Solved

Sporadic DNS Timeouts in Windows 2003 DNS server

Posted on 2004-08-20
8
331 Views
Last Modified: 2010-05-18
Recently upgraded network from W2k domain to W3k domain. Changed DNS servers. Currently running on domain controller. Problem is when you run nslookup from a client or even the dns server itself, i get sporadic "DNS  request timed out. Time out was 2 seconds. ***Rquest to xxx timed-out" when I try a domain like www.yahoo.com. What is strange is that it is sporadic. Sometimes it works, sometimes it doesn't. It is a major problem because it is affecting us sending out emails because the exchange server is getting timeouts sporadically on DNS lookups.  Thought maybe the problem was with the forwarders but if I set the server to the forwarder I am using it never times out. The DNS is AD-integrated. There does not appear to be any login/computer problems from an internal windows user standpoiint. Tried to delete specific cache entries and retry but no luck. One stange item is if I do a ipconfig /all from the DNS server it list two different dns suffixes even though I have not entered any in the tcp/ip settings. But when I do nslookup it always has the cortect one. Any idea?
0
Comment
Question by:Joe_S_NY
  • 4
  • 2
8 Comments
 
LVL 104

Expert Comment

by:Sembee
ID: 11854949
Have you configured a reverse lookup zone for your IP address range? That makes things works a little smoother. Make it AD integrated and it will be populated automatically as the IP addresses get updated by the AD.

Simon.
0
 

Author Comment

by:Joe_S_NY
ID: 11855050
I do have a reverse lookup zone and there is a ns and ptr record for my DNS server.
0
 

Author Comment

by:Joe_S_NY
ID: 11855319
Here is an example:

> hp.com
Server:  mars.company.comapanytest.com
Address:  10.4.12.5

DNS request timed out.
    timeout was 2 seconds.
*** Request to mars.company.comapanytest.com timed-out
> hp.com
Server:  mars.company.comapanytest.com
Address:  192.168.100.5

Non-authoritative answer:
hp.com  MX preference = 10, mail exchanger = smtp.hp.com
hp.com  MX preference = 10, mail exchanger = smtp.cce.hp.com
hp.com  MX preference = 30, mail exchanger = smtpx.hp.com

smtp.cce.hp.com internet address = 161.114.21.24
smtp.cce.hp.com internet address = 161.114.21.25
smtp.cce.hp.com internet address = 161.114.21.22
smtp.cce.hp.com internet address = 161.114.21.23
smtpx.hp.com    internet address = 15.81.176.21
smtpx.hp.com    internet address = 15.45.89.154
smtpx.hp.com    internet address = 15.45.89.155
smtpx.hp.com    internet address = 15.45.89.156
smtpx.hp.com    internet address = 15.45.89.157
smtpx.hp.com    internet address = 15.81.168.20
smtpx.hp.com    internet address = 15.81.168.21
smtpx.hp.com    internet address = 15.81.176.20

I ran it a few minutes later and it timed out again. Then ran it 5 times straigt right after and it resolved fine. There is an entry unser the cached root for hp.com on the DNS server.
0
Microsoft Certification Exam 74-409

Veeam® is happy to provide the Microsoft community with a study guide prepared by MVP and MCT, Orin Thomas. This guide will take you through each of the exam objectives, helping you to prepare for and pass the examination.

 
LVL 104

Expert Comment

by:Sembee
ID: 11856230
Are you using forwarders in DNS or allowing Windows to find the information itself?

Simon.
0
 

Author Comment

by:Joe_S_NY
ID: 11856278
I actuall just tried that. Seemed to help a little, but still getting timeouts.
0
 

Author Comment

by:Joe_S_NY
ID: 11856954
Bit the bullet and called MS. Turns out W3k handles DNS packets a little different than W2K and there are some issues also with certain firewalls (CISCO). Something about packets being larger than 512K. ANyway, changed a registry setting in windows 2003 and it solved it in conjuntion with turning off 'include parent domain in dns suffix'. Cisco also has a fix. Problem Solved.
0
 

Accepted Solution

by:
CetusMOD earned 0 total points
ID: 11920510
Closed, 500 points refunded.
CetusMOD
Community Support Moderator
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

FIPS stands for the Federal Information Processing Standardisation and FIPS 140-2 is a collection of standards that are generically associated with hardware and software cryptography. In most cases, people can refer to this as the method of encrypti…
I'm a big fan of Windows' offline folder caching and have used it on my laptops for over a decade.  One thing I don't like about it, however, is how difficult Microsoft has made it for the cache to be moved out of the Windows folder.  Here's how to …
When you create an app prototype with Adobe XD, you can insert system screens -- sharing or Control Center, for example -- with just a few clicks. This video shows you how. You can take the full course on Experts Exchange at http://bit.ly/XDcourse.
This video explains how to create simple products associated to Magento configurable product and offers fast way of their generation with Store Manager for Magento tool.

919 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

16 Experts available now in Live!

Get 1:1 Help Now