Срочно нужна помощь, случайно удалил на DNS-сервере revers зону.
Всем привет. Люди помогите восстановить обратную зону DNS.
Случайно удалил. При попытки создать новую зону, выходит ошибка. скрин ошибки прикреплен.
В домене два контролера на одном 2003 Windows Server, а на втором 2008.
Пробовал создать новую зону на обоих DC результат одинаковый.
Помогите плизззззз.
|
| Ivan Bardeen |
15-03-2010 08:44 1368926 |
В логах eventvwr.msc ошибки есть?
|
есть. но там вроде ошибок dns'a нет, да и в логах днс-а нет ничего.
|
А вот на втором сервере постоянно сыпятся предупреждения, это было и раньше.
Но если поможете избавиться и от них, буду очень благодарен.
Вот логи со второго сервера, OS 2003
первое:
HTML код:
Event Type: Warning
Event Source: DNS
Event Category: None
Event ID: 4521
Date: 15.03.2010
Time: 12:04:31
User: N/A
Computer: KAZ-DC-01
Description:
The DNS server encountered error 9002 attempting to load zone . from Active Directory. The DNS server will attempt to load this zone again on the next timeout cycle. This can be caused by high Active Directory load and may be a transient condition.
For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
второе предупреждине:
HTML код:
Event Type: Warning
Event Source: DNS
Event Category: None
Event ID: 3000
Date: 15.03.2010
Time: 11:13:20
User: N/A
Computer: KAZ-DC-01
Description:
The DNS server has encountered numerous run-time events. To determine the initial cause of these run-time events, examine the DNS server event log entries that precede this event. To prevent the DNS server from filling the event log too quickly, subsequent events with Event IDs higher than 3000 will be suppressed until events are no longer being generated at a high rate.
For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
и третье:
HTML код:
Event Type: Warning
Event Source: DNS
Event Category: None
Event ID: 9999
Date: 15.03.2010
Time: 8:58:47
User: N/A
Computer: KAZ-DC-01
Description:
The DNS server has encountered numerous run-time events. To determine the initial cause of these run-time events, examine the DNS server event log entries that preceded these run-time events. The data is the number of events that have been suppressed in the last 60 minute interval.
For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 16 00 00 00 ....
|
| Ivan Bardeen |
15-03-2010 10:04 1368965 |
А если попытаться создать зону с помощью CLI
На сервере с win 2008 попробуйте
dnscmd имя_dns_сервера /ZoneAdd 113.168.192.in-addr.arpa /dsprimary
что при этом выдает команда?
|
Цитата:
Цитата Ivan Bardeen
А если попытаться создать зону с помощью CLI »
|
т.е через командную строку?
результать вот такой:
Command failed: RCODE_SERVER_FAILURE 9002 |
| Ivan Bardeen |
15-03-2010 11:45 1369023 |
Покажите ipconfig /all с обоих КД
|
Win 2003
Код:
C:\Documents and Settings\viktor>ipconfig /all
Windows IP Configuration
Host Name . . . . . . . . . . . . : kaz-dc-01
Primary Dns Suffix . . . . . . . : npfcapital.kz
Node Type . . . . . . . . . . . . : Unknown
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : npfcapital.kz
Ethernet adapter Local Area Connection 2:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel(R) PRO/100 S Server Adapter
Physical Address. . . . . . . . . : 00-30-48-24-71-E4
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 192.168.113.1
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.113.254
DNS Servers . . . . . . . . . . . : 192.168.113.25
192.168.113.1
Win 2008
Код:
C:\Users\viktor>ipconfig /all
Windows IP Configuration
Host Name . . . . . . . . . . . . : cap-dc-01
Primary Dns Suffix . . . . . . . : npfcapital.kz
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : npfcapital.kz
Ethernet adapter Local Area Connection 3:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel(R) PRO/1000 EB Network Connection w
ith I/O Acceleration
Physical Address. . . . . . . . . : 00-23-8B-77-49-D6
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv4 Address. . . . . . . . . . . : 192.168.113.25(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.113.254
DNS Servers . . . . . . . . . . . : 192.168.113.1
192.168.113.25
NetBIOS over Tcpip. . . . . . . . : Enabled
|
| Ivan Bardeen |
15-03-2010 12:05 1369041 |
и dcdiag с каждого
|
Win 2003
Код:
C:\Documents and Settings\viktor>dcdiag
Domain Controller Diagnosis
Performing initial setup:
Done gathering initial info.
Doing initial required tests
Testing server: Default-First-Site\KAZ-DC-01
Starting test: Connectivity
......................... KAZ-DC-01 passed test Connectivity
Doing primary tests
Testing server: Default-First-Site\KAZ-DC-01
Starting test: Replications
......................... KAZ-DC-01 passed test Replications
Starting test: NCSecDesc
......................... KAZ-DC-01 passed test NCSecDesc
Starting test: NetLogons
......................... KAZ-DC-01 passed test NetLogons
Starting test: Advertising
......................... KAZ-DC-01 passed test Advertising
Starting test: KnowsOfRoleHolders
......................... KAZ-DC-01 passed test KnowsOfRoleHolders
Starting test: RidManager
......................... KAZ-DC-01 passed test RidManager
Starting test: MachineAccount
......................... KAZ-DC-01 passed test MachineAccount
Starting test: Services
......................... KAZ-DC-01 passed test Services
Starting test: ObjectsReplicated
......................... KAZ-DC-01 passed test ObjectsReplicated
Starting test: frssysvol
......................... KAZ-DC-01 passed test frssysvol
Starting test: frsevent
......................... KAZ-DC-01 passed test frsevent
Starting test: kccevent
......................... KAZ-DC-01 passed test kccevent
Starting test: systemlog
......................... KAZ-DC-01 passed test systemlog
Starting test: VerifyReferences
......................... KAZ-DC-01 passed test VerifyReferences
Running partition tests on : Schema
Starting test: CrossRefValidation
......................... Schema passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... Schema passed test CheckSDRefDom
Running partition tests on : Configuration
Starting test: CrossRefValidation
......................... Configuration passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... Configuration passed test CheckSDRefDom
Running partition tests on : npfcapital
Starting test: CrossRefValidation
......................... npfcapital passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... npfcapital passed test CheckSDRefDom
Running enterprise tests on : npfcapital.kz
Starting test: Intersite
......................... npfcapital.kz passed test Intersite
Starting test: FsmoCheck
......................... npfcapital.kz passed test FsmoCheck
Win 2008
Код:
C:\Users\viktor>dcdiag
Directory Server Diagnosis
Performing initial setup:
Trying to find home server...
Home Server = cap-dc-01
* Identified AD Forest.
Done gathering initial info.
Doing initial required tests
Testing server: Default-First-Site\CAP-DC-01
Starting test: Connectivity
......................... CAP-DC-01 passed test Connectivity
Doing primary tests
Testing server: Default-First-Site\CAP-DC-01
Starting test: Advertising
......................... CAP-DC-01 passed test Advertising
Starting test: FrsEvent
......................... CAP-DC-01 passed test FrsEvent
Starting test: DFSREvent
......................... CAP-DC-01 passed test DFSREvent
Starting test: SysVolCheck
......................... CAP-DC-01 passed test SysVolCheck
Starting test: KccEvent
......................... CAP-DC-01 passed test KccEvent
Starting test: KnowsOfRoleHolders
......................... CAP-DC-01 passed test KnowsOfRoleHolders
Starting test: MachineAccount
......................... CAP-DC-01 passed test MachineAccount
Starting test: NCSecDesc
......................... CAP-DC-01 passed test NCSecDesc
Starting test: NetLogons
......................... CAP-DC-01 passed test NetLogons
Starting test: ObjectsReplicated
......................... CAP-DC-01 passed test ObjectsReplicated
Starting test: Replications
......................... CAP-DC-01 passed test Replications
Starting test: RidManager
......................... CAP-DC-01 passed test RidManager
Starting test: Services
......................... CAP-DC-01 passed test Services
Starting test: SystemLog
......................... CAP-DC-01 passed test SystemLog
Starting test: VerifyReferences
......................... CAP-DC-01 passed test VerifyReferences
Running partition tests on : Schema
Starting test: CheckSDRefDom
......................... Schema passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... Schema passed test CrossRefValidation
Running partition tests on : Configuration
Starting test: CheckSDRefDom
......................... Configuration passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... Configuration passed test CrossRefValidation
Running partition tests on : npfcapital
Starting test: CheckSDRefDom
......................... npfcapital passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... npfcapital passed test CrossRefValidation
Running enterprise tests on : npfcapital.kz
Starting test: LocatorCheck
......................... npfcapital.kz passed test LocatorCheck
Starting test: Intersite
......................... npfcapital.kz passed test Intersite
|
| Ivan Bardeen |
15-03-2010 16:23 1369223 |
Проверьте в свойствах DNS сервера, на вкладке "безопасность" наличие явных запретов и есть у групп domain admins и Enterprise admins полные права?
|
Явных запретов нет, группы domain admins и Enterprise admins с полными правами.
|
Вроде нашел решение. При добавлении новой зоны на втором шаге мастера есть галочка Сохранять зону в AD (на скрине) если ее убрать, то зона создается и вроде все работает.
Ivan Bardeen, спасибо за помощь.
|
Время: 15:19.
© OSzone.net 2001-2025
