Solved

Windows 2008 DNS Server Error 5504

Posted on 2010-08-18
11
1,322 Views
Last Modified: 2012-05-10
Hello,
On my 2008 windows server standard r2 i am getting this erro 5504 being logged several times per day. This is the only domain controller and dns server in the domain. The server is not set up for any forwarders and just uses the root hints.

I have seen several articles saying could be firewall, you should set the forwarder to your isp. But none of these people seem so definte in their answer so i will try this.

Here is one of the errors.

The DNS server encountered an invalid domain name in a packet from 144.160.20.46. The packet will be rejected. The event data contains the DNS packet.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
0
Comment
Question by:valmatic
  • 7
  • 2
  • 2
11 Comments
 
LVL 7

Author Comment

by:valmatic
ID: 33465056
i do have a fireall rule allowing any dns request from my dns server to the internet out allowed.
0
 
LVL 7

Author Comment

by:valmatic
ID: 33466302
anyone home
0
 
LVL 29

Expert Comment

by:Rich Weissler
ID: 33469716
Yep -- at home, and not at work.  Takes longer to respond at home.  ;-)

Those messages are DNS Spoofing protection messages:
http://en.wikipedia.org/wiki/DNS_cache_poisoning

Most likely the errors are being caused by other people's DNS servers which aren't configured correctly, although there is always a chance they are being generated by an intentional malicious attack against your system.  The good news is that you are receiving log messages rather than having your DNS hijacked.
0
 
LVL 59

Accepted Solution

by:
Darius Ghassem earned 300 total points
ID: 33469920
0
 
LVL 7

Author Comment

by:valmatic
ID: 33474587
thanks guys let me read all these articles and ill get back to you!
0
Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

 
LVL 7

Author Comment

by:valmatic
ID: 33474691
so does this mean i should set up a forward to my ISPs DNS server instead of it going straight for the root hints? What do you guys think?
0
 
LVL 29

Assisted Solution

by:Rich Weissler
Rich Weissler earned 200 total points
ID: 33474792
Unless there are extenuating circumstances -- yes, you should set up a forwarder to your ISPs DNS server.
0
 
LVL 7

Author Comment

by:valmatic
ID: 33474890
everyting works fine now i think with the one dns server and using the root hints, but it seems like these articles say i should use a isp dns server as a forwarder instead? But do you think i should not?
0
 
LVL 7

Author Comment

by:valmatic
ID: 33474929
also what do you think about this reg tweak that i saw when i was orignally searching for this 5504 error message?
0
 
LVL 7

Author Comment

by:valmatic
ID: 33474930
0
 
LVL 59

Expert Comment

by:Darius Ghassem
ID: 33476045
DNS Forwarders should be used.
0

Featured Post

Enterprise Mobility and BYOD For Dummies

Like “For Dummies” books, you can read this in whatever order you choose and learn about mobility and BYOD; and how to put a competitive mobile infrastructure in place. Developed for SMBs and large enterprises alike, you will find helpful use cases, planning, and implementation.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

On July 14th 2015, Windows Server 2003 will become End of Support, leaving hundreds of thousands of servers around the world that still run this 12 year old operating system vulnerable and potentially out of compliance in many organisations around t…
The recent Microsoft changes on update philosophy for Windows pre-10 and their impact on existing WSUS implementations.
This tutorial will walk an individual through configuring a drive on a Windows Server 2008 to perform shadow copies in order to quickly recover deleted files and folders. Click on Start and then select Computer to view the available drives on the se…
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…

932 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

19 Experts available now in Live!

Get 1:1 Help Now