Link to home
Start Free TrialLog in
Avatar of Nirav04
Nirav04Flag for United States of America

asked on

Reverse Lookup Zone not updating

Hi,

Reverse lookup zone in DNS is not updating with current IP address to Host name, also I like to make sure all the DNS settings are correct. Can someone please help, we are running Windows 2003 DC (FSMO roles) and Windows 2008 DC (additional DC) AD Integrated DNS.

Thanks,
Avatar of Mike Kline
Mike Kline
Flag of United States of America image

Are your clients getting their IP's from a Windows DHCP server?
Thanks
Mike
Avatar of Nirav04

ASKER

No our firewall is DHCP
Avatar of Nirav04

ASKER

Under Forward Lookup zone - Name server tab I have two DC listed, in Zone transfer tab is not enabled. Nothing is checked in aging.
Avatar of Nirav04

ASKER

and under reverse lookup zone -  Name server tab I have two DC listed and in zone tranfer - enabled with option as only to servers listed on the name server tab

thanks mike.
The aging tab has to deal with scavenging so that is separate.
If from a client you run ipconfig /registerdns do the PTR records appear.
Thanks
Mike
Avatar of Nirav04

ASKER

On windows 2000 client it comes with following info

Windows 2000 IP Configuration

Registration of the DNS resource records for all adapters of this computer has b
een initiated. Any errors will be reported in the Event Viewer in 15 minutes.
Avatar of Nirav04

ASKER

All I need is to make sure all the settings in forward and reverse lookup are correct and also DNS setting, my issue might be something to do with scavenging and I just enable it at default settings.

Thanks,

If your firewall is acting as the DHCP Server, that is probably the reason why the DNS is not working correctly. It's quite likely that the firewall's DHCP scope is incorrectly configured, and as such, workstations are not actively connecting to your DCs to resolve DNS. This can have major knock-on effects, and should be avoided.

I'd appreciate it if you could post the output of an ipconfig /all (at a Command Prompt) from the server and one workstation which uses DHCP.

-Matt
Avatar of Nirav04

ASKER

Thank you Matt, following is the information you requested.

DNS Server:

Windows IP Configuration

   Host Name . . . . . . . . . . . . : DNS-server
   Primary Dns Suffix  . . . . . . . : dom.testinc.com
   Node Type . . . . . . . . . . . . : Unknown
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : dom.testinc.com
                                                           testinc.com

Ethernet adapter Local Area Connection:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : VMware Accelerated AMD PCNet Adapter
   Physical Address. . . . . . . . . : 00-0C-29-4E-E1-69
   DHCP Enabled. . . . . . . . . . . : No
   IP Address. . . . . . . . . . . . : 192.168.250.195
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Default Gateway . . . . . . . . . : 192.168.250.250
   DNS Servers . . . . . . . . . . . : 192.168.250.195
                                                    192.168.250.201

Workstation:

Windows IP Configuration

        Host Name . . . . . . . . . . . . : B0VYVD1-POW
        Primary Dns Suffix  . . . . . . . : dom.testinc.com
        Node Type . . . . . . . . . . . . : Unknown
        IP Routing Enabled. . . . . . . . : No
        WINS Proxy Enabled. . . . . . . . : No
        DNS Suffix Search List. . . . . . : dom.testinc.com
                                                               testinc.com

Ethernet adapter Local Area Connection:

        Connection-specific DNS Suffix  . :
        Description . . . . . . . . . . . : Broadcom 440x 10/100 Integrated Controller
        Physical Address. . . . . . . . . : 00-1D-09-06-08-90
        Dhcp Enabled. . . . . . . . . . . : Yes
        Autoconfiguration Enabled . . . . : Yes
        IP Address. . . . . . . . . . . . : 192.168.250.100
        Subnet Mask . . . . . . . . . . . : 255.255.255.0
        Default Gateway . . . . . . . . . : 192.168.250.250
        DHCP Server . . . . . . . . . . . : 192.168.250.200
        DNS Servers . . . . . . . . . . . : 192.168.250.195
                                                         192.168.250.201
                                           
        Lease Obtained. . . . . . . . . . : Thursday, February 19, 2009 7:46:29 AM
        Lease Expires . . . . . . . . . . : Friday, February 20, 2009 7:46:29 AM

Do you have another server on IP 192.168.250.201?
Avatar of Nirav04

ASKER

yes, 195 (DC, DNS, FSMO) 201 (additional DC, DNS)
Are the A records being updated in DNS properly?  Is it only the PTR records that are not being updated?
Avatar of Nirav04

ASKER

After looking at 10 PC all the records are correct A and PTR do you think because I turned on scavenging yesterday?
Also there lots of entry of PC which are no longer being used.

ASKER CERTIFIED SOLUTION
Avatar of Mike Kline
Mike Kline
Flag of United States of America image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of Nirav04

ASKER

If I delete computer object from AD will it automatically remove record from DNS? If not what is best way to remove old records from DNS and also from AD there are lots of PC under AD users and Computers which are longer being used. Do you know any easier way to do this not even sure what is being used, we do not have any sort of inventory.

Thanks,
Deleting a computer object won't automatically delete the DNS record. That is something which has to be done manually, or using something like scavenging.
Avatar of Nirav04

ASKER

what about zone transfer? should this be enabled?

Are you using active directory integrated DNS?  If so DNS is already replicating to both servers.
That tab is more for if another DNS server needs a copy of your zone.  From what I'm reading in your threads I'm thinking no.
Avatar of Nirav04

ASKER

Mike,

Last weekend I demoted one of old server from DC role, server still is member server. It went through fine but there is still two entry on DNS, I can understand since server still is member server it will host A entry but what about second.

hosta.jpg
Avatar of Nirav04

ASKER

Is their any way to tell which A record was last updated?
You should have one of those (same as parent folder) for every domain controller.   That second one is not needed.
Is their any way to tell which A record was last updated?
You can use dnscmd for that
example:
domain = test.com & hostname (A record) = XPSP3
dnscmd /enumrecords test.com XPSP3
 
Thanks
Mike
Avatar of Nirav04

ASKER

You should have one of those (same as parent folder) for every domain controller.   That second one is not needed.You should have one of those (same as parent folder) for every domain controller.   That second one is not needed.

So I can delete (Same as Parent folder) since this server is no longer DC?
SOLUTION
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of Nirav04

ASKER

Mike and Matt thank you for all your help, I will be going through list of active PC and deleting A and PTR records manually since DHCP is via firewall and after reading scavenging article that it might create more issues. Once everything is cleaned then I might turn on scavenging.

Once again thanks,