
        The error occurred was: (null)


    LDAP test. . . . . . . . . . . . . : Passed
        [WARNING] Failed to query SPN registration on DC 'dc01b.contoso.local'.


    Bindings test. . . . . . . . . . . : Passed


    WAN configuration test . . . . . . : Skipped
        No active remote access connections.


    Modem diagnostics test . . . . . . : Passed

    IP Security test . . . . . . . . . : Skipped

        Note: run "netsh ipsec dynamic show /?" for more detailed information


    The command completed successfully

     

     

     

    На DC01B:

     

    C:\Program Files\Support Tools>netdiag /fix

    ......................................

        Computer Name: DC01B
        DNS Host Name: dc01b.contoso.local
        System info : Microsoft Windows Server 2003 R2 (Build 3790)
        Processor : x86 Family 6 Model 15 Stepping 11, GenuineIntel
        List of installed hotfixes :
            Q147222


    Netcard queries test . . . . . . . : Passed

     

    Per interface results:

        Adapter : WAN

            Netcard queries test . . . : Passed

            Host Name. . . . . . . . . : dc01b
            IP Address . . . . . . . . : 192.168.0.2
            Subnet Mask. . . . . . . . : 255.255.255.0
            Default Gateway. . . . . . : 192.168.0.1
            Dns Servers. . . . . . . . :

            AutoConfiguration results. . . . . . : Passed

            Default gateway test . . . : Passed

            NetBT name test. . . . . . : Passed
            [WARNING] At least one of the <00> 'WorkStation Service', <03> 'Messenge
    r Service', <20> 'WINS' names is missing.

            WINS service test. . . . . : Skipped
                There are no WINS servers configured for this interface.

        Adapter : LAN

            Netcard queries test . . . : Passed

            Host Name. . . . . . . . . : dc01b
            IP Address . . . . . . . . : 10.1.0.1
            Subnet Mask. . . . . . . . : 255.255.0.0
            Default Gateway. . . . . . :
            Dns Servers. . . . . . . . : 10.1.0.1


            AutoConfiguration results. . . . . . : Passed

            Default gateway test . . . : Skipped
                [WARNING] No gateways defined for this adapter.

            NetBT name test. . . . . . : Passed
            [WARNING] At least one of the <00> 'WorkStation Service', <03> 'Messenge
    r Service', <20> 'WINS' names is missing.
                No remote names have been found.

            WINS service test. . . . . : Skipped
                There are no WINS servers configured for this interface.


    Global results:


    Domain membership test . . . . . . : Passed


    NetBT transports test. . . . . . . : Passed
        List of NetBt transports currently configured:
            NetBT_Tcpip_{A401604C-A789-4A2C-866F-BDDEC9638540}
            NetBT_Tcpip_{E718DEAE-1B1F-4A30-8BB6-E420831D4A09}
        2 NetBt transports currently configured.


    Autonet address test . . . . . . . : Passed


    IP loopback ping test. . . . . . . : Passed


    Default gateway test . . . . . . . : Passed


    NetBT name test. . . . . . . . . . : Passed
        [WARNING] You don't have a single interface with the <00> 'WorkStation Servi
    ce', <03> 'Messenger Service', <20> 'WINS' names defined.


    Winsock test . . . . . . . . . . . : Passed


    DNS test . . . . . . . . . . . . . : Failed
              [WARNING] Cannot find a primary authoritative DNS server for the name
                'dc01b.contoso.local.'. [ERROR_TIMEOUT]
                The name 'dc01b.contoso.local.' may not be registered in DNS.
              [WARNING] Cannot find a primary authoritative DNS server for the name
                'dc01b.contoso.local.'. [ERROR_TIMEOUT]
                The name 'dc01b.contoso.local.' may not be registered in DNS.
           [WARNING] The DNS entries for this DC cannot be verified right now on DNS
     server 10.1.0.1, ERROR_TIMEOUT.
        [FATAL] No DNS servers have the DNS records for this DC registered.


    Redir and Browser test . . . . . . : Passed
        List of NetBt transports currently bound to the Redir
            NetBT_Tcpip_{A401604C-A789-4A2C-866F-BDDEC9638540}
            NetBT_Tcpip_{E718DEAE-1B1F-4A30-8BB6-E420831D4A09}
        The redir is bound to 2 NetBt transports.

        List of NetBt transports currently bound to the browser
            NetBT_Tcpip_{E718DEAE-1B1F-4A30-8BB6-E420831D4A09}
            NetBT_Tcpip_{A401604C-A789-4A2C-866F-BDDEC9638540}
        The browser is bound to 2 NetBt transports.


    DC discovery test. . . . . . . . . : Passed


    DC list test . . . . . . . . . . . : Passed


    Trust relationship test. . . . . . : Failed
        [FATAL] Secure channel to domain 'CONTOSO' is broken. [ERROR_NO_LOGON_SERVER
    S]


    Kerberos test. . . . . . . . . . . : Passed


    LDAP test. . . . . . . . . . . . . : Passed
        [WARNING] Failed to query SPN registration on DC 'dc01.contoso.local'.


    Bindings test. . . . . . . . . . . : Passed


    WAN configuration test . . . . . . : Skipped
        No active remote access connections.


    Modem diagnostics test . . . . . . : Passed

    IP Security test . . . . . . . . . : Skipped

        Note: run "netsh ipsec dynamic show /?" for more detailed information


    The command completed successfully

     

    24 ноября 2008 г. 7:18
  • Разберитесь с DNS серверами на обоих серверах.

    Проверьте, разрешены ли динамические обновления.

    Скриншотами выложите параметры одного из DNS серверов и содержимое (достаточно начало) зоны contoso.local

    24 ноября 2008 г. 9:33
  •  

    Я на втором поднял ДНС, в Forward Zone создаю новую зону, Secondary Zone - contoso.local, дальше указываю ИП ДНС в другом офисе - 10.0.0.2, ну и получаю ошибку - что типа загрузите зону "Zone not loaded by DNS Server"

     

    Т.е. обновления не происходит. 

    24 ноября 2008 г. 9:41
  •  Borisichev Serge написано:

     

    Я на втором поднял ДНС, в Forward Zone создаю новую зону, Secondary Zone - contoso.local, дальше указываю ИП ДНС в другом офисе - 10.0.0.2, ну и получаю ошибку - что типа загрузите зону "Zone not loaded by DNS Server"

     

    Т.е. обновления не происходит. 

    Непрвильно.

     

    Создайте основную зону contoso.local.

    В свойствах зоны проверьте - основная, интегрированная в Active Directory, реплицировать на все контроллеры домена в домене. Разрешите безопасные динамические обновления.

     

    После этого

    netdiag /fix

    и перезагрузка сервера.

    24 ноября 2008 г. 10:49
  • На DC01:

     

    C:\Program Files (x86)\Support Tools>netdiag /fix

    ......................................

        Computer Name: DC01
        DNS Host Name: dc01.contoso.local
        System info : Microsoft Windows Server 2003 (Build 3790)
        Processor : EM64T Family 6 Model 15 Stepping 11, GenuineIntel
        List of installed hotfixes :
            Q147222


    Netcard queries test . . . . . . . : Passed

     

    Per interface results:

        Adapter : WAN

            Netcard queries test . . . : Passed

            Host Name. . . . . . . . . : dc01
            IP Address . . . . . . . . : 192.168.0.1
            Subnet Mask. . . . . . . . : 255.255.255.0
            Default Gateway. . . . . . : 192.168.0.2
            Dns Servers. . . . . . . . :

            AutoConfiguration results. . . . . . : Passed

            Default gateway test . . . : Passed

            NetBT name test. . . . . . : Passed
                No names have been found.

            WINS service test. . . . . : Skipped
                There are no WINS servers configured for this interface.

        Adapter : LAN

            Netcard queries test . . . : Passed

            Host Name. . . . . . . . . : dc01
            IP Address . . . . . . . . : 10.0.0.2
            Subnet Mask. . . . . . . . : 255.0.0.0
            Default Gateway. . . . . . :
            Dns Servers. . . . . . . . : 10.0.0.2


            AutoConfiguration results. . . . . . : Passed

            Default gateway test . . . : Skipped
                [WARNING] No gateways defined for this adapter.

            NetBT name test. . . . . . : Passed
                No names have been found.

            WINS service test. . . . . : Skipped
                There are no WINS servers configured for this interface.


    Global results:


    Domain membership test . . . . . . : Passed


    NetBT transports test. . . . . . . : Passed
        List of NetBt transports currently configured:
            NetBT_Tcpip_{9F509D8C-43B1-469C-AB9B-15E68577759C}
            NetBT_Tcpip_{F078BE10-EC1B-4501-B5A9-ED886DABBC1D}
        2 NetBt transports currently configured.


    Autonet address test . . . . . . . : Passed


    IP loopback ping test. . . . . . . : Passed


    Default gateway test . . . . . . . : Passed


    NetBT name test. . . . . . . . . . : Passed
        [WARNING] You don't have a single interface with the <00> 'WorkStation Servi
    ce', <03> 'Messenger Service', <20> 'WINS' names defined.


    Winsock test . . . . . . . . . . . : Passed


    DNS test . . . . . . . . . . . . . : Failed
              [WARNING] Cannot find a primary authoritative DNS server for the name
                'dc01.contoso.local.'. [ERROR_TIMEOUT]
                The name 'dc01.contoso.local.' may not be registered in DNS.
        [FATAL] Could not open file C:\WINDOWS\system32\config\netlogon.dns for read
    ing.
        [FATAL] No DNS servers have the DNS records for this DC registered.


    Redir and Browser test . . . . . . : Failed
        List of NetBt transports currently bound to the Redir
            NetBT_Tcpip_{9F509D8C-43B1-469C-AB9B-15E68577759C}
            NetBT_Tcpip_{F078BE10-EC1B-4501-B5A9-ED886DABBC1D}
        The redir is bound to 2 NetBt transports.

        List of NetBt transports currently bound to the browser
            NetBT_Tcpip_{F078BE10-EC1B-4501-B5A9-ED886DABBC1D}
            NetBT_Tcpip_{9F509D8C-43B1-469C-AB9B-15E68577759C}
        The browser is bound to 2 NetBt transports.
        [FATAL] Cannot send mailslot message to 'CONTOSO*' via browser. [ERROR_INVAL
    ID_FUNCTION]


    DC discovery test. . . . . . . . . : Passed


    DC list test . . . . . . . . . . . : Passed


    Trust relationship test. . . . . . : Skipped


    Kerberos test. . . . . . . . . . . : Failed
        [FATAL] Cannot lookup package Kerberos.
        The error occurred was: (null)


    LDAP test. . . . . . . . . . . . . : Passed


    Bindings test. . . . . . . . . . . : Passed


    WAN configuration test . . . . . . : Skipped
        No active remote access connections.


    Modem diagnostics test . . . . . . : Passed

    IP Security test . . . . . . . . . : Skipped

        Note: run "netsh ipsec dynamic show /?" for more detailed information


    The command completed successfully

     

     

     

    На DC01B сейчас:

     

    C:\Documents and Settings\Administrator.CONTOSO>netdiag /fix

    .....................................

        Computer Name: DC01B
        DNS Host Name: dc01b.contoso.local
        System info : Microsoft Windows Server 2003 R2 (Build 3790)
        Processor : x86 Family 6 Model 15 Stepping 11, GenuineIntel
        List of installed hotfixes :
            Q147222


    Netcard queries test . . . . . . . : Passed

     

    Per interface results:

        Adapter : WAN

            Netcard queries test . . . : Passed

            Host Name. . . . . . . . . : dc01b
            IP Address . . . . . . . . : 192.168.0.2
            Subnet Mask. . . . . . . . : 255.255.255.0
            Default Gateway. . . . . . : 192.168.0.1
            Dns Servers. . . . . . . . :

            AutoConfiguration results. . . . . . : Passed

            Default gateway test . . . : Passed

            NetBT name test. . . . . . : Passed
            [WARNING] At least one of the <00> 'WorkStation Service', <03> 'Messenge
    r Service', <20> 'WINS' names is missing.

            WINS service test. . . . . : Skipped
                There are no WINS servers configured for this interface.

        Adapter : LAN

            Netcard queries test . . . : Passed

            Host Name. . . . . . . . . : dc01b
            IP Address . . . . . . . . : 10.1.0.1
            Subnet Mask. . . . . . . . : 255.255.0.0
            Default Gateway. . . . . . :
            Dns Servers. . . . . . . . : 10.1.0.1


            AutoConfiguration results. . . . . . : Passed

            Default gateway test . . . : Skipped
                [WARNING] No gateways defined for this adapter.

            NetBT name test. . . . . . : Passed
            [WARNING] At least one of the <00> 'WorkStation Service', <03> 'Messenge
    r Service', <20> 'WINS' names is missing.
                No remote names have been found.

            WINS service test. . . . . : Skipped
                There are no WINS servers configured for this interface.


    Global results:


    Domain membership test . . . . . . : Passed


    NetBT transports test. . . . . . . : Passed
        List of NetBt transports currently configured:
            NetBT_Tcpip_{A401604C-A789-4A2C-866F-BDDEC9638540}
            NetBT_Tcpip_{E718DEAE-1B1F-4A30-8BB6-E420831D4A09}
        2 NetBt transports currently configured.


    Autonet address test . . . . . . . : Passed


    IP loopback ping test. . . . . . . : Passed


    Default gateway test . . . . . . . : Passed


    NetBT name test. . . . . . . . . . : Passed
        [WARNING] You don't have a single interface with the <00> 'WorkStation Servi
    ce', <03> 'Messenger Service', <20> 'WINS' names defined.


    Winsock test . . . . . . . . . . . : Passed


    DNS test . . . . . . . . . . . . . : Passed
              [WARNING] Cannot find a primary authoritative DNS server for the name
                'dc01b.contoso.local.'. [ERROR_TIMEOUT]
                The name 'dc01b.contoso.local.' may not be registered in DNS.
        PASS - All the DNS entries for DC are registered on DNS server '10.1.0.1' an
    d other DCs also have some of the names registered.


    Redir and Browser test . . . . . . : Passed
        List of NetBt transports currently bound to the Redir
            NetBT_Tcpip_{A401604C-A789-4A2C-866F-BDDEC9638540}
            NetBT_Tcpip_{E718DEAE-1B1F-4A30-8BB6-E420831D4A09}
        The redir is bound to 2 NetBt transports.

        List of NetBt transports currently bound to the browser
            NetBT_Tcpip_{E718DEAE-1B1F-4A30-8BB6-E420831D4A09}
            NetBT_Tcpip_{A401604C-A789-4A2C-866F-BDDEC9638540}
        The browser is bound to 2 NetBt transports.


    DC discovery test. . . . . . . . . : Passed


    DC list test . . . . . . . . . . . : Passed


    Trust relationship test. . . . . . : Failed
        [FATAL] Secure channel to domain 'CONTOSO' is broken. [ERROR_NO_LOGON_SERVER
    S]


    Kerberos test. . . . . . . . . . . : Passed


    LDAP test. . . . . . . . . . . . . : Passed
        [WARNING] Failed to query SPN registration on DC 'dc01.contoso.local'.


    Bindings test. . . . . . . . . . . : Passed


    WAN configuration test . . . . . . : Skipped
        No active remote access connections.


    Modem diagnostics test . . . . . . : Passed

    IP Security test . . . . . . . . . : Skipped

        Note: run "netsh ipsec dynamic show /?" for more detailed information


    The command completed successfully

    24 ноября 2008 г. 11:58
  • фух..

    давайте скриншоты всех вкладок DNS серверов.

    24 ноября 2008 г. 12:39
  • Сейчас синхронизация пошла. Создал пользователя в одном офисе, прошла синхронизация он появился в другом.

     

     

    На dc01b в DNS вот что:

     

    Вкладка General:

    Status: Running

    Type: AD-Integrated

    Replication: All domain controllers in the AD domain

    Dynamic updates: Secure only

     

    Вкладка Zone Transfers:

    Allow zone transfers - to any

     

     

    На втором dc тоже самое.

    24 ноября 2008 г. 14:37
  • если все заработало - поздравляю, победили проблему!

    выполните еще раз для перепроверки на обоих контроллерах

    netdiag

    24 ноября 2008 г. 15:38
  •  

    Я все таки не пойму что это за проблема такая на DC01:

     

    DNS test . . . . . . . . . . . . . : Failed
              [WARNING] Cannot find a primary authoritative DNS server for the name
                'dc01.contoso.local.'. [ERROR_TIMEOUT]
                The name 'dc01.contoso.local.' may not be registered in DNS.
        [FATAL] Could not open file C:\WINDOWS\system32\config\netlogon.dns for read
    ing.
        [FATAL] No DNS servers have the DNS records for this DC registered.


    Redir and Browser test . . . . . . : Failed
        List of NetBt transports currently bound to the Redir
            NetBT_Tcpip_{9F509D8C-43B1-469C-AB9B-15E68577759C}
            NetBT_Tcpip_{F078BE10-EC1B-4501-B5A9-ED886DABBC1D}
        The redir is bound to 2 NetBt transports.

        List of NetBt transports currently bound to the browser
            NetBT_Tcpip_{F078BE10-EC1B-4501-B5A9-ED886DABBC1D}
            NetBT_Tcpip_{9F509D8C-43B1-469C-AB9B-15E68577759C}
        The browser is bound to 2 NetBt transports.
        [FATAL] Cannot send mailslot message to 'CONTOSO*' via browser. [ERROR_INVAL
    ID_FUNCTION]

     

     

    25 ноября 2008 г. 7:10
  •  Borisichev Serge написано:

     [FATAL] Could not open file C:\WINDOWS\system32\config\netlogon.dns for read
    ing.
        [FATAL] No DNS servers have the DNS records for this DC registered.

    Файл есть? Права доступа к C:\WINDOWS\system32\config для SYSTEM есть?

     

    Какие ошибки DNS в своих логах пишет?

    25 ноября 2008 г. 7:43