There are no hosts in my reverse DNS zone

Posted on 2008-11-12
Medium Priority
Last Modified: 2012-06-21
Three workdays ago I had to change IP subnet for a customer.

It went ok, but I am still missing the hosts in the reverse DNS Zone.

------ REVERSE ZONE ----------------------
Name      Type      Data      Pointer (PTR)      dc.dkdom.local.
(same as parent folder)      Name Server (NS)      dc.dkdom.local.
(same as parent folder)      Start of Authority (SOA)      [2], dc.dkdom.local., hostmaster.dkdom.local.

------ FORWARD ZONE ---------------------
Name      Type      Data
(same as parent folder)      Host (A)
(same as parent folder)      Name Server (NS)      dc.dkdom.local.
(same as parent folder)      Start of Authority (SOA)      [5978], dc.dkdom.local., hostmaster.dkdom.local.
D19TY93J      Host (A)
D2HN6N1J      Host (A)
D3341T3J      Host (A)
D4SXY22J      Host (A)
D562071J      Host (A)
d62071j      Host (A)
D6X7MP1J      Host (A)
D8ZS5S2J      Host (A)
d962071j      Host (A)
d962071j      Host (A)
D9CDMW3J      Host (A)
DB62071J      Host (A)
DBCDMW3J      Host (A)
DGHW191J      Host (A)
Flemming2008      Host (A)
FS2007      Host (A)
HB2007      Host (A)
IK-Dell      Host (A)
Lisa2008      Host (A)
marc      Host (A)
Mark2008      Host (A)
Mona2008      Host (A)
montage2008      Host (A)
mpe2007      Host (A)
sortimodc      Host (A)


As you can see there are still some "old 192.168.1.x" records in the forward zone. How do I get rid of those?

Both zones are Active Directory integrated and secure only updates.

Dynamic DNS updates are enabled on the DHCP scope
Question by:TANGLAD
  • 5
  • 4
LVL 16

Expert Comment

ID: 22937772

You can delete the old records or if you have Scavanging enabled, the old records will be deleted as soon as the DHCP lease expires.

When your (A) hosts are created, are the PTR record automatically added?

Author Comment

ID: 22937858
OK I will enable scavanging

No it doesn't seem that PTR records are automatically added
LVL 16

Expert Comment

ID: 22937903
Cool. As soon as you create a new (A) host, remember to tick automatically create PTR record. If you do this once, it will be set as default and all new records will be created with a PTR record as well.
Get your Conversational Ransomware Defense e‑book

This e-book gives you an insight into the ransomware threat and reviews the fundamentals of top-notch ransomware preparedness and recovery. To help you protect yourself and your organization. The initial infection may be inevitable, so the best protection is to be fully prepared.


Author Comment

ID: 22937915
But how do I get PTR records for my existing A records?
LVL 16

Expert Comment

ID: 22937973
Well, if you double click on each (A) record, you can tick the box that says: "Update associated pointer PTR record.

Author Comment

ID: 22948237
Have done that (yesterday) still no new records in the reverse zone
LVL 16

Expert Comment

ID: 22948260

If DHCP is registering in DNS for the clients, and the clients are XP, use repair this connection, if the client registers itself use ipconfig /registerdns, if the client doesn't support DDNS, DHCP is registering the client, so use ipconfig /release & ipconfig /renew.


Author Comment

ID: 23067361
This morning there was still no records in the reverse zone. Changed the zone to accept both secure and non-secure updates and now every host is in the zone.

But what could have prevented the host updates when the zone was set to allow only secure updates?
LVL 16

Accepted Solution

JoWickerman earned 2000 total points
ID: 23067840
OH!!!! Well... By default for an authoritative zone, you should enable both secure and non secure updates. I would never have thought that this was not selected on your server. Strange...

If you have non secure updates deselected, then the updates to the reverse zone will be ignored as this is a non authorative zone for Integrated AD.

Glad it's working now.

Featured Post

Upgrade your Question Security!

Add Premium security features to your question to ensure its privacy or anonymity. Learn more about your ability to control Question Security today.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article explains how a domain name may be inadvertently appended to all DNS queries. This exhibits as described below. (CODE)And / Or: (CODE) Cause This issue can occur in either of these two scenarios. EITHER 1. A Primary DNS S…
There have been a lot of times when we have seen the need to enter a large number of DNS entries in a forward lookup zone. The standard procedure would be to launch the DNS Manager console, create the Zone and start adding new hosts using the New…
Please read the paragraph below before following the instructions in the video — there are important caveats in the paragraph that I did not mention in the video. If your PaperPort 12 or PaperPort 14 is failing to start, or crashing, or hanging, …
Is your data getting by on basic protection measures? In today’s climate of debilitating malware and ransomware—like WannaCry—that may not be enough. You need to establish more than basics, like a recovery plan that protects both data and endpoints.…
Suggested Courses

850 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question