Questions

LAN connectivity issues

+
0 Votes
Locked

LAN connectivity issues

Qbert0
Newbie in training trying to get a bum network back online.

Small school network running one server 2003.
Setup as a DC, file/printer, VPN, and DNS.
Also features one modem/router, two 24-port switches, about 30 workstations and a few printers.

Was setup with Dual homed Nics but i dissabled one due to not being able to get them working.

Everything is static ip, except tcp/ip set to auto.

1.Can only logon to server and teacher workstation. all other w/s state "no domain setup for user". Both Admin and Users get this reply.
2.Can ping teacher w/s from server but has 75% fail... Teacher cannot ping server.
3.Cannot ping any other w/s. only self and router
3.Teacher can remote access server but server cannot remote to any other computer.
4.Tracert from server to teach gets hung at router/switch.
5.All Nics and patch cables seem to be ok, new switches and modem.
6.Server and teach have internet.
  • +
    0 Votes
    LarryD4

    Ok well when you say
    "Everything is static ip, except tcp/ip set to auto."
    Whats auto mean?

    If everything is static, you mean even the workstations are static IP assignement?

    +
    0 Votes
    Qbert0

    The internet connection is set to obtain an IP address automatically. DNS is static.
    Yes, all of the w/s have static IP's.

    +
    0 Votes
    LarryD4

    What are the DNS entries for the PCs? For AD to work it has to be the AD DNS server.

    You should have the DNS server setup so that if it can't resolve an address, it fowards out the request, to your providers DNS, is this the case?

    The way you describe its like the local Workstations don't know how to get around the network, hence the DNS config questions.

    +
    0 Votes
    Qbert0

    The DNS entry is:
    192.168.0.1

    Where would I go to see if DNS is forwarding to the provider?

    Thanks for the Help!

    +
    0 Votes
    LarryD4

    I am assuming your DNS/DS Windows 2003 server address is 192.168.0.1.

    You will first need to look in the DNS server config on the server and make sure their are name record entries and reverse entries for your PC's in the network. This usually happens automatically if you use DHCP to assign addresses, but check to be sure.

    Their should also a configuration in DNS to tell it what IP address to foward unsuccessful lookups to if they fail. I can't remember exactly where but I'm pretty confident that its under options for the DNS server.

    Also make sure the the first DNS entry on the servers network card is the servers IP(192.168.0.1) and then the second entry is the DNS server of your provider.

    +
    0 Votes
    Qbert0

    IP of the server is actually:
    192.168.0.72
    So, does this look right for the server?
    IP Address. . . . . . . . . . . . : 192.168.0.72
    Subnet Mask . . . . . . . . . . . : 255.255.255.0
    Default Gateway . . . . . . . . . : 192.168.0.1
    DHCP Server . . . . . . . . . . . : 192.168.0.1
    DNS Servers . . . . . . . . . . . : 192.168.0.72
    205.171.3.25

    I set the DNS for the teach w/s to
    192.168.0.72
    and it can now ping server (thats a step forward).
    Still can't ping from server to teach w/s though.

    Found DNS forwarding is set to the providers DNS 205.171.3.25 and 205.171.2.25.
    Shouldn't it be set to the server ip?
    Also (fyi) this is what I get with nslookup:
    *** Can't find server name for address 192.168.0.72: Non-existent domain
    Default Server: UnKnown
    Address: 192.168.0.72

    +
    0 Votes
    LarryD4

    Sorry I didn't post sooner, its the next day for me. :)

    If your Windows 2003 server is also your AD DNS server then the IP address of the server MUST be the DNS server address for your workstations and everything else that resides in your network.

    +
    0 Votes
    Qbert0

    Ok... that make sense, but how would I check to make sure or correct these settings on each client if I cant logon to them? Even when I unplug the network cable and try to logon it still states "no domain setup for user"

    Thanks again for your help.

    +
    0 Votes
    Qbert0

    Sorry... actually states "No logon servers to access the logon request" when trying to logon to client computers. Same when clients try to logon.

    +
    0 Votes

    Umm

    LarryD4

    Umm Qbert0 I have to ask are you a Network Admin?

    I ask because even a Jr. Net Amin should know that you would need to logon to the local account for each PC and change the IP config..

    +
    0 Votes
    Qbert0

    I do appreciate your help Larry but this isn't helping.
    No. I am not an experienced Net Admin. As my first post stated Im in traing.

    I know I have to logon to the local account to change ip config... but this network was setup by a programmer who did things her own way... (she put shared files on an external Harddrive?).. and now Im left to clean up the mess.

    The LAN was set up for access to certain shared files and programs and only two internet sites. So needless to say I cannot do anything using a client p/w and all of the Admin P/w that are recorded do not allow me access to the client computers. Hence my previous post of "currently no logon servers available to service the logon request".

    +
    0 Votes

    Ok

    LarryD4

    I see your fustrated but the first thing to do is make sure your local PC's have the correct config for the network.

    Ues a test workstation and get the dns and gateway configed for the correct addresses and see where you get.

    Aside from that you may need to pull in a consultant for a day or to figure out what the network config was.

    +
    0 Votes
    CG IT

    and your in training, then where's the network administrator who oversees the network? Surely they can provide guidance?


    Besides, if you messed up the school network and it hasn't been fixed in a couple of days, I just can't see that happening. It would become apparent to those that hired you that you can't fulfill the job duties.

    +
    0 Votes
    CG IT

    you miss the fact that schools have local, state and federal regulations that they must comply with, regardless of what charter they have. Even training institutions [glorified diploma mills] that call themselves "schools" have regulations they must comply with.

    Here's the paradigm...cryto guys use it

    "you can only find it if you already know where it is".

    +
    0 Votes
    LarryD4

    Umm no CG not that I don't agree with the fact that this got fishy fast.

    But I worked in a technology school before what I am doing now and the network admin was the class instructor for MCSE. He walked out the door one day and took everything with him, documents and security info. So my current MCSA class spent the better part of a week rebuilding the entire 75 PC network.

    At least in Jersey, I know could open a trade school. I would just need a person with a Masters in Education and a person qualified in the subjects I would want to teach and I'm in business and certified. If I had a Phd. or a partner with a Phd. in education then we could be state certified school that could participate in state funded student enrollment.

    Meaning students needing skill rehabilitation, probationers,etc..

    +
    0 Votes
    CG IT

    well have to remember that the supreme court ruled on schools and the management and maintenance of data including emails. So there are regulations that schools, whatever flavor have to meet. While you can simply open a trade school, that does not mean that the trade school doesn't have to meet regulations.

    So here's some guy saying hey I don't get it and well I feel for him because I to at one time was a FNG. But I still don't buy it.

    I've never gone into a network and changed things when I didn't know what I was doing.

    As I said "you can only find it if you already know where it is".

  • +
    0 Votes
    LarryD4

    Ok well when you say
    "Everything is static ip, except tcp/ip set to auto."
    Whats auto mean?

    If everything is static, you mean even the workstations are static IP assignement?

    +
    0 Votes
    Qbert0

    The internet connection is set to obtain an IP address automatically. DNS is static.
    Yes, all of the w/s have static IP's.

    +
    0 Votes
    LarryD4

    What are the DNS entries for the PCs? For AD to work it has to be the AD DNS server.

    You should have the DNS server setup so that if it can't resolve an address, it fowards out the request, to your providers DNS, is this the case?

    The way you describe its like the local Workstations don't know how to get around the network, hence the DNS config questions.

    +
    0 Votes
    Qbert0

    The DNS entry is:
    192.168.0.1

    Where would I go to see if DNS is forwarding to the provider?

    Thanks for the Help!

    +
    0 Votes
    LarryD4

    I am assuming your DNS/DS Windows 2003 server address is 192.168.0.1.

    You will first need to look in the DNS server config on the server and make sure their are name record entries and reverse entries for your PC's in the network. This usually happens automatically if you use DHCP to assign addresses, but check to be sure.

    Their should also a configuration in DNS to tell it what IP address to foward unsuccessful lookups to if they fail. I can't remember exactly where but I'm pretty confident that its under options for the DNS server.

    Also make sure the the first DNS entry on the servers network card is the servers IP(192.168.0.1) and then the second entry is the DNS server of your provider.

    +
    0 Votes
    Qbert0

    IP of the server is actually:
    192.168.0.72
    So, does this look right for the server?
    IP Address. . . . . . . . . . . . : 192.168.0.72
    Subnet Mask . . . . . . . . . . . : 255.255.255.0
    Default Gateway . . . . . . . . . : 192.168.0.1
    DHCP Server . . . . . . . . . . . : 192.168.0.1
    DNS Servers . . . . . . . . . . . : 192.168.0.72
    205.171.3.25

    I set the DNS for the teach w/s to
    192.168.0.72
    and it can now ping server (thats a step forward).
    Still can't ping from server to teach w/s though.

    Found DNS forwarding is set to the providers DNS 205.171.3.25 and 205.171.2.25.
    Shouldn't it be set to the server ip?
    Also (fyi) this is what I get with nslookup:
    *** Can't find server name for address 192.168.0.72: Non-existent domain
    Default Server: UnKnown
    Address: 192.168.0.72

    +
    0 Votes
    LarryD4

    Sorry I didn't post sooner, its the next day for me. :)

    If your Windows 2003 server is also your AD DNS server then the IP address of the server MUST be the DNS server address for your workstations and everything else that resides in your network.

    +
    0 Votes
    Qbert0

    Ok... that make sense, but how would I check to make sure or correct these settings on each client if I cant logon to them? Even when I unplug the network cable and try to logon it still states "no domain setup for user"

    Thanks again for your help.

    +
    0 Votes
    Qbert0

    Sorry... actually states "No logon servers to access the logon request" when trying to logon to client computers. Same when clients try to logon.

    +
    0 Votes

    Umm

    LarryD4

    Umm Qbert0 I have to ask are you a Network Admin?

    I ask because even a Jr. Net Amin should know that you would need to logon to the local account for each PC and change the IP config..

    +
    0 Votes
    Qbert0

    I do appreciate your help Larry but this isn't helping.
    No. I am not an experienced Net Admin. As my first post stated Im in traing.

    I know I have to logon to the local account to change ip config... but this network was setup by a programmer who did things her own way... (she put shared files on an external Harddrive?).. and now Im left to clean up the mess.

    The LAN was set up for access to certain shared files and programs and only two internet sites. So needless to say I cannot do anything using a client p/w and all of the Admin P/w that are recorded do not allow me access to the client computers. Hence my previous post of "currently no logon servers available to service the logon request".

    +
    0 Votes

    Ok

    LarryD4

    I see your fustrated but the first thing to do is make sure your local PC's have the correct config for the network.

    Ues a test workstation and get the dns and gateway configed for the correct addresses and see where you get.

    Aside from that you may need to pull in a consultant for a day or to figure out what the network config was.

    +
    0 Votes
    CG IT

    and your in training, then where's the network administrator who oversees the network? Surely they can provide guidance?


    Besides, if you messed up the school network and it hasn't been fixed in a couple of days, I just can't see that happening. It would become apparent to those that hired you that you can't fulfill the job duties.

    +
    0 Votes
    CG IT

    you miss the fact that schools have local, state and federal regulations that they must comply with, regardless of what charter they have. Even training institutions [glorified diploma mills] that call themselves "schools" have regulations they must comply with.

    Here's the paradigm...cryto guys use it

    "you can only find it if you already know where it is".

    +
    0 Votes
    LarryD4

    Umm no CG not that I don't agree with the fact that this got fishy fast.

    But I worked in a technology school before what I am doing now and the network admin was the class instructor for MCSE. He walked out the door one day and took everything with him, documents and security info. So my current MCSA class spent the better part of a week rebuilding the entire 75 PC network.

    At least in Jersey, I know could open a trade school. I would just need a person with a Masters in Education and a person qualified in the subjects I would want to teach and I'm in business and certified. If I had a Phd. or a partner with a Phd. in education then we could be state certified school that could participate in state funded student enrollment.

    Meaning students needing skill rehabilitation, probationers,etc..

    +
    0 Votes
    CG IT

    well have to remember that the supreme court ruled on schools and the management and maintenance of data including emails. So there are regulations that schools, whatever flavor have to meet. While you can simply open a trade school, that does not mean that the trade school doesn't have to meet regulations.

    So here's some guy saying hey I don't get it and well I feel for him because I to at one time was a FNG. But I still don't buy it.

    I've never gone into a network and changed things when I didn't know what I was doing.

    As I said "you can only find it if you already know where it is".