Rebuild the _msdcs DNS zone

Copper Contributor

Hi Techs 

 

_msdcs DNS zone is missing from dns for a dc running server 2008 in the process of upgrading and discovered that. 

 

I have recreated it and restarted netlogon service now not getting it completely when checking only getting SOA and NS no dc, domains, gc, pdc displaying.

 

This prevents me to add a server to domain. 

 

Doing initial required tests

Testing server: Default-First-Site-Name\hostname
Starting test: Connectivity
The host 82372fa8-2891-4aa0-9ea2-c664f76a2c1b._msdcs.domain.com could not be resolved to an IP address. Check the DNS server, DHCP, server name, etc.
Got error while checking LDAP and RPC connectivity. Please check your firewall settings.
......................... hostname failed test Connectivity

 

Regards 

19 Replies

Before making changes or adding new domain controllers it is important to first confirm domain health is 100% via dcdiag, repadmin tools. If you needed assistance then please run     

   

Dcdiag /v /c /d /e /s:%computername% >C:\dcdiag.log (run on PDC emulator)
repadmin /showrepl >C:\repl.txt (run on **any** domain controller)
ipconfig /all > C:\%computername%.txt (run on **EVERY** domain controller)


Also check the domain controller ***System*** and ***Replication*** (DFS or FRS) event logs for errors since last boot. Post the ***Event Source*** and ***Event IDs*** of any found. (no evtx files)

then put `unzipped` text files up on OneDrive and share a link.    

    

 

There is only one dc i will share the results shortly.

please check your messages.
Sorry, I didn't want to sign up for that service.

I have shared one drive link as message.

Appears to be password protected.     

    

 

please check inbox and try again
it will definitely be accessible

Still is no access.   

 

i tested on my end on a different browser and it went through with the link i shared and password.

Here's what I get.      

   

DavePatrick_0-1702491180410.png

 

I have messaged the pasword please check inbox

Sorry I missed that you also messaged the password.    

    

A domain controller and all domain members must use the static ip address of DC listed for DNS and no others such as router or public DNS. So domain controller should have own static ip address (10.1.16.1) listed as primary and loopback (127.0.0.1) as secondary. Remove all the others, then do ipconfig /flushdns, ipconfig /registerdns, restart the netlogon service. Then put up a new set of files to look at.   

    

Then put up a new set of files to look at. I dont understand here.
Please note that there is only one server.

Do these steps.    

    

A domain controller and all domain members must use the static ip address of DC listed for DNS and no others such as router or public DNS. So domain controller should have own static ip address (10.1.16.1) listed as primary and loopback (127.0.0.1) as secondary. Remove all the others, then do ipconfig /flushdns, ipconfig /registerdns, restart the netlogon service.     

  

then repeat these steps.    

 

   

Dcdiag /v /c /d /e /s:%computername% >C:\dcdiag.log (run on PDC emulator)
repadmin /showrepl >C:\repl.txt (run on **any** domain controller)
ipconfig /all > C:\%computername%.txt (run on **EVERY** domain controller)


Also check the domain controller ***System*** and ***Replication*** (DFS or FRS) event logs for errors since last boot. Post the ***Event Source*** and ***Event IDs*** of any found. (no evtx files)

then put `unzipped` text files up on OneDrive and share a link.       

   

 

@Thabsareup just checking if there's any progress or updates? please don't forget to mark helpful replies.   

    

 

Hi
I am doing this activity later tonight in about 8 hours.

Regards

Sounds good.   

  

 

@Thabsareup just checking if there's any progress or updates? please don't forget to mark helpful replies.