Disable DNS Root hints
I have been noticing some odd traffic in my network. it appears that my two microsoft DNS servers keep trying to get to the internet to update their root hints list. I have manually removed the list of root hints, and replaced it with a reference to my primary DNS server, which is a linus firewall.
The MS DNS servers are prevented from updating the root hints by an ACL, but i was wondering if there was any way to prevent them from TRYING to go to the internet to update this.
The MS DNS servers are prevented from updating the root hints by an ACL, but i was wondering if there was any way to prevent them from TRYING to go to the internet to update this.
ASKER
I had configured forwarders, and had removed the default root hints and replaced with a reference to my Master DNS server. According to microsoft, the servers should only try to update the root hints if NO root hints are available.
i did however find mention that if the CACHE.dns file contains entries not listed in the root hints, that on startup the sytem will add them.
i have now modified my cache.dns file to only reflect my master DNS server. I am waiting to see if this fixes the issue.
i did however find mention that if the CACHE.dns file contains entries not listed in the root hints, that on startup the sytem will add them.
i have now modified my cache.dns file to only reflect my master DNS server. I am waiting to see if this fixes the issue.
ASKER
I ended up deleting the cache.dns file and am no longer encountering this issue. Thanks for your comments Sembee.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Otherwise this is by design.
Simon.