Solved

Host (A) records vanishing from DNS server

Posted on 2011-09-16
8
294 Views
Last Modified: 2012-06-21
Hi

Last night I installed some Windows Updates and rebooted all of our servers.

Shortly afterwards I noticed that I couldn't ping some of our servers.

I noticed that the Host (A) records in the Forward Lookup Zones for these servers had vanished. Once I did an ipconfiig/registerdns on the member servers the records recreated successfully.

Why would the records vanish? We do not have scavenging enabled.

Recently we installed two new DCs in to our domain, which are both DNS servers (AD integrated). These are both Windows Server 2008 machines. We have an existing 2003 DC with DNS, and changed all the member servers to point to the new 2008 DCs for their DNS. They used to point to the 2003 DC.
0
Comment
Question by:failed
  • 5
  • 2
8 Comments
 
LVL 6

Expert Comment

by:emadallan
ID: 36548143
why did you install 2008 dc? are you intend to upgrade your AD from 2003 to 2008? if so there are more steps need to be accomplished to upgrade to 2008?
0
 

Author Comment

by:failed
ID: 36548154
Yes we are upgrading to a 2008 domain.
0
 
LVL 70

Expert Comment

by:Chris Dent
ID: 36548426
It's most common to see records randomly disappear when Aging settings are too low. That is, if the Refresh interval is anything less than 24 hours we see things start to fall apart.

Do you have aging / scavenging configured?

Chris
0
Microsoft Certification Exam 74-409

Veeam® is happy to provide the Microsoft community with a study guide prepared by MVP and MCT, Orin Thomas. This guide will take you through each of the exam objectives, helping you to prepare for and pass the examination.

 

Author Comment

by:failed
ID: 36548464
As I said in the question, we do not have ageing/scavenging enabled.
0
 
LVL 70

Expert Comment

by:Chris Dent
ID: 36548520
Apologies, thought I read that through a bit more carefully.

Other options are:

1. Administrative action (aka user error), which I imagine you accounted for.
2. Zone corruption. Harder to test, although sometimes you can see enough by checking through the zone in AD (tends to exhibit and objects prefixed with CNF in ADSIEdit).

Zone corruption aside, DNS won't be killing records on its own, and we can rule out Dynamic Update. I assume the servers having this trouble are using static IP addresses? If so we can also rule out any action DHCP might take on the zone (if you use DHCP at all / if DHCP is allowed to update DNS).

Chris
0
 

Author Comment

by:failed
ID: 36549725
Hi Chris-Dent,

The servers are set static IP addresses in the IP settings in the member servers' IP properties. We haven't created static records manually in DNS.

Please could you provide more detail on how to look for zone corruption?

Thanks
0
 

Accepted Solution

by:
failed earned 0 total points
ID: 36709446
We never got to the bottom of this problem.
We enabled a higher level of logging in case it happens again.
0
 

Author Closing Comment

by:failed
ID: 36898848
Did not get to the bottom of the problem.
0

Featured Post

3 Use Cases for Connected Systems

Our Dev teams are like yours. They’re continually cranking out code for new features/bugs fixes, testing, deploying, testing some more, responding to production monitoring events and more. It’s complex. So, we thought you’d like to see what’s working for us.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Sometimes drives fill up and we don't know why.  If you don't understand the best way to use the tools available, you may end up being stumped as to why your drive says it's not full when you have no space left!  Here's how you can find out...
The recent Microsoft changes on update philosophy for Windows pre-10 and their impact on existing WSUS implementations.
This tutorial will walk an individual through locating and launching the BEUtility application to properly change the service account username and\or password in situation where it may be necessary or where the password has been inadvertently change…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…

777 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question