RE: Interesting problem...

  • From: "Steve Moffat" <steve@xxxxxxxxxx>
  • To: "ISA Mailing List" <isalist@xxxxxxxxxxxxx>
  • Date: Wed, 2 Mar 2005 18:18:57 -0400

Hi Dan, 

Do you have an AD integrated DNS system, because as I said, clearing the
cache only clears the resolver cache, not the internal Zones.


Something seriously wrong there if your zones are disappearing.

Steve 

-----Original Message-----
From: Ball, Dan [mailto:DBall@xxxxxxxxxxx] 
Sent: Wednesday, March 02, 2005 6:09 PM
To: ISA Mailing List
Subject: [isalist] RE: Interesting problem...

http://www.ISAserver.org

I'm right-clicking on server and selecting "Clear Cache", is this not
the proper way?

If I had to guess what is happening, when I clear the cache, it also
removes the entries for the domain controllers and other servers, even
though they are static IPs.  Thus, the ISA server cannot find a DC to
authenticate users, and they get blocked.  (Due to Federal requirements,
we cannot have any Firewall Policies that allow unauthenticated access
to the Internet.)

If I log onto each DC and do a "repair" of the network connection, it
shows back up in the DNS server.  Otherwise, I have to either wait for
it to refresh itself or reboot the server.

-----Original Message-----
From: Steve Moffat [mailto:steve@xxxxxxxxxx]
Sent: Wednesday, March 02, 2005 16:30
To: [ISAserver.org Discussion List]
Subject: [isalist] RE: Interesting problem...

http://www.ISAserver.org

I still don't understand this Dan.

The cache on the DNS servers is for resolved names outwith your
Organization. The AD holds all your domain info. When you clear the
cache, it shouldn't be interfering with name resolution in your AD
zones.

You are right clicking on the dns server and selecting clear cache, or
ipconfig / flushdns??


Steve

------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Other Internet Software Marketing Sites:
World of Windows Networking: http://www.windowsnetworking.com Leading
Network Software Directory: http://www.serverfiles.com
No.1 Exchange Server Resource Site: http://www.msexchange.org Windows
Security Resource Site: http://www.windowsecurity.com/ Network Security
Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions:
http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
isalist@xxxxxxxxxx To unsubscribe visit
http://www.webelists.com/cgi/lyris.pl?enter=isalist
Report abuse to listadmin@xxxxxxxxxxxxx

The haggis is unusual in that it is neither consistently nocturnal nor diurnal, 
but instead is active at dawn and dusk (crepuscular), with occasional forays 
forth during the day and night.

Other related posts:

  1. Home
  2. isalist
  3. Archive
  4. 03-2005