Есть сетка изначально на SBS (теперь уже проапгрейжен до стандарта 2003). Первое видимое проявление беды проявилось сегодня в том, что внезапно перестал работать IIS с companyweb и прочими вебсайтами. В евентлогах ошибок собственно IIS не заметно, зато встречаются ошибки репликации AD и какая-то ругань кербероса.

В домене несколько запасных DC (каждый с GC) и даже один удаленный сайт. Недавно на главном сайте добавился контроллер домена - но это произошло когда связь между быв. SBS (носителем PDC и прочих FSMO ролей) и удаленным сайтом отсутствовала (я отсутствие связи вовремя не отследил; заметил его уже после добавления DC и до сих пор не поборол). Так что не очень понятно, чтО там отреплицировалось. Какие-то ошибки KCC в логах.


Есть ещё десятидневной давности вмваре диск с бывшим SBS без этих проблем, но, разумеется устраивать глобальный USN rollback в мои планы не входит. (Может, я неправ и это как раз то, что мне нужно?) Данных добавилось не так много, если всё-таки будет принято решение взять за основу тот образ, то их можно будет перенести ручками. Этот образ относится к тому времени, когда связь с удаленным сайтом еще была, а нового DC на главном сайте не было.

Посоветуйте, с какого конца начинать это латать?


netdiag на PDC нормальный

C:\>dcdiag /fix

Domain Controller Diagnosis

Performing initial setup:
Done gathering initial info.

Doing initial required tests

Testing server: Default-First-Site-Name\DED
Starting test: Connectivity
......................... DED passed test Connectivity

Doing primary tests

Testing server: Default-First-Site-Name\DED
Starting test: Replications
[Replications Check,DED] A recent replication attempt failed:
From PRAMATER to DED
Naming Context: DC=ForestDnsZones,DC=mydomain,DC=lan
The replication generated an error (1256):
Удаленная система недоступна. За информацией о разрешении проблем в сети, обратитесь к справочной системе Windows.
The failure occurred at 2007-05-22 19:48:00.
The last success occurred at 2007-05-22 09:48:16.
10 failures have occurred since the last success.
[PRAMATER] DsBindWithSpnEx() failed with error 1753,
В системе отображения конечных точек не осталось доступных конечных точек..
[Replications Check,DED] A recent replication attempt failed:
From PRADED to DED
Naming Context: DC=ForestDnsZones,DC=mydomain,DC=lan
The replication generated an error (1256):
Удаленная система недоступна. За информацией о разрешении проблем в сети, обратитесь к справочной системе Windows.
The failure occurred at 2007-05-22 20:17:59.
The last success occurred at 2007-05-22 09:48:16.
42 failures have occurred since the last success.
[PRADED] DsBindWithSpnEx() failed with error 1753,
В системе отображения конечных точек не осталось доступных конечных точек..
[Replications Check,DED] A recent replication attempt failed:
From PRAMATER to DED
Naming Context: DC=DomainDnsZones,DC=mydomain,DC=lan
The replication generated an error (1256):
Удаленная система недоступна. За информацией о разрешении проблем в сети, обратитесь к справочной системе Windows.
The failure occurred at 2007-05-22 19:48:00.
The last success occurred at 2007-05-22 09:48:16.
10 failures have occurred since the last success.
[Replications Check,DED] A recent replication attempt failed:
From PRADED to DED
Naming Context: DC=DomainDnsZones,DC=mydomain,DC=lan
The replication generated an error (1256):
Удаленная система недоступна. За информацией о разрешении проблем в сети, обратитесь к справочной системе Windows.
The failure occurred at 2007-05-22 20:17:59.
The last success occurred at 2007-05-22 09:48:16.
42 failures have occurred since the last success.
[Replications Check,DED] A recent replication attempt failed:
From PRAMATER to DED
Naming Context: CN=Schema,CN=Configuration,DC=mydomain,DC=lan
The replication generated an error (1753):
В системе отображения конечных точек не осталось доступных конечных точек.
The failure occurred at 2007-05-22 19:49:03.
The last success occurred at 2007-05-22 09:48:16.
10 failures have occurred since the last success.
The directory on PRAMATER is in the process.
of starting up or shutting down, and is not available.
Verify machine is not hung during boot.
[Replications Check,DED] A recent replication attempt failed:
From PRADED to DED
Naming Context: CN=Schema,CN=Configuration,DC=mydomain,DC=lan
The replication generated an error (1753):
В системе отображения конечных точек не осталось доступных конечных точек.
The failure occurred at 2007-05-22 20:18:20.
The last success occurred at 2007-05-22 09:48:16.
42 failures have occurred since the last success.
The directory on PRADED is in the process.
of starting up or shutting down, and is not available.
Verify machine is not hung during boot.
[Replications Check,DED] A recent replication attempt failed:
From PRAMATER to DED
Naming Context: CN=Configuration,DC=mydomain,DC=lan
The replication generated an error (1753):
В системе отображения конечных точек не осталось доступных конечных точек.
The failure occurred at 2007-05-22 19:48:21.
The last success occurred at 2007-05-22 09:48:16.
10 failures have occurred since the last success.
The directory on PRAMATER is in the process.
of starting up or shutting down, and is not available.
Verify machine is not hung during boot.
[Replications Check,DED] A recent replication attempt failed:
From PRADED to DED
Naming Context: CN=Configuration,DC=mydomain,DC=lan
The replication generated an error (1753):
В системе отображения конечных точек не осталось доступных конечных точек.
The failure occurred at 2007-05-22 20:17:59.
The last success occurred at 2007-05-22 09:48:16.
42 failures have occurred since the last success.
The directory on PRADED is in the process.
of starting up or shutting down, and is not available.
Verify machine is not hung during boot.
[Replications Check,DED] A recent replication attempt failed:
From PRAMATER to DED
Naming Context: DC=mydomain,DC=lan
The replication generated an error (1753):
В системе отображения конечных точек не осталось доступных конечных точек.
The failure occurred at 2007-05-22 19:48:00.
The last success occurred at 2007-05-22 09:48:16.
10 failures have occurred since the last success.
The directory on PRAMATER is in the process.
of starting up or shutting down, and is not available.
Verify machine is not hung during boot.
[Replications Check,DED] A recent replication attempt failed:
From PRADED to DED
Naming Context: DC=mydomain,DC=lan
The replication generated an error (1753):
В системе отображения конечных точек не осталось доступных конечных точек.
The failure occurred at 2007-05-22 20:18:41.
The last success occurred at 2007-05-22 09:56:19.
42 failures have occurred since the last success.
The directory on PRADED is in the process.
of starting up or shutting down, and is not available.
Verify machine is not hung during boot.
REPLICATION-RECEIVED LATENCY WARNING
DED: Current time is 2007-05-22 20:31:26.
DC=ForestDnsZones,DC=mydomain,DC=lan
Last replication recieved from BABKA at 2007-05-15 07:46:59.
DC=DomainDnsZones,DC=mydomain,DC=lan
Last replication recieved from BABKA at 2007-05-15 07:46:59.
CN=Schema,CN=Configuration,DC=mydomain,DC=lan
Last replication recieved from PAPA at 2007-05-22 07:57:37.
Last replication recieved from BABKA at 2007-05-15 07:46:58.
CN=Configuration,DC=mydomain,DC=lan
Last replication recieved from BABKA at 2007-05-15 07:46:58.
DC=mydomain,DC=lan
Last replication recieved from BABKA at 2007-05-15 07:46:59.
......................... DED passed test Replications
Starting test: NCSecDesc
......................... DED passed test NCSecDesc
Starting test: NetLogons
......................... DED passed test NetLogons
Starting test: Advertising
......................... DED passed test Advertising
Starting test: KnowsOfRoleHolders
......................... DED passed test KnowsOfRoleHolders
Starting test: RidManager
......................... DED passed test RidManager
Starting test: MachineAccount
......................... DED passed test MachineAccount
Starting test: Services
IsmServ Service is stopped on [DED]
......................... DED failed test Services
Starting test: ObjectsReplicated
......................... DED passed test ObjectsReplicated
Starting test: frssysvol
......................... DED passed test frssysvol
Starting test: frsevent
There are warning or error events within the last 24 hours after the SYSVOL has been shared. Failing SYSVOL replication problems may cause
Group Policy problems.
......................... DED failed test frsevent
Starting test: kccevent
An Error Event occured. EventID: 0xC00007A8
Time Generated: 05/22/2007 20:17:59
(Event String could not be retrieved)
An Error Event occured. EventID: 0xC00007A9
Time Generated: 05/22/2007 20:17:59
(Event String could not be retrieved)
An Error Event occured. EventID: 0xC00007A8
Time Generated: 05/22/2007 20:18:20
(Event String could not be retrieved)
An Error Event occured. EventID: 0xC00007A9
Time Generated: 05/22/2007 20:18:20
(Event String could not be retrieved)
An Error Event occured. EventID: 0xC00007A8
Time Generated: 05/22/2007 20:18:37
(Event String could not be retrieved)
An Error Event occured. EventID: 0xC00007A9
Time Generated: 05/22/2007 20:18:37
(Event String could not be retrieved)
An Error Event occured. EventID: 0xC00007A8
Time Generated: 05/22/2007 20:18:41
(Event String could not be retrieved)
An Error Event occured. EventID: 0xC00007A9
Time Generated: 05/22/2007 20:18:41
(Event String could not be retrieved)
An Error Event occured. EventID: 0xC00007A8
Time Generated: 05/22/2007 20:19:01
(Event String could not be retrieved)
An Error Event occured. EventID: 0xC00007A9
Time Generated: 05/22/2007 20:19:01
(Event String could not be retrieved)
An Error Event occured. EventID: 0xC00007A8
Time Generated: 05/22/2007 20:23:37
(Event String could not be retrieved)
An Error Event occured. EventID: 0xC00007A9
Time Generated: 05/22/2007 20:23:37
(Event String could not be retrieved)
An Error Event occured. EventID: 0xC00007A8
Time Generated: 05/22/2007 20:24:01
(Event String could not be retrieved)
An Error Event occured. EventID: 0xC00007A9
Time Generated: 05/22/2007 20:24:01
(Event String could not be retrieved)
An Error Event occured. EventID: 0xC00007A8
Time Generated: 05/22/2007 20:28:37
(Event String could not be retrieved)
An Error Event occured. EventID: 0xC00007A9
Time Generated: 05/22/2007 20:28:37
(Event String could not be retrieved)
An Error Event occured. EventID: 0xC00007A8
Time Generated: 05/22/2007 20:29:01
(Event String could not be retrieved)
An Error Event occured. EventID: 0xC00007A9
Time Generated: 05/22/2007 20:29:01
(Event String could not be retrieved)
An Warning Event occured. EventID: 0x8000061E
Time Generated: 05/22/2007 20:29:16
(Event String could not be retrieved)
An Error Event occured. EventID: 0xC000051F
Time Generated: 05/22/2007 20:29:16
(Event String could not be retrieved)
An Warning Event occured. EventID: 0x80000749
Time Generated: 05/22/2007 20:29:16
(Event String could not be retrieved)
An Warning Event occured. EventID: 0x8000061E
Time Generated: 05/22/2007 20:29:16
(Event String could not be retrieved)
An Error Event occured. EventID: 0xC000051F
Time Generated: 05/22/2007 20:29:16
(Event String could not be retrieved)
An Warning Event occured. EventID: 0x80000749
Time Generated: 05/22/2007 20:29:16
(Event String could not be retrieved)
An Warning Event occured. EventID: 0x8000061E
Time Generated: 05/22/2007 20:29:16
(Event String could not be retrieved)
An Error Event occured. EventID: 0xC000051F
Time Generated: 05/22/2007 20:29:16
(Event String could not be retrieved)
An Warning Event occured. EventID: 0x80000749
Time Generated: 05/22/2007 20:29:16
(Event String could not be retrieved)
An Warning Event occured. EventID: 0x8000061E
Time Generated: 05/22/2007 20:29:16
(Event String could not be retrieved)
An Error Event occured. EventID: 0xC000051F
Time Generated: 05/22/2007 20:29:16
(Event String could not be retrieved)
An Warning Event occured. EventID: 0x80000749
Time Generated: 05/22/2007 20:29:16
(Event String could not be retrieved)
An Warning Event occured. EventID: 0x80000785
Time Generated: 05/22/2007 20:29:37
(Event String could not be retrieved)
......................... DED failed test kccevent
Starting test: systemlog
......................... DED passed test systemlog
Starting test: VerifyReferences
......................... DED passed test VerifyReferences

Running partition tests on : ForestDnsZones
Starting test: CrossRefValidation
......................... ForestDnsZones passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... ForestDnsZones passed test CheckSDRefDom

Running partition tests on : DomainDnsZones
Starting test: CrossRefValidation
......................... DomainDnsZones passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... DomainDnsZones passed test CheckSDRefDom

Running partition tests on : Schema
Starting test: CrossRefValidation
......................... Schema passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... Schema passed test CheckSDRefDom

Running partition tests on : Configuration
Starting test: CrossRefValidation
......................... Configuration passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... Configuration passed test CheckSDRefDom

Running partition tests on : mydomain
Starting test: CrossRefValidation
......................... mydomain passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... mydomain passed test CheckSDRefDom

Running enterprise tests on : mydomain.lan
Starting test: Intersite
......................... mydomain.lan passed test Intersite
Starting test: FsmoCheck
......................... mydomain.lan passed test FsmoCheck

Дело в том, что это dcdiag прямо оттуда - с PDC контроллера. Нашел причину внезапной недоступности DNS - она была связана с тем, что я, редактируя вчера правила в ISA сервере, машинально изменил не то правило, которое собирался. Спасибо.