New PC in Active Directory
Posted 08 February 2005 - 12:19 PM
I have a small network with 1 W2k server and 2 w2kpro work stations. Active directory enabled on the server, DHCP active and DNS active with DNS forwarding for internet connection.
Connected via a ADSL router. The router has DHCP disabled, with the relay option selected to pass DHCP requests to the server. NAT is SUA only.
My problem is this: all was fine till one day recently, one of the WS collapsed on me. continuous blue screen crashes, and refused to boot half the time. So, I replaced the hard drive with a new 160GB seagate. Formatted everything, put the old drive back in as a slave, (+CD/DVD ROM) put it all back together again, and re-installed w2kpro.
Everything OK so far. Then I deleted the old user and computer from AD. Created a new user account, added it to the PC, and everthing should be OK. But, although I have successfully logged on, and I can see the network, and the other PCs, something is wrong.
I updated with SP4, and updated the NIC driver. (all machines have 1 realtek NIC)
So the problem is internet access. When loading IE, initially it goes fast, and the dialogue says, web site found, waiting for reply, then it starts loading, but gradually slows down and stops before completing the page. Same on any site.
The same happens when trying to access shared folders on the network. Initially, I can open shared folders on the server,but the deper I go into the file structure, the slower it gets. I cant transfer files over the network.
The other WS is fine, and Ive looked in detail at the configuration of the 2 user accounts, and I cant find any difference between them in active directory.
Thanks in advance
Posted 08 February 2005 - 07:42 PM
Posted 09 February 2005 - 12:56 PM
In DNS, the individual pcs do not appear.
I haven't checked the event viewer fully yet. I'll do that and come back.
I was focussing on possible hardware issues with the new hard drive.
Posted 09 February 2005 - 05:30 PM
Posted 10 February 2005 - 11:41 AM
Posted 10 February 2005 - 12:01 PM
Im slightly confused about your answer though.
First, here's a breakdown of the IPconfig result:
My server is 192.168.1.1
Primary DNS sufix...domain.domain..........correct
node type................mixed.?? (dont know what that means)
IP routing enabled........no..(is that right?)
WINS proxy enabled.........no
search list for DNS suffix....domain.domain
Specific suffix DNS connection.....DOMAIN
Desription..................realtek bla bla bla
Physical adress...........00-08- etc
DHCP enabled ...........yes
Automatic config enabled......yes
IP address..........192.168.1.120...(address this machine always gets)
gateway.......ip of router
dhcp SERVER 192.168.1.1
DNS server 192.168.1.1
All seems correct to me..can you shed any light on this?
"make sure that you are using secure updates for that zone (it will need to be AD integrated, and not simply "primary""
I dont understand this. Where do I access this setting ?
Another point: If I access the folders/drives on the server, I can see them, but its very slow as I explained before. If I try to access the ws FROM the server, I get an error "access denied" or "network path not found"
Although the icon for the machine appears in "my network places"
I checked through the event viewer, and there are some alerts that refer to the trust relationship failing.
Thanks for your help..
Posted 10 February 2005 - 06:25 PM
This has not happened. Maybe this is causing the puter to not function properly
Posted 10 February 2005 - 07:50 PM
Your issues with browsing look a lot like your client is not registering itself with DNS. You should see a record for your client in your DNS console. Make sure you have dynamic up[censored] enabled in DNS by:
1. Open up your DNS console
2. Expand "Forward Lookup Zones"
3. Expand your AD DNS zone (i.e. mydomain.com) and select properties
4. Look at "Type", and if it isn't AD-Integrated, then click "Change" and adjust it
5. Change "Dynamic Updates" to "Secure Only"
After this is done, either reboot the machines on your network (might be the best idea) or use "ipconfig /registerdns" on your workstations, and "net stop netlogon" followed by "net start netlogon" on your server. If you choose to reboot all of the machines, shut down your workstations, and reboot the server. Then, start your workstations a few minutes after the server is started.
Posted 10 February 2005 - 11:18 PM
This is a problem. If those PCs do not appear in DNS, then you are sunk. Try adding static records for them ("A" Host) and set the IPs and TCP properties statically on the clients as well.
Posted 11 February 2005 - 12:08 PM
Ive done an ipconfig on the server, and a curios result appeared, in that there wqas no dns name or computer name, only the ip addresses.
The server is configured with a static IP, subnet and gateway in the TCP/IP properties. DNS server is pointing to itself (ie 192.168.1.1)
Is this right?
Basically Im fed up with this after so many hours trying to sort it out. Isnt there any more radical way to resolve it?
I initially installed AD for interest and self education, but its turning out to be a pain in the A***.
What happens if you un-install AD
The server would revert to a stand alone server I suppose, but would all the DNS and DHCP and security settings be reset.
This is what I need to do I think. eliminate all the old configuration and start again.
Posted 11 February 2005 - 08:18 PM
Now, did you try using static entries for the clients? Try that first, as I mentioned before, and see what happens.
Posted 16 February 2005 - 12:33 PM
Thanks for your advise so far.
So, as I said I was getting fed up with this business so I flushed DNS following your/and MS instructions, removed the computer from AD on the server. Then, on the offending PC, I have re-formatted the drive, and now installed a new copy of Windows XP pro. ( was still concerned about not recognising the full size of the new drive, and there were no BIOS updates available for my PC , HP pavillion,)
So I joined the domain, updateed the NIC driver, disabled the XP firewall (I read that it can interfere with LAN connections)
Installed office etc etc.
Then with breath held hit the IE icon.
Gues what...just the same
IE starts to load a page, but doesnt complete the connection
Frustrating or what!
BTW, the other PC on my little LAN works fine. Even better after the DNS flushing.
So it has to be a problem with
A) The NIC or cable
the router (acting as Hub)
cant be the PC..everything new and it even recognises the full drive size now!)
cant be the server, because both it and the other PC both work fine.
When exploring the LAN I can navigate around the computers OK.
Posted 17 February 2005 - 12:12 PM
Meanwhile, to re-cap, I have been reading up on all the links you posted regarding AD. Thanks, loads of useful information, and sometimes its hard to find what you want on the windows web pages. So Im now confident that AD is correctly configured.
If it still doesnt work with the above test, then we must be dealing with an NIC or cable issue, dont you think?
The symptoms are no internet access, and if I use windows explorer to navigate the file structure in one of the other PCs (either the server or the other workstation, I can see them both perfectly,) after 2 or three levels windows explorer freezes.
Posted 17 February 2005 - 06:05 PM
Posted 21 February 2005 - 12:51 PM
A new NIC card, and everything works fine.
I guess sometimes we dont see the wood for the trees. The LAN is now working correctly with AD providing IPs through DHCP and DNS resolution.
If anyone reading this wants help deploying Active Directory, I'm now a Guru haha
Thanks for all your help Clutch
0 user(s) are reading this topic
0 members, 0 guests, 0 anonymous users