dns issues?

F

fimchick

OSNN Senior Addict
Joined
14 Mar 2004
Messages
276
hi folks,

i have a very odd problem -- some, not all, of my users can't resolve our server hostnames when they get on the vpn. however, they can get to the server by ip without a problem. using a FQDN doesn't help either, only ip works.

why is it that only some users have this issue and not others? has anyone experienced this kind of problem before?


thanks!!
 
is it a properly listed domain name or one you created for the network? Do the VPN clients have your DNS server listed when they connect?
 
fimchick said:
hi folks,

i have a very odd problem -- some, not all, of my users can't resolve our server hostnames when they get on the vpn. however, they can get to the server by ip without a problem. using a FQDN doesn't help either, only ip works.

why is it that only some users have this issue and not others? has anyone experienced this kind of problem before?


thanks!!
Click to expand...

Does FQDN work for the users who CAN resolve the server DNS name?

I would suggest looking at the DHCP server on the RRAS side. I would look to see what address ranges those who are having problems are falling in, versus the users who aren't having problems. Does it happen at the same time of day? Can some people get on, and others can't, at the same time of the day?

Do you have pre-configured VPN clients installed on these machines? It is also possible that the users who can't connect aren't obtaining a valid internal IP, and are still using the IP from their ISP wherever they are.
 
hmm, not sure what you mean by this:

Geffy said:
is it a properly listed domain name or one you created for the network?
Click to expand...

when i do an nslookup on the clients when they're on the vpn, i can see our dns server listed.
 
wwwdjrcs said:
Does FQDN work for the users who CAN resolve the server DNS name?

I would suggest looking at the DHCP server on the RRAS side. I would look to see what address ranges those who are having problems are falling in, versus the users who aren't having problems. Does it happen at the same time of day? Can some people get on, and others can't, at the same time of the day?

Do you have pre-configured VPN clients installed on these machines? It is also possible that the users who can't connect aren't obtaining a valid internal IP, and are still using the IP from their ISP wherever they are.
Click to expand...

Hmm, I will check the DHCP settings. I don't think it's the client VPN problem, we're just using windows VPN to connect. very simple, nothing fancy or exotic.

Thanks for the replies guys!
 
fimchick said:
Hmm, I will check the DHCP settings. I don't think it's the client VPN problem, we're just using windows VPN to connect. very simple, nothing fancy or exotic.

Thanks for the replies guys!
Click to expand...

I don't have anything in front of me, but the reason I brought up the client is because you can configure where to obtain an IP address from. You want to ensure that when they connect, they are grabbing an internal IP, as well as full network information (including DNS). If they are using their own ISP, they won't be able to resolve your server names because the server is internal to your network.

As an addendum to my DHCP server comment, the more I think about it, I would doubt the users that cannot connect will be logged in there, indicating they are not pulling an address.
 
I think it very likely IS a clientside issue - as someone who uses VPN at least five times a week in exactly the manner described for my livelihood I have come acorss this myself.

Firstly I assume domain name propagation is simply a non-issue here?

Then secondly I would advise all clients (hope it is not too many, and that they know how to do this readily!) to add your DNS server to the mix. Then post back if any problem remains.... Fact is there have been a few other issues in this arena - one other thing to make mandatory is that they are all SP2, but I am taking that as a given.
 
Mainframeguy said:
I think it very likely IS a clientside issue - as someone who uses VPN at least five times a week in exactly the manner described for my livelihood I have come acorss this myself.

Firstly I assume domain name propagation is simply a non-issue here?

Then secondly I would advise all clients (hope it is not too many, and that they know how to do this readily!) to add your DNS server to the mix. Then post back if any problem remains.... Fact is there have been a few other issues in this arena - one other thing to make mandatory is that they are all SP2, but I am taking that as a given.
Click to expand...

You are correct, they are all running SP2. What do you mean by "adding the DNS server to the mix"?
 
OK I shall assume you know exactly where my shorthand takes you -

VPN connection --> Properties --> TCP/IP ---> Advanced ---> Add other DNS server.

This to be done for all clients - adding YOUR DNS servers IP address.

hope that all makes sense, I expect it will, since you seem to know what I am talking about...
 
MFG, that is more what I had inquired to pre-configure and deploy VPN client configurations. Otherwise, if your tip corrects it, it will have to be done manually on each client laptop.
 
Mainframeguy said:
OK I shall assume you know exactly where my shorthand takes you -

VPN connection --> Properties --> TCP/IP ---> Advanced ---> Add other DNS server.

This to be done for all clients - adding YOUR DNS servers IP address.

hope that all makes sense, I expect it will, since you seem to know what I am talking about...
Click to expand...

Roger dodger! I gotcha now. I'll check and post back here! Thanks guys!
 
/me awaits post back.... All sorted now? When there is no postback I tend to assume that, but it ain't necessarily so.....
 
Hehehe, I try not to forget posting back the results :)

I've tested this on my machine and it seems to be working, but trying to get in touch with the other users can be a pain in the a$$ (they're remote and once you just give them the server ip and they can hit the server, they're no longer as willing to help and try to work out the issues. you know how that goes...).

Will post an update soon (hopefully) :)
 
You must log in or register to reply here.

Members online

No members online now.
Total: 230 (members: 0, guests: 230)

Affiliates

lunarsoft.net techzonez.com

- Contact us to trade links -

OSNN OSNN NTFS XP-erience

Latest profile posts

Steevo
Steevo
Also Hi EP and people. I found this place again while looking through a oooollllllldddd backup. I have filled over 10TB and was looking at my collection of antiques. Any bids on the 500Mhz Win 95 fix?
•••
Steevo
Steevo
Any of the SP crew still out there?
•••
Xie
Xie wrote on Electronic Punk's profile.
Impressed you have kept this alive this long EP! So many sites have come and gone. :(

Just did some crude math and I apparently joined almost 18yrs ago, how is that possible???
•••
N
Nismo83
hello peeps... is been some time since i last came here.
•••
Electronic Punk
Electronic Punk wrote on Sazar's profile.
Rest in peace my friend, been trying to find you and finally did in the worst way imaginable.
•••

Forum statistics

Threads
62,015
Messages
673,494
Members
5,621
Latest member
naeemsafi
Back