Celebrate National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17


Help with DNS Entires being purged from DNS Windows 2008 R2

Posted on 2013-02-07
Medium Priority
Last Modified: 2013-02-08
Ok folks I have an issue with DNS.  I think I have done about everything I can but I need another set of eyes.

Here is what the issue is.

DNS will accept updates from clients and DHCP.  Based on what I can see any client with a DHCP address is staying in DNS.  However if the machine has a static address the machine is not updating it's DNS records. This in turns causes the DNS records to tombstone and the record get removed.

Upon looking at it a bit more I found that when a PC/Server with a static IP address updates the DNS the record tombstones in about 3 hours.

Looking at the TTL on the record it is showing as 20 min.DNS RecordThat record just happens to be a DHCP entry.  However if it was static in about 3 hours it should show as Tombstoned in ADSI Edit.

My SOA has a refresh interval of 15 min, retry interval of 10 min and expires after 1 day.  The minimum ttl is 1 hour. SOA Tab
In looking at my Zone Aging/Scavenging,  the no-refresh and refresh intervals are at 1 day each. Zone Aging
I am honestly so confused at the moment that I just need someone to set my head right in how I need to troubleshoot this.

Thanks for your advanced assistance.

Question by:Neadom Tucker
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 5
  • 2
LVL 17

Accepted Solution

Tony Massa earned 2000 total points
ID: 38864220
The TTL is only the time when the record is cached and shouldn't affect registration/tombstoning.  The record timestamp controls when the record becomes stale.  1 day is too short for static registrations because the server doesn't register that often

Here are a few good pieces of info:


Author Comment

by:Neadom Tucker
ID: 38864593
tmassa99 thanks for that.  I thought the aging was too aggressive.  I need to speak with our IT Team at another site and find out why they did this.  I will give you and update as to our progress.  I may be a few days while we test.


LVL 83

Expert Comment

by:David Johnson, CD, MVP
ID: 38866153
In your DHCP server have you set the reservations for these static ip's?
Are your AD admin tools letting you down?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.


Author Comment

by:Neadom Tucker
ID: 38866195
The static ip's are outside the DHCP Scope.


Author Comment

by:Neadom Tucker
ID: 38866202
tmassa99  we have set the Aging to the defaults.  Now we just have to wait and see what happens in the next 24-36 hours.
LVL 17

Expert Comment

by:Tony Massa
ID: 38866218
DNS services will require a restart most likely. You may want to confirm via google

Maybe not, neither of these indicate a need to restart DNS:

Author Comment

by:Neadom Tucker
ID: 38869882
Well it looks like we are all good.  I hate it when our counter parts play with Active Directory.

Thanks again!

Author Closing Comment

by:Neadom Tucker
ID: 38869883
Way to go!  Thanks for the head and direction adjustment.

Featured Post

Are You Ready for GDPR?

With the GDPR deadline set for May 25, 2018, many organizations are ill-prepared due to uncertainty about the criteria for compliance. According to a recent WatchGuard survey, a staggering 37% of respondents don't even know if their organization needs to comply with GDPR. Do you?

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Here's a look at newsworthy articles and community happenings during the last month.
Resolving an irritating Remote Desktop connection that stops your saved credentials from being used.
This tutorial will walk an individual through locating and launching the BEUtility application to properly change the service account username and\or password in situation where it may be necessary or where the password has been inadvertently change…
This tutorial will walk an individual through setting the global and backup job media overwrite and protection periods in Backup Exec 2012. Log onto the Backup Exec Central Administration Server. Examine the services. If all or most of them are stop…

730 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question