Dns strange response

Posted on 2013-09-30
Medium Priority
Last Modified: 2013-10-12
Hello to all,
I have a quite strange problem on the dns of my AD infrastructure.
In August I made ¿¿a migration from AD based on the 2003 server and I replaced one of the 2 2003 server with one 2008 R2.
I followed the Microsoft's best practies and everything went in the best way only some problems with the DNS server.
Some clients configured with the DHCP server started to not work, "Not Work" is must intended that not resolved dns queries so I set the parameters in a static IP addressement and, after that, all clients started.
I've 2 DNS Server and one of them, the secondary, always worked.
I made a change in DHCP parameters, changed the old primary with the new one.
After a while all seems to go in good way but sometimes, some client, cannot resolve a server stored in DMZ zone.
To explain my configuration I must say that I've an external zone configurated in primary zone of my AD, I did it for maintaning the same resolution from inside and outside my company.
Now the problem ... sometimes my client (DHCP or Static) resolved the DMZ server and sometimes no.
If I use a nslookup the response from the dns server is 2 timed out and after the correct IP of server.
I tried to change primary with secondary but without solution only if i tried to resolve it from a server after that all start to function till 2/3 ours after that no way to resolve it.
I'll goingo to eliminate this "hybrid" zone but need to know this strange behavior.
Thanks and best regards
Question by:stefanop67
  • 3
  • 2
LVL 17

Accepted Solution

Sajid Shaik M earned 750 total points
ID: 39532299
scavange the stale records and restart the DNS service and check

all the best

regarding stale records see this article..


all thebest
LVL 19

Assisted Solution

by:Miguel Angel Perez Muñoz
Miguel Angel Perez Muñoz earned 750 total points
ID: 39532326
Sorry but need some clarification.

You have 2 DNS servers, one of them works correctly and resolve fine. Second (or primary) not resolve. Do a nslookup on this affected DNS server causes timeouts and after one or two timeouts resolves the name. This is correct?

Author Comment

ID: 39533093
No all my DNS server has the same response.
Till i didn't try to answer from one of the DNS server some client not respond correct to the DMZ Server and the servers has for 2 times the error timeout.
The strange is that after this 2 error timeout the DNS server (1/2) resolve the address but if I try to make a ping the server didn't respond.
My server is named xxxx.contoso.com
if I make a ping all is ok
if I make a ping to xxxx.contoso.com no response
if I make nslookup from my client my authoritative dns server has 2 time error and after give to me the correct address but I cannot locate it with the browser
if I make the same request (nslookup) from one of the dns server the respond is without error and after I can locate my DMZ server from my browser without any other action.
Easily Design & Build Your Next Website

Squarespace’s all-in-one platform gives you everything you need to express yourself creatively online, whether it is with a domain, website, or online store. Get started with your free trial today, and when ready, take 10% off your first purchase with offer code 'EXPERTS'.


Author Comment

ID: 39533104
I have active the automatic scavering on the 2 server and its about 2 days

Author Comment

ID: 39533552
Scavering is enabled for server and for zone
2 days for server and 1 day for zone
LVL 17

Expert Comment

by:Sajid Shaik M
ID: 39567765
what is the present situation ?

Featured Post

The 14th Annual Expert Award Winners

The results are in! Meet the top members of our 2017 Expert Awards. Congratulations to all who qualified!

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Learn how to PXE Boot both BIOS & UEFI machines with DHCP Policies and Custom Vendor Classes
There are a few different ways to preview your site before DNS resolves it to your (mt) Media Temple server.  The Plesk platform makes it easy.  See the following guide to learn how.
This tutorial will give a an overview on how to deploy remote agents in Backup Exec 2012 to new servers. Click on the Backup Exec button in the upper left corner. From here, are global settings for the application such as connecting to a remote Back…
This tutorial will walk an individual through the steps necessary to configure their installation of BackupExec 2012 to use network shared disk space. Verify that the path to the shared storage is valid and that data can be written to that location:…
Suggested Courses

600 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question