我的实验室是一台连接到无线路由器端口的测试 HP 计算机。它运行的是具有 Hyper-V 角色的 Windows 2012 R2,我正在尝试模拟多个测试子网来测试多种场景。一切似乎都正常工作,子网之间以及与互联网之间的基本 IP 连接正常。但是,第三个网络中的机器没有从第二个网络中的 DC 获取 AD 策略。有人见过这种情况吗?我是否忽略了什么?
谢谢,克里斯
1 个 Cisco 无线路由器(连接至互联网) IP 地址:192.168.1.1 DHCP 池:192.168.1.50 至 192.168.1.100
1 台 HP 计算机,运行 Windows Server 2012 R2,安装了 Hyper-V 角色,安装并配置了 RRAS 角色,管理操作系统的 IP 地址:192.168.1.200(静态)
Hyper-V Manager Virtual Switch Info:
------------------------------------
Virtual Switch 1 (External): vNET 1 (192.168.1.0/24)
Virtual Switch 2 (Internal): vNET 2 (192.168.2.0/24)
Virtual Switch 3 (Internal): vNET 3 (192.168.3.0/24)
Network Connections Window:
---------------------------
External NIC - Enabled
Virtual NIC 1: vNET1 - 192.168.1.200 - Network - Internet access
Virtual NIC 2: vNET2 - 192.168.2.1 - LAB_DOMAIN - Internet access
Virtual NIC 3: vNET3 - 192.168.3.1 - LAB_DOMAIN - No Internet access (this is working!?)
RRAS configuration:
-------------------
NAT enabled - on vNET1 NIC
LAN Routing enabled
在职的:
HOST
Ping
SMB
AD functionality
Internet connectivity
All VMs on vNET2 network
(Lab VM machine with AD & DNS)
(10+ machines running Server and Workstation OSes)
Ping
SMB
AD functionality
Internet connectivity
All VMs on vNET3 network
(3+ machines)
Ping
SMB
Internet connectivity
不工作:
All VMs on vNET3
AD functionality
- Active Directory Policy not coming down
EventID 1129 "The processing of Group Policy failed because of lack of
network connectivity to a domain controller. This may be a transient
condition. A success message would be generated oncwe the machine
gets connected to the domain controller and Group Policy has
successfully processed."
- Unable to add domain groups, users or computers to local groups
(however, it does resolve the names when you click on 'Check Names')
ERROR MSG:
Window Title: Local Users and Groups
Body: Information returned from the object picker for
object "<group/user/computer>" was incomplete. The object will
not be processed.
多次尝试通过禁用 vNET3 中虚拟机上的防火墙或运行 gpudate 来解决问题,导致 Hyper-V 服务器崩溃。我在不到 4 小时内已经这样做了 4 次。