DNS multiple entries for server

Posted on 2006-05-11
Last Modified: 2010-04-18
I have a windows 2003 server running as my domain controller and DNS.  My network is behind a Cisco PIX and I have VPN enabled.  The Pix passes through any VPN traffic and lets windows handle it.  The issue is that in the DNS forward lookup zone I have two entries for my server, one is the correct IP the other is an ip in the correct subnet but doesn't correspond to anything.  I checked the DHCP leases and found out that there is a block of IP addresses set aside for VPN users.  The IP that is showing in the DNS is the last IP in that block of addresses.  The entry shows up as a host(A) entry and it also shows up under the properties as one of the IPs for the name server.  I have tried deleting the entry from both locations but as soon as I reload it comes back.  This is causing an issue for several users since when they try loading up outlook for example it may take a while because its looking for the wrong IP.  On the client machines if this occurs I can do an ipconfig flushdns and that usually fixes the problem.  

Any help would be appriciated.    
Thank you
Question by:ANSOCF
    LVL 51

    Accepted Solution

    This is done by RRAS.

    Since RRAS is handling your VPN clients, it will reserver a block of 10 IPs for the clients and set one up for itself.  In order for the VPN client to be able to work it'll need that entry.

    You can choose the option in RRAS to use a pool of addresses - then exclude them from the DHCP scope.  This should prevent the server from grabbing an IP and registering it.


    Author Comment

    I have made the changes in the RRAS and the IP address doesn't not show up in DHCP anymore, but the starting IP address in the range of VPN addresses still shows up in DNS.  This is still causing some hangups when tryign to open up outlook and my server is being resolved to the wrong IP.  

    Featured Post

    Find Ransomware Secrets With All-Source Analysis

    Ransomware has become a major concern for organizations; its prevalence has grown due to past successes achieved by threat actors. While each ransomware variant is different, we’ve seen some common tactics and trends used among the authors of the malware.

    Join & Write a Comment

    I guess it is not common knowledge to most Wintel engineers/administrators: If you have an SNMP-based monitoring system in your environment (and it's common to have SNMP or Syslog) it's reasonably easy to enable monitoring of the Windows Event logs,…
    A quick step-by-step overview of installing and configuring Carbonite Server Backup.
    Sending a Secure fax is easy with eFax Corporate ( First, Just open a new email message.  In the To field, type your recipient's fax number You can even send a secure international fax — just include t…
    This video discusses moving either the default database or any database to a new volume.

    729 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    19 Experts available now in Live!

    Get 1:1 Help Now