I administer a large offline network, which consists of several DCs which function as well as DNS server
We noticed the problem sometime after we upgraded the network to an 2003-native - long, 20 seconds or more delays in many applications on the network.
After some research, we assumed that the applications' are 'trying' to revoke their certificate, which makes them turn to addresses like crl.microsoft.com
After some sniffing, it turns out that some addresses doesn't get a response from the DNS server at all
To make a long story short - are there any known configuration i can make to the DNS server or local machines to prevent these delays?
Thanks in advance