Solved

DNS server encountered a packet addressed to itself

Posted on 2001-06-21
13
400 Views
Last Modified: 2010-04-13
Whenever I boot up my Windows 2000 Server, I get the following entry in my DNS event log...

--------- start ---------

The DNS server encountered a packet addressed to itself -- IP address 63.100.100.100   {IP is intentionally
faked for this Expert's Exchange posting}

The DNS server should never be sending a packet to itself.  This situation usually indicates a configuration
error.

Check the following areas for possible self-send configuration errors:
 1) Forwarders list. (DNS servers should not forward to themselves).
 2) Master lists of secondary zones.
 3) Notify lists of primary zones.
 4) Delegations of subzones.  Must not contain NS record for this DNS server unless subzone is also
on this server.

--------- stop -------

I have already check suggestion #1 above.  It does not apply.  I then am stumped, since I don't have
a clue how to follow through on suggestions #2, #3 and #4.  Can someone give me instructions on how
to validate/check suggestions #2, 3 and 4?
0
Comment
Question by:Monroe406
  • 4
  • 2
  • 2
  • +4
13 Comments
 
LVL 6

Expert Comment

by:Portang
ID: 6217007
Is this DNS server primary, secondery or it's Active Directory integrated DNS server ?
Is there any zone configured for this DNS server?

Or maybe a better way to ask is :

Why do you need to enable and configure this DNS server ?
0
 

Author Comment

by:Monroe406
ID: 6217029
>> Is this DNS server primary, secondery


It is the primary DNS server.


>> Is there any zone configured for this DNS server?


Yes.


>>Why do you need to enable and configure this DNS server ?


Because it is a Web server, hosting dozens of domains, and a mail server.


0
 
LVL 7

Expert Comment

by:franka
ID: 6217637
Example:
 
   -> This DNS server dns1.mycompany.com is the primary for the zone
  mycompany.com.
  -> You have delegated the zone sales.mycompany.com to
  salesdns.sales.mycompany.com. and are NOT running the sales.mycompany.com
  zone on this DNS (dns1.mycompany.com).
  -> sales.mycompany.com MUST NOT have an NS record that points at
  dns1.mycompany.com.
 
   Note, you should make this check (with nslookup or DNS manager) both on this
  DNS server and on the server(s) you delegated the subzone to. It is possible
  that the delegation was done correctly, but that the primary DNS for the
  subzone, has any incorrect NS record pointing back at this server. If this
  incorrect NS record is cached at this server, then the self-send could
  result. If found, the subzone DNS server admin should remove the offending NS
  record.
0
 
LVL 7

Expert Comment

by:franka
ID: 6217644
Example:
 
   -> This DNS server dns1.mycompany.com is the primary for the zone
  mycompany.com.
  -> You have delegated the zone sales.mycompany.com to
  salesdns.sales.mycompany.com. and are NOT running the sales.mycompany.com
  zone on this DNS (dns1.mycompany.com).
  -> sales.mycompany.com MUST NOT have an NS record that points at
  dns1.mycompany.com.
 
   Note, you should make this check (with nslookup or DNS manager) both on this
  DNS server and on the server(s) you delegated the subzone to. It is possible
  that the delegation was done correctly, but that the primary DNS for the
  subzone, has any incorrect NS record pointing back at this server. If this
  incorrect NS record is cached at this server, then the self-send could
  result. If found, the subzone DNS server admin should remove the offending NS
  record.
0
 

Expert Comment

by:matth01
ID: 6218745
Monroe
I've tried to solve this same issue with MS and they suggested that the problem was some other DNS server did not recognize my server as authoritative.  You need to determine who that server is and let it know that you are authoritative for the zone.  MS suggests that you track the packets using DNS logging and look for the error message in the log.  Once you see the message, the server just prior to the error in the log is your culprit.  Careful! Those DNS logs grow rapidly!

Hope this helps.  I was able to resolve the error coming from two of the three servers that were causing this problem on our network, but never could get my ISP to change the settings on the 3rd.  Doesn't seem to effect performance.
0
 

Author Comment

by:Monroe406
ID: 6223186
>>Note, you should make this check (with nslookup
>>or DNS manager) both on this DNS server and
>> on the server(s) you delegated the subzone to.


I know what nslookup is, and I know what DNS Manager is...but that's about all I know in regards to these tools.  When you say "make this check", I don't follow you in regards to how I am to check whatever it is I am supposed to check.

BTW, the everything is one just one server... DNS, HTTP, Mail, FTP, etc.
0
What Security Threats Are You Missing?

Enhance your security with threat intelligence from the web. Get trending threat insights on hackers, exploits, and suspicious IP addresses delivered to your inbox with our free Cyber Daily.

 
LVL 6

Expert Comment

by:Portang
ID: 6223204
> everything is one just one server... DNS, HTTP, Mail, FTP

Guess you don't need this DNS server at all.
0
 

Author Comment

by:Monroe406
ID: 6223214
>> Guess you don't need this DNS server at all.


Explain what you mean.
0
 

Expert Comment

by:amp072397
ID: 6791421
Monroe406:

You have many open questions. I will be posting this comment in all of them:

http://www.experts-exchange.com/jsp/qShow.jsp?ta=win2k&qid=20254049
http://www.experts-exchange.com/jsp/qShow.jsp?ta=win2k&qid=20172013
http://www.experts-exchange.com/jsp/qShow.jsp?ta=win2k&qid=20139842
http://www.experts-exchange.com/jsp/qShow.jsp?ta=msaccess&qid=20265114
http://www.experts-exchange.com/jsp/qShow.jsp?ta=msaccess&qid=20239542
http://www.experts-exchange.com/jsp/qShow.jsp?ta=iis&qid=20154037

To assist you in your cleanup, I'm providing the following guidelines:

1.  Stay active in your questions and provide feedback whenever possible. Likewise, when feedback has not been provided by the experts, commenting again makes them receive an email notification, and they may provide you with further information. Experts have no other method of searching for questions in which they have commented, except manually.

2.  Award points by hitting the Accept Comment As Answer button located above and to the left of that expert's comment.

3.  When grading, be sure to read:
http://www.experts-exchange.com/jsp/cmtyQuestAnswer.jsp#3
to ensure that you understand the grading system here at EE. If you grade less than an A, you must explain why.

4.  Questions that were not helpful to you should be PAQ'd (stored in the database for their valuable content?even if not valuable to you) or deleted. To PAQ or delete a question, you must first post your intent in that question to make the experts aware. Then, if no experts object after three full days, you can post a zero-point question at community support to request deletion or PAQ. Please include the link(s) to the question(s).
CS:  http://www.experts-exchange.com/jsp/qList.jsp?ta=commspt
At that point, a moderator can refund your points and PAQ or delete the question for you. The delete button does not work.

5.  If you fail to respond to this cleanup request, I must report you to the Community Support Administrator for further action.

Our intent is to get the questions cleaned up, and not to embarrass or shame anyone. If you have any questions or need further assistance at all, feel free to ask me in this question or post a zero-point question at CS. We are very happy to help you in this task!


thanks!
amp
community support moderator
0
 

Author Comment

by:Monroe406
ID: 6791442
I am giving notice that no one answered this question correctly, and I will be requesting that it be "PAQ'd"...whatever that means...
0
 

Accepted Solution

by:
ComTech earned 0 total points
ID: 6802317
There is good information above that may help others.  However did not answer Monore406's particular question, I will move the question to PAQ.

Thanks,
ComTech
Community Support
0
 

Expert Comment

by:ComTech
ID: 6802355
Thanks Monroe for closing all the other questions.

Best regards,
ComTech
CS Admin @ EE
0
 

Expert Comment

by:Rhillsjr
ID: 11776482
Go to dnsmgmt  and make sure your local ip is not listed in root hints this took care of my problem.
0

Featured Post

How your wiki can always stay up-to-date

Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
- Increase transparency
- Onboard new hires faster
- Access from mobile/offline

Join & Write a Comment

NTFS file system has been developed by Microsoft that is widely used by Windows NT operating system and its advanced versions. It is the mostly used over FAT file system as it provides superior features like reliability, security, storage, efficienc…
Is your company's data protection keeping pace with virtualization? Here are 7 dynamic ways to adapt to rapid breakthroughs in technology.
Access reports are powerful and flexible. Learn how to create a query and then a grouped report using the wizard. Modify the report design after the wizard is done to make it look better. There will be another video to explain how to put the final p…
This video demonstrates how to create an example email signature rule for a department in a company using CodeTwo Exchange Rules. The signature will be inserted beneath users' latest emails in conversations and will be displayed in users' Sent Items…

760 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

17 Experts available now in Live!

Get 1:1 Help Now