Solved

Stopping a Network Adaptor Registering itself with DNS

Posted on 2006-11-22
3
1,142 Views
Last Modified: 2012-06-27
Hi,

My question boils down to "Under Windows Server 2003, how can you stop a Network Adaptor registering it's address with DNS".

The background:-

We're running the "software" VPN Service, Hamachi (www.hamachi.cc) on one of our Domain Controllers/File/Print Servers within an 2003 Active Directory domain.

Hamachi is on the DC purely to allow someone at a regional office access to Files - it is not used to tunnel any AD services such as Domain Authentication.

However, despite turning off the "Register this connection with DNS" option on the Hamachi adaptor, the 5.82.x.x address of the Hamachi Adaptor keeps registering itself in the AD integrated DNS zone.

The result of this is that other DC's in other sites try to use the 5.82.x.x address, and AD replication problems occur.

Once I've manually deleted the 5.82.x.x DNS entry - things spring back into life, but it's a pain constantly having to do this.

The DNS Server itself is only registered to serve addresses on the 192.168.10.2 range. It accepts all Dynamic Updates.

Can anyone suggest how to prevent Hamachi from registering it's details in DNS, so the Adaptor is simply used as a VPN tunnel for the sites that wish to use it?

I also have a thread running at the Hamachi Forums (http://forums.hamachi.cc/viewtopic.php?p=41547#41547) but the Hamachi folk are stumped on this, so I thought I'd turn to the good folks at EE for help. :-)

Regards,

Richard Tubb.
0
Comment
Question by:netlinkrtubb
  • 2
3 Comments
 
LVL 83

Accepted Solution

by:
oBdA earned 500 total points
ID: 17994654
Verify that your DNS server is only listening on the 192 address, as a DNS server will automatically register all addresses it's listening on, independent of the settings in the DNS tab in TCP/IP properties.
Check here on how to handle/disable automatic registration:
How to enable or disable DNS updates in Windows 2000 and in Windows Server 2003
http://support.microsoft.com/?kbid=246804
0
 

Author Comment

by:netlinkrtubb
ID: 17994769
Hi ObdA,

Thanks for this.

I've implemented the following change on the Hamachi Adaptor:-

"To disable DNS updates for a particular interface, follow these steps:

1. Click Start, click Run, type regedit, and then click OK.  
2. Locate and then click the following registry subkey:

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\ Tcpip\Parameters\Interfaces\deviceID

Note deviceID is the device ID of the network adaptor for the interface.

3. On the Edit menu, point to New, and then click DWORD Value.  
4. Type DisableDynamicUpdate, and then press ENTER two times.
5. In the Edit DWORD Value dialog box, type 1 in the Value data box, and then click OK.
6. Quit Registry Editor."

I'll schedule a reboot of the server out-of-hours (the article states Windows 2000 needs to be re-started, I'm guessing this is true for Windows 2003 too) - then re-enable the Hamachi adaptor, wait for a few hours to see if any problems occur, and get back to you with my findings!

Many thanks again!

Regards,

Richard Tubb.
0
 

Author Comment

by:netlinkrtubb
ID: 18008742
Hi Obda,

Good news - the Hamachi adaptor hasn't registered itself in the 24 hours since I've rebooted.

So I think it's safe to say that your solution worked. Many thanks!

Regards,

Richard Tubb.
www.netlink-it.com
0

Featured Post

Efficient way to get backups off site to Azure

This user guide provides instructions on how to deploy and configure both a StoneFly Scale Out NAS Enterprise Cloud Drive virtual machine and Veeam Cloud Connect in the Microsoft Azure Cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
How to fix the time service on domain controller 6 53
AutoCad licenses 9 71
Strange routing problem between subnets 2 89
How To Allow IIS 10 Anonymous Permissions 3 44
Nslookup is a command line driven utility supplied as part of most Windows operating systems that can reveal information related to domain names and the Internet Protocol (IP) addresses associated with them. In simple terms, it is a tool that can …
An article on effective troubleshooting
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…

772 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question