Improve company productivity with a Business Account.Sign Up

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 519
  • Last Modified:

Long DNS lookup times

Hello,

I have a test domain where my 2 x 03R2 DC's were primary.  I then prepped the domain for 08R2, which went fine.  I then promoted the 08R2 machines to DC's, and then transferred FSMO roles etc.  Everything went well.  I then demoted the 03 servers so now I have 08R2 DC's as well as raising the forest and domain functional level to 08R2.

When my test clients to the internet, it takes a long time to resolve things, in fact, even on the DC's themselves it takes a long time.  

What could I have done wrong?
0
lbtoadmin
Asked:
lbtoadmin
  • 5
  • 4
2 Solutions
 
lbtoadminAuthor Commented:
I also noticed that in my sites and services, I still have the old 03 servers listed, but there is nothing next to them like the others that say GC.  Do I need to manually delete them from sites and services, as well as DNS?  They are completely off of the domain.
0
 
Mike KlineCommented:
Did you have the 2003 DC/DNS settings documented anywhere.  The reason I'm asking is because I'd check the forwarders.  Did you have forwarders configured (right click the DNS server, then properties, then forwarders tab).   If you had them on the 2003 box make sure they are on the 2008 box otherwise it is using root hints.

You can also sniff/monitor traffic with wireshark or netmon to see more on the wire

Thanks

Mike
0
 
Mike KlineCommented:
Yes delete them from sites and services, that doesn't happen automatically during demotion.

Thanks

MIke
0
Get 10% Off Your First Squarespace Website

Ready to showcase your work, publish content or promote your business online? With Squarespace’s award-winning templates and 24/7 customer service, getting started is simple. Head to Squarespace.com and use offer code ‘EXPERTS’ to get 10% off your first purchase.

 
lbtoadminAuthor Commented:
Hello,

I just checked the forwarders tab on the 2008 server and it still has the old DC's.  Do you think that is the problem?  If so, how do I change them?  I also noticed that the old DNS servers are in DNS with the "same as parent" records.
0
 
lbtoadminAuthor Commented:
Actually, I think I got it figured out.

1.  On the forward lookup zone, I right clicked on it, went to name servers, and deleted the old ones.  This took out of the "same as parent" DNS records for those two machines.

2.  I right clicked on my server in DNS, went to properties, clicked on fowarders, and edited the list.  I simply cleared out the servers in the list (there were only two entries, and they were for my old DC's).  

Once I did all of that, I was able to ping out and my clients could resovle things.

Does this sound like what I should have done?  

Mike, thanks for the tip above, which I performed in step 2 above.
0
 
lbtoadminAuthor Commented:
Hello,

Can someone let me know if what I did above is correct in that I don't need the forwarders in there?

Thanks,
0
 
Mike KlineCommented:
Yeah if those old servers were listed in forwarders then getting rid of them was the right move.  Would have been nice to see what was listed on forwarders for the old servers (you may have not had anything listed)

Thanks

Mike
0
 
lbtoadminAuthor Commented:
Hi Mike,

Sorry I did not add that.  I happened to look at that before I demoted then and in the forwarders tab they had "all other domains"  in DNS domain and no entries for forwarders.

It looks like 08R2 does not have the option for "all other domains", just the option to manually add forwarders.
0
 
Mike KlineCommented:
You got it, they also separated conditional forwarders in 2008,
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

  • 5
  • 4
Tackle projects and never again get stuck behind a technical roadblock.
Join Now