Hello gang and thanks as always for your input. Thanks to Netman66, I'm in the process of cleaning up DNS. He's been a tremendous help. I'm in the process of disabling dhcp proxy registration (as we have no more pre win2k clients) and letting the clients register and own their own records. I'm also turning on secure dns registration to limit registration in our namespace to domain members only. Right now I think we have some bad entries. With that being said, I was going to delete all the host and ptr records manually, (I was nervous about aging all the records because this would affect my static records), turn on aging and scavenging on the master dns server (first dns server in our enterprise), leave the defaults in place and as I said disable dhcp proxy registration and configure dns for secure updates - right now our dns servers are configured to accept secure and nonsecure updates. Hopefully I have that right but my main question is should aging and scavenging being turned on on all the dns servers and for all the zones on every dns server or should this setting only be enabled on the master dns server and then let the master replicate to the other dns servers. Thanks guys.
Start Free Trial
