Solved

Having problems with Automatic DNS Updates from DCs

Posted on 2007-12-04
7
248 Views
Last Modified: 2010-04-07
Hello,

I have 2 DCs in two different locations connected via software VPN.
Both DCs run DNS server services on them.

However, one DC is behind an NAT router, so it only has a local address, while the other DC is behind a Cisco firewall co-located in a data center with both a public and a private IP.

The private IP works fine over the software VPN and can connunicate, however the co-located DC keeps updating it's DNS record for itself with both the public and the private IP address.
This is causing problems in the office where the NAT router sits because it tries to connect over a public IP when it should only be using the private IP.

I have tried to remove it in the DNS records, and it works perfectly.. However it keeps adding itself back in every couple of hours!

How can I stop this DNS server from updating itself with the public IP?
0
Comment
Question by:BuggyBoyNYC
  • 4
  • 3
7 Comments
 
LVL 12

Accepted Solution

by:
Amit Bhatnagar earned 500 total points
ID: 20409196
A very common problem normally seen with DNS Server with RRAS installed as well (Multihomed). Anyways, the fix is simple as well.

http://support.microsoft.com/kb/275554
http://support.microsoft.com/kb/246804/EN-US/
http://support.microsoft.com/kb/292822

I could have posted the exact keys for you but I want you to read the entire article if possible. It will help you know a lot of keys\registry changes which people are normally unaware of.


Cheats : Last article contains the resolution part..:D Cheers !!!
0
 

Author Comment

by:BuggyBoyNYC
ID: 20409519
Thanks for the response!
However I think I should clarify one thing, I am not using RRAS I am using a seperate third-party software VPN on the system which creates a new network adapter with a private address (much like how a Cisco VPN client does, except this runs 24/7 with no disconnect).

I am not quite sure exactly what instruction set to follow since this isn't specifically RRAS!

Many thanks again, hope you can clarify for me! :)

For example sake, lets say the public address is 66.237.111.111 and the private is 10.2.2.1. How do I keep 66.237.111.111 from automatically registering in the DNS on this server, even though both are valid connections?
0
 
LVL 12

Assisted Solution

by:Amit Bhatnagar
Amit Bhatnagar earned 500 total points
ID: 20409574
Hey Buggy Boy from New York City...:D...It does not really matter whether you have RRAS configured or not, if it is a DNS Box and you have multiple adapters, they will register themselves automatically in the form of SOA(Start of Authority) and Host A record. That means even if you have a Virtual network Card due to Loopback adapter or bluetooth, They will get registered in DNS as well. To disable this effect, Add the PublishAddresses and RegisterDnsARecords registry values for the DNS and Netlogon services.

You will notice in the last article that they have mentioned "This issue typically affects computers that are running Small Business Server because this version of Windows Server is frequently the only server on the network". This is because SBS in most of the cases has two NICs. One public and one private. Hope, this helps !!!
0
The New “Normal” in Modern Enterprise Operations

DevOps for the modern enterprise offers many benefits — increased agility, productivity, and more, but digital transformation isn’t easy, especially if you’re not addressing the right issues. Register for the webinar to dive into the “new normal” for enterprise modern ops.

 

Author Comment

by:BuggyBoyNYC
ID: 20409682
Thank you so much! :)
0
 
LVL 12

Expert Comment

by:Amit Bhatnagar
ID: 20409699
I'll be more happy if these steps actually resolve your issue...It is not like I have doubts...but technology has a mind of its own.... :D U never know...Do let me know the result.
0
 

Author Comment

by:BuggyBoyNYC
ID: 20409760
Added those two registry values, and restarted NetLogon and DNS Server services and it IMMEDIATELY resolved the issue! The only A record showing for the co-lo machine was the local address! :) Many thanks!!!!
0
 
LVL 12

Expert Comment

by:Amit Bhatnagar
ID: 20409861
You are welcome !! Just an advice...To be dead sure that it is fixed. Restart the Server in Off-Office hours and see if they are still missing. Take care..:) A lot of reregistration happens at the time of System Restart...:)
0

Featured Post

Resolve Critical IT Incidents Fast

If your data, services or processes become compromised, your organization can suffer damage in just minutes and how fast you communicate during a major IT incident is everything. Learn how to immediately identify incidents & best practices to resolve them quickly and effectively.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Most DNS problems are VERY easily troubleshot and identifiable if you can follow the steps a DNS query takes. I would like to share the step-by-step a DNS query takes from the origin to the destination. _____________________________________________…
This article is intended as an extension of a blog on Aging and Scavenging by the MS Enterprise Networking Team. In brief, Scavenging is used as follows: Each record in a zone which has been dynamically registered with an MS DNS Server will have…
Two types of users will appreciate AOMEI Backupper Pro: 1 - Those with PCIe drives (and haven't found cloning software that works on them). 2 - Those who want a fast clone of their boot drive (no re-boots needed) and it can clone your drive wh…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

856 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question