Printable View
Hi everyone !
When I want to add severals Mac OS X on my network, I have this problem:
http://blog.jungledisk.com/2007/10/3...d-work-around/
I found many people having this problem... But no one with a solution !
2 Windows 2003 DC/DNS server. integrated AD zone.
Any idea ?
Hugo
In news:e5x9lxykIHA.5396@TK2MSFTNGP04.phx.gbl,
Hugo <newschrg@noemail.noemail> typed:
> Hi everyone !
>
> When I want to add severals Mac OS X on my network, I have this
> problem:
> http://blog.jungledisk.com/2007/10/3...d-work-around/
>
> I found many people having this problem... But no one with a solution
> !
> 2 Windows 2003 DC/DNS server. integrated AD zone.
>
> Any idea ?
>
> Hugo
The article says this is expected behavior with misconfigured DNS servers.
Querying for SRV records is slowly becoming more popular with some new
applications. AD uses SRV records.
You didn't provide any of your infrastructure's or OSx configuration
information. So not knowing anything about your AD infrastructure, how
you've configured the DNS servers, how DNS is configured between the two DCs
in their ip properties, if there are any issues or misconfigs with AD, (such
as a single label name domain or disjointed namespace), and especially if or
how you have the OSx box bound to the AD domain. I did it once a few years
ago and don't remember all the steps, but this is important. Also what DNS
server is the OSx using in it's ip configuration.
--
Regards,
Ace
This posting is provided "AS-IS" with no warranties or guarantees and
confers no rights.
Ace Fekay, MCSE 2003 & 2000, MCSA 2003 & 2000, MCSE+I, MCT,
MVP Microsoft MVP - Directory Services
Microsoft Certified Trainer
For urgent issues, you may want to contact Microsoft PSS directly. Please
check http://support.microsoft.com for regional support phone numbers.
Infinite Diversities in Infinite Combinations
Hello Hugo,
Thank you for posting in newsgroup.
According to the description, the issue is related to DNS SRV record
resolution of the third party product. If I have any misunderstanding,
please feel free to let me know.
Before we move on, would you please clearly describe the issue so that we
can troubleshoot with that?
Information needed:
===================
1. What is the system environment of the issue?
2. Did you install Windows Server 2003 on a MAX OS x server as a domain
controller and DNS?
3. If so, can you see the SRV record in the DNS console of the Server?
4. Can all the domain clients work normally within the domain? Can they
logon the domain? Can they add in the domain?
Suggestion:
===============
Since it is the known issue of the MAC OS X server with Leopard system, I
would like to suggest that you first follow the workaround that in that
blogs, and check if the issue re-occur with your environment.
Meanwhile, I would like to suggest that you uninstall the IPv6 on the
problematic computer, and check if the issue is resolved.
1. Open the properties of one of the server network cards.
2. Select the IPV6 entries and click Uninstall
3. Restart the server.
Reference:
==========
Description of the DNS SRV Resource Record Type
http://support.microsoft.com/kb/232025
SRV Resource Records
http://www.microsoft.com/technet/pro...eskit/distrib/
dsbc_nar_sdns.mspx?mfr=true
For more information about SRV record, Please refer to:
RFC 2782
http://www.ietf.org/rfc/rfc2782.txt
Hope it helps.
Thanks.
David Shen
Microsoft Online Partner Support
Hi everyone !
I have 2 Intel x86 Windows 2003 DC/DNS with AD integrated DNS zone
"crulrg.local"
IP adress distributed with MS DHCP Server. DHCP server make DNS upgrade on
behalf of client (because all clients are not windows client).
In the following trace.... You will see that it take 4-5 sec. to receive the
answer !
2 sec. for each NXDomain.
Why does it take 2 sec. for NXDomain request ?
=====================================
09:07:24.547575 IP cappuccino.crulrg.local.54879 >
cafeine.crulrg.ulaval.ca.domain: 47094+ SRV? _ssh._tcp.cafeine.crulrg.local.
(48)
09:07:24.548675 IP cafeine.crulrg.ulaval.ca.domain >
cappuccino.crulrg.local.54879: 47094 NXDomain 0/1/0 (117)
09:07:24.549011 IP cappuccino.crulrg.local.54880 >
cafeine.crulrg.ulaval.ca.domain: 34051+ SRV? _ssh._tcp.cafeine.crulrg.local.
(48)
09:07:24.549817 IP cafeine.crulrg.ulaval.ca.domain >
cappuccino.crulrg.local.54880: 34051 NXDomain 0/1/0 (117)
09:07:26.550380 IP cappuccino.crulrg.local.54881 >
cafeine.crulrg.ulaval.ca.domain: 15490+[|domain]
09:07:26.555019 IP cafeine.crulrg.ulaval.ca.domain >
cappuccino.crulrg.local.54881: 15490 NXDomain[|domain]
09:07:26.555489 IP cappuccino.crulrg.local.54882 >
cafeine.crulrg.ulaval.ca.domain: 39419+[|domain]
09:07:26.556524 IP cafeine.crulrg.ulaval.ca.domain >
cappuccino.crulrg.local.54882: 39419 NXDomain[|domain]
09:07:28.558575 IP cappuccino.crulrg.local.54883 >
cafeine.crulrg.ulaval.ca.domain: 43521+ A? cafeine.crulrg.local. (38)
09:07:28.559738 IP cafeine.crulrg.ulaval.ca.domain >
cappuccino.crulrg.local.54883: 43521 1/13/10 A cafeine.crulrg.ulaval.ca
(425)
=====================================
Thank you !
Hugo
"David Shen [MSFT]" <v-dashen@online.microsoft.com> a écrit dans le message
de news: tVreAN%23kIHA.9288@TK2MSFTNGHUB02.phx.gbl...
> Hello Hugo,
>
> Thank you for posting in newsgroup.
>
> According to the description, the issue is related to DNS SRV record
> resolution of the third party product. If I have any misunderstanding,
> please feel free to let me know.
>
> Before we move on, would you please clearly describe the issue so that we
> can troubleshoot with that?
>
> Information needed:
> ===================
>
> 1. What is the system environment of the issue?
>
> 2. Did you install Windows Server 2003 on a MAX OS x server as a domain
> controller and DNS?
>
> 3. If so, can you see the SRV record in the DNS console of the Server?
>
> 4. Can all the domain clients work normally within the domain? Can they
> logon the domain? Can they add in the domain?
>
> Suggestion:
> ===============
>
> Since it is the known issue of the MAC OS X server with Leopard system, I
> would like to suggest that you first follow the workaround that in that
> blogs, and check if the issue re-occur with your environment.
>
> Meanwhile, I would like to suggest that you uninstall the IPv6 on the
> problematic computer, and check if the issue is resolved.
>
> 1. Open the properties of one of the server network cards.
>
> 2. Select the IPV6 entries and click Uninstall
>
> 3. Restart the server.
>
> Reference:
> ==========
>
> Description of the DNS SRV Resource Record Type
> http://support.microsoft.com/kb/232025
>
> SRV Resource Records
> http://www.microsoft.com/technet/pro...eskit/distrib/
> dsbc_nar_sdns.mspx?mfr=true
>
> For more information about SRV record, Please refer to:
>
> RFC 2782
> http://www.ietf.org/rfc/rfc2782.txt
>
> Hope it helps.
>
> Thanks.
>
> David Shen
> Microsoft Online Partner Support
>
Dear Customer,
Thanks for posting here.
Since the issue is related to MAC client specific performance issue, we
would like to suggest that you contact Microsoft Customer Service and
Support (CSS) via telephone so that a dedicated Support Professional can
assist with this performance issue. In the support case, our support
engineer may also need to involve MAC engineers so that it can be resolved
efficiently.
You may obtain the phone numbers for specific technology request please
take a look at the web site listed below:
http://support.microsoft.com/default...roPhone#faq607
Hope the issue will be resolved soon.
Thanks for your understanding.
David Shen
Microsoft Online Partner Support
I am interested in finding out if anyone has located an answer to this
concern.
It seems as though when I am at work on a SBS2003 sever the dns
lookups while browsing the internet take long... When I am at home
they are quick and I can fully appreciate the speed of my connection.
I don't know what to do at this point.
I presume it is something to do with my mac and its incopatability
with the windows server and its DNS routing, but does anyone have a
solution or at least a workaround for this problem in the meantime.
Thanks to all.
In news:c39ddf08-976b-4f42-8f49-88f952661b1a@w1g2000prd.googlegroups.com,
DMayorgaJr@gmail.com <DMayorgaJr@gmail.com> typed:
> I am interested in finding out if anyone has located an answer to this
> concern.
> It seems as though when I am at work on a SBS2003 sever the dns
> lookups while browsing the internet take long... When I am at home
> they are quick and I can fully appreciate the speed of my connection.
> I don't know what to do at this point.
> I presume it is something to do with my mac and its incopatability
> with the windows server and its DNS routing, but does anyone have a
> solution or at least a workaround for this problem in the meantime.
> Thanks to all.
Are the Macs only pointing to the AD's DNS servers or are there others in
their network configs?
If what you;re implying is the problem with internet traffic but not
internally, that may infer the DNS addresses are mixed internal and external
DNS. If it is slow or non-existent trying to resolve external name, that may
point to the fact they are using EDNS0, which allows DNS UDP responses
greater than 512 bytes.
Please provide an ipconfig /all of the DC and a network config from the Mac
workstation please?
Also, what firewall are you using? Does it allow EDNS0?
If you use nslookup to resolve a name you are having problems with and it
doesn't work, change the transport nslookup is using to TCP by typing in:
set vc
And try again. If it works, then EDNS0 is blocked.
Ace
The DC (SBS 2003) runs everything - DNS, FIREWALL and AD. The name of the
domain is blah.local, and when I connect my mac to the network and it inserts
the search domain of blah.local, that is when the problems start happening.
If I VPN (even from inside the office) the the server and remove the search
domain from the VPN connection leaving it blank, I get the fast connections
and DNS resolutions again.
If I do not do that, then if I type in Google.com, it takes about 30 seconds
to resolve the address (during which time it says connecting in Safari).
I really am not sure what to do.
Thanks in advance.
In news:FCB1C602-D9A7-42AF-9103-38438D2F4A59@microsoft.com,
DMJR <DMJR@discussions.microsoft.com> typed:
> The DC (SBS 2003) runs everything - DNS, FIREWALL and AD. The name
> of the domain is blah.local, and when I connect my mac to the network
> and it inserts the search domain of blah.local, that is when the
> problems start happening. If I VPN (even from inside the office) the
> the server and remove the search domain from the VPN connection
> leaving it blank, I get the fast connections and DNS resolutions
> again.
> If I do not do that, then if I type in Google.com, it takes about 30
> seconds to resolve the address (during which time it says connecting
> in Safari).
>
> I really am not sure what to do.
>
> Thanks in advance.
Using the term 'inserts the search domain' I assume you mean DHCP is giving
the client Option 015, the Connection Suffix (not the Search Suffix or
Primary DNS Suffix) and you're saying the Mac uses that as it's Search
Suffix? I can't immediately see how that creates an issue. Only on the Macs
and not the WIndows machines?
Also, I assume you mean SBS is running ISA Server 2004.
Curious concerning the DNS server's config. Both NICs pointing to itself or
is the outside one pointing to an ISP?
Is Proxy (web caching service) enabled too?
Is DNS configured with a forwarder?
I assume the firewall ports are all open for DNS including 53 TCP and 53
UDP?
Is it only happening with certain domain names or all domain names when you
remove the suffix?
Curious also, what type of connection - T1, Cable, FIOS, ADSL or SDSL?
The search suffix is used when trying to resolve a single hostname (not an
FQDN). It suffixes the Search Suffix to the hostname and sends the query to
the DNS server configured in the interface's IP properties. If no hit, then
it tries to resolve the single name using NetBIOS name resolution (which
includes WINS). Other than that, it won't suffix an FQDN unless all attempts
to resolve it fail, then it will suffix an FQDN. Read the following article
for more specifics:
DNS Name Resolution Process (Windows 2000 but applies to 2003, 2008, XP and
Vista):
http://www.microsoft.com/technet/pro....mspx?mfr=true
So I might be missing something on how it can slow the resolution process,
other than if DNS is misconfigured or the suffix you are getting doesn't
match blah.com, the zone in DNS, but you said it does. Just thinking out
loud on this one.
Ace
I have the same problem. The Mac is slow to see any first page of the web site. I found that Windows machine is fine in the same network. If the Windows DNS misconfigured, how could the PCs are fine to internet?
K
"Kenm" <Kenm.3ft8zc@DoNotSpam.com> wrote in message
news:Kenm.3ft8zc@DoNotSpam.com...
>
> I have the same problem. The Mac is slow to see any first page of the
> web site. I found that Windows machine is fine in the same network. If
> the Windows DNS misconfigured, how could the PCs are fine to internet?
>
> K
>
>
> --
> Kenm
> ------------------------------------------------------------------------
> Kenm's Profile: http://forums.techarena.in/members/kenm.htm
> View this thread: http://forums.techarena.in/server-dns/942039.htm
>
> http://forums.techarena.in
>
It depends on what DNS server the Mac is using in it;s IP configuration. If
it is using the DNS server that the PCs are using as the FIRST entry, then I
don't see why there should be a problem. The DNS resolver service on a Mac
(BSD Unix based) works similarly to Windows DNS resolver service. If there
is another DNS address as the first entry, it;'s asking that one first and
if it does not have the answer, it has to go through it's time out process
before it asks the next one in the list.
--
Regards,
Ace
This posting is provided "AS-IS" with no warranties or guarantees and
confers no rights.
Ace Fekay, MCSE 2003 & 2000, MCSA 2003 & 2000, MCSE+I, MCT,
MVP Microsoft MVP - Directory Services
Microsoft Certified Trainer
For urgent issues, you may want to contact Microsoft PSS directly. Please
check http://support.microsoft.com for regional support phone numbers.
Infinite Diversities in Infinite Combinations