Solved

Importing DNS Records

Posted on 2009-07-09
8
291 Views
Last Modified: 2012-05-07
Issue:

My company has about 150 remote sites that connect to company HQ via vpn.  Each site has a router that is managed by a third party.  This third party has set up nating on the routers so that, for example, a computer at a site has an internal IP of 10.61.198.178, and the site router nats it to another internal IP of 172.16.20.10 .  And so while the 10.61.198.178 address is unique to the device at that site, the 172.16.20.10 is used across the board for all 150 sites.  This is problematic when trying to push updates to computers at these sites because the dns records for all 150 sites are going to be 172.16.20.10 and the update does not know where to go.  Previously, I had manually entered in 150 A records into DNS for the unique IP addresses at each site and that worked - updates were able to be pushed.  A couple of days ago though, all of the records reverted to 172.16.20.10 across the board - I have no idea why.  I do have a dns backup with the A records I created, but I don't know what will happen if I import them back into DNS.  I'm afraid that may hose our network.  So I guess the question is two-fold:

1.  Is there a way for the A records to not randomly revert to the generic IP address?  Is there a reason why this would occur when the records had been in place for several weeks?

2.  Is there a way to re-import the A records for just these sites without overwriting DNS records for the entire network?
0
Comment
Question by:NRL71
  • 5
  • 3
8 Comments
 
LVL 70

Expert Comment

by:Chris Dent
ID: 24815521

Which DNS system are we dealing with here?

It's very difficult to say how the zone changed. Do you allow dynamic updates on the zone?

2 has an easy answer though. Pretty much every DNS system will allow you to bring records in without having to resort to a one-at-a-time approach. Kind of need to know which DNS system to be more specific though.

Chris
0
 

Author Comment

by:NRL71
ID: 24815856
It is Microsoft Windows Server 2003 R2.  DNS is set up to dynamically update.

In regards to Q2, I think I need to import the records one at a time because wouldn't importing in the entire backup I have overwrite all records?  I think that could cause network issues.  
0
 
LVL 70

Expert Comment

by:Chris Dent
ID: 24815871

It depends how you make the change. If I were to do it I'd only alter the set of records relating to this. Is that likely to cause a problem?

Secure Updates or secure and non-secure?

Chris
0
DevOps Toolchain Recommendations

Read this Gartner Research Note and discover how your IT organization can automate and optimize DevOps processes using a toolchain architecture.

 

Author Comment

by:NRL71
ID: 24816025
Secure updates.
0
 

Author Comment

by:NRL71
ID: 24816233
Also, how would you import individual DNS records?  I've looked around but the only way I have found is to import the entire backup which I don't want to do.
0
 

Author Comment

by:NRL71
ID: 24817237
I resolved the issue of importing just the 150 A records by using dnscmd and scripting it out for the records I neeedd.  I'm still curious as to why it changed all of the records after they had been in place for several weeks.  
0
 
LVL 70

Accepted Solution

by:
Chris Dent earned 500 total points
ID: 24818140

Sorry had to head home. I'm curious about how it did that as well. Were the records previously dynamically added?

Chris
0
 

Author Comment

by:NRL71
ID: 24826644
The original records were updated dynamically.  I manually overrode them by adding in the A records which lasted for a few weeks and then reverted back to the generic nat address.
0

Featured Post

Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Activate recording on Zavio B7510 5M Outdoor Bullet IP camera 1 43
local DNS vendor. 4 60
AD Sites/AD Replication 11 34
DNS entry for intranet 1 11
Let’s list some of the technologies that enable smooth teleworking. 
If you're not part of the solution, you're part of the problem.   Tips on how to secure IoT devices, even the dumbest ones, so they can't be used as part of a DDoS botnet.  Use PRTG Network Monitor as one of the building blocks, to detect unusual…
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

777 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question