
DNS server hatası
Hepsini Temizle

DNS server hatası

16 Yazılar
5 Üyeler
0 Reactions
3,475 Görüntüleme
Gönderiler: 605
Prominent Member
Konu başlatıcı

Merhaba arkadaslar,

Ortamda 3 server var 2003 Ent.DC server ADC server ise benim sıkıntım Event a baktigimda surekli hata kodlari var.Biraz inceledim ancak sorun nerde oldugunu tam olarak anlayamadim.DNS serverim yanlis configure edilmis buyuk bi ihtimalle.DNS event larda verdigi hata kodlari 4004-4015-4007-3000-4521 ve Directory service de surekli 2088 NDTS Replication hatasi var.asagidaki resim e gore sizce ne sorun olabilir.


Gönderildi : 07/11/2008 15:03

Gönderiler: 5088
Illustrious Member

Merhaba, tarafınıda görseydik kayıtları

birde hata loglarının resmini alabilsek çok iyi olur


Gönderildi : 07/11/2008 18:30

Gönderiler: 605
Prominent Member
Konu başlatıcı

Hocam kayitlari asagidaki gibi,

Event id lerden bazilarida asagida;

Source:MSDTC Event ID:53258

MS DTC could not correctly process a DC Promotion/Demotion event. MS DTC will continue to function and will use the existing security settings. Error Specifics: %1

Source:NTDS Replication Event id:2088

ctive Directory could not use DNS to resolve the IP address of the source domain controller listed below. To maintain the consistency of Security groups, group policy, users and computers and their passwords, Active Directory successfully replicated using the NetBIOS or fully qualified computer name of the source domain controller.


Invalid DNS configuration may be affecting other essential operations on member computers, domain controllers or application servers in this Active Directory forest, including logon authentication or access to network resources.


You should immediately resolve this DNS configuration error so that this domain controller can resolve the IP address of the source domain controller using DNS.


Alternate server name:


Failing DNS host name:


NOTE: By default, only up to 10 DNS failures are shown for any given 12 hour period, even if more than 10 failures occur. To log all individual failure events, set the following diagnostics registry value to 1:


Registry Path:

HKLM\System\CurrentControlSet\Services\NTDS\Diagnostics\22 DS RPC Client


User Action:


1) If the source domain controller is no longer functioning or its operating system has been reinstalled with a different computer name or NTDSDSA object GUID, remove the source domain controller's metadata with ntdsutil.exe, using the steps outlined in MSKB article 216498.


2) Confirm that the source domain controller is running Active directory and is accessible on the network by typing "net view \\<source DC name>" or "ping <source DC name>".


3) Verify that the source domain controller is using a valid DNS server for DNS services, and that the source domain controller's host record and CNAME record are correctly registered, using the DNS Enhanced version of DCDIAG.EXE available on


dcdiag /test:dns


4) Verify that that this destination domain controller is using a valid DNS server for DNS services, by running the DNS Enhanced version of DCDIAG.EXE command on the console of the destination domain controller, as follows:


dcdiag /test:dns


5) For further analysis of DNS error failures see KB 824449:


Additional Data

Error value:

11004 The requested name is valid, but no data of the requested type was found.


 Source:NtFrs event id:13509

The File Replication Service has enabled replication from SQLTR to MAILTR for c:\windows\sysvol\domain after repeated retries.


Source:NtFrs    Event id:13571

The File Replication Service has detected that one or more volumes on this computer have the same Volume Serial Number. File Replication Service does not support this configuration. Files may not replicate until this conflict is resolved.


Volume Serial Number : 04bc-8ca4

List of volumes that have this Volume Serial Number: c:, c:


The output of "dir" command displays the Volume Serial Number before listing the contents of the folder.


Source:Ntfrs    event id:13508

The File Replication Service is having trouble enabling replication from SQLTR to MAILTR for c:\windows\sysvol\domain using the DNS name FRS will keep retrying.

Following are some of the reasons you would see this warning.


[1] FRS can not correctly resolve the DNS name from this computer.

[2] FRS is not running on

[3] The topology information in the Active Directory for this replica has not yet replicated to all the Domain Controllers.


This event log message will appear once per connection, After the problem is fixed you will see another event log message indicating that the connection has been established.


Source:MrXsMB  event id:

The redirector failed to determine the connection type.

Gönderildi : 07/11/2008 20:16

Gönderiler: 605
Prominent Member
Konu başlatıcı

Son zamanlarda DC ye login olurken asagidaki hatalari almaya basladim

Event ID:5805    Source:NETLOGON 

The session setup from the computer UNSAL-PC failed to authenticate. The following error occurred:

Access is denied.


Event ID:5723   Source:NETLOGON

The session setup from computer 'UNSAL-PC' failed because the security database does not contain a trust account 'UNSAL-PC$' referenced by the specified computer.


If this is the first occurrence of this event for the specified computer and account, this may be a transient issue that doesn't require any action at this time. Otherwise, the following steps may be taken to resolve this problem:

If 'UNSAL-PC$' is a legitimate machine account for the computer 'UNSAL-PC', then 'UNSAL-PC' should be rejoined to the domain.

If 'UNSAL-PC$' is a legitimate interdomain trust account, then the trust should be recreated.

Otherwise, assuming that 'UNSAL-PC$' is not a legitimate account, the following action should be taken on 'UNSAL-PC':

If 'UNSAL-PC' is a Domain Controller, then the trust associated with 'UNSAL-PC$' should be deleted.

If 'UNSAL-PC' is not a Domain Controller, it should be disjoined from the domain.


Event ID:8003   Source:MRxSmb

The master browser has received a server announcement from the computer TERMTR that believes that it is the master browser for the domain on transport NetBT_Tcpip_{75C50EC7-7ECD-4938-AA. The master browser is stopping or an election is being forced.



Gönderildi : 20/11/2008 21:13

Gönderiler: 5088
Illustrious Member


Domain bayağı bir sıkıntılı gözüküyor

öncelikle hata veren client ı domainden düşürüp tekrar domaine almaya çalışın, başarılı olup olamayacağınızı test edin ve DC üzerinde

Support Tools yükledikten sonra DCDIAG ve NETDIAG komutlarını çalıştırıp herhangi bir failed durumunu inceleyin.

Sonra yine yardımcı olmaya çalışalım.

Gönderildi : 21/11/2008 02:36

Gönderiler: 605
Prominent Member
Konu başlatıcı


Dcdiag sonuclari asagidaki gibi

Testing server: Default-First-Site-Name\MAILTR
   Starting test: Connectivity
      ......................... MAILTR passed test Connectivity

ng primary tests

Testing server: Default-First-Site-Name\MAILTR
   Starting test: Replications
      ERROR: Expected notification link is missing.
      Source SQLTR
      Replication of new changes along this path will be delayed.
      This problem should self-correct on the next periodic sync.
      ERROR: Expected notification link is missing.
      Source SQLTR
      Replication of new changes along this path will be delayed.
      This problem should self-correct on the next periodic sync.

 Starting test: frsevent
   There are warning or error events within the last 24 hours after the
   SYSVOL has been shared.  Failing SYSVOL replication problems may cause
   Group Policy problems.
   ......................... MAILTR failed test frsevent
Starting test: kccevent
   ......................... MAILTR passed test kccevent
Starting test: systemlog
   An Error Event occured.  EventID: 0xC00007DD
      Time Generated: 11/21/2008   11:17:12
      Event String: SMTP could not connect to any DNS server. Either


Netdiag sonuclari da asagidaki gibi.

        NetBT name test. . . . . . : Passed
        [WARNING] At least one of the <00> 'WorkStation Service', <03> 'Messenge
r Service', <20> 'WINS' names is missing.

        WINS service test. . . . . : Skipped
            There are no WINS servers configured for this interface.

Global results:

Domain membership test . . . . . . : Passed

NetBT transports test. . . . . . . : Passed
    List of NetBt transports currently configured:
    1 NetBt transport currently configured.

Autonet address test . . . . . . . : Passed

IP loopback ping test. . . . . . . : Passed

Default gateway test . . . . . . . : Passed

NetBT name test. . . . . . . . . . : Passed
    [WARNING] You don't have a single interface with the <00> 'WorkStation Servi
ce', <03> 'Messenger Service', <20> 'WINS' names defined.

Winsock test . . . . . . . . . . . : Passed

DNS test . . . . . . . . . . . . . : Passed
    PASS - All the DNS entries for DC are registered on DNS server '192.168.100.
12' and other DCs also have some of the names registered.

Redir and Browser test . . . . . . : Passed
    List of NetBt transports currently bound to the Redir
    The redir is bound to 1 NetBt transport.

    List of NetBt transports currently bound to the browser
    The browser is bound to 1 NetBt transport.

DC discovery test. . . . . . . . . : Passed

DC list test . . . . . . . . . . . : Passed

Trust relationship test. . . . . . : Skipped

Kerberos test. . . . . . . . . . . : Passed

LDAP test. . . . . . . . . . . . . : Passed

Bindings test. . . . . . . . . . . : Passed

WAN configuration test . . . . . . : Skipped
    No active remote access connections.

Modem diagnostics test . . . . . . : Passed

IP Security test . . . . . . . . . : Skipped


Gönderildi : 21/11/2008 14:32

Gönderiler: 5088
Illustrious Member


Replikasyonda hata gözüküyor, Group Policy de hata gözüküyor, WINS aktif edilmiş ancak herhangi bir adres belirtilmemiş bunuda kontrol edin.

dcgiag ve netdiag komutlarının sonuna /fix parametresini ekleyip tekrar sonucu bildirin

komutlar bittikten sonra manuel olarak replikasyon başlatın.

DCGPOFIX.exe tool u kullanarak Group Policy da ki hataları inceleyin

bunlardan sonra tekrar konuşalım.

Gönderildi : 21/11/2008 16:11

Gönderiler: 605
Prominent Member
Konu başlatıcı


DCGPOFIX.exe komutunu calistirinca asagidaki gibi uyari veriyor.sistemim 2003 enterprise R2 SP2

C:\Documents and Settings\Administrator>DCGPOFIX.exe

Microsoft(R) Windows(R) Operating System Default Group Policy Restore Utility v5

Copyright (C) Microsoft Corporation. 1981-2003

Description: Recreates the Default Group Policy Objects (GPOs) for a domain

Syntax: DcGPOFix [/ignoreschema] [/Target: Domain | DC | BOTH]

This utility can restore either or both the Default Domain Policy or the
Default Domain Controllers Policy to the state that exists immediately after
a clean install. You must be a domain administrator to perform this operation.


The Active Directory schema version for this domain, and the version supported b
y this tool do not match. The GPO can be restored using the /ignoreschema comman
d line parameter. However, it is recommended that you try and obtain an updated
version of this tool that may have an updated version of the Active Directory sc
hema. Restoring a GPO with an incorrect schema may result in unpredictable behav
The restore failed.  See previous messages for more details

 dcdiag.exe /fix komutunu calistirinca asagidaki gibi

C:\Documents and Settings\Administrator>dcdiag.exe /fix

Domain Controller Diagnosis

Performing initial setup:
   Done gathering initial info.

Doing initial required tests

   Testing server: Default-First-Site-Name\MAILTR
      Starting test: Connectivity
         ......................... MAILTR passed test Connectivity

Doing primary tests

   Testing server: Default-First-Site-Name\MAILTR
      Starting test: Replications
         ERROR: Expected notification link is missing.
         Source SQLTR
         Replication of new changes along this path will be delayed.
         This problem should self-correct on the next periodic sync.
         ERROR: Expected notification link is missing.
         Source SQLTR
         Replication of new changes along this path will be delayed.
         This problem should self-correct on the next periodic sync.
         ......................... MAILTR passed test Replications
      Starting test: NCSecDesc
         ......................... MAILTR passed test NCSecDesc
      Starting test: NetLogons
         ......................... MAILTR passed test NetLogons
      Starting test: Advertising
         ......................... MAILTR passed test Advertising
      Starting test: KnowsOfRoleHolders
         ......................... MAILTR passed test KnowsOfRoleHolders
      Starting test: RidManager
         ......................... MAILTR passed test RidManager
      Starting test: MachineAccount
         ......................... MAILTR passed test MachineAccount
      Starting test: Services
         ......................... MAILTR passed test Services
      Starting test: ObjectsReplicated
         ......................... MAILTR passed test ObjectsReplicated
      Starting test: frssysvol
         ......................... MAILTR passed test frssysvol
      Starting test: frsevent
         There are warning or error events within the last 24 hours after the
         SYSVOL has been shared.  Failing SYSVOL replication problems may cause
         Group Policy problems.
         ......................... MAILTR failed test frsevent
      Starting test: kccevent
         ......................... MAILTR passed test kccevent
      Starting test: systemlog
         ......................... MAILTR passed test systemlog
      Starting test: VerifyReferences
         ......................... MAILTR passed test VerifyReferences

   Running partition tests on : ForestDnsZones
      Starting test: CrossRefValidation
         ......................... ForestDnsZones passed test CrossRefValidation

      Starting test: CheckSDRefDom
         ......................... ForestDnsZones passed test CheckSDRefDom

   Running partition tests on : DomainDnsZones
      Starting test: CrossRefValidation
         ......................... DomainDnsZones passed test CrossRefValidation

      Starting test: CheckSDRefDom
         ......................... DomainDnsZones passed test CheckSDRefDom

   Running partition tests on : Schema
      Starting test: CrossRefValidation
         ......................... Schema passed test CrossRefValidation
      Starting test: CheckSDRefDom
         ......................... Schema passed test CheckSDRefDom

   Running partition tests on : Configuration
      Starting test: CrossRefValidation
         ......................... Configuration passed test CrossRefValidation
      Starting test: CheckSDRefDom
         ......................... Configuration passed test CheckSDRefDom

   Running partition tests on : asbis
      Starting test: CrossRefValidation
         ......................... asbis passed test CrossRefValidation
      Starting test: CheckSDRefDom
         ......................... asbis passed test CheckSDRefDom

   Running enterprise tests on :
      Starting test: Intersite
         ......................... passed test Intersite
      Starting test: FsmoCheck
         ......................... passed test FsmoCheck


Gönderildi : 21/11/2008 16:45

Gönderiler: 605
Prominent Member
Konu başlatıcı

Manuel olarak Replikasyon yapmaya calistim asagidaki gibi sonuc.

Gönderildi : 21/11/2008 17:20

Gönderiler: 0


Hem MAİLTR hemde SQLTR tarafında replicate now yaptığınız zamanda aynı hata mesajını alıyormusun?Ek olarak Check Replication Topology yaptığın zaman nasıl bir uyarı veriyor?

Gönderildi : 21/11/2008 17:54

Gönderiler: 605
Prominent Member
Konu başlatıcı


iki taraftada replicate now yapinca hata aliyorum.

Ek olarak Check Replication topology yaptigimda asagidaki gibi

Mailtr tarafinda  

Sqltr tarafinda

Gönderildi : 21/11/2008 20:22

Gönderiler: 0

Bu her iki domain'de farklı forestlarda mı?Kaç tane Primary DNS kurulu?

Gönderildi : 21/11/2008 20:32

Gönderiler: 605
Prominent Member
Konu başlatıcı

Hayir hocam 1 tane primary DNS var oda mailtr.

Gönderildi : 21/11/2008 21:21

Gönderiler: 16309
Illustrious Member Yönetici

fsmo'larında sorun var  linki incele, netdom işini görecektir. İşe yaramazsa tekrar konuşalım


Gönderildi : 22/11/2008 00:43

Gönderiler: 605
Prominent Member
Konu başlatıcı


netdom komutunu kullanmaya calistim ancak parolamin icinde bosluk oldugu icin tanimiyor sanirim

C:\Documents and Settings\Administrator.ASBIS>netdom resetpwd /Server:mailtr.asb /UserD:Xxxx /PasswordD:32154 aofıhjsf1
The machine account password for the local machine could not be reset.

Logon failure: unknown user name or bad password.

The command failed to complete successfully.



yukardaki gibi bir sey cikiyor.

Gönderildi : 23/11/2008 22:02

Gönderiler: 1789
Famed Member

Bende event id 4007 hatası alıyorum ve replikasyonda sorun olduğunu gösteren uyarılarda düşüyor evetnlara,

İnternetde araştırdığımda regisrtydeki HKLM\System\ControlSet\ Services\DNS kaydını sildikden sonra bu sorunun düzeldiğini yazmışlar ama size danışmadan silmek istemedim,

Dns imiz ad. integrated,

Zaman zaman tüm sistemde aynı anda donmalar oluyor,file servera remote desktop ve ping gidiyor ama paylaşımdan girilemiyor v.b. gibi sorunlar oluyor ve sadece dc1 ile birlikte file serveri  restart ettiğimde bu sorunlar düzeliyor,ama onca user varken file server ve dc yi kapatmak açık olan,kaydedilmeyen tüm dosyaların kaybolması,ve bi sürü zaman kaybı demek

Bu registy kaydını silsem sorunum dfüzelirmi yada sistemde başka problem olurmu,* 



Gönderildi : 01/12/2008 16:42
