Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 3877
  • Last Modified:

Reverse Lookup Zone not updating

Hi,

Reverse lookup zone in DNS is not updating with current IP address to Host name, also I like to make sure all the DNS settings are correct. Can someone please help, we are running Windows 2003 DC (FSMO roles) and Windows 2008 DC (additional DC) AD Integrated DNS.

Thanks,
0
Nirav04
Asked:
Nirav04
  • 14
  • 7
  • 4
2 Solutions
 
Mike KlineCommented:
Are your clients getting their IP's from a Windows DHCP server?
Thanks
Mike
0
 
Nirav04Author Commented:
No our firewall is DHCP
0
 
Nirav04Author Commented:
Under Forward Lookup zone - Name server tab I have two DC listed, in Zone transfer tab is not enabled. Nothing is checked in aging.
0
Simplify Active Directory Administration

Administration of Active Directory does not have to be hard.  Too often what should be a simple task is made more difficult than it needs to be.The solution?  Hyena from SystemTools Software.  With ease-of-use as well as powerful importing and bulk updating capabilities.

 
Nirav04Author Commented:
and under reverse lookup zone -  Name server tab I have two DC listed and in zone tranfer - enabled with option as only to servers listed on the name server tab

thanks mike.
0
 
Mike KlineCommented:
The aging tab has to deal with scavenging so that is separate.
If from a client you run ipconfig /registerdns do the PTR records appear.
Thanks
Mike
0
 
Nirav04Author Commented:
On windows 2000 client it comes with following info

Windows 2000 IP Configuration

Registration of the DNS resource records for all adapters of this computer has b
een initiated. Any errors will be reported in the Event Viewer in 15 minutes.
0
 
Nirav04Author Commented:
All I need is to make sure all the settings in forward and reverse lookup are correct and also DNS setting, my issue might be something to do with scavenging and I just enable it at default settings.

Thanks,
0
 
tigermattCommented:

If your firewall is acting as the DHCP Server, that is probably the reason why the DNS is not working correctly. It's quite likely that the firewall's DHCP scope is incorrectly configured, and as such, workstations are not actively connecting to your DCs to resolve DNS. This can have major knock-on effects, and should be avoided.

I'd appreciate it if you could post the output of an ipconfig /all (at a Command Prompt) from the server and one workstation which uses DHCP.

-Matt
0
 
Nirav04Author Commented:
Thank you Matt, following is the information you requested.

DNS Server:

Windows IP Configuration

   Host Name . . . . . . . . . . . . : DNS-server
   Primary Dns Suffix  . . . . . . . : dom.testinc.com
   Node Type . . . . . . . . . . . . : Unknown
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : dom.testinc.com
                                                           testinc.com

Ethernet adapter Local Area Connection:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : VMware Accelerated AMD PCNet Adapter
   Physical Address. . . . . . . . . : 00-0C-29-4E-E1-69
   DHCP Enabled. . . . . . . . . . . : No
   IP Address. . . . . . . . . . . . : 192.168.250.195
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Default Gateway . . . . . . . . . : 192.168.250.250
   DNS Servers . . . . . . . . . . . : 192.168.250.195
                                                    192.168.250.201

Workstation:

Windows IP Configuration

        Host Name . . . . . . . . . . . . : B0VYVD1-POW
        Primary Dns Suffix  . . . . . . . : dom.testinc.com
        Node Type . . . . . . . . . . . . : Unknown
        IP Routing Enabled. . . . . . . . : No
        WINS Proxy Enabled. . . . . . . . : No
        DNS Suffix Search List. . . . . . : dom.testinc.com
                                                               testinc.com

Ethernet adapter Local Area Connection:

        Connection-specific DNS Suffix  . :
        Description . . . . . . . . . . . : Broadcom 440x 10/100 Integrated Controller
        Physical Address. . . . . . . . . : 00-1D-09-06-08-90
        Dhcp Enabled. . . . . . . . . . . : Yes
        Autoconfiguration Enabled . . . . : Yes
        IP Address. . . . . . . . . . . . : 192.168.250.100
        Subnet Mask . . . . . . . . . . . : 255.255.255.0
        Default Gateway . . . . . . . . . : 192.168.250.250
        DHCP Server . . . . . . . . . . . : 192.168.250.200
        DNS Servers . . . . . . . . . . . : 192.168.250.195
                                                         192.168.250.201
                                           
        Lease Obtained. . . . . . . . . . : Thursday, February 19, 2009 7:46:29 AM
        Lease Expires . . . . . . . . . . : Friday, February 20, 2009 7:46:29 AM
0
 
tigermattCommented:

Do you have another server on IP 192.168.250.201?
0
 
Nirav04Author Commented:
yes, 195 (DC, DNS, FSMO) 201 (additional DC, DNS)
0
 
Mike KlineCommented:
Are the A records being updated in DNS properly?  Is it only the PTR records that are not being updated?
0
 
Nirav04Author Commented:
After looking at 10 PC all the records are correct A and PTR do you think because I turned on scavenging yesterday?
Also there lots of entry of PC which are no longer being used.

0
 
Mike KlineCommented:
Turning on scavenging shouldn't have affected registrations.  Turning on scavenging should help with the old records.  
A really good article on scavenging can be found here:
http://blogs.technet.com/networking/archive/2008/03/19/don-t-be-afraid-of-dns-scavenging-just-be-patient.aspx
 
0
 
Nirav04Author Commented:
If I delete computer object from AD will it automatically remove record from DNS? If not what is best way to remove old records from DNS and also from AD there are lots of PC under AD users and Computers which are longer being used. Do you know any easier way to do this not even sure what is being used, we do not have any sort of inventory.

Thanks,
0
 
tigermattCommented:
Deleting a computer object won't automatically delete the DNS record. That is something which has to be done manually, or using something like scavenging.
0
 
Nirav04Author Commented:
what about zone transfer? should this be enabled?

0
 
Mike KlineCommented:
Are you using active directory integrated DNS?  If so DNS is already replicating to both servers.
That tab is more for if another DNS server needs a copy of your zone.  From what I'm reading in your threads I'm thinking no.
0
 
Nirav04Author Commented:
Mike,

Last weekend I demoted one of old server from DC role, server still is member server. It went through fine but there is still two entry on DNS, I can understand since server still is member server it will host A entry but what about second.

hosta.jpg
0
 
Nirav04Author Commented:
Is their any way to tell which A record was last updated?
0
 
Mike KlineCommented:
You should have one of those (same as parent folder) for every domain controller.   That second one is not needed.
0
 
Mike KlineCommented:
Is their any way to tell which A record was last updated?
You can use dnscmd for that
example:
domain = test.com & hostname (A record) = XPSP3
dnscmd /enumrecords test.com XPSP3
 
Thanks
Mike
0
 
Nirav04Author Commented:
You should have one of those (same as parent folder) for every domain controller.   That second one is not needed.You should have one of those (same as parent folder) for every domain controller.   That second one is not needed.

So I can delete (Same as Parent folder) since this server is no longer DC?
0
 
tigermattCommented:
Mirav,

That's correct. If the server which that (Same as Parent Folder) refers to is no longer a DC, delete the record as it will only complicate matters.

-Matt
0
 
Nirav04Author Commented:
Mike and Matt thank you for all your help, I will be going through list of active PC and deleting A and PTR records manually since DHCP is via firewall and after reading scavenging article that it might create more issues. Once everything is cleaned then I might turn on scavenging.

Once again thanks,
 
0

Featured Post

Simplify Active Directory Administration

Administration of Active Directory does not have to be hard.  Too often what should be a simple task is made more difficult than it needs to be.The solution?  Hyena from SystemTools Software.  With ease-of-use as well as powerful importing and bulk updating capabilities.

  • 14
  • 7
  • 4
Tackle projects and never again get stuck behind a technical roadblock.
Join Now