Printable View
Disable RRAS and restart the box to get to the firewall.
Do like the Watery Tart says and simplify your architecture. ;)
Don't set up your zones in DNS and then DCPromo let Win2k3 set up it's own zone.
You are correct - AD does not work without fully functioning DNS since this is where the information about your zone are kept. It is always best to store the AD DNS information within AD itself - it's more tightly integrated and Win2X manages it more efficiently than you can.
Sorry, I made a mistake when I wrote the DNS Server IP addresses. I wasn't in front of the system and just tried to remember off hand.
First DNS Server running (Server 2003) Domain Server
Second Router
I did this on each work station as well as the Server.
I figured it would be a DNS issue. I checked zone lookup and I have my 4 folders. Also ran DCdiag and passed all tests.
I'll try the other suggestions to see what is going on. I figured that it might be the firewall because I'm unable to ping and the error given was the portion of the firewall that seems to deal with Layers 1 - 3 traffic. In the case of my ping, ICMP seems to be blocked.
I'll know later on. This thing is really getting to me. I've never been stuck on a step like this when setting up a network. I've always installed Server 2003 myself. This server came preinstalled from Dell, so I don't know what to think.
Thanks a lot for all your help. I'll message back with an update.
Yep... Mine was preinstalled by Dell too..... There is no access to the server from the network in terms of pinging etc. in it's default config when it comes from Dell.....
I'm still not sure if that is a good thing or not..... It's going to confuse the hell out of inexperienced people and it sure added time to the contract job I was doing before I realized it was the default security settings stopping me from doing those "basics" you do when installing a server. Then the silly Ipnat.sys issue that is badly documented by MS really racks up the chargable hours.... Bummer ;)
Thanks a lot for everyone's help. I got rid of RRAS, rebooted and was able to get to my Firewall to reconfigure it to allow ICMP & Remote Desktop. I checked connectivity on all stations, pings worked both ways. Everything looked good.
Now I tried joining the domain from my workstation.
I right click My Computer; went into properties; clicked on the Computer Name tag, change name and then put in the domain name. A log on prompt popped up and I entered in my login information for my Administrator account. An error message came back saying, "The following error occurred attempting to join the domain "mydomain name". The specific server cannot perform the requested operation"
I figured it had to be a DNS issue. I ran DCdiag and it showed everything was running fine but Services. The services RPLocator; TrkWks and TrkSvr were stopped. I'm hestiant to run a net start on any of these because I haven't been able to figure out what they are used for. I tried googling and haven't found much. I search my 2000 books and nothing.
I'm not sure if those are the problems or if it's something else. I went back and turned off the firewall completely and tried adding my workstation and after I entered my login information to join the domain, it authenticated for a minute or so and then said the domain was unable to be found.
Thanks a lot for all your help guys.
Are you trying to change the PC name AND join the domain wthout a re-boot ?
One thing at a time
rename
re-boot
join domain
re-boot
long winded, yes, but it's the way it's done .........
I wasn't trying to change the name, just join the domain. That's just one step that I've always used to join a domain and it has work well for me up until now. Looks like a DNS issue. I figured I would just run dcpromo again to get rid of the domain and then reapply it. Only problem, it seemed to have reset my password as well.
Anyone here know where I can get a copy of Super ERD?