Solved

Setting up DNS on Windows Server 2008 R2

Posted on 2013-12-17
4
1,231 Views
Last Modified: 2013-12-18
I have several DNS errors when scanning the DNS role in the Roles Wizard in Server 2008 R2.

I get "The network adapter Local Area Connection does not list the loopback IP address as a DNS server, or it is configured as the first entry."

In the network adapter settings, the server (IP address 192.168.0.3) lists the first DNS as 192.168.0.3 and the second as 127.0.0.1.

If I remove 127.0.0.1 and rescan the role, I get: "The network adapter Local Area Connection does not list the loopback IP address as a DNS server, or it is configured as the first entry."  Neither assumption is true.

I also get, "Local Area Connection has only the preferred DNS server configured." and recommends, "Click Start, click Network, click Network and Sharing Center, and then click Change adapter settings to configure at least two DNS servers per interface."  This I tried to do by adding 127.0.0.1 as the 2nd dns entry. But it gives the first error noted.

Any idea how I resolve this?
0
Comment
Question by:DaveWWW
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
4 Comments
 
LVL 58

Accepted Solution

by:
Cliff Galiher earned 500 total points
ID: 39725558
BPAs have several types of conditions. Some are informational. Some are warnings. Some are errors.

Errors should be addressed.  Warnings are exactly that, and depending on the environment, can be safely ignored.  For example, listing your server's IP address in the primary and the loopback in the secondary, if they both reference the same server, offers NO actual redundancy. The warning is letting you know that if the primary DNS server is unavailable, you won't have DNS services. But in a single DC environment, that is true if the DNS server fails, so the warning can be safely ignored.

Another example is Exchange. It's BPA will throw one kind of warning if you allow older clients to connect, letting you know that older clients may be insecure. But if you tighten it up, it throws another warning letting you know that older clients may not be able to connect. Basically you *cannot* get rid of all warnings, because the two are mutually exclusive. Again, you choose the one that fits your security model.

So unless you have a second DC, put the one server in the IP address and accept the warning.

-Cliff
0
 
LVL 10

Expert Comment

by:Korbus
ID: 39725654
"the server (IP address 192.168.0.3) lists the first DNS as 192.168.0.3"

-might not be 127.0.0.1 but I guess technically it IS a loopback (points to itself)

I agree with cgaliher-  you can probabaly ignore that one unless your setting up a DNS server array, or somthing like that.
0
 
LVL 24

Expert Comment

by:Mohammed Hamada
ID: 39725951
If you don't have a second DNS server, you can just use the localhost ip on the DNS. but you need to make sure that you have setup the forwarders for the DNS to resolve external domain names.
0
 

Author Closing Comment

by:DaveWWW
ID: 39726387
Although the loopback was listed by BPA as an error, not a warning, web sites are resolving correctly, so I'm happy to ignore the BPA on this one!  Thanks.
0

Featured Post

Use Case: Protecting a Hybrid Cloud Infrastructure

Microsoft Azure is rapidly becoming the norm in dynamic IT environments. This document describes the challenges that organizations face when protecting data in a hybrid cloud IT environment and presents a use case to demonstrate how Acronis Backup protects all data.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In-place Upgrading Dirsync to Azure AD Connect
Recently, Microsoft released a best-practice guide for securing Active Directory. It's a whopping 300+ pages long. Those of us tasked with securing our company’s databases and systems would, ideally, have time to devote to learning the ins and outs…
This tutorial will walk an individual through the steps necessary to configure their installation of BackupExec 2012 to use network shared disk space. Verify that the path to the shared storage is valid and that data can be written to that location:…
This video shows how to use Hyena, from SystemTools Software, to bulk import 100 user accounts from an external text file. View in 1080p for best video quality.

737 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question