Solved

Error 11160 Dnsapi update to wrong DNS server?

Posted on 2009-07-10
4
1,489 Views
Last Modified: 2012-05-07
My web server, running Windows Server 2003, has two NICs in it.  I am on a University Campus network, so they provide me with a vLan that connects NIC #1 to my internal network as well as a separate connection to their vLan where I get a public IP address on NIC #2.

My internal DNS server, my DC, is at IP address 192.168.16.2
My web server's IP address is 192.168.16.4 internally.

Every so often, the outside world loses connectivity to my web site.  This event is correlated with Event 11160 in my event viewer, so I'm sure they're related.  Manually running "ipconfig /registerdns" will resolve the connectivity issue.  As you can see below the Dnsapi Event 11160 is occurring on the NIC with the external static IP.

What is strange (to me) is that the DNS server it's trying to send the update to, 128.205.1.2, is NOT in my network connections anywhere (ipconfig /all included below the error).  I'm guessing that somehow, because I have that external IP and the gateway is the University gateway, it's trying to update it's PTR to the university's DNS server and it's not allowed?

I'm not certain if this is the case, or what the right thing to do here to resolve the issue is.  I understand all of this very very poorly, so please speak slowly and use small words :)

Thank you for your help.



Event Type:      Information
Event Source:      DnsApi
Event Category:      None
Event ID:      11160
Date:            7/10/2009
Time:            2:01:23 PM
User:            N/A
Computer:      ---WEB01
Description:
The system failed to register pointer (PTR) resource records (RRs) for network adapter
with settings:

   Adapter Name : {---}
   Host Name : ---web01
   Adapter-specific Domain Suffix : ---inc.local
   DNS server list :
           192.168.16.2
   Sent update to server : 128.205.1.2
   IP Address : 128.205.---.---

Windows IP Configuration

   Host Name . . . . . . . . . . . . : ---web01
   Primary Dns Suffix  . . . . . . . : ---inc.local
   Node Type . . . . . . . . . . . . : Unknown
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : ---inc.local

Ethernet adapter Internal:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Broadcom NetXtreme Gigabit Ethernet #2
   Physical Address. . . . . . . . . : ---
   DHCP Enabled. . . . . . . . . . . : No
   IP Address. . . . . . . . . . . . : 192.168.16.4
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Default Gateway . . . . . . . . . : 192.168.16.2
   DNS Servers . . . . . . . . . . . : 192.168.16.2

Ethernet adapter External:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Broadcom NetXtreme Gigabit Ethernet
   Physical Address. . . . . . . . . : 00-21-9B-FB-EE-44
   DHCP Enabled. . . . . . . . . . . : No
   IP Address. . . . . . . . . . . . : 128.205.---.---
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Default Gateway . . . . . . . . . : 128.205.---.---
   DNS Servers . . . . . . . . . . . : 192.168.16.2
0
Comment
Question by:benfinkel
  • 2
4 Comments
 
LVL 70

Expert Comment

by:Chris Dent
ID: 24826293

Updates are sent to the server listed in the SOA Record for the zone. In this case, it's sending updates to ns.buffalo.edu. Is that part of your own network?

Chris
0
 
LVL 1

Author Comment

by:benfinkel
ID: 24839871
Well,

No.  buffalo.edu is the University acting as our ISP.  

Another change I've made is to hard-code the DNS servers on the External NIC to the University's DNS servers, as opposed to my Internal DNS server.
0
 
LVL 70

Accepted Solution

by:
Chris Dent earned 50 total points
ID: 24839891

If you have a reverse lookup zone for the IP range then listing external DNS services in TCP/IP configuration is the most likely cause of the problem.

The system gets a different set of instructions based on the DNS server it talks to, and since it won't always talk to the preferred DNS server that's a very bad thing.

The only DNS servers listed on any NIC should be the internal DNS, the system that's able to properly service the requests made of it.

Chris
0

Featured Post

What Is Threat Intelligence?

Threat intelligence is often discussed, but rarely understood. Starting with a precise definition, along with clear business goals, is essential.

Join & Write a Comment

Suggested Solutions

Title # Comments Views Activity
Screen Mirroring 7 39
Multiple domains for Exchange in Office 365 4 56
forwarding dns requests 7 28
active directory 3 26
Numerous times I have been asked this questions that what is it that makes my machine log on so slow, there have been cases where computers took 23 minute exactly after taking password and getting to the desktop. Interesting thing was the fact th…
One of the most often confused topics in the area DNS is the idea of GLUE records. Specifically, what they are, when they are needed, when they are provided, and how they are created. First, WHAT IS GLUE? To understand GLUE, you must first under…
Excel styles will make formatting consistent and let you apply and change formatting faster. In this tutorial, you'll learn how to use Excel's built-in styles, how to modify styles, and how to create your own. You'll also learn how to use your custo…
You have products, that come in variants and want to set different prices for them? Watch this micro tutorial that describes how to configure prices for Magento super attributes. Assigning simple products to configurable: We assigned simple products…

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

23 Experts available now in Live!

Get 1:1 Help Now