SBS 2008 - Problem connecting clients to domain

bremen1874 · 22 Jan 2013 at 16:29

satanicguardian said:
Here is the forwarders tab, completely empty, should I set something up in it?

Press the Edit button.

In the dialog that opens enter the IP address of the DNS server(s) you want to use.

Make sure it's happy (green ticks).

Press OK to close the dialog.

Press OK or Apply to finish.

bremen1874 · 22 Jan 2013 at 16:30

satanicguardian said:
And here is a screenshot of doing nslookups, it's failing to resolve I think

It looks like it's trying to use your router for DNS.

What does an IPCPONFIG /ALL on the client machine show.

On my machine I get the following for the nslookup:-

Code:

Microsoft Windows [Version 6.1.7601]
Copyright (c) 2009 Microsoft Corporation.  All rights reserved.

C:\Users\xxx>nslookup
Default Server:  xxx-xxx.local
Address:  192.168.10.2

> salesforce.com
Server:  xxx-xxx.local
Address:  192.168.10.2

Non-authoritative answer:
Name:    salesforce.com
Address:  204.14.234.33

192.168.10.2 is my SBS 2011 server.

Kaka · 22 Jan 2013 at 16:31

Workstation is still pointing towards the wrong DNS server.

With DNS fowarders, I'll add in your ISP's DNS address first (as it should be more local), then Google after.

satanicguardian · 22 Jan 2013 at 16:41

Hmm, so what should I do then?

I'm confused

bremen1874 · 22 Jan 2013 at 16:47

satanicguardian said:
Hmm, so what should I do then? I'm confused

IPCONFIG /ALL on the workstation. What does it return?

satanicguardian · 22 Jan 2013 at 16:52

C:\Users\JamieH-PC>ipconfig /all

Windows IP Configuration

Host Name . . . . . . . . . . . . : JamieH-PC-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : airteldomain.local

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . : airteldomain.com
Description . . . . . . . . . . . : Realtek RTL8168C(P)/8111C(P) Family PCI-E
Gigabit Ethernet NIC (NDIS 6.20)
Physical Address. . . . . . . . . : 00-25-64-CD-DA-B3
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::75fe:2209:2460:e23d%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.10.56(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : 22 January 2013 15:58:52
Lease Expires . . . . . . . . . . : 23 January 2013 15:58:52
Default Gateway . . . . . . . . . : 192.168.10.1
DHCP Server . . . . . . . . . . . : 192.168.10.1
DHCPv6 IAID . . . . . . . . . . . : 234890596
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-18-7F-1C-FC-00-25-64-CD-DA-B3

DNS Servers . . . . . . . . . . . : 192.168.10.2
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter Local Area Connection* 11:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:9d38:6ab8:8f1:16d6:3f57:f5c7(Prefe
rred)
Link-local IPv6 Address . . . . . : fe80::8f1:16d6:3f57:f5c7%12(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.airteldomain.com:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : airteldomain.com
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

C:\Users\JamieH-PC>

This is on my own pc, it's not connected to the domain but it uses the same router

bremen1874 · 22 Jan 2013 at 17:01

The router is irrelevant. An IPCONFIG from a non-domain PC isn't going to help with diagnosing a domain DNS problem.

Assuming you want to use DHCP for the clients you're going to have DHCP server running. This is going to either be the SBS server or the router.

The DHCP server (wherever it is) needs to be configured to tell the clients to use the IP address of the server for DNS. DNS is used for more than just allowing web access. If it isn't configured correctly the domain won't work.

visibleman · 22 Jan 2013 at 17:07

If it's a client system on the domain that is the issue, then doing it off your non-domain system is of little use.

Redo an 'ipconfig /all' from a system connected to the domain.

Secondly, you shouldn't need to manually enter DNS settings to your workstations; the DHCP server (or router in this case), if setup correctly, should be handing out the DNS IP (ip address of the SBS server).

Edit - bremen1874 got there first....

satanicguardian · 22 Jan 2013 at 17:18

The router's DHCP service is enabled and pointing at the domain server @ 192.168.10.2

I've just checked to make sure, the domain servers DHCP server service is stopped as it should be, cause (correct me if im wrong) two DHCP servers on the same LAN will make everything go mental ? :O

satanicguardian · 22 Jan 2013 at 17:22

Here is an ipconfig /all from a client PC directly connected to the domain

Microsoft Windows XP [Version 5.1.2600]
(C) Copyright 1985-2001 Microsoft Corp.

C:\Documents and Settings\AlexTroop.AIRTELDOMAIN>ipconfig /all

Windows IP Configuration

Host Name . . . . . . . . . . . . : ALEXPC
Primary Dns Suffix . . . . . . . : airteldomain.local
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : airteldomain.local

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek RTL8168C(P)/8111C(P) Family
PCI-E GBE NIC
Physical Address. . . . . . . . . : 00-25-64-CD-D8-3F
Dhcp Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
IP Address. . . . . . . . . . . . : 192.168.10.66
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.10.1
DHCP Server . . . . . . . . . . . : 192.168.10.1
DNS Servers . . . . . . . . . . . : 192.168.10.2
Lease Obtained. . . . . . . . . . : 22 January 2013 08:29:45
Lease Expires . . . . . . . . . . : 23 January 2013 08:29:45

C:\Documents and Settings\AlexTroop.AIRTELDOMAIN>

bremen1874 · 22 Jan 2013 at 17:52

Try removing the Static DNS 2 entry from the router config. If a domain machine picks up that address it won't like it.

Toughnoodle · 22 Jan 2013 at 18:43

If I were you I'd switch off DHCP on the router and use the server. I'd set the DNS forwarders to whatever two servers are provided by the ISP (often can be picked out of the router status page). Also, I used to make sure mailbox and filesystem quotas are off, but that's a personal preference. I prefer to use statics IPs out of the DHCP pool for printers too.

Btw. you have to use the Windows server for DNS because it contains records for finding a server to authenticate your logon credentials.

Sounds like you need an hour or two with someone on-site that's Microsoft certified.

trancesphere · 22 Jan 2013 at 19:09

1.Disable DHCP on the router.

2.Use the SBS Console 'Connect to internet wizard' to setup the networking on the SBS server. It will ask you what IP address the server should use and the IP address for the router. It will then setup DHCP, networking and will also create the remote certificates for you.

3.Run the ‘Set up your Internet address’ wizard to setup exchange and the internal sites.

4.Setup a DNS forwarder to point to your ISP's DNS or your router.

5.Turn off root hints.

6.Depending on your ISP, it’s also a good idea to disable EDNS probes. Run an administrative command prompt and enter:

dnscmd /Config /EnableEDNSProbes 0