• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 342
  • Last Modified:

DNS lookup seems to have a timeout problem - Windows 2000 Server

Having some problems getting dns resolution of some domains - I think it is a timeout issue, as these particular domains are slow to respond.

On the server, nslookup for a domain xyz works ONLY when the ISP dns server is explicitly stated, AND only after the timeout has been set fairly high.

I think the dns setup is otherwise fine on this server, the only place the ISP dns servers are mentioned is in the forward lookup zone.

Any ideas? thanks Mark
0
mbhh
Asked:
mbhh
  • 3
  • 3
1 Solution
 
Erik BjersPrincipal Systems AdministratorCommented:
Make sure your ISP DNS servers are listed as forwerders in DNS, and clear the DNS CACHE on the server.

http://www.windowsitpro.com/Article/ArticleID/41229/41229.html
http://www.windowsitpro.com/Article/ArticleID/41229/41229.html

eb
0
 
mbhhAuthor Commented:
I added the ISP dns servers into the Forwarders tab of the server properties and it all came right. Does this make good sense or is it just a hack?
0
 
Erik BjersPrincipal Systems AdministratorCommented:
no this is the way it's sapposed to be done

Your local WS look at your DNS server for name resolution, if your server does not know the answer it has to get the info from somewhere (that's where forwarders come in)


           ---------> WHO IS GOOGLE.COM --------->                  ---------> WHO IS GOOGLE.COM --------->
CLIENT                                                               YOUR DNS                                                               YOUR ISP DNS
          <-------------- 72.14.207.99 <--------------                   <-------------- 72.14.207.99 <--------------

eb
0
Improved Protection from Phishing Attacks

WatchGuard DNSWatch reduces malware infections by detecting and blocking malicious DNS requests, improving your ability to protect employees from phishing attacks. Learn more about our newest service included in Total Security Suite today!

 
mbhhAuthor Commented:
Yes but how come it was already working for most domains without the forwarders tab settings?

Why did not the ISP dns servers in the Forward Lookup zone not work for all lookups?
0
 
Erik BjersPrincipal Systems AdministratorCommented:
What happens is anything your server looks up is stored in it's CACHE so you may have had some lookups alredy stored.

Correct DNS setup in a Win domain is... all clients look at your DNS server as there primary DNS, your DNS server looks at it self as a primary DNS, and you have the forwarders.
0
 
mbhhAuthor Commented:
That's odd - the server was installed afresh (by me) only 3 months ago. I thought I had set the dns up correctly there and then, though I could easily have missed the forwarders.

Therefore from what you say ebjers, the forwarders tab MUST have been set up earlier on (for the cache to gain lookup info) and MUST have been recently removed?
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Protect Your Employees from Wi-Fi Threats

As Wi-Fi growth and popularity continues to climb, not everyone understands the risks that come with connecting to public Wi-Fi or even offering Wi-Fi to employees, visitors and guests. Download the resource kit to make sure your safe wherever business takes you!

  • 3
  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now