Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1400
  • Last Modified:

Help with DNS Entires being purged from DNS Windows 2008 R2

Ok folks I have an issue with DNS.  I think I have done about everything I can but I need another set of eyes.

Here is what the issue is.

DNS will accept updates from clients and DHCP.  Based on what I can see any client with a DHCP address is staying in DNS.  However if the machine has a static address the machine is not updating it's DNS records. This in turns causes the DNS records to tombstone and the record get removed.

Upon looking at it a bit more I found that when a PC/Server with a static IP address updates the DNS the record tombstones in about 3 hours.

Looking at the TTL on the record it is showing as 20 min.DNS RecordThat record just happens to be a DHCP entry.  However if it was static in about 3 hours it should show as Tombstoned in ADSI Edit.

My SOA has a refresh interval of 15 min, retry interval of 10 min and expires after 1 day.  The minimum ttl is 1 hour. SOA Tab
In looking at my Zone Aging/Scavenging,  the no-refresh and refresh intervals are at 1 day each. Zone Aging
I am honestly so confused at the moment that I just need someone to set my head right in how I need to troubleshoot this.

Thanks for your advanced assistance.

Tucker
0
Neadom Tucker
Asked:
Neadom Tucker
  • 5
  • 2
1 Solution
 
Tony MassaCommented:
The TTL is only the time when the record is cached and shouldn't affect registration/tombstoning.  The record timestamp controls when the record becomes stale.  1 day is too short for static registrations because the server doesn't register that often

Here are a few good pieces of info:

http://social.technet.microsoft.com/Forums/uk/winserverNIS/thread/bb556cfb-3217-4dcf-af4f-460366faa1b8
http://blogs.technet.com/b/networking/archive/2008/03/19/don-t-be-afraid-of-dns-scavenging-just-be-patient.aspx
http://support.microsoft.com/kb/932464
0
 
Neadom TuckerAuthor Commented:
tmassa99 thanks for that.  I thought the aging was too aggressive.  I need to speak with our IT Team at another site and find out why they did this.  I will give you and update as to our progress.  I may be a few days while we test.

Regards

Neadom
0
 
David Johnson, CD, MVPOwnerCommented:
In your DHCP server have you set the reservations for these static ip's?
0
VIDEO: THE CONCERTO CLOUD FOR HEALTHCARE

Modern healthcare requires a modern cloud. View this brief video to understand how the Concerto Cloud for Healthcare can help your organization.

 
Neadom TuckerAuthor Commented:
The static ip's are outside the DHCP Scope.

Neadom
0
 
Neadom TuckerAuthor Commented:
tmassa99  we have set the Aging to the defaults.  Now we just have to wait and see what happens in the next 24-36 hours.
0
 
Tony MassaCommented:
DNS services will require a restart most likely. You may want to confirm via google

Maybe not, neither of these indicate a need to restart DNS:
http://technet.microsoft.com/en-us/library/cc753217.aspx
http://technet.microsoft.com/en-us/library/cc771362(v=ws.10).aspx
0
 
Neadom TuckerAuthor Commented:
Well it looks like we are all good.  I hate it when our counter parts play with Active Directory.

Thanks again!
0
 
Neadom TuckerAuthor Commented:
Way to go!  Thanks for the head and direction adjustment.
0

Featured Post

Making Bulk Changes to Active Directory

Watch this video to see how easy it is to make mass changes to Active Directory from an external text file without using complicated scripts.

  • 5
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now