Solved

DNS forward lookup zone - records accuracy

Posted on 2013-12-17
3
861 Views
Last Modified: 2013-12-20
Hi All,
I have a 3-part (hopefully simple) question about my forward lookup zone.  I'm using 2 DCs (Server2008 R2), in a single domain environment.  The functional level is Server2003.

1. When I try to find an "available" IP address, for a static dev server, or whatever, the process is extremely tedious because my forward lookup zones don't include DHCP leases that aren't associated with FQDNs.  This means i have to ping addresses over and over until I find one that seems available.  Is there a way to see all used IPs?  

2. While pinging, I get responses from FQDNs that aren't listed in my forward lookup zone.  Is this related to the secure/non-secure updates checkbox?

3. While perusing the foward lookup zone, I see entries in there from ages ago.  Yet i have scavenging set to 8 days.  I've had this problem for several years now... I thought that upgrading my DC functional level would solve this, but no success...  Any ideas?

Thanks much!
B
0
Comment
Question by:cuiinc
  • 2
3 Comments
 
LVL 70

Expert Comment

by:Chris Dent
ID: 39725221
1. This is not a function of DNS, you need better IP address management I'm afraid.

There are a lot of IPAM solutions out there, Windows 2012 includes some as well if you're near the cutting edge.

2. Perhaps WINS / NetBIOS Broadcast unless you really mean FQDNs. Otherwise it's resolving the request via another name server.

Can you give an example? Does the name you see appear (hierarchically, if not in the GUI) under one of the zones you have configured on your DNS server?

3. When does automatic scavenging run (DNS server properties / Advanced)? The records you see, they have time stamps listed and this is how you're determining age? What have you set Refresh / No-Refresh to?

Functional level has no impact at all on this.

Chris
0
 
LVL 1

Author Comment

by:cuiinc
ID: 39725417
1. thanks!

2. You are correct in that the results of a ping return the WINS hostname (along with the address), but IP and hostname fail to show up in any of my DNS zones.  for example, pinging 192.168.0.36 returns "Dan."  however, neither my reverse nor forward lookup zones have any records of this IP address nor the hostname.

3. thanks!  i realized i had set the scaveng/aging settings under properties of the forward lookup zone, but not under DNS server Properties > Advanced.
0
 
LVL 70

Accepted Solution

by:
Chris Dent earned 500 total points
ID: 39726020
2. That's fine, you either have a WINS server (and the answer is coming from there), or it's broadcasting for a name and the answer is coming from there.

If you want that to be truly predictable you have a couple of choices:

a. Install a WINS server and properly manage NetBIOS naming.
b. Disable NetBIOS over TCP/IP on each client (DHCP can be used to do this).

I always prefer the second, I really don't like NetBIOS. However, if you have something that relies on it you can't make such a clean cut. If you're not sure, disable it on a few and see if it impacts anything. I'd focus on any systems / asset management systems you may use for that.

3. You should find manually initiating scavenging also works for you, but having it run on one of your DNS servers on a schedule is far less effort.

The event log can be reviewed to see a summary of the scavenging operation.

Chris
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

BIND is the most widely used Name Server. A Name Server is the one that translates a site name to it's IP address. There is a new bug in BIND (https://kb.isc.org/article/AA-01272), affecting all versions of BIND 9 from BIND 9.1.0 (inclusive) thro…
A procedure for exporting installed hotfix details of remote computers using powershell
This tutorial will walk an individual through configuring a drive on a Windows Server 2008 to perform shadow copies in order to quickly recover deleted files and folders. Click on Start and then select Computer to view the available drives on the se…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…

911 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now