Hi, got a curious DNS (I assume) problem which started a few days ago...
I have a network which has 4 DNS Servers, 2 at Head Office and 1 each at 2 remote sites.
They are active directory integrated zones and appear to be replicating correctly.
My laptop is pointed at the DNS servers at Head Office and I was unable access www.microsoft.com
and also seemed to be getting a higher than normal number of pages which will not display until the refresh button is pressed, if I pointed my laptop at the DNS forwarder address listed in my DNS, at an external DNS address (e.g.: my ISP) OR to one of my INTERNAL DNS servers at one of the REMOTE sites I had no problems.
It only seemed to be the site mentioned (i.e.: I could get to www.support.micorsoft.com
When I ping/tracert www.microsoft.com
I get 'unable to resolve name' (while MS seems to disable ping response I should at lest get the first few hops of the tracert cmd)
My Head Office DNS servers don't seem to be doing the recursive query for this site correctly but why oh why only this site, surely even if all else fails the root hints should do the job?
The following day, came in the morning and could get the microsoft site, also got tracert responses through lb1.www.ms.akadns.net
[188.8.131.52] until MS kills the ping.
Today I can get www.microsoft.com
but not www.symantec.com
with a tracert response of 'Unable to resolve target system name', however when set my secondary DNS to be one of my remote sites (remember, Integrated AD DNS) it all works fine, get a ping response and can tracert...
Can someone point me in the right direction for more investigation...?