Major DNS issue

Hello,

I came into the office and rebooted one of our member servers and noticed that on reboot it said a service didn’t start. When I started looking into the errors it pointed me back to our primary DC. When I go into DNS I don’t see anything under the forward or reverse lookup zones. They are empty. Any and all help would be MUCH appreciated. Here is the results of running dcdiag /test:dns (LEWISDC1 is the server in question, this was ran on this server)

Domain Controller Diagnosis

Performing initial setup:
Done gathering initial info.

Doing initial required tests

Testing server: Default-First-Site\LEWISDC1
Starting test: Connectivity
……………………. LEWISDC1 passed test Connectivity

Doing primary tests

Testing server: Default-First-Site\LEWISDC1

DNS Tests are running and not hung. Please wait a few minutes…

Running partition tests on : ForestDnsZones

Running partition tests on : DomainDnsZones

Running partition tests on : Schema

Running partition tests on : Configuration

Running partition tests on : LEWISCO

Running enterprise tests on : LEWISCO.lcfhc.org
Starting test: DNS
Test results for domain controllers:

DC: lewisdc1.LEWISCO.lcfhc.org
Domain: LEWISCO.lcfhc.org

TEST: Basic (Basc)
Warning: adapter [00000002] Intel(R) PRO/1000 MT Network Connection has invalid DNS server: 192.168.0.11 ()
Error: The A record for this DC was not found
Warning: The Active Directory zone on this DC/DNS server was not found (probably a misconfiguration)

TEST: Forwarders/Root hints (Forw)
Error: Forwarders list has invalid forwarder: 192.168.0.1 ()
Error: Forwarders list has invalid forwarder: 205.152.132.235 ()
Error: Forwarders list has invalid forwarder: 209.149.134.252 ()

TEST: Records registration (RReg)
Network Adapter [00000002] Intel(R) PRO/1000 MT Network Connection:
Warning: Missing GC SRV record at DNS server 192.168.0.8 :
_ldap._tcp.gc._msdcs.LEWISCO.lcfhc.org

Error: Missing A record at DNS server 192.168.0.11 :
lewisdc1.LEWISCO.lcfhc.org

Error: Missing CNAME record at DNS server 192.168.0.11 :
5ae28650-1936-4f29-9d87-436c6a0f8b3a._msdcs.LEWISCO.lcfhc.org

Error: Missing DC SRV record at DNS server 192.168.0.11 :
_ldap._tcp.dc._msdcs.LEWISCO.lcfhc.org

Error: Missing GC SRV record at DNS server 192.168.0.11 :
_ldap._tcp.gc._msdcs.LEWISCO.lcfhc.org

Error: Missing PDC SRV record at DNS server 192.168.0.11 :
_ldap._tcp.pdc._msdcs.LEWISCO.lcfhc.org

Error: Record registrations cannot be found for all the network adapters

Summary of test results for DNS servers used by the above domain controllers:

DNS server: 192.168.0.1 ()
1 test failure on this DNS server
This is not a valid DNS server. PTR record query for the 1.0.0.127.in-addr.arpa. failed on the DNS server 192.168.0.1

DNS server: 192.168.0.11 ()
1 test failure on this DNS server
Name resolution is not functional. _ldap._tcp.LEWISCO.lcfhc.org. failed on the DNS server 192.168.0.11

DNS server: 205.152.132.235 ()
1 test failure on this DNS server
This is not a valid DNS server. PTR record query for the 1.0.0.127.in-addr.arpa. failed on the DNS server 205.152.132.235

DNS server: 209.149.134.252 ()
1 test failure on this DNS server
This is not a valid DNS server. PTR record query for the 1.0.0.127.in-addr.arpa. failed on the DNS server 209.149.134.252

Summary of DNS test results:

Auth Basc Forw Del Dyn RReg Ext
________________________________________________________________
Domain: LEWISCO.lcfhc.org
lewisdc1 PASS FAIL FAIL n/a PASS FAIL n/a

……………………. LEWISCO.lcfhc.org failed test DNS

Here is first 2 entries into the DNS event log when starting:

#1
Event Type: Warning
Event Source: DNS
Event Category: None
Event ID: 4013
Date: 2/10/2008
Time: 12:16:22 PM
User: N/A
Computer: LEWISDC1
Description:
The DNS server was unable to open the Active Directory. This DNS server is configured to use directory service information and can not operate without access to the directory. The DNS server will wait for the directory to start. If the DNS server is started but the appropriate event has not been logged, then the DNS server is still waiting for the directory to start.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 2d 23 00 00 -#..

#2
Event Type: Error
Event Source: DNS
Event Category: None
Event ID: 4000
Date: 2/10/2008
Time: 12:16:22 PM
User: N/A
Computer: LEWISDC1
Description:
The DNS server was unable to open Active Directory. This DNS server is configured to obtain and use information from the directory for this zone and is unable to load the zone without it. Check that the Active Directory is functioning properly and reload the zone. The event data is the error code.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 2d 23 00 00 -#..

Well after shelling out $515.00 to Microsoft last night the issue is fixed… They worked about 2 1/2 hours on it and I didn’t even need to rebuild anything. They were able to use ASDI Edit to make some edits to the AD object of this server and then reset some of the Kereros settings and all is well now..

Not sure on awarding any points on this since it seemed like the general concensus here was to blow the server away and rebuild/restore it. Which by the way, I did take the server down before I called MS and did an AD restore of the system state and that seemed to help a little but it was still very messed up in thinking it was a Domain Computer instead of a Domain Controller. It also was holding 3 of the FSMO roles and I was unable to transfer them also.. I had tried that before the MS call as well. Over all I was really impressed with the expertise of the MS support engineer though, very good…

So with all that said if the Administrator wants to award points then I will let it be his call. Thanks anyway for the responses.