NSlookup resolve but can not ping from serve

Microsoft Windows server 2003 enterprise
February 4, 2010 at 04:59:19
Specs: Windows 2003 server
I have a problem with Windows 2003 server.

I have a small network with AD services. It was working until yesterday. What I did, I tried to reset winsock with winsoch repair utility.

Client computers can not ping to the server and the server cannot ping too. This server has two nic and NAT services.

NSLOOKUP resolve the server name but can not ping to the clients.

When I use netdiag, it has no error message. No warning except the DNS tries to update the listed dns servers.


......................................

Computer Name: SERVER
DNS Host Name: server.eritrea-mem.gov.er
System info : Windows 2000 Server (Build 3790)
Processor : x86 Family 15 Model 2 Stepping 7, GenuineIntel
List of installed hotfixes :
KB923561
KB924667-v2
KB925398_WMP64
KB925902-v2
KB927891
KB929123
KB930178
KB932168
KB933854
KB936357
KB936782
KB938127
KB938464-v2
KB941569
KB943055
KB943460
KB944338-v2
KB944653
KB945553
KB946026
KB948496
KB950760
KB950762
KB950974
KB951066
KB951748
KB952004
KB952069
KB952954
KB953298
KB954155
KB954600
KB955069
KB955839
KB956572
KB956802
KB956803
KB956844
KB957097
KB958469
KB958644
KB958687
KB958869
KB959426
KB960225
KB960803
KB960859
KB961063
KB961371
KB961371-v2
KB961373
KB961501
KB967715
KB967723
KB968389
KB968537
KB968816
KB969059
KB969805
KB969897
KB969897-IE8
KB969898
KB970238
KB970653-v3
KB971032
KB971486
KB971557
KB971633
KB971657
KB971961-IE8
KB972260-IE8
KB973346
KB973354
KB973507
KB973525
KB973540
KB973815
KB973869
KB974112
KB974455-IE8
KB974571
KB975025
KB975467
Q147222


Netcard queries test . . . . . . . : Passed

Per interface results:

Adapter : Private

Netcard queries test . . . : Passed

Host Name. . . . . . . . . : server
IP Address . . . . . . . . : 172.18.252.7
Subnet Mask. . . . . . . . : 255.255.255.0
Default Gateway. . . . . . :
Dns Servers. . . . . . . . : 172.18.252.7
172.18.252.242


AutoConfiguration results. . . . . . : Passed

Default gateway test . . . : Skipped
[WARNING] No gateways defined for this adapter.

NetBT name test. . . . . . : Passed
[WARNING] At least one of the <00> 'WorkStation Service', <03> 'Messenger Service', <20> 'WINS' names is missing.

WINS service test. . . . . : Skipped
There are no WINS servers configured for this interface.

Adapter : Public

Netcard queries test . . . : Passed

Host Name. . . . . . . . . : server
IP Address . . . . . . . . : 172.18.252.243
Subnet Mask. . . . . . . . : 255.255.255.0
Default Gateway. . . . . . : 172.18.252.242
NetBIOS over Tcpip . . . . : Disabled
Dns Servers. . . . . . . . : 172.18.252.242
196.200.102.1


AutoConfiguration results. . . . . . : Passed

Default gateway test . . . : Passed

NetBT name test. . . . . . : Skipped
NetBT is disabled on this interface. [Test skipped]

WINS service test. . . . . : Skipped
NetBT is disable on this interface. [Test skipped].


Global results:


Domain membership test . . . . . . : Passed


NetBT transports test. . . . . . . : Passed
List of NetBt transports currently configured:
NetBT_Tcpip_{B1934168-C24A-4660-AECD-688BFEB431DF}
1 NetBt transport currently configured.


Autonet address test . . . . . . . : Passed


IP loopback ping test. . . . . . . : Passed


Default gateway test . . . . . . . : Passed


NetBT name test. . . . . . . . . . : Passed
[WARNING] You don't have a single interface with the <00> 'WorkStation Service', <03> 'Messenger Service', <20> 'WINS' names defined.


Winsock test . . . . . . . . . . . : Passed


DNS test . . . . . . . . . . . . . : Passed
PASS - All the DNS entries for DC are registered on DNS server '172.18.252.7'.
[WARNING] The DNS entries for this DC cannot be verified right now on DNS server 172.18.252.242, ERROR_TIMEOUT.
[WARNING] The DNS entries for this DC cannot be verified right now on DNS server 196.200.102.1, ERROR_TIMEOUT.


Redir and Browser test . . . . . . : Passed
List of NetBt transports currently bound to the Redir
NetBT_Tcpip_{B1934168-C24A-4660-AECD-688BFEB431DF}
The redir is bound to 1 NetBt transport.

List of NetBt transports currently bound to the browser
NetBT_Tcpip_{B1934168-C24A-4660-AECD-688BFEB431DF}
The browser is bound to 1 NetBt transport.


DC discovery test. . . . . . . . . : Passed


DC list test . . . . . . . . . . . : Passed


Trust relationship test. . . . . . : Skipped


Kerberos test. . . . . . . . . . . : Passed


LDAP test. . . . . . . . . . . . . : Passed


Bindings test. . . . . . . . . . . : Passed


WAN configuration test . . . . . . : Skipped
No active remote access connections.


Modem diagnostics test . . . . . . : Passed

IP Security test . . . . . . . . . : Skipped

Note: run "netsh ipsec dynamic show /?" for more detailed information


The command completed successfully


NSLOOkup result
Server: server.eritrea-mem.gov.er
Address: 172.18.252.7

Name: eritrea-mem.gov.er
Address: 172.18.252.7

DCdiag result

Domain Controller Diagnosis

Performing initial setup:
Done gathering initial info.

Doing initial required tests

Testing server: Default-First-Site\SERVER
Starting test: Connectivity
......................... SERVER passed test Connectivity

Doing primary tests

Testing server: Default-First-Site\SERVER
Starting test: Replications
......................... SERVER passed test Replications
Starting test: NCSecDesc
......................... SERVER passed test NCSecDesc
Starting test: NetLogons
......................... SERVER passed test NetLogons
Starting test: Advertising
......................... SERVER passed test Advertising
Starting test: KnowsOfRoleHolders
......................... SERVER passed test KnowsOfRoleHolders
Starting test: RidManager
......................... SERVER passed test RidManager
Starting test: MachineAccount
......................... SERVER passed test MachineAccount
Starting test: Services
......................... SERVER passed test Services
Starting test: ObjectsReplicated
......................... SERVER passed test ObjectsReplicated
Starting test: frssysvol
......................... SERVER passed test frssysvol
Starting test: frsevent
There are warning or error events within the last 24 hours after the

SYSVOL has been shared. Failing SYSVOL replication problems may cause

Group Policy problems.
......................... SERVER failed test frsevent
Starting test: kccevent
......................... SERVER passed test kccevent
Starting test: systemlog
......................... SERVER passed test systemlog
Starting test: VerifyReferences
......................... SERVER passed test VerifyReferences

Running partition tests on : TAPI3Directory
Starting test: CrossRefValidation
......................... TAPI3Directory passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... TAPI3Directory passed test CheckSDRefDom

Running partition tests on : ForestDnsZones
Starting test: CrossRefValidation
......................... ForestDnsZones passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... ForestDnsZones passed test CheckSDRefDom

Running partition tests on : DomainDnsZones
Starting test: CrossRefValidation
......................... DomainDnsZones passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... DomainDnsZones passed test CheckSDRefDom

Running partition tests on : Schema
Starting test: CrossRefValidation
......................... Schema passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... Schema passed test CheckSDRefDom

Running partition tests on : Configuration
Starting test: CrossRefValidation
......................... Configuration passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... Configuration passed test CheckSDRefDom

Running partition tests on : eritrea-mem
Starting test: CrossRefValidation
......................... eritrea-mem passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... eritrea-mem passed test CheckSDRefDom

Running enterprise tests on : eritrea-mem.gov.er
Starting test: Intersite
......................... eritrea-mem.gov.er passed test Intersite
Starting test: FsmoCheck
......................... eritrea-mem.gov.er passed test FsmoCheck

Therefore, I would like to request your king help to solve the problem as soon as possible. Thank you.


See More: NSlookup resolve but can not ping from serve

Report •

#1
February 4, 2010 at 06:48:33
Two network cards configured for the same subnet?
(172.18.252.7 and 172.18.252.243)

Is 172.18.252.242 the gateway to the internet?


Report •

#2
February 4, 2010 at 07:02:52
Two network cards configured for the same subnet?
(172.18.252.7 and 172.18.252.243)
Yes. They r configured to 255.255.255.0 subnet

Is 172.18.252.242 the gateway to the internet?
Yes.

172.18.252.243 is the gateway for 172.18.252.7 (Internal network).

172.18.252.242 is the main gateway for the Internet and for 172.18.252.243

I want to inform you that, once NAT is installed, DC is does not work. Clients do not join to DC and Internet works.


Report •

#3
February 4, 2010 at 07:17:17
Two network cards configured for the same subnet?
Subnet is 172.18.252.x / 255.255.255.0
and both network cards are in the same range, But whatfore?

What happens, when you temporarily disable the second network card (172.18.252.243)?
Under this conditions, is it possible to ping the clients from the server and vice versa ?


Report •

Related Solutions

#4
February 4, 2010 at 08:07:10
efremoj
You can not NAT between ips in the same subnet.

This is a fundimental tcp/ip understanding.

Please review the following;
http://www.windowsnetworking.com/ar...


Report •

#5
February 4, 2010 at 08:20:44
And in addition to wanderer, it makes no sense to NAT between IPs in the same subnet.

Report •

#6
February 5, 2010 at 00:30:12
When I disable 172.18.252.243, then I can ping clients computer from the server.

The purpose of NAT in my case is I want to the client to access Internet from private network (172.18.252.x with 255.255.255.0 subnet mask). If I do not use NAT, clients do not access Internet.

NSLOOKUp is working on the server but not on the clients.


Report •

#7
February 5, 2010 at 09:23:55
You have to use routing but not NAT for that.
Your problem is, both network cards are in the same network (172.18.252.x / 255.255.255.0).
So when you disable the 172.18.252.243 and set the default gateway of 172.18.252.242 (gateway to the internet) to the network card 172.18.252.7 , it should work for you.
I don't see any need for the second network card in your server right now.

Report •

#8
February 5, 2010 at 10:08:04
efremoj
did you review the link I gave you? That is how you setup RRAS and NAT to use the server as a gateway to the internet.

What are you trying to achive with this configuration?


Report •

#9
February 7, 2010 at 21:14:18
Yes, I have read the link. I had NAT configuration in such server. When I tried to clear winsock , then after that things happened.

My NAT purpose was to filter internal connection from public (Internet) usage. Moreover, the purpose of NAT in my case is I want to the client to access Internet from private network (172.18.252.x with 255.255.255.0 subnet mask). If I do not use NAT, clients do not access Internet.


Report •

#10
February 8, 2010 at 05:40:48
When I configured Routing on the server with only one NIC, everything becomes working.
I want to know that why it was working with NAT before I cleared winsock.

Thank u


Report •

Ask Question