Solved

Windows 2008 DNS Server Error 5504

Posted on 2010-08-18
11
1,339 Views
Last Modified: 2012-05-10
Hello,
On my 2008 windows server standard r2 i am getting this erro 5504 being logged several times per day. This is the only domain controller and dns server in the domain. The server is not set up for any forwarders and just uses the root hints.

I have seen several articles saying could be firewall, you should set the forwarder to your isp. But none of these people seem so definte in their answer so i will try this.

Here is one of the errors.

The DNS server encountered an invalid domain name in a packet from 144.160.20.46. The packet will be rejected. The event data contains the DNS packet.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
0
Comment
Question by:valmatic
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 7
  • 2
  • 2
11 Comments
 
LVL 7

Author Comment

by:valmatic
ID: 33465056
i do have a fireall rule allowing any dns request from my dns server to the internet out allowed.
0
 
LVL 7

Author Comment

by:valmatic
ID: 33466302
anyone home
0
 
LVL 30

Expert Comment

by:Rich Weissler
ID: 33469716
Yep -- at home, and not at work.  Takes longer to respond at home.  ;-)

Those messages are DNS Spoofing protection messages:
http://en.wikipedia.org/wiki/DNS_cache_poisoning

Most likely the errors are being caused by other people's DNS servers which aren't configured correctly, although there is always a chance they are being generated by an intentional malicious attack against your system.  The good news is that you are receiving log messages rather than having your DNS hijacked.
0
Best Practices: Disaster Recovery Testing

Besides backup, any IT division should have a disaster recovery plan. You will find a few tips below relating to the development of such a plan and to what issues one should pay special attention in the course of backup planning.

 
LVL 59

Accepted Solution

by:
Darius Ghassem earned 300 total points
ID: 33469920
0
 
LVL 7

Author Comment

by:valmatic
ID: 33474587
thanks guys let me read all these articles and ill get back to you!
0
 
LVL 7

Author Comment

by:valmatic
ID: 33474691
so does this mean i should set up a forward to my ISPs DNS server instead of it going straight for the root hints? What do you guys think?
0
 
LVL 30

Assisted Solution

by:Rich Weissler
Rich Weissler earned 200 total points
ID: 33474792
Unless there are extenuating circumstances -- yes, you should set up a forwarder to your ISPs DNS server.
0
 
LVL 7

Author Comment

by:valmatic
ID: 33474890
everyting works fine now i think with the one dns server and using the root hints, but it seems like these articles say i should use a isp dns server as a forwarder instead? But do you think i should not?
0
 
LVL 7

Author Comment

by:valmatic
ID: 33474929
also what do you think about this reg tweak that i saw when i was orignally searching for this 5504 error message?
0
 
LVL 7

Author Comment

by:valmatic
ID: 33474930
0
 
LVL 59

Expert Comment

by:Darius Ghassem
ID: 33476045
DNS Forwarders should be used.
0

Featured Post

The Eight Noble Truths of Backup and Recovery

How can IT departments tackle the challenges of a Big Data world? This white paper provides a roadmap to success and helps companies ensure that all their data is safe and secure, no matter if it resides on-premise with physical or virtual machines or in the cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I've written instructions for one router type, but this principle may be useful for others of the same brand and even other brands of router. Problem: I had an issue especially with mobile devices that refused to use DNS information supplied via…
Possible fixes for Windows 7 and Windows Server 2008 updating problem. Solutions mentioned are from Microsoft themselves. I started a case with them from our Microsoft Silver Partner option to open a case and get direct support from Microsoft. If s…
This tutorial will walk an individual through setting the global and backup job media overwrite and protection periods in Backup Exec 2012. Log onto the Backup Exec Central Administration Server. Examine the services. If all or most of them are stop…
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …

730 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question