Windows Server - netlogin error
Asked By ted185
08-Jan-10 11:11 AM
Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
System>
Provider Name="NETLOGON" />
EventID Qualifiers="0">5719</EventID>
Level>2</Level>
Task>0</Task>
Keywords>0x80000000000000</Keywords>
TimeCreated SystemTime="2010-01-08T15:13:06.000Z" />
EventRecordID>52903</EventRecordID>
Channel>System</Channel>
Computer>dactyl2.apollo13</Computer>
Security />
System>
EventData>
Data>APOLLO13/Data>
Data>%%1726/Data>
Binary>1B0002C0/Binary>
EventData
Event
I have 2 windows 2008 dc's on an internal network with ip addresses of
192.168.73.23 and 192.168.73.17
I have 1 windows 2003 DC in a colo with ip address 192.168.74.4. In dns
manager screen on this server I have entries for the gdc's in the local
network
I have a windows 2008 DC also in the colo that I am looking to replace the
windows 2003 DC with. The ip address of this server is 192.168.74.5 if I
try adding the 2 DC's from the internal network to the dns manager program I
get the RPC/netlogin error. I can add the win 2003 DC that is in the same
network as this DC to the dns manager.
on the internal network is an ISA 2004 server with the latest updates and on
the colo side I have a Cisco Pix firewall.
How can I diagnose if the rpc/Netlogin error is a security issue or a
firewall issue.
I ran portqriui specifying port 135 and it says that everything passes.
Is there a utility to dianose rpc issues?
Thank You
ted
EventRecordID
(1)
EventID
(1)
NICs
(1)
VPN
(1)
SystemTime
(1)
EventData
(1)
GCs
(1)
Qualifiers
(1)
Ace Fekay [MVP-DS, MCT] replied to ted185
How are the offices connected? Is there a VPN betweent the PIX and the ISA
or a firewall at your location? If so, are all the ports opened?
Also, if all ports are opened, then RPC issues can arise from incorrect DNS
settings on the DCs' NICs, meaning they cannot resolve each other (if say,
you are using an ISP's DNS address). If any of the DCs are multihomed, that
would definitely cause issues, as well.
Are all DCs, GCs? In a single domain forest, all DCs are recommended to be
GCs.
Post an unedited ipconfig /all from all three DCs, as well as the 2008
machine at the colo, for starters, please.
--
Ace
This posting is provided "AS-IS" with no warranties or guarantees and
confers no rights.
Please reply back to the newsgroup or forum for collaboration benefit among
responding engineers, and to help others benefit from your resolution.
Ace Fekay, MVP, MCT, MCITP EA, MCTS Windows 2008 & Exchange 2007, MCSE &
MCSA 2003/2000, MCSA Messaging 2003
Microsoft Certified Trainer
Microsoft MVP - Directory Services
If you feel this is an urgent issue and require immediate assistance, please
contact Microsoft PSS directly. Please check http://support.microsoft.com
for regional support phone numbers.
operating just fine for years. Today decided to also try to use it as a VPN server for access to the network from outside. This network is a Domain with an the Web for guides, I ran the "Routing and Remote Access" app to setup this VPN. All seemed to go just fine. I tested it internally and it worked as expected. However, when I got outside of our network, not only did the VPN not connect, but I had also lost access to the webserver. I am desperate for ideas. So far I have rebooted the server, several times. I have removed the VPN server object. I hope you have some good ideas. . . . RDK Windows Server Networking Discussions Active Directory (1) Windows Server (1) IIS (1) NICs (1) VPN (1) SonicWall (1) Connectivity (1) Firewall (1) Hi Folks. . . . .Some additional information. As I said many years without issues. We have two ISP (main and backup) and this server has NICs for both ISP external IP addresses. We have two routers, one for each ISP. For the VPN we chose the "Backup" ISP as the internet gateway and modified the router to pass
VPN client Windows Server I have a successful VPN connection to my Sever2k3. The client is XP2. I can access all the resources on 192.168.1.101, it does not connect. Any ideas? Windows Server Discussions Describe (1) VPN connection (1) VPN server (1) VPN client (1) VPN setup (1) VPN (1) Network topology (1) can you ping 192.168.1.101 If so, can you out message". You'll need to describe your network topology better. Is this a new VPN setup? Are you talking about a site-to-site connnection or a client to a
how to resolve the problem. We have two locations connected over the internet with two VPN servers. One of the sites has a slow 5MB DSL connection. Also notice the Time frssysvol Starting test: frsevent . . . . . . . . . . . . . . . . . . . . . . . . . MyServer1 passed test frsevent Starting test: kccevent An Error Event occured. EventID: 0xC0000520 Time Generated: 03 / 22 / 2010 14:39:41 Event String: A call to the Intersite Messaging service that An Error Event occured. EventID: 0xC000051F Time Generated: 03 / 22 / 2010 14:39:41 Event String: The Knowledge Consistency Checker KCC) has An Warning Event occured. EventID: 0x80000749 Time Generated: 03 / 22 / 2010 14:39:41 Event String: The Knowledge Consistency Checker (KCC) was An Error Event occured. EventID: 0xC0000520 Time Generated: 03 / 22 / 2010 14:39:41 Event String: A call to the Intersite Messaging service that An Error Event occured. EventID: 0xC000051F Time Generated: 03 / 22 / 2010 14:39:41 Event String: The Knowledge Consistency Checker (KCC) has An Warning Event occured. EventID: 0x80000749 Time Generated: 03 / 22 / 2010 14:39:41 Event String: The Knowledge Consistency Checker KCC) was An Error Event occured. EventID: 0xC0000520 Time Generated: 03 / 22 / 2010 14:39:41 Event String: A call to the
zone: remoteoffice.joescomputersupportinc.com joescomputersupportinc.com com (the root zone) And i tryed conencting via VPN and Just Regular Connection. Please HELP ! - - stinsonj - -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- - stinsonj's Profile: http: / / forums.techarena.in / members get your story 100% but I think you have said that you connect via a VPN connection to your environment. If so, is your AD domain name a public internet domain the internet zone, not the Active Directory. I am waiting for more details about the VPN setup as this and the DNS are the main problems. Regards, Andrei Ungureanu www.winadmins.net Good point. When the VPN is connected, it should be using AD's DNS addresses. The only problem I see name public / private (AD) DNS domain name, is if a logon was attempted without the VPN, and it queried the external DNS servers on the internet, it would have returned a NULL response may be cached locally, and then if another logon was attempted immediatelyafter the VPN connection was established and *assuming* the AD DNS addresses are provided with the VPN DHCP config, it may not send another query out until it expires from the client cache. Maybe clearing the cache may help to prove or disprove this? Than again, the VPN DHCP config may be incorrect as well, which at that point it would not work
this is near enough on topic. . . . I am trying to establish a remote connection via vpn to a client's site. The problem we are having is that both our internal network and the client's have the same ip address range. I can connect via vpn to the client's router, but cannot then ping / communicate with the client's PC permit traffic. Thanks for any input Phil Windows Server Networking Discussions TheScullsterIs (1) LANs (1) VPN (1) SearchTools (1) BillTo (1) BobBut (1) JakeWe (1) EdpNo (1) Adding another router will IP range. If that is impossible, another possible option is setup a peer to peer VPN connection. this search result may help. Peer to peer route via VPN connection Situation: I am studying in the Northbrook Library in Illinois while I am . . . Problem www.chicagotech.net / casestudy / peerroute.htm - - Bob Lin, Microsoft-MVP, MCSE & CNE Networking, Internet, Routing, VPN Troubleshooting on http: / / www.ChicagoTech.net How to Setup Windows, Network, VPN & Remote Access on http: / / www.HowToNetworking.com If a renumber is no possible, I wonder if just setting up a static route on your machine after the vpn connection is established as long it does not conflict with the a similar address on