ICTCity

Check in your FORWARDERS that you don't have the old server. Also make sure that FORWARDERS are the addresses provided by your ISP.

Yes, you can disable DNS on your router... but it doesn't matter, because if you set the clients to point on your server, they will never know anything about your router :)

Just to isolate your problem: Set the DNS on ONE client to 8.8.8.8, then type ipconfig /flushdns Retry, do you have the same issue?

Hi, You could consider XenServer from citrix which is free (with some limitation). Anyway, Hyper-v is the "program" to virtualize VMs, SCVMM is more something to manage many VMs spread on your network and also to monitor clouding services and so on. Basically I think this is the main difference.

You can use this: http://www.mp3vcr.com/sharemonitor/ But I'm not sure it will work on Server 2k8. You can always enable auditing: 1. Go to Control Panel > Administrative Tools > Local Security Policy. 2. Security Settings > Local Policies > Audit Policy. 3. Audit object access and check the Success checkbox. 4. Select your folder, go to Security tab, click Advanced button, go to Auditing tab and click Add button. Enter EVERYONE as object name and click OK Now select what you want. Then, to discover WHO is modifying things, go to event viewer > security. Pls, let me know who is the guilty :P

Stupid thing... but... try: uninstall the FRAMEWORK and reinstall it. Printer redirection is involved in the process. Also, check your TS when the user log on for errors or warning. ALso check when he prints if there's something...

Hi, First, what does it mean? Windows can work on a stand alone server... Regarding all your questions, I really suggest you to read this article, it explains WHERE you can put a public DNS. http://www.isaserver.org/tutorials/how_to_publish_a_dns_server_part_1__the_pathophysiology_of_the_same_internal_andexternal_domain_name.html If you have other questions, feel free to ask!

Yes, you're right. First you must renew the cert, then, renew from server. Can't you simply contact the issuer and explain your situation?

VSS does not change date. But Backup can. What program are you using to backup? What type of backup are you using? Can you say that this happens only on backed-up folderds but not on "unsaved" folders?

So I think your problem is the private key, in some way Windows cannot find it anymore and so cannot associate the pair. I found this article, http://technet.microsoft.com/en-us/library/dd362655.aspx but it is useless because you need the GUI in order to proceed. No idea, sorry.

Thanks for your advice. I will open a post into the staff section. For now, you can easily post in another section if you need help :)

Try to change port, use a port < 22 Most of switches don't permit to use port 23,24 and 25,26 togheter.

Hi, DNS RESOLVES name to IP and vice versa. if you try to ping www.google.com you receive this message: Pinging [url="http://www.l.google.com"]www.l.google.com[/url] [74.125.39.99] with 32 bytes of data: Reply from 74.125.39.99: bytes=32 time=30ms TTL=53 Can you see the IP? Internet works with IPs not with names, but for us (people) it's easier to remember name instead of numbers, right? There are 13 ROOTs DNS server which are there to answer the questions. How it's made a question? Easy: Let's say you want to navigate to www.freepchelp.forum. PLEASE NOT THE DOT AT THE END! The query is splitted: www windows2008forum com . Starting from the right or from the bottom, you have .[dot] this is managed by ROOT DOMAINS NAME SERVERS. They look at the next part: COM and they say: HEY, I know WHO is responsible for COM domains, let's forward the query to WHO MANAGES "COM" domains. So, the manager of COM domains check the next part WINDOWS2008FORUM and says: "Hey, I have something which is called WINDOWS2008FORUM" and it forwards the request again. Finally the WWW HOST is searched and... FOUND! So, you have the main page of your site! What a DNS server does is to resolve name on ip and vice versa. Fist of all you must configure a DNS service on your service, once ready, change DHCP options to point on another DNS server. Actually if you don't need specials configurations (like AD or web site hosting), you router is doing the right job, so you don't need another server. There are many other possibilities, like virtual hosting, aliases, records, trees and so on, but basically this is what you need to start with DNS server which is not really the easier thing in a network. Many problems with AD are caused by misconfigured DNS.

You can't, but you really should install another VM... trust me.

Are you sure this is correct? /DN DC=DC=Test,dc=local It should be: /DN DC=Test,dc=local Maybe I'm wrong... but this is my only idea.

1) Update existing WS to Windows 7 > others WS (I don't know how many) with the following hardware: 4 GB ram Core i3 / i5 or AMD X3 500 GB hd A workstation should cost about 700$ with monitor, HP is ok. 2) 6 groups: dir, sec, tea, lib, comp lab, students. If you want you can create multiple under-groups for students (class 1, 2, ...). 3) Most used and with Windows clients, it's the best integration. 4) It's not specified if the attack is from outside or inside, anyway, block the ZONE TRANSFER on DNS. 5) 8]1. Stupid question: why I can't host a DC? If I delegate a control (which is the only solution), the problem on questione #4 persist... 8]2. Once again... you can specify how many times the zone transfer succede but actually I should implement a DC in Toronto... 6) 8]1. WINS server? Why should I have enabled WINS? Anyway I don't understand the question: "AT WHAT LEVEL SHOULD YOU CONFIGURE THE DHCP OPTIONS?" er... Where the DHCP is made?! On Windows server? So, in windows server... 8]2. Using scopes or address pools with rules, once again... WHO IS PROVIDING DHCP?! 7) 8].1 It downloads the updates ONCE and the DEPLOY to the network, clients must be configured (via GP) to point to WSUS server. 8].2 1 server should be ok, updates can be done during the night and with policies you can divide updates. What I mean is: monday: update STUDENTS CLIENTS (AD Group), thusday TEACHERS CLIENTS, and so on. 8].3 Once installed, there are many options and one is called: "AUTO APPROVE AND INSTALL" 8) 8].1 Best thing is to use a SNMP monitor, enable SNMP on clients and install a software to monitor (SYSAID is free, take a look!) 8].2 Any, you just need SNMP which is compatible with almost any OS. 9) 8].1 Depending on where you want to save data. ANyway, first of all buy an INTERNAL RAID CONTROLLER and set up a RAID 5 (at least 3 internal disks). Then buy an external NAS and there you can backup. Another (but more expensive) solution is a SCSI drive, external. Faster but REALLY expensive. 8].2 With a RAID 5 you can easily replace the faulty disk and everything is restored without downtime. You can also use Acronis or Ghost to perform a system image. 8].3 Yes, Acronis or Ghost can restore a single file. Only from RAID YOU CANNOT RESTORE A FILE.

Help... means that you don't understand something OR it means that you want all the answers to all questions? I think that the 90% of questions are really really easy... the other 10% it's a bit harder but just because you need to be familiar with some concepts (like question 4, it talks about zone transfers). So, let us know what do you really need.

What are the differences between this and the others clients? I mean, something must be different!

So DO NOT IMPLEMENT the same DC for both inside and outside. Use a RODC!

I think so, well, in theory the most restrictive count... so I assume you're right, but I will ask in the next few days.

Wait, this is correct based on what do your want to do... On your LOCAL (PRIVATE) network, your DNS works like a charm, outside it's different. You DC is not published on internet, so you CANNOT ping it. For security purpose I don't suggest you to put the same DC also over the internet, instead use a RODC (Read only domain controller). But do you really need an external domain controller? If yes, be sure to set up a RODC OUTSIDE your LAN (in another VLAN or something like this).

Ok, actually I think the point is for security purpose. I'm going to investigate further but I'm pretty sure the reason is security.

Everything Is fine now :) and... the name of your server must point to your PRIVATE ip. Ipv6 doesn't matter here, but let it there. SOA records usually don't show aliases, so it's ok. Yes you should add that name to name server but is not mandatory because Ns1 and 2 are already the same server :) Why your DNS should have a public IP? I don't think you need it...

Hi, Let's start from the beginning: You have two keys components: DOMAIN NAME and DOMAIN CONTROLLER. Once again, You have two keys components: MYDOMAIN.COM and WS2008R2X64-0 You DC is WS2008R2X64-0 which is the provider of the domain MYDOMAIN.COM. In order to RESOLVE names (both external and internal), the DNS query must point to WS2008R2X64-0.MYDOMAIN.COM OR the IP (private IP) of the DOMAIN CONTROLLER. When you say: " I have my domain pointing to ns1.mydomain.com and on my server I created a ns1 nameserver entry under the forward lookup zone for mydomain.com." You say also where is your mistake: you can add ns1.mydomain.com, but WHAT IS ns1? The DNS / Domain doesn't know ANYTHING about NS1. So, you forward things to NOWHERE! Then again:"My problem is in the SOA whenever I change my nameservers or the primary server from compname.mydomain.com to ns1.mydomain.com it takes effect... but then later I go back into it and it has changed back automatically to compname.mydomain.com" Everything is correct here, your DNS knows WHO is responsible for name resolutions, when you change the NAMESERVER, it doesn't know HOW to resolve it, because the real nameserver is gone! So, here you can find a resolution: Add an ALIAS on your DNS: ns1.mydomain.com which points to: ws2008r2x64-0 OR IP_of_DC. You can also create another server (physical) and call it NS1. You COULD also change the HOSTS file inside your DC and add a static in this way: ns1.mydomain.com IP_of_DC Now I hope you aren't too bored :P Cheers

Here you are: > script.ftp ECHO USER MyUserId >>script.ftp ECHO MYpassword FTP -v -s:script.ftp ftp.yourHost.com TYPE NUL >script.ftp DEL script.ftp