Vuotto

Forum Replies Created

Viewing 23 posts - 1 through 23 (of 23 total)
  • Author
    Posts
  • Avatar
    Vuotto
    Member
    in reply to: site to site VPN issues #361880

    Re: site to site VPN issues

    I’ve tried flushing DNS on the DNS server and on the client. It is http:// but only to our other office. Http anywhere else works fine. I think it is possible that for some reason the firewall is viewing this traffic as a threat and shutting down access, either their firewall or ours. I’m looking through the logs to see if I can come up with any errors.

    Avatar
    Vuotto
    Member
    in reply to: site to site VPN issues #361879

    Re: site to site VPN issues

    I found no changes with DNS, WINS or firewall status in either of our offices, then after the weekend it when I came to the office On Monday it worked fine. It was working fine all day long on Monday and now, on Tuesday it is back to the same. I can only get to http:// sites in the other office if I am using VPN. Without VPN I can only get to non http sources there. Without VPN and outside of the office I can get to these http pages fine.

    I’m wondering if something is different between vpn and LAN inside. Both use the same gateway and the same DNS, both give IPs from the same DHCP server. Why is one blocking http to this location and the other is not? I’m doing a capture with wireshark and on the VPN connection I just see encapsulated data and compressed data I dont’ see the http traffic. Could it be that something blocks http and when it is encapsuled via VPN it does not see the protocol?

    It does the same weather I use IP or host name. If I run nslookup via ip or name it resolves fine. If I run tracert on VPN I go to the VPN server, then to the gateway, then it times out, and the next line takes me to the server.
    Without VPN My tracert goes directly to the gateway then times out and then on the next line it hits the server.

    Avatar
    Vuotto
    Member
    in reply to: site to site VPN issues #361878

    Re: site to site VPN issues

    I found no changes with DNS, WINS or firewall status in either of our offices, then after the weekend it when I came to the office On Monday it worked fine. It was working fine all day long on Monday and now, on Tuesday it is back to the same. I can only get to http:// sites in the other office if I am using VPN. Without VPN I can only get to non http sources there. Without VPN and outside of the office I can get to these http pages fine.

    I’m wondering if something is different between vpn and LAN inside. Both use the same gateway and the same DNS, both give IPs from the same DHCP server. Why is one blocking http to this location and the other is not? I’m doing a capture with wireshark and on the VPN connection I just see encapsulated data and compressed data I dont’ see the http traffic. Could it be that something blocks http and when it is encapsuled via VPN it does not see the protocol?

    Avatar
    Vuotto
    Member
    in reply to: site to site VPN issues #361877

    Re: site to site VPN issues

    I just restarted the DNS server, so DNS services have just restarted. We’re actually seeing this same issue weather we try by using the URL or the IP which makes me think maybe it is a protocol or port issue. The strange thing is we had 1 laptop in the office that was working the whole time and never had the issue at all even though it is going through the same gateway.

    Since this web site is available on the internet and works fine there should it matter if the DNS in the other office is different?

    Avatar
    Vuotto
    Member
    in reply to: The Group Policy Client Service Failed the Logon #361876

    Re: The Group Policy Client Service Failed the Logon

    I did try that and I couldn’t get it to work. I even created a new local user account on the machine and I could not log in using it so I just wiped the machine out and reinstalled everything.

    Thanks for your help.

    Avatar
    Vuotto
    Member
    in reply to: runtime error on wake from sleep #361875

    Re: runtime error on wake from sleep

    This is the full Error in the event viewer log:

    Log Name: Application
    Source: Application Error
    Date: 12-Aug-13 1:43:42 PM
    Event ID: 1000
    Task Category: (100)
    Level: Error
    Keywords: Classic
    User: N/A
    Computer: annalp.test.rtssoftware.co.il
    Description:
    Faulting application name: Explorer.EXE, version: 6.1.7601.17567, time stamp: 0x4d672ee4
    Faulting module name: PWMIF64V.Dll, version: 1.0.0.0, time stamp: 0x4c03f196
    Exception code: 0x40000015
    Fault offset: 0x000000000001d25e
    Faulting process id: 0xce8
    Faulting application start time: 0x01ce91e3a79704e4
    Faulting application path: C:WindowsExplorer.EXE
    Faulting module path: C:PROGRA~2ThinkPadUTILIT~1PWMIF64V.Dll
    Report Id: ba3b6aa3-0376-11e3-a151-5cac4cc91a92
    Event Xml:

    1000
    2
    100
    0x80000000000000

    134565
    Application
    annalp.test.rtssoftware.co.il

    Explorer.EXE
    6.1.7601.17567
    4d672ee4
    PWMIF64V.Dll
    1.0.0.0
    4c03f196
    40000015
    000000000001d25e
    ce8
    01ce91e3a79704e4
    C:WindowsExplorer.EXE
    C:PROGRA~2ThinkPadUTILIT~1PWMIF64V.Dll
    ba3b6aa3-0376-11e3-a151-5cac4cc91a92

    Avatar
    Vuotto
    Member
    in reply to: Server 2003 DCpromo error on removal #361874

    Re: Server 2003 DCpromo error on removal

    The Server I’m trying to remove is also a DNS server. It is 1 of 2 DNS servers. This is also a role I will add back to the server when I rebuild it. How do I remove references so other machines don’t look for this DNS server?

    Does it make more sense to get all 3 of the DCs working and then remove the one I don’t need anymore?

    Thanks,

    Brian

    Avatar
    Vuotto
    Member
    in reply to: DC Event ID 672 #361873

    Re: DC Event ID 672

    Blood;271818 wrote:
    Sometimes DNS needs time to replicate properly between servers – how long has this been set up – did you give it time and has the server been rebooted?

    The new DC has been up for about a week and it’s been putting this Error in the log throughout the day since then. Should I give it a reboot?

    Avatar
    Vuotto
    Member
    in reply to: Corrupt WINS #361872

    Re: Corrupt WINS

    When it’s not running I have trouble getting to network shares by name, but only network shares on the Server 2003 machines. I’m guessing that something on Server 2003 is using it.

    Now that it’s running again things have been ok.

    Avatar
    Vuotto
    Member
    in reply to: Corrupt WINS #361871

    Re: Corrupt WINS

    Eventually that’s the plan. Upgrade both DCs to Server 2008 and get rid of WINS.

    Avatar
    Vuotto
    Member
    in reply to: Corrupt WINS #361870

    Re: Corrupt WINS

    Ossian;271200 wrote:
    Is this server your DC/DNS server?
    if not, the network configuration should be pointing to the DNS server for DNS (similar for WINS) not to the same IP as the server itself:

    IP Address. . . . . . . . . . . . : 10.10.10.84
    Subnet Mask . . . . . . . . . . . : 255.255.255.0
    Default Gateway . . . . . . . . . : 10.10.10.254
    DNS Servers . . . . . . . . . . . : IP OF DNS SERVER
    Primary WINS Server . . . . . . . : IP OF WINS SERVER

    This Server is a DC and DNS. This is the server that was showing a corrupt WINS database, and I removed the database and created a new one so that I could get WINS to start on it.

    I am looking at our other DC (Vnetadc2) that also runs DNS and it is showing a DNS error. It runs DNS and It’s IP is 10.10.10.87. Maybe some machines are pointing to it and that is causing the problem? but why wouldn’t they fail over to the other with the working DNS?

    Avatar
    Vuotto
    Member
    in reply to: Corrupt WINS #361869

    Re: Corrupt WINS

    tehcamel;271171 wrote:
    seems like a DNS Search suffix is not applied.

    could you please post output of ipconfig /all from a problematic server?

    Microsoft Windows [Version 5.2.3790]
    (C) Copyright 1985-2003 Microsoft Corp.

    C:Documents and SettingsAdministrator.RTS>ipconfig /all

    Windows IP Configuration

    Host Name . . . . . . . . . . . . : vnetfs1
    Primary Dns Suffix . . . . . . . : location.company.com
    Node Type . . . . . . . . . . . . : Hybrid
    IP Routing Enabled. . . . . . . . : No
    WINS Proxy Enabled. . . . . . . . : No
    DNS Suffix Search List. . . . . . : location.company.com

    Ethernet adapter Local Area Connection:

    Connection-specific DNS Suffix . :
    Description . . . . . . . . . . . : Broadcom BCM5708C NetXtreme II GigE (NDIS
    VBD Client)
    Physical Address. . . . . . . . . : 00-19-B9-C2-2C-90
    DHCP Enabled. . . . . . . . . . . : No
    IP Address. . . . . . . . . . . . : 10.10.10.84
    Subnet Mask . . . . . . . . . . . : 255.255.255.0
    Default Gateway . . . . . . . . . : 10.10.10.254
    DNS Servers . . . . . . . . . . . : 10.10.10.84
    Primary WINS Server . . . . . . . : 10.10.10.84

    Avatar
    Vuotto
    Member
    in reply to: adding a 2008R2 DNS server to a 2003 Domain #361868

    Re: adding a 2008R2 DNS server to a 2003 Domain

    How can I tell what type of DNS server I have? Both machines I have running DNS are domain controllers, and both have a forward and a reverse lookup zone.

    Thanks for the help,
    Brian

    Avatar
    Vuotto
    Member
    in reply to: Active Directory Errors #361867

    Re: Active Directory Errors

    I used the cleanup tool to remove the Domain conroller in the Tampa Site. When I went into Active Directory Sites and services I still found the server there listed under the Tampa site, but this time it let me right click and delete it.

    I went to the server in Israel and noticed the replication was schedules for four times an hour. I changed this to None for now. They still have the DC there but they do not keep it up all the time. I’m not sure if I want to completely remove it or not. Thanks for the help!

    Avatar
    Vuotto
    Member
    in reply to: Active Directory Errors #361866

    Re: Active Directory Errors

    I have gone to properties on each server and set the replication schedule to None for both. So is it the failed attempts to replicate that cause the server to re-boot?

    I just printed out the link thanks for the instructions!

    Avatar
    Vuotto
    Member
    in reply to: Random Freezes Windows 7 64 #361865

    Re: Random Freezes Windows 7 64

    I ran a bootable memory test and it passed, what is this windows memory test?

    I am going to follow up on that event ID link and disable those network settings first. I see in the link that solution 3 is ‘ Enable the spanning tree portfast setting in your router ‘ I’m not sure what that means so I’m going to start with the first two.

    Avatar
    Vuotto
    Member
    in reply to: FTP Folder Permissions #361864

    Re: FTP Folder Permissions

    I set the FTP folder share permissions to give full control to Authenticated users and Administrators then the NTFS permissions on that folder gave full control to administrators and give read, write, list folders to authenticated users. These permissions propogate to the two sub folders Priv and pub. Then propogation stops there. In Priv each user has their own folder. On each of those folders the administator owns the folder and the administrators group has full control. The user whose folder it is has modify. These permissions apply to all sub folders of the users folder.
    Now these users get a deny when trying to see any one elses folder which is good, but they can only write to their folder. If they try writing to a sub folder they can’t and if they try writing to the ftppriv folder they can’t. I get the same results even if I log in as the administrator. Where are these write permissions being blocked?

    Avatar
    Vuotto
    Member
    in reply to: FTP Folder Permissions #361863

    Re: FTP Folder Permissions

    I think I figured it out. I don’t want permissions to propogate. I have the FTP folder and I give authenticated users full control to it. Below I have the priv and give authenticated users full control but neither of these permissions are set to propogate. Then in the priv folder is each user’s directory and I assign directly to each folder the user that needs access and give them full control.

    Would this allow the user to only access their own folder? The will see the other user folders but have no permissions to them at all. Does this sound like it will work?

    Avatar
    Vuotto
    Member
    in reply to: FTP Folder Permissions #361862

    Re: FTP Folder Permissions

    Yes, the folders inherit permissions from the root FTP directory. I just tested and if I’m logged in as Bob I can not only read and download form the root of the Bob Directory, but also from the root of other users folders as well so I’m really giving out too many permissions in some areas but for some reason still not enough permissions in the sub folders.

    Avatar
    Vuotto
    Member
    in reply to: Terminal Services Licensing problem #361861

    Re: Terminal Services Licensing problem

    Its working now. I think what happened was when I originally installed the Role I did not configure the Licensing server right away. Then because I did not configure that right away it dropped the Role.

    Thanks again for your help.

    Avatar
    Vuotto
    Member
    in reply to: Terminal Services Licensing problem #361860

    Re: Terminal Services Licensing problem

    Thank you, I didn’t realize you could have one without the other. I’m installing the role now.

    Brian

    Avatar
    Vuotto
    Member
    in reply to: Terminal Services Licensing problem #361859

    Re: Terminal Services Licensing problem

    I attached a screen shot here. This is the strange thing, the Terminal Server Service is installed and it’s showing my licenses but still it won’t let me have more than two connections.

    Avatar
    Vuotto
    Member
    in reply to: Account Lockout Policy #361858

    Re: Account Lockout Policy

    Sorry for the mistake, it is definitely a 2003 question. Thanks for the help.

Viewing 23 posts - 1 through 23 (of 23 total)