Dns strange response

Hello to all,
I have a quite strange problem on the dns of my AD infrastructure.
In August I made ¿¿a migration from AD based on the 2003 server and I replaced one of the 2 2003 server with one 2008 R2.
I followed the Microsoft's best practies and everything went in the best way only some problems with the DNS server.
Some clients configured with the DHCP server started to not work, "Not Work" is must intended that not resolved dns queries so I set the parameters in a static IP addressement and, after that, all clients started.
I've 2 DNS Server and one of them, the secondary, always worked.
I made a change in DHCP parameters, changed the old primary with the new one.
After a while all seems to go in good way but sometimes, some client, cannot resolve a server stored in DMZ zone.
To explain my configuration I must say that I've an external zone configurated in primary zone of my AD, I did it for maintaning the same resolution from inside and outside my company.
Now the problem ... sometimes my client (DHCP or Static) resolved the DMZ server and sometimes no.
If I use a nslookup the response from the dns server is 2 timed out and after the correct IP of server.
I tried to change primary with secondary but without solution only if i tried to resolve it from a server after that all start to function till 2/3 ours after that no way to resolve it.
I'll goingo to eliminate this "hybrid" zone but need to know this strange behavior.
Thanks and best regards
Stefano
stefanop67Asked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Sajid Shaik MSr. System AdminCommented:
scavange the stale records and restart the DNS service and check

all the best

regarding stale records see this article..

http://technet.microsoft.com/en-us/library/cc759204(v=ws.10).aspx

all thebest
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Miguel Angel Perez MuñozCommented:
Sorry but need some clarification.

You have 2 DNS servers, one of them works correctly and resolve fine. Second (or primary) not resolve. Do a nslookup on this affected DNS server causes timeouts and after one or two timeouts resolves the name. This is correct?
0
stefanop67Author Commented:
@Drsahiel
No all my DNS server has the same response.
Till i didn't try to answer from one of the DNS server some client not respond correct to the DMZ Server and the servers has for 2 times the error timeout.
The strange is that after this 2 error timeout the DNS server (1/2) resolve the address but if I try to make a ping the server didn't respond.
Ex:
My server is 192.168.1.100 named xxxx.contoso.com
if I make a ping 192.168.1.100 all is ok
if I make a ping to xxxx.contoso.com no response
if I make nslookup from my client my authoritative dns server has 2 time error and after give to me the correct address but I cannot locate it with the browser
if I make the same request (nslookup) from one of the dns server the respond is without error and after I can locate my DMZ server from my browser without any other action.
0
Simplify Active Directory Administration

Administration of Active Directory does not have to be hard.  Too often what should be a simple task is made more difficult than it needs to be.The solution?  Hyena from SystemTools Software.  With ease-of-use as well as powerful importing and bulk updating capabilities.

stefanop67Author Commented:
@shaiksaj
I have active the automatic scavering on the 2 server and its about 2 days
0
stefanop67Author Commented:
@shaiksaj
Scavering is enabled for server and for zone
2 days for server and 1 day for zone
0
Sajid Shaik MSr. System AdminCommented:
what is the present situation ?
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Windows Server 2008

From novice to tech pro — start learning today.