Ah, but what tipped me off is definitely not normal. I have a batch file that runs a series of REPADMIN /SYNCALL commands to force replication between all the DCs. It hasn't thrown an error in literally years, and normally takes about 5 seconds to complete. No every single server coughs up the RPC Server is unavailable error.
You're right though, the DS event log is clean. So is the FRS log. Perhaps I should just head home on time, not worry about and have a beer. -Philip Hershey This communication, including attachments, is for the exclusive use of addressee and may contain proprietary, confidential and/or privileged information. If you are not the intended recipient, any use, copying, disclosure, dissemination or distribution is strictly prohibited. If you are not the intended recipient, please notify the sender immediately by return e-mail, delete this communication and destroy all copies. -----Original Message----- From: Steve Kradel [mailto:[email protected]] Sent: Thursday, December 13, 2012 12:42 PM To: NT System Admin Issues Subject: Re: DNS/Replication broken after MS updates? You would see a bunch of errors in the Directory Service log if replication were actually busted. IME it's normal for the dcdiag DNS tests (and dcpromo, often) to complain about DNS delegations, even in a perfectly healthy environment. --Steve On Thu, Dec 13, 2012 at 2:52 PM, Phil Hershey <[email protected]> wrote: > Our DCs are set to install MS updates automatically, and apparently > yesterday morning they did. Now replication is busted. DCDIAG DNS > test finishes with: > > Summary of DNS test results: > > > Auth Basc Forw Del Dyn > RReg Ext > > _________________________________________________________________ > Domain: agia.in > > dc-ca1 PASS PASS PASS FAIL PASS > PASS n/a > mail-dc2 PASS PASS PASS FAIL PASS > FAIL n/a > mail-dc5 PASS PASS PASS FAIL PASS > PASS n/a > dc-az1 PASS PASS PASS FAIL PASS > PASS n/a > mail-dc3 PASS PASS PASS FAIL PASS > PASS n/a > mail-dc4 PASS PASS PASS FAIL PASS > PASS n/a > > ......................... agia.in failed test DNS > > Not good. READMIN SYNCALL passes all error out with RPC Server is > unavailable. Of course the RPC Server service is up and running on > all the DCs. > > Checking the DNS event log shows a 4014 error that's empty, of course. > Plus a few event 4521's showing rejected DNS packets from external > sources. > > Any chance the MS updates from yesterday caused this? It seems mighty > coincidental. > > Thanks. > > > > Philip Hershey > AGIA Insurance Services > Carpinteria, CA > > > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ > <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ > > --- > To manage subscriptions click here: > http://lyris.sunbelt-software.com/read/my_forums/ > or send an email to [email protected] > with the body: unsubscribe ntsysadmin > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected] with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected] with the body: unsubscribe ntsysadmin
