Solved

DNS A Records not updating

Posted on 2008-09-29
7
919 Views
Last Modified: 2012-05-05
I have a DNS server running AD Integrated in a Win2k3 Native Environment

My DHCP Server is set to update DNS and PTR records always.

I have 50 machines on one VLAN that just changed VLAN's a couple days ago.

Now all 50 machines are not pingable by host name. Instead it returns the old IP Address. Registering the machines does no good obviously because the host records still exist and you can't have two machines with the same name in DNS even though the IP has changed.

It's not profesional to wait 7 days for the records to scavenge obviously when all 50 machines are not pingable by host. They actually have to get to their file servers which is on their VLAN as well but I'm not sure if this can cause other issues like Group Policy and stuff that requires the DC to push down infnormation.

Can anyone explain this phenomina and show me how to correct it so next time I don't have to manually delete all 50 freakin records? I mean I'm lucky it was only 50. If I knew how the problem was created I can prevent it from happening next time we do VLAN changes or fix oter isolated incidents which seemto creep up now and then...

Thanks a ton everyone
0
Comment
Question by:snyderkv
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
7 Comments
 
LVL 13

Expert Comment

by:Rowley
ID: 22603575
http://technet.microsoft.com/en-us/library/cc757041.aspxhttp://technet.microsoft.com/en-us/library/cc757041.aspx

Alter your refresh and scavenge times as part of the migration as well as ensuring that all clients run ipconfig /registerdns after you're done. If you'd have planned top do both of these as part of the migration, you might have saved yourself a headache.
0
 
LVL 71

Accepted Solution

by:
Chris Dent earned 500 total points
ID: 22604411

Hey,

In an ideal world the Aging intervals should be set to work with your DHCP Lease time.

That way if a record does fail to overwrite it won't matter because the record will be scavenged at the same time as the new lease is granted.

Typically these kind of issues occur when permissions to write to the records have changed. For instance, if you moved the DHCP service, or changed the credentials it uses (or changed from DHCP updating to clients updating).

If you use multiple DHCP servers then you should ensure they work with the same credentials.

Chris
0
 
LVL 31

Expert Comment

by:Henrik Johansson
ID: 22607260
Dynamic updates will only update dynamic records and not static records.
In DNS-manager: Click View|Advanced. Open the DNS-records and tick the checkbox "Delete this record when it becomes stale" to mark the record as dynamic.

To do a manual scavenge: Right-click on DNS-server in DNS-manager and choose 'Scavenge Stale Resource Records'
0
Raise the IQ of Your IT Alerts

From IT major incidents to manufacturing line slowdowns, every business process generates insights that need to reach the people required to take action. You need a platform that integrates with your business tools to create fully enabled DevOps toolchains.

You need xMatters.

 
LVL 4

Expert Comment

by:cybersean
ID: 22607395
Next time, you should be able to reload the dns zone simply by right-clicking on it and select Reload.
0
 

Author Comment

by:snyderkv
ID: 22611573
But reloading the zone I thought was used only if you want Cached ifo to sync with the zone file. Replication is not an issue here.

The record is stale, but we don't want to wait 7 days.

We cannot manually scavenge all records because I thought that creates lots of DNS replication traffic?

It's not a permissions issue . It's ust I can't get a cmputer to registerdns because it's old record is taking it's place. Or maybe that is permissions. I don't know. ???

I will check permissions out within the hour

0
 

Author Comment

by:snyderkv
ID: 22611714
FIXED!

Turns out it was a permissios issue like Chris suggested.

I gave permissions to myself for the A record and did another ipconfig /registerdns and it updated theA record to the crrect IP Address. I was told that to prevent this I could stop letting DHCP dynamically update the records and let the clients do it on their own.

Sorry for not spliting points but Chrise's answer made me look into permissions which fixed the issue. If anybody contests it let me know and I will split the points.
0
 
LVL 71

Expert Comment

by:Chris Dent
ID: 22612384

> I was told that to prevent this I could stop letting DHCP dynamically
> update the records and let the clients do it on their own.

That will work well enough. Once clients have permission on the record they will update it themselves no matter where they log on (well, as long as they're connected of course).

If DHCP is updating, and there are multiple (or changing) DHCP servers it is best to configure each to use the same credentials when registering records. There's also the DNSUpdateProxy group that can be used to simplify permissions set on created records.

Chris
0

Featured Post

On Demand Webinar: Networking for the Cloud Era

Ready to improve network connectivity? Watch this webinar to learn how SD-WANs and a one-click instant connect tool can boost provisions, deployment, and management of your cloud connection.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article is intended as an extension of a blog on Aging and Scavenging by the MS Enterprise Networking Team. In brief, Scavenging is used as follows: Each record in a zone which has been dynamically registered with an MS DNS Server will have…
One of the most often confused topics in the area DNS is the idea of GLUE records. Specifically, what they are, when they are needed, when they are provided, and how they are created. First, WHAT IS GLUE? To understand GLUE, you must first under…
There's a multitude of different network monitoring solutions out there, and you're probably wondering what makes NetCrunch so special. It's completely agentless, but does let you create an agent, if you desire. It offers powerful scalability …
In this brief tutorial Pawel from AdRem Software explains how you can quickly find out which services are running on your network, or what are the IP addresses of servers responsible for each service. Software used is freeware NetCrunch Tools (https…

691 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question