[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x
?
Solved

DNS entry keeps reverting back to old value

Posted on 2009-04-23
19
Medium Priority
?
4,269 Views
Last Modified: 2013-05-10
A DNS entry for a server keeps reverting back to its old value in the Forward Lookup Zone.  I'm using a microsoft DNS server on a Windows Server 2008 platform.  I have a WAN with an AD on each end.  The entry gets changed on both when I update one side, but for some reason it keeps going back to the old value (the IP address of the AD/DNS server) after several hours.

Any idea on what might be causing this or how I can troubleshoot?
0
Comment
Question by:larry
19 Comments
 
LVL 59

Expert Comment

by:Darius Ghassem
ID: 24215501
What is the old value? The server's will update their own IP address. Can you explain a little more exactly what you are doing when you mean when you update one side? What are you updating?
0
 

Author Comment

by:larry
ID: 24215538
The old value (value of the AD/DNS server) is 10.1.2.41 and I'm trying to update the server (an Exchange server) to 10.1.2.43.  

I update it by going into the DNS Manager > Foward Lookup Zone and go into the properties of the Host (A) record of the server to change it back to 10.1.2.43.  Several hours later it goes back to 10.1.2.41.
0
 
LVL 59

Expert Comment

by:Darius Ghassem
ID: 24215609
What is the IP address of the Exchange server? If the server has 10.1.2.41 in it's TCP\IP setting as it's IP address it is going to update that record with that IP address. You can't just go in DNS and update the record because the record will updated by the system.
0
A Cyber Security RX to Protect Your Organization

Join us on December 13th for a webinar to learn how medical providers can defend against malware with a cyber security "Rx" that supports a healthy technology adoption plan for every healthcare organization.

 

Author Comment

by:larry
ID: 24215631
I just confirmed that the IP Address of the Exchange server is 10.1.2.43, which is what it should be.  It is running in a VMWare environment if that has anything to do with it.
0
 
LVL 59

Expert Comment

by:Darius Ghassem
ID: 24215676
So, the IP address is the correct IP address, right? Click Advance in the TCP\IP settings make sure there isn't two IPs there. Run a ipconfig /flushdns then ipconfig /registerdns on the Exchange system. Make sure you only have one NIC not two.
0
 

Author Comment

by:larry
ID: 24215815
I initially had it configured with two IP addresses, but changed quite some time ago.  The other IP address it had was 10.1.2.44, though.

I went ahead and flushed the dns and registered it.  I probably won't know until tomorrow if it worked.  Do you know of any other way it could be getting changed?
0
 
LVL 59

Expert Comment

by:Darius Ghassem
ID: 24215931
Does the change replicate to other DNS server? A record are updated 98% of the time by their host others are updated manually so it is one of the two in your case you are manually updating the record but it is changing back which usually means a device is updating the record.
0
 

Author Comment

by:larry
ID: 24216249
Yes, it does replicate to the other DNS server.  Is there a DNS log that I can use to figure out where the change is coming from?  Hopefully the flushdns and registerdns did the trick, but if not I would like to know where the change is coming from.  I did a registry search on the 10.1.2.43 machine for 10.1.2.41, and the only entries that came up were the DNS server as expected.
0
 
LVL 59

Expert Comment

by:Darius Ghassem
ID: 24216874
We will see how it goes.
0
 

Author Comment

by:larry
ID: 24216896
Unfortunately it didn't go so well.  I rebooted the mail server and it went back to 10.1.2.41.  Is there any way I can put a lock on that entry in the DNS server?  
0
 
LVL 59

Expert Comment

by:Darius Ghassem
ID: 24216956
Do a ipconfig /all and post. How many NICs are you running? Do you have RAS running?
0
 

Author Comment

by:larry
ID: 24217071
Just one, and RAS isn't running.  I turned off "Register this connection's address in DNS" under the IP properties, so hopefully that will prevent it from changing... if the change is coming from that server.
0
 
LVL 59

Expert Comment

by:Darius Ghassem
ID: 24217130
Let's see if that fixes it but you really want it checked.
0
 

Author Comment

by:larry
ID: 24217186
I totally agree, if you or anyone else reading this has any ideas on how to troubleshoot this problem I would love to hear it.  I scanned the registry on both servers and was unable to find anything that might be causing this to happen.  It's pretty frustrating because every time it changes my users are unable to access the Exchange server until I change it back.
0
 
LVL 59

Expert Comment

by:Darius Ghassem
ID: 24217207
When the IP changes can you ping my name? If you can't ping by name then there has to be a setting some where holding this IP address.
0
 

Expert Comment

by:LynetteArntsen
ID: 24295965
check wins server?
0
 

Accepted Solution

by:
larry earned 0 total points
ID: 25634960
Unfortunately all of the suggestions didn't pan out.  I ended up setting the DNS entry as read only which prevents it from changing back.  I know that isn't the ideal solution, but it worked.
0
 

Expert Comment

by:chulamin2
ID: 37238424
ipconfig /registerdns on the errant machine. Worked for me. Permanently updated the entry on the DNS servers.
0
 
LVL 2

Expert Comment

by:Mathiau
ID: 39157198
did you have the IP still reserved in a DHCP server....
0

Featured Post

Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Restoring deleted objects in Active Directory has been a standard feature in Active Directory for many years, yet some admins may not know what is available.
This article provides a convenient collection of links to Microsoft provided Security Patches for operating systems that have reached their End of Life support cycle. Included operating systems covered by this article are Windows XP,  Windows Server…
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…

834 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question