Solved

Importing DNS Records

Posted on 2009-07-09
8
293 Views
Last Modified: 2012-05-07
Issue:

My company has about 150 remote sites that connect to company HQ via vpn.  Each site has a router that is managed by a third party.  This third party has set up nating on the routers so that, for example, a computer at a site has an internal IP of 10.61.198.178, and the site router nats it to another internal IP of 172.16.20.10 .  And so while the 10.61.198.178 address is unique to the device at that site, the 172.16.20.10 is used across the board for all 150 sites.  This is problematic when trying to push updates to computers at these sites because the dns records for all 150 sites are going to be 172.16.20.10 and the update does not know where to go.  Previously, I had manually entered in 150 A records into DNS for the unique IP addresses at each site and that worked - updates were able to be pushed.  A couple of days ago though, all of the records reverted to 172.16.20.10 across the board - I have no idea why.  I do have a dns backup with the A records I created, but I don't know what will happen if I import them back into DNS.  I'm afraid that may hose our network.  So I guess the question is two-fold:

1.  Is there a way for the A records to not randomly revert to the generic IP address?  Is there a reason why this would occur when the records had been in place for several weeks?

2.  Is there a way to re-import the A records for just these sites without overwriting DNS records for the entire network?
0
Comment
Question by:NRL71
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 5
  • 3
8 Comments
 
LVL 71

Expert Comment

by:Chris Dent
ID: 24815521

Which DNS system are we dealing with here?

It's very difficult to say how the zone changed. Do you allow dynamic updates on the zone?

2 has an easy answer though. Pretty much every DNS system will allow you to bring records in without having to resort to a one-at-a-time approach. Kind of need to know which DNS system to be more specific though.

Chris
0
 

Author Comment

by:NRL71
ID: 24815856
It is Microsoft Windows Server 2003 R2.  DNS is set up to dynamically update.

In regards to Q2, I think I need to import the records one at a time because wouldn't importing in the entire backup I have overwrite all records?  I think that could cause network issues.  
0
 
LVL 71

Expert Comment

by:Chris Dent
ID: 24815871

It depends how you make the change. If I were to do it I'd only alter the set of records relating to this. Is that likely to cause a problem?

Secure Updates or secure and non-secure?

Chris
0
Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 

Author Comment

by:NRL71
ID: 24816025
Secure updates.
0
 

Author Comment

by:NRL71
ID: 24816233
Also, how would you import individual DNS records?  I've looked around but the only way I have found is to import the entire backup which I don't want to do.
0
 

Author Comment

by:NRL71
ID: 24817237
I resolved the issue of importing just the 150 A records by using dnscmd and scripting it out for the records I neeedd.  I'm still curious as to why it changed all of the records after they had been in place for several weeks.  
0
 
LVL 71

Accepted Solution

by:
Chris Dent earned 500 total points
ID: 24818140

Sorry had to head home. I'm curious about how it did that as well. Were the records previously dynamically added?

Chris
0
 

Author Comment

by:NRL71
ID: 24826644
The original records were updated dynamically.  I manually overrode them by adding in the A records which lasted for a few weeks and then reverted back to the generic nat address.
0

Featured Post

How Do You Stack Up Against Your Peers?

With today’s modern enterprise so dependent on digital infrastructures, the impact of major incidents has increased dramatically. Grab the report now to gain insight into how your organization ranks against your peers and learn best-in-class strategies to resolve incidents.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Bringing new domain controller online. Testing part 6 44
ESXi vmnic Stand By Status 3 54
Edge Server Subscription 5 19
Wireshark question 1 17
Don’t let your business fall victim to the coming apocalypse – use our Survival Guide for the Fax Apocalypse to identify the risks and signs of zombie fax activities at your business.
For many of us, the  holiday season kindles the natural urge to give back to our friends, family members and communities. While it's easy for friends to notice the impact of such deeds, understanding the contributions of businesses and enterprises i…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

756 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question