Jump to content
Forum²

Recommended Posts

Posted

Hi, I hope someone can help me with this issue:

 

I have a small network with 15 clients, 1 Win2008server, 1 ZyWall USG-100 firewall, two 10/100 switches and one wireless.

 

At first the network ran the WAN through the server, which had an internal and external ethernet port set up. When I introduced the firewall to the network, I connected this to the WAN, and then connected the server directly to the firewall. The two switches then connect all the clients to the server through the firewall.

 

I had planned to give the Zywall control of DHCP and DNS functions, to offload some functions of the server, as it was pressed. I did not think this through though, as the Active Directory needs these functions to control the network. I realised this and reinstalled the DHCP and DNS functions on the server, but it seems that something is missing.

 

I have got the internet up and running, all clients are on the domain and use automatic IP, and they have the server IP as DHCP and DNS. They have the firewall address as gateway. So the internet runs fine, and clients can log on to the network and they can access their folders.

 

The problems are:

1. They have extremely long log on times

2. If they try to print from a printer connected through the server they freeze.

3. Application of group policies work at times and other times not.

 

I have tried taking a computer off the domain and putting it back on, and I got an error message that read something like: "A domain controller for the domain could not be contacted.". I restart the machine and it seems to be on the domain.

 

I have checked the connection to the server by pinging its name, its ip adress and i have pinged the domain name. They all answer quite fast, so it seems the problem must be internal in the server. I am thinking that the removal and reinstall of the DHCP and DNS services have created some disconnect with the Active Directory on the server, but I have yet to find a way to fix it.

 

All suggestions are welcome :)

Posted

Do you still have the server plugged into the firewall? Even though you say things are pinging properly, the first thing I'd try is moving the server to one of the switches. It's easy to move the connection and the firewall adds a lot of possible complications as it appears that the zywall's ports are not just a simple switch, but rather configurable as lan/wan/dmz/etc. Additionally, you probably don't want all that server traffic going to your firewall, when it can stay on a local switch.

 

If that is no help, have you run dcdiag on the server? What is the server pointing to for DNS?

Posted

Hi Matt, thank you for your answer.

 

I would like to try moving it to one of the switches, but then I should probably also connect the switches to each other, as they currently are connected through the firewall. I did have issues earlier, when the switches were connected to each other and the firewall, so thats why Im asking how I should connect it all.

I have also set up the firewall ports to all run LAN, and there are no rules for LAN to LAN traffic.

 

I have not run dcdiag, but will try this. I will first be able to try it out on friday, so if you have any more ideas, please write them here and I can try them one at a time.

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
×
  • Create New...