Phantom DNS Records
Posted on 2009-12-16
Some Public Name Servers continue to return a very old IP address Host record (probably from a prvious ISP who hosted the DNS years ago) ...Win Server 2003 SP2 DNS
We have our own DNS Servers. Our domain bluegrotto.com has 2 dnsAuth Name servers that we operate
We had a host named mail.bluegrotto.com which we have taken off all of our DNS servers (at least we think so)..... However, An old IP address (18.104.22.168) for this host (mail.bluegrotto.com) continues to appear if I do a query to many of the public dns servers. I cannot figure out how/where this A record is comming from.....Any clues as to how I can track it down. I think it may be coming from a previous ISP who hosted the DNS for the domain a few years ago (but how is that possible).
If I add mail.bluegrotto.com IN A xxx.xxx.xxx.xxx to our name servers it propogates throughout the internet but still a bunch of DNS servers continue to return the old Ip address (22.214.171.124).
For other hosts in my domain all of the same public servers get their info from our auth Name servers and change and update properly.
Driving me crazy!
An example is nslookup
> server 126.96.36.199
Default Server: google-public-dns-a.google.com
Win Server 2003 SP2 DNS