Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

Importing DNS Records

Posted on 2009-07-09
8
Medium Priority
?
298 Views
Last Modified: 2012-05-07
Issue:

My company has about 150 remote sites that connect to company HQ via vpn.  Each site has a router that is managed by a third party.  This third party has set up nating on the routers so that, for example, a computer at a site has an internal IP of 10.61.198.178, and the site router nats it to another internal IP of 172.16.20.10 .  And so while the 10.61.198.178 address is unique to the device at that site, the 172.16.20.10 is used across the board for all 150 sites.  This is problematic when trying to push updates to computers at these sites because the dns records for all 150 sites are going to be 172.16.20.10 and the update does not know where to go.  Previously, I had manually entered in 150 A records into DNS for the unique IP addresses at each site and that worked - updates were able to be pushed.  A couple of days ago though, all of the records reverted to 172.16.20.10 across the board - I have no idea why.  I do have a dns backup with the A records I created, but I don't know what will happen if I import them back into DNS.  I'm afraid that may hose our network.  So I guess the question is two-fold:

1.  Is there a way for the A records to not randomly revert to the generic IP address?  Is there a reason why this would occur when the records had been in place for several weeks?

2.  Is there a way to re-import the A records for just these sites without overwriting DNS records for the entire network?
0
Comment
Question by:NRL71
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 5
  • 3
8 Comments
 
LVL 71

Expert Comment

by:Chris Dent
ID: 24815521

Which DNS system are we dealing with here?

It's very difficult to say how the zone changed. Do you allow dynamic updates on the zone?

2 has an easy answer though. Pretty much every DNS system will allow you to bring records in without having to resort to a one-at-a-time approach. Kind of need to know which DNS system to be more specific though.

Chris
0
 

Author Comment

by:NRL71
ID: 24815856
It is Microsoft Windows Server 2003 R2.  DNS is set up to dynamically update.

In regards to Q2, I think I need to import the records one at a time because wouldn't importing in the entire backup I have overwrite all records?  I think that could cause network issues.  
0
 
LVL 71

Expert Comment

by:Chris Dent
ID: 24815871

It depends how you make the change. If I were to do it I'd only alter the set of records relating to this. Is that likely to cause a problem?

Secure Updates or secure and non-secure?

Chris
0
Understanding Web Applications

Without even knowing it, most of us are using web applications on a daily basis. Gmail and Yahoo email, Twitter, Facebook, and eBay are used by most of us daily—and they are web applications. We often confuse these web applications tools for websites.  So, what is the difference?

 

Author Comment

by:NRL71
ID: 24816025
Secure updates.
0
 

Author Comment

by:NRL71
ID: 24816233
Also, how would you import individual DNS records?  I've looked around but the only way I have found is to import the entire backup which I don't want to do.
0
 

Author Comment

by:NRL71
ID: 24817237
I resolved the issue of importing just the 150 A records by using dnscmd and scripting it out for the records I neeedd.  I'm still curious as to why it changed all of the records after they had been in place for several weeks.  
0
 
LVL 71

Accepted Solution

by:
Chris Dent earned 1500 total points
ID: 24818140

Sorry had to head home. I'm curious about how it did that as well. Were the records previously dynamically added?

Chris
0
 

Author Comment

by:NRL71
ID: 24826644
The original records were updated dynamically.  I manually overrode them by adding in the A records which lasted for a few weeks and then reverted back to the generic nat address.
0

Featured Post

Nothing ever in the clear!

This technical paper will help you implement VMware’s VM encryption as well as implement Veeam encryption which together will achieve the nothing ever in the clear goal. If a bad guy steals VMs, backups or traffic they get nothing.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In this article, I am going to show you how to simulate a multi-site Lab environment on a single Hyper-V host. I use this method successfully in my own lab to simulate three fully routed global AD Sites on a Windows 10 Hyper-V host.
Make the most of your online learning experience.
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…
In this video we outline the Physical Segments view of NetCrunch network monitor. By following this brief how-to video, you will be able to learn how NetCrunch visualizes your network, how granular is the information collected, as well as where to f…

715 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question