Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people, just like you, are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
Solved

windows 2008 reverse dns zone for whole subnet?

Posted on 2012-12-20
3
1,782 Views
Last Modified: 2012-12-22
Hi,
We have a domain that used to be a flat network (172.17.2.0 /24), but was recently changed to include other subnets too, including 172.17.3.0/23 and 172.17.5.0/24.

I created a single reverse DNS zone called:
0.17.172.in-addr.arpa
But when i try to go to a forward DNS Host (A) record and update its PTR (for a host that's now on the 172.17.3.0/24 subnet), i get the error: "Warning: The associated PTR record cannot be created, probably because the referenced reverse lookup zone cannot be found".

What am I doin wrong?
0
Comment
Question by:Mystical_Ice
3 Comments
 
LVL 11

Expert Comment

by:BillBondo
ID: 38710736
Can you ping all the other subnets from each direction? By IP and name? I dont think you would need a reverse look up zone.
0
 
LVL 26

Accepted Solution

by:
DrDave242 earned 500 total points
ID: 38710857
From what I've read, you'll be better off creating separate class-C reverse lookup zones for 172.17.2.x, 172.17.3.x, and whatever other ranges are encompassed in your network than trying to create a single classless reverse lookup zone.  Dynamic updates don't work in a classless reverse zone, for example.
0
 

Author Closing Comment

by:Mystical_Ice
ID: 38716481
This is correct - for future reference if someone is reading this question with the same problem, with reverse DNS in windows 2008 you can only specify /8, /16, or /24 subnets (or 255.0.0.0, 255.255.0.0, or 255.255.255.0 subnets respectively).

Thus even though our 172.17.2.150 /23 (255.255.254.0) contains addresses from 172.17.3.0 through 172.17.4.255, I had to create two seperate reverse lookup zones:

0.4.17.172.in-addr.arpa
and
0.3.17.172.in-addr.arpa

Did that, and right away PTR records started getting created.
0

Featured Post

Resolve Critical IT Incidents Fast

If your data, services or processes become compromised, your organization can suffer damage in just minutes and how fast you communicate during a major IT incident is everything. Learn how to immediately identify incidents & best practices to resolve them quickly and effectively.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Occasionally you run into the website or two that will not resolve properly using your own DNS servers.  Some people simply set up global forwarders for their DNS server.  I don’t recommend doing this because it can cause problems resolving addresse…
BIND is the most widely used Name Server. A Name Server is the one that translates a site name to it's IP address. There is a new bug in BIND (https://kb.isc.org/article/AA-01272), affecting all versions of BIND 9 from BIND 9.1.0 (inclusive) thro…
A short tutorial showing how to set up an email signature in Outlook on the Web (previously known as OWA). For free email signatures designs, visit https://www.mail-signatures.com/articles/signature-templates/?sts=6651 If you want to manage em…

861 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question