Solved

Importing DNS Records

Posted on 2009-07-09
8
296 Views
Last Modified: 2012-05-07
Issue:

My company has about 150 remote sites that connect to company HQ via vpn.  Each site has a router that is managed by a third party.  This third party has set up nating on the routers so that, for example, a computer at a site has an internal IP of 10.61.198.178, and the site router nats it to another internal IP of 172.16.20.10 .  And so while the 10.61.198.178 address is unique to the device at that site, the 172.16.20.10 is used across the board for all 150 sites.  This is problematic when trying to push updates to computers at these sites because the dns records for all 150 sites are going to be 172.16.20.10 and the update does not know where to go.  Previously, I had manually entered in 150 A records into DNS for the unique IP addresses at each site and that worked - updates were able to be pushed.  A couple of days ago though, all of the records reverted to 172.16.20.10 across the board - I have no idea why.  I do have a dns backup with the A records I created, but I don't know what will happen if I import them back into DNS.  I'm afraid that may hose our network.  So I guess the question is two-fold:

1.  Is there a way for the A records to not randomly revert to the generic IP address?  Is there a reason why this would occur when the records had been in place for several weeks?

2.  Is there a way to re-import the A records for just these sites without overwriting DNS records for the entire network?
0
Comment
Question by:NRL71
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 5
  • 3
8 Comments
 
LVL 71

Expert Comment

by:Chris Dent
ID: 24815521

Which DNS system are we dealing with here?

It's very difficult to say how the zone changed. Do you allow dynamic updates on the zone?

2 has an easy answer though. Pretty much every DNS system will allow you to bring records in without having to resort to a one-at-a-time approach. Kind of need to know which DNS system to be more specific though.

Chris
0
 

Author Comment

by:NRL71
ID: 24815856
It is Microsoft Windows Server 2003 R2.  DNS is set up to dynamically update.

In regards to Q2, I think I need to import the records one at a time because wouldn't importing in the entire backup I have overwrite all records?  I think that could cause network issues.  
0
 
LVL 71

Expert Comment

by:Chris Dent
ID: 24815871

It depends how you make the change. If I were to do it I'd only alter the set of records relating to this. Is that likely to cause a problem?

Secure Updates or secure and non-secure?

Chris
0
Visualize your virtual and backup environments

Create well-organized and polished visualizations of your virtual and backup environments when planning VMware vSphere, Microsoft Hyper-V or Veeam deployments. It helps you to gain better visibility and valuable business insights.

 

Author Comment

by:NRL71
ID: 24816025
Secure updates.
0
 

Author Comment

by:NRL71
ID: 24816233
Also, how would you import individual DNS records?  I've looked around but the only way I have found is to import the entire backup which I don't want to do.
0
 

Author Comment

by:NRL71
ID: 24817237
I resolved the issue of importing just the 150 A records by using dnscmd and scripting it out for the records I neeedd.  I'm still curious as to why it changed all of the records after they had been in place for several weeks.  
0
 
LVL 71

Accepted Solution

by:
Chris Dent earned 500 total points
ID: 24818140

Sorry had to head home. I'm curious about how it did that as well. Were the records previously dynamically added?

Chris
0
 

Author Comment

by:NRL71
ID: 24826644
The original records were updated dynamically.  I manually overrode them by adding in the A records which lasted for a few weeks and then reverted back to the generic nat address.
0

Featured Post

Why Off-Site Backups Are The Only Way To Go

You are probably backing up your data—but how and where? Ransomware is on the rise and there are variants that specifically target backups. Read on to discover why off-site is the way to go.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

PRTG Network Monitor lets you monitor your bandwidth usage, so you know who is using up your bandwidth, and what they're using it for.
I had an issue with InstallShield not being able to use Computer Browser service on Windows Server 2012. Here is the solution I found.
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…
NetCrunch network monitor is a highly extensive platform for network monitoring and alert generation. In this video you'll see a live demo of NetCrunch with most notable features explained in a walk-through manner. You'll also get to know the philos…
Suggested Courses
Course of the Month4 days, 11 hours left to enroll

636 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question