DNS issue Windows Server 2008

We have a simple configuration.
Server 2008 R2, File Server, Domain Controller, DHCP Server.
Terminal Server (Citrix), Server 2008 R2.
Exchange Server 2007.
Print Server.
We changed ISP recently, and now internet connection on the File Server is extremely slow, but ok after connecting.
The workstations on the LAN appeared to lose internet connection unless I changed their DNS Primary & Secondary to the DNS server of the new ISP provider, then all is well. Before IP & DNS were obtained automatically.
The primary DNS on the Files Server is, Secondary is the IP of the new ISP DNS server.
The DNS cache on the file server has been cleared.
Any ideas as to how to resolve this
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Natty GregIn Theory (IT)Commented:
File server needs static ip address, and its preferable not to use the loop back address, which is built in into every computer.
josephwalshAuthor Commented:
The File server has a static IP address.
Should I use the DNS server IPs of the new ISP for both Primary & Secondary DNSs ?
Natty GregIn Theory (IT)Commented:
The primary dns should be your local dns, and the secondary should be that of the isp, reason you want local look ups to your local dns and if the lockup requires external help it will go through the isp dns
Simplify Active Directory Administration

Administration of Active Directory does not have to be hard.  Too often what should be a simple task is made more difficult than it needs to be.The solution?  Hyena from SystemTools Software.  With ease-of-use as well as powerful importing and bulk updating capabilities.

It depends on how many the domain controllers that you have ,your primary and secondary static IP's should be those of your internal DNS servers. Then your DNS servers should have as their forwarding IP's the address of the ISP DNS servers
Adam RayCommented:
Since your file server is the same machine as your DC... (and I assume you only have one DC.)

The primary DNS server setting of the LAN adapter should be the private IP of the file server/DC (they are the same machine.) Using usually works, but it's private IP (e.g. is better practice.

The secondary DNS server setting of the LAN adapter should be blank. (And of course no additional DNS servers in the advanced settings of the LAN adapter.)

On the "DNS server" settings on your DC (DNS management console), make sure you update the forwarding IPs to the new ISP DNS servers. (Some people say to use root hints rather than forwarders in a setup like your's, but I prefer using forwarders.)

On the "DHCP server" setting on your DC, check the options of your DHCP scope. The first listed DNS server should be the private IP of your DC/file server. Optionally you can add the new ISP's DNS servers as second and/or third in the list--or use your ISP's as the second entry and as your third entry.**

**Optionally adding these "public" DNS servers to the options of your DHCP scope means that workstations (not the DC/file server) will have them available as secondary/3rd DNS servers so they can continue to access the internet if your DC isn't responding for some reason. (But that also means they may occasionally not have access to internal resources if the DNS on your DC is running slow for some reason.--Somewhat rare, I usually add the 2nd and/or 3rd "public" DNS servers to DHCP options, but it's something that's good to be aware of.)

**Likewise, on other (non-domain controller) devices on your network that use static IPs: The primary DNS server of the LAN adapter settings should be the private IP of the DC. With the same option of adding secondary and/or tertiary "public" DNS servers.

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
josephwalshAuthor Commented:
Excellent clear answer.
Remove ISP DNS server IP from lan card properties on DC, since it is the culprit
Point DC server to its own IP in DNS (not and restart netlogon service and dns service
Put public dns server IP as forwarder
On domain controllers, to get internet name resolution you must use either forwarders OR root hints
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Windows Server 2008

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.