Solved

what is "SCAVENGING" option in DNS Server?

Posted on 2008-10-03
6
956 Views
Last Modified: 2012-05-05
Hi,

1. This is related to SCAVENGING option in DNS server
2. My questions: i) Please firstly explain it with your own WORDING and then give the links if necessary, ii) What is Scavenging option?, iii) How to configure it?, iv) Any Samples?
3. Thank you

Tjie
0
Comment
Question by:tjie
6 Comments
 
LVL 9

Assisted Solution

by:waynewilliams
waynewilliams earned 50 total points
ID: 22635050
0
 
LVL 4

Assisted Solution

by:asrdias
asrdias earned 300 total points
ID: 22635079
0
 
LVL 4

Accepted Solution

by:
asrdias earned 300 total points
ID: 22635115
In my words Scavenging is a clean up process to remove old DNS records that might lead to DNS poisoning.
For example:

Server named "Server1" record points to 192.168.0.10
This servers gets retired and you add a new server named "Server1" with ip address 192.168.20
Yes, The same server name diffrent IP but can lead to pointing clients to old IP address if both records are present. Scavenging will take care of removing the old one.
0
Is Your AD Toolbox Looking More Like a Toybox?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

 
LVL 70

Assisted Solution

by:Chris Dent
Chris Dent earned 50 total points
ID: 22635251

> DNS poisoning

It's not really poisoning, that implies a malicious action. It's just house-keeping.

Chris
0
 
LVL 4

Assisted Solution

by:asrdias
asrdias earned 300 total points
ID: 22635326
Chris-Dent: you are correct. I must clarify that from my point of view I was not referring to DNS cache poison attacks.
From my point of view the cache becomes poisoned if contains invalid or misleading records. The way they get there is a secondary issue to analyze.
0
 
LVL 57

Assisted Solution

by:Mike Kline
Mike Kline earned 100 total points
ID: 22635451
tjie,

Probably one of the best articles I've found on this subject is here from the MS Networking team.

http://blogs.technet.com/networking/archive/2008/03/19/don-t-be-afraid-of-dns-scavenging-just-be-patient.aspx
Don't be afraid of DNS Scavenging. Just be patient

My own words would not have been as good as that article :)

Hope that helps

Thanks
Mike
0

Featured Post

Is Your AD Toolbox Looking More Like a Toybox?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Synchronize a new Active Directory domain with an existing Office 365 tenant
In-place Upgrading Dirsync to Azure AD Connect
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …

789 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question