?
Solved

Windows 2008 DNS Server Error 5504

Posted on 2010-08-18
11
Medium Priority
?
1,361 Views
Last Modified: 2012-05-10
Hello,
On my 2008 windows server standard r2 i am getting this erro 5504 being logged several times per day. This is the only domain controller and dns server in the domain. The server is not set up for any forwarders and just uses the root hints.

I have seen several articles saying could be firewall, you should set the forwarder to your isp. But none of these people seem so definte in their answer so i will try this.

Here is one of the errors.

The DNS server encountered an invalid domain name in a packet from 144.160.20.46. The packet will be rejected. The event data contains the DNS packet.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
0
Comment
Question by:valmatic
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 7
  • 2
  • 2
11 Comments
 
LVL 7

Author Comment

by:valmatic
ID: 33465056
i do have a fireall rule allowing any dns request from my dns server to the internet out allowed.
0
 
LVL 7

Author Comment

by:valmatic
ID: 33466302
anyone home
0
 
LVL 30

Expert Comment

by:Rich Weissler
ID: 33469716
Yep -- at home, and not at work.  Takes longer to respond at home.  ;-)

Those messages are DNS Spoofing protection messages:
http://en.wikipedia.org/wiki/DNS_cache_poisoning

Most likely the errors are being caused by other people's DNS servers which aren't configured correctly, although there is always a chance they are being generated by an intentional malicious attack against your system.  The good news is that you are receiving log messages rather than having your DNS hijacked.
0
Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
LVL 59

Accepted Solution

by:
Darius Ghassem earned 1200 total points
ID: 33469920
0
 
LVL 7

Author Comment

by:valmatic
ID: 33474587
thanks guys let me read all these articles and ill get back to you!
0
 
LVL 7

Author Comment

by:valmatic
ID: 33474691
so does this mean i should set up a forward to my ISPs DNS server instead of it going straight for the root hints? What do you guys think?
0
 
LVL 30

Assisted Solution

by:Rich Weissler
Rich Weissler earned 800 total points
ID: 33474792
Unless there are extenuating circumstances -- yes, you should set up a forwarder to your ISPs DNS server.
0
 
LVL 7

Author Comment

by:valmatic
ID: 33474890
everyting works fine now i think with the one dns server and using the root hints, but it seems like these articles say i should use a isp dns server as a forwarder instead? But do you think i should not?
0
 
LVL 7

Author Comment

by:valmatic
ID: 33474929
also what do you think about this reg tweak that i saw when i was orignally searching for this 5504 error message?
0
 
LVL 7

Author Comment

by:valmatic
ID: 33474930
0
 
LVL 59

Expert Comment

by:Darius Ghassem
ID: 33476045
DNS Forwarders should be used.
0

Featured Post

Get your Disaster Recovery as a Service basics

Disaster Recovery as a Service is one go-to solution that revolutionizes DR planning. Implementing DRaaS could be an efficient process, easily accessible to non-DR experts. Learn about monitoring, testing, executing failovers and failbacks to ensure a "healthy" DR environment.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Background Information Recently I have fixed file server permission issues for one of my client. The client has 1800 users and one Windows Server 2008 R2 domain joined file server with 12 TB of data, 250+ shared folders and the folder structure i…
OfficeMate Freezes on login or does not load after login credentials are input.
This tutorial will show how to configure a single USB drive with a separate folder for each day of the week. This will allow each of the backups to be kept separate preventing the previous day’s backup from being overwritten. The USB drive must be s…
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …
Suggested Courses

765 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question