Solved

DNS - lots of multiple entries and systems no longer on network?

Posted on 2004-04-22
4
281 Views
Last Modified: 2010-04-11
HI.

We're having some Active Directory/Internet Slowness and I've taken a look at our DNS.  It is set to scavenge stale records every 3 days and allow dynamic updates is set to secure only.  The forward lookup zones contain lots of multiple entries (existing and non existing) for systems and there are systems that haven't been attached to the network for months that show up.  

Am I wrong in thinking that scavenging every three days should clear these old entries out? What does "secure only" updates mean?

Thanks in advance.
0
Comment
Question by:zenportafino
  • 2
4 Comments
 
LVL 3

Expert Comment

by:Orbsol
ID: 10899014
Scavenging does excactly what you think it does. Or at least it should. It can be set at zone level or globally, so make sure it is set for the zone you are looking at. Secure Updates can only be made for zones that are associated with active directory, and it is simply a secure way of updating dymanic entries. If you have it ticked, your server will refuse updates from a host that tries to update insecurely.

A good url for all aspects of Windows DNS can be found at http://www.microsoft.com/resources/documentation/WindowsServ/2003/standard/proddocs/en-us/Default.asp?url=/resources/documentation/WindowsServ/2003/standard/proddocs/en-us/sag_DNStopnode.asp
0
 
LVL 4

Expert Comment

by:boxcar7
ID: 10901837
Verify that those old records are indeed not static entries entered into DNS.  If they are, you will have to manually remove them.

0
 
LVL 1

Author Comment

by:zenportafino
ID: 10903791
Ok, as it turns out scavengin was only set on the server and NOT the zones.  I want to enable scavenging but have read warnings about doing so.  This is a small network with less than 70 systems in a single site.  Should I have any concerns before enabling it?
0
 
LVL 3

Accepted Solution

by:
Orbsol earned 250 total points
ID: 10911574
None whatsover in my opinion. I have never had a any trouble with it.
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Even if you have implemented a Mobile Device Management solution company wide, it is a good idea to make sure you are taking into account all of the major risks to your electronic protected health information (ePHI).
In this article, I am going to show you how to simulate a multi-site Lab environment on a single Hyper-V host. I use this method successfully in my own lab to simulate three fully routed global AD Sites on a Windows 10 Hyper-V host.
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…

770 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question