Long DNS lookup times

Hello,

I have a test domain where my 2 x 03R2 DC's were primary.  I then prepped the domain for 08R2, which went fine.  I then promoted the 08R2 machines to DC's, and then transferred FSMO roles etc.  Everything went well.  I then demoted the 03 servers so now I have 08R2 DC's as well as raising the forest and domain functional level to 08R2.

When my test clients to the internet, it takes a long time to resolve things, in fact, even on the DC's themselves it takes a long time.  

What could I have done wrong?
lbtoadminAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

lbtoadminAuthor Commented:
I also noticed that in my sites and services, I still have the old 03 servers listed, but there is nothing next to them like the others that say GC.  Do I need to manually delete them from sites and services, as well as DNS?  They are completely off of the domain.
0
Mike KlineCommented:
Did you have the 2003 DC/DNS settings documented anywhere.  The reason I'm asking is because I'd check the forwarders.  Did you have forwarders configured (right click the DNS server, then properties, then forwarders tab).   If you had them on the 2003 box make sure they are on the 2008 box otherwise it is using root hints.

You can also sniff/monitor traffic with wireshark or netmon to see more on the wire

Thanks

Mike
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Mike KlineCommented:
Yes delete them from sites and services, that doesn't happen automatically during demotion.

Thanks

MIke
0
Introducing the "443 Security Simplified" Podcast

This new podcast puts you inside the minds of leading white-hat hackers and security researchers. Hosts Marc Laliberte and Corey Nachreiner turn complex security concepts into easily understood and actionable insights on the latest cyber security headlines and trends.

lbtoadminAuthor Commented:
Hello,

I just checked the forwarders tab on the 2008 server and it still has the old DC's.  Do you think that is the problem?  If so, how do I change them?  I also noticed that the old DNS servers are in DNS with the "same as parent" records.
0
lbtoadminAuthor Commented:
Actually, I think I got it figured out.

1.  On the forward lookup zone, I right clicked on it, went to name servers, and deleted the old ones.  This took out of the "same as parent" DNS records for those two machines.

2.  I right clicked on my server in DNS, went to properties, clicked on fowarders, and edited the list.  I simply cleared out the servers in the list (there were only two entries, and they were for my old DC's).  

Once I did all of that, I was able to ping out and my clients could resovle things.

Does this sound like what I should have done?  

Mike, thanks for the tip above, which I performed in step 2 above.
0
lbtoadminAuthor Commented:
Hello,

Can someone let me know if what I did above is correct in that I don't need the forwarders in there?

Thanks,
0
Mike KlineCommented:
Yeah if those old servers were listed in forwarders then getting rid of them was the right move.  Would have been nice to see what was listed on forwarders for the old servers (you may have not had anything listed)

Thanks

Mike
0
lbtoadminAuthor Commented:
Hi Mike,

Sorry I did not add that.  I happened to look at that before I demoted then and in the forwarders tab they had "all other domains"  in DNS domain and no entries for forwarders.

It looks like 08R2 does not have the option for "all other domains", just the option to manually add forwarders.
0
Mike KlineCommented:
You got it, they also separated conditional forwarders in 2008,
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
DNS

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.