Forum Discussion
Luigi_Iotti
Mar 13, 2020Copper Contributor
Windows Server 2019 warns No Internet Access after AD, DNS and DHCP setup
Hi all. I have a Windows Server 2019 VM (HyperV) where I setup my first DC. I also setup DNS and DHCP on the server. After deploying these, the yellow warning icon appeared on the network icon in...
rob_nicholson_helios
Jun 26, 2020Brass Contributor
This fault is nothing AFAIK to do with root hints - they are only ever used when the forwarder DNS server fails or is not configured.
It's some flaw in the check for internet access when running on a single domain controller system. When you promote a member to a domain controller and install a DNS server at the same time, it removes the DNS settings against the NIC, uses that for the DNS server forwarder and replaces it with 127.0.0.1. This works perfectly for everything except for whatever test is being carried out for internet connectivity.
Adding the DNS setting on the DC for an upstream DNS server (e.g. router or Google DNS or OpenDNS) and the check starts working.
The DC itself will refer to itself as 127.0.0.1 is checked first and most of the time will work.
It's some flaw in the check for internet access when running on a single domain controller system. When you promote a member to a domain controller and install a DNS server at the same time, it removes the DNS settings against the NIC, uses that for the DNS server forwarder and replaces it with 127.0.0.1. This works perfectly for everything except for whatever test is being carried out for internet connectivity.
Adding the DNS setting on the DC for an upstream DNS server (e.g. router or Google DNS or OpenDNS) and the check starts working.
The DC itself will refer to itself as 127.0.0.1 is checked first and most of the time will work.
rob_nicholson_helios
Jun 26, 2020Brass Contributor
It might be because it's very common for the forwarded DNS server to fail to resolve if it's picked up the upstream router like this. I'm just going to change the forwarder to Google DNS and remove from the static IP configuration to see if that works as well.