网络环境:
1、 防火墙192.168.7.1-->H3C三层交换机(划分了多个VLAN)-->连接各电脑或子交换机。各网段为:192.168.0.X 192.168.1.X 192.168.2.X 192.168.3.X 192.168.4.X 192.168.5.X 192.168.6.X 192.168.7.X
2、域服务器是192.168.0.200 网关192.168.0.1 DNS 127.0.0.1
3、所有电脑登录域服务器,登录正常,各VLAN的网关为VLAN IP ,DNS为192.168.0.200(域服务器IP) 192.168.7.1(防火墙IP)
问题:
1、我用ping 计算机全名 如 ping yw02.abc.com 正常
但有些机器ping其它机器也有可能不通(开机并关闭了XP防火墙)
2、我用ping 计算机名 如 ping yw02 正常
但有些机器ping其它机器也有可能不通(开机并关闭了XP防火墙)
3、我采用nslookup命令则就有大问题了,如下;
>nslookup
*** Can't find server name for address 192.168.0.200: Non-existent domain
Default Server: 4_WAN_QVM_Router.4_WAN_QVM_Router
Address: 192.168.7.1
> www.sina.com.cn
Server: 4_WAN_QVM_Router.4_WAN_QVM_Router
Address: 192.168.7.1
Non-authoritative answer:
Name: www.sina.com.cn.jiaming.com
Address: 192.168.1.135
> yw02.abc.com
Server: 4_WAN_QVM_Router.4_WAN_QVM_Router
Address: 192.168.7.1
Non-authoritative answer:
Name: yw02.abc.com.abc.com
Address: 192.168.1.135
如果我直接去ping www.sina.com.cn 或ping yw02.abc.com 都是通的。上网正常,内网访问也正常
4、但有些机器ping yw02.abc.com 可有可能解析为 192.168.1.135 现象,结果肯定不通。如果禁用网卡,再次开启、清除dns缓存,ipconfig /flushdns 则再去ping yw02.abc.com 则可以正常解析yw02的ip。
5、假如我把备用的dns取消掉,也就是说没有192.168.7.1这个DNS。那么会出现以下现象:
C:\Documents and Settings\Administrator>nslookup
*** Can't find server name for address 192.168.0.200: Non-existent domain
*** Default servers are not available
Default Server: UnKnown
Address: 192.168.0.200
> www.sina.com.cn
Server: UnKnown
Address: 192.168.0.200
Non-authoritative answer:
Name: ara.sina.com.cn
Addresses: 58.63.236.46, 58.63.236.47, 58.63.236.48, 58.63.236.49
58.63.236.50, 58.63.236.26, 58.63.236.27, 58.63.236.28, 58.63.236.29
58.63.236.30, 58.63.236.31, 58.63.236.32, 58.63.236.33, 58.63.236.34
58.63.236.44, 58.63.236.45
Aliases: www.sina.com.cn, jupiter.sina.com.cn
> www.dghuixun.com
Server: UnKnown
Address: 192.168.0.200
Non-authoritative answer:
Name: www.dghuixun.com
Address: 219.232.224.91
请问是什么原因造成以上现象的。。请各位帮忙给我指点一下。。谢谢!! |