Solved

DNS Forward/Reverse Lookup Zone Compare Report

Posted on 2014-01-07
2
2,235 Views
1 Endorsement
Last Modified: 2014-01-14
DNS Gurus:

Is there a tool, application, or script someone could recommend that would generate a report from my Windows 2008 - DNS Server and compare the DNS Forward and Reverse Lookup zones?  I know I can do this manually by going through each DNS record or running a NSLookup on each forward/reverse record, but that could be a rather timely exercise.  I am planning on enabling scavenging in the next week, however I am also noticing that there are static reverse records that don't match the forward look-up records.  Any thoughts or suggestions would be greatly appreciated.
1
Comment
Question by:rmessing171
2 Comments
 
LVL 35

Expert Comment

by:Mahesh
Comment Utility
I don't think \ seen there will any application do that for you.

Max what you can do, export forward lookup zone and reverse lookup contents through GUI \ dnscmd command line and then import both into Excel sheet with some modifications and then try to compare with vlookup, again i guess you need to do lot of hard work to do that and still it may be not as expected.

I suggest you to enable scavenging on DNS server as it will not affect static records.
DNS scavenging only work with resource records that are updated dynamically.
Once you set scavenging properly, DNS will start cleaning up stale resource records and then you can get rid of those static records in reverse zone.
Imp note: Just cross check that your all Domain Controllers all SRV records time stamp are updating properly within scavenging time interval under domain dns zone and _msdcs.domain.com prior to deploying scavenging as if their time stamp are not updating properly they may get counted as stale by scavenging process and will be removed...
Check below thread which might helps you to set scavenging.
http://www.experts-exchange.com/OS/Microsoft_Operating_Systems/Server/2003_Server/Q_28306544.html

Hope that helps

Mahesh
0
 
LVL 26

Accepted Solution

by:
Leon Fester earned 500 total points
Comment Utility
I've also not seen any tools for this.
In the past I've also used Excel...but it's not that big a task as you'd imagine.

To export a zone you can use the dnscmd tool.
dnscmd /zoneexport
- Creates a text file that lists the resource records of a specified zone.
http://technet.microsoft.com/en-us/library/cc772069.aspx

however I am also noticing that there are static reverse records that don't match the forward look-up records
The most likely cause is that the DNS records were created manually and then only the A Host record was updated again.

Just remember to always backup your DNS zones before doing any work, in case you need to restore it. For dynamic records, you shouldn't have any issues since they will be updated by the computers/DNS servers themselves.

Depending on how many records you have it would be easiest to use the exported zone file to constructions a few statement using the DNSCMD command to batch script the creation of your static records.

dnscmd /recordadd
 
dnscmd /recorddelete

See discussion and solution from other forum:
http://social.technet.microsoft.com/Forums/windowsserver/en-US/550f4738-6805-47ca-b0a2-ce0a55c35c26/using-dnscmd-to-bulk-create-ptr-records?forum=winserverDS
0

Featured Post

IT, Stop Being Called Into Every Meeting

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

Join & Write a Comment

I wrote this article to explain some important DNS concepts that should be known to avoid some typical configuration errors I often see in forums. I assume that what is described here is the typical behavior of Microsoft DNS client. I don't know …
Resolve DNS query failed errors for Exchange
It is a freely distributed piece of software for such tasks as photo retouching, image composition and image authoring. It works on many operating systems, in many languages.
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

772 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

10 Experts available now in Live!

Get 1:1 Help Now