Windows 2003 server without internet connection (please help)

[DynamicDaveJonker]

I have just set-up a windows 2003 server as a domain controller. I installed everything like microsoft (the domain controller setup wizard) told me to.

I'm behind a broadband connection. All computers in the network can connect to the internet perfectly, but the server can't!

1. I uninstalled IE enhanced security
2. All workstation can connect to the Internet
3. Server can ping Gateway (router)
4. Server can ping internal addresses
5. No firewall or ICS installed
6. The server has a static internal IP address
7. Server can NOT ping internet address and corresponding IP addresses

I think the problem might be with the DNS. But I'm a DNS newbie and I could really need some help.

I do remember having the same problems with Windows 2000 server, but I can't remember the solution (another guy fixed it for me).

Thanks.
Dave

 

[lyzzard]

You will need to set up forwarders in your DNS setup to point to your ISP's DNS servers.

 

[karmic]

How is your dhcp configured? run IPCONFIG /ALL on one of your workstations and check the DNS addresses. The DNS server should be listed as the domain controller address.

Set the forwarders, as lyzzard said. and check the server options under DHCP. Set an option for a router if you have one, and a DNS server (you DC address)

Is your server statically assigned with an IP address? What about the DNS addresses? if everything works the way it should, you should be able to statically assign your domain server address in the servers nic to get internet.

~ K.I.S.S - Don't make it any more complex than it has to be ~

 

[DynamicDaveJonker]

This is what I did guys. Please correct me where I'm wrong...

1. Started 'Configure a DNS server wizard'
2. Option 'Create a forward lookup zone
3. Option 'This server maintains the zone'
4. Zone name 'DomainName.local'
5. Option 'Do not allow Dynamic Updates'
6. Added the 2 DNS Servers of my ISP at 'Forward DNS queries'

And to get back on your remarks:
- My server has an internal static IP address
- There is no DHCP installed on the server, because the router is a DHCP server of it's own

I really don't get it. I can't even ping outside the network.

Pleas help... this is frustrating...

Dave

 

[CCNEH]

Is that router cisco or equivelant, maybe theres a statement in an access list preventing the server from getting past the private interface.

 

[DynamicDaveJonker]

No, that's not it either CCNEH. It's just my home DSL router from Alcatel. And besides... it used to work fine with Windows 2000 server, and no alterations were made to the router.

 

[AaronPower]

Please post the results of a "ipconfig -all" command for your server and one of the working workstation machines.

If you are worried about secuirty, edit the results a bit, but make sure that all the lines are still there, and for the Ip addresses, only edit the first parts (make sure the host ID is left intact). The results should look something like...

C:\>ipconfig -all

Windows IP Configuration

Host Name . . . . . . . . . . . . : my-server
Primary Dns Suffix . . . . . . . : domain.local
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : domain.local
my.isp.com

Ethernet adapter Broadcom NetXtreme Gigabit Ethernet Adapter - onboard:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Broadcom NetXtreme Gigabit Ethernet
Physical Address. . . . . . . . . : xx-xx-xx-xx-xx-xx
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 1.1.1.57
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 1.1.1.254
DNS Servers . . . . . . . . . . . : 1.1.1.22
1.1.1.23
Primary WINS Server . . . . . . . : 1.1.1.22

PPP adapter {CB8E1C24-CDC1-41C3-930C-BF5A931F6003}:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : WAN (PPP/SLIP) Interface
Physical Address. . . . . . . . . : 00-53-45-00-00-00
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 192.168.234.235
Subnet Mask . . . . . . . . . . . : 255.255.255.255
Default Gateway . . . . . . . . . :
NetBIOS over Tcpip. . . . . . . . : Disabled


This almost has to be an IP configuration issue.

Aaron Power.

 

[DynamicDaveJonker]

AaronPower, here it is...

Windows IP configuration
Host name : Sirius
Primary DNS suffix : Galactica.com
Node Type : Unknown
IP Routing enabled : No
WINS Proxy enabled : No
DNS Suffix search list : Galactica.com

Ethernet adapter Local Area Connection:
Conn.-specific DNS Suffix :
Description : 3COM 10/100 etc.
Physical address : xx-xx-xx-xx-xx-xx
DHCP enabled : No
IP Address : 10.0.0.202
Subnetmask : 255.255.255.0
IP Address : 10.0.0.201
Subnetmask : 255.255.255.0
IP Address : 10.0.0.200
Subnetmask : 255.255.255.0
IP Address : 10.0.0.150
Subnetmask : 255.255.255.0
Default gateway : 10.0.0.138
DNS Servers : 10.0.0.138
: 195.121.1.34

- With 10.0.0.150 being the primary (first in list) IP address.
- And 10.0.0.138 being the router
- And 195.121.1.34 is the primary DNS of my ISP

Where is that Galactica.com coming from? Shouldn't that be Galactica.local like I named the DNS zone?

Thanks,
Dave

 

[AaronPower]

Alright.... first things first.

The default DNS suffix is configured from -
Control Panel | System | Computer Name | Change | More
By default, it should be the same as your domain name, but it can be different. Likewise , the DNS zone does not need to be named the same as your domain name, but you really need to have a forward lookup zone with the same name as your domain.

Did you call the domain .local or .com? You can always put in an extra search string so that any DNS query will search both zones.

The machine has 4 internal IP addresses, all on the one physical interface. I am sure you have a reason for this configuration (I guess you are hosting some Internet visible services through reverse proxy?), but I would suggest removing all but the primary one, until you get the basic access working. You can add the others back in later.

As karmic says in his post - Keep it simple. Especially true when troubleshooting a problem.

Can you ping the inside interface of the router -
PING 10.0.0.138

Can you ping the ISP DNS server by address -
PING 195.121.1.34
If not, exactly which error is coming back?

Can you do a "Trace Route" to the ISP DNS -
TRACERT -d 195.121.1.34

I know you said that nothing has changed on the router, but you should check the router configuration, and also see if it is logging anything to its own log files.

Also, can you compare the above IPCONFIG results with those from a working workstation. Are they different in any way other than the IP Address line?

Regards,
Aaron Power.

 

[DynamicDaveJonker]

AaronPower,

Thanks for your great advice, but that was not the problem.

IPCONFIG results from workstations and the server is the same. The router is configured properly. And I use the 4 IP addresses internaly for website testing.

Somehow, after I reviewed my IP settings and clicked OK, suddenly the Internet connection came alive. This is very strange, since I didn't change anything.

Thank you all for your advice. I still don't know what the problem was, but it works fine now and I'll leave it at that

Dave

 

[crackn101]

I had a similar problem, and I also tried the DNS forwarder.
I think that was part of it.
Make sure that you also go into the network connections
under the tcp/ip advanced settings, and enter the
router IP address into the gateway setting.

The last thing that I did on the server, was setup a
reserved ip address for the router.

Go into Administrators Tools -> DHCP
Click on your server to expand the drop-down options.
Double-click on Scopes.
Highlight Reservations. Then on the menu bar at the top
click -> Actions -> New Reservation

Give it a name.
Fill in the Router's static IP address, and MAC address.

After doing all of that, then I was able to get right on
the internet.
I'm not sure if I had to reserve the ip or not, but it
worked so I left it that way.
I too am a 2003 newbie. We just upgraded from NT4.
Alot of differences.
Just don't go hog wild changing too many things unless,
you are sure.

Crackn101

 

[wstaylor]

I have the same type of problem... except that I have an internet connection for all of the clients on the network via a linksys router.. none of the will access Windows update or download any large files... any suggestions???