Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people, just like you, are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions

DNS Scavenging - is my configuration OK?

Posted on 2014-12-09
Last Modified: 2015-01-22
Hi all,

We have been having random issues with users getting stuck whilst logging on and my gut feeling is that it is a DNS issue.  (After powering off/on their PC, logging in as local admin and doing an ipconfig /release /renew they can log on as normal).

I was looking at our DNS scavenging settings and noticed that it seems to be configured a bit differently to how I normally see it configured in instruction guides etc:

Our scavenging/ageing settings for 'all zones' is configured as below:

Scavenging/ageing settings for all zones
I am a bit concerned that no-refresh interval is set as 5 days and refresh interval is set as 4 days.  I wonder if the problem is occurring on the cross over 1 day of these two periods?

Normally when I see this configured in instruction guides, they seem to both be set as 7 days.

Could this be causing an issue?
Question by:fieldj
  • 4
  • 4
LVL 57

Expert Comment

by:Cliff Galiher
ID: 40488642
Your settings aren't an issue. And from what you describe, DNS itself is likely not an issue. DHCP, on the other hand, might be.

Author Comment

ID: 40488650
What would you advise I check in DHCP?
LVL 57

Expert Comment

by:Cliff Galiher
ID: 40488655
Lease times perhaps. Seeing an ipconfig and nslookup results from a client when it stops working would be enlightening as well.
U.S. Department of Agriculture and Acronis Access

With the new era of mobile computing, smartphones and tablets, wireless communications and cloud services, the USDA sought to take advantage of a mobilized workforce and the blurring lines between personal and corporate computing resources.


Author Comment

ID: 40488661
Lease time is set to 4 days.

Its difficult to get an ipconfig/nslookup etc from a client when the problem occurs as its stuck during the logon process.  I am going to try and experiment with psexec to remotely run these commands if possible
LVL 57

Accepted Solution

Cliff Galiher earned 500 total points
ID: 40488694
A lease time shorter than your no-refresh interval can be a problem. I'd start there. As for long login times, if you wait, it'll complete, probably around the 60-minit timeout mark.

Author Comment

ID: 40488995
Meanwhile the end user has killed me for making them wait 60 minutes!  To be honest its not a major issue, we just force a power off, power on, log on as Administrator, ipconfig release /renew and then they can log on as normal.

Its very infrequent, we probably average one pc with this problem every two days (approx 200 users).

What you said about the DHCP lease time being shorter than no-refresh interval is interesting, but goes against what I have read elsewhere.

Are you able to explain why this would be a problem as I am struggling to get my head around the DNS refresh / no-refresh thing?
LVL 57

Expert Comment

by:Cliff Galiher
ID: 40489032
Because the lease is going to expire and attempt to renew when the DNS record is still in the no refresh window. That could, in theory, cause the system go hang at the point that the DHCP client is attempting to refresh the DNS record and is being given an access denied message. It should handle that gracefully, but there mah be a big that is causing it to fail. In most environments the lease time is longer than the no-refresh window so by the time DHCP renews the lease, it is also allowed to refresh the DNS record, hence avoiding the problem. I can't honestly think of a reason why you'd have a no-refresh shorter than the lease time.

Author Comment

ID: 40489107
OK great, thanks for explaining.

I have just been scanning (by eye) through DNS and noticed a couple of clients with the same Ip address listed which I found interesting.

I have changed our DHCP lease time to 7 days.  We will monitor things over the coming days to see if this helps fix the issue.
LVL 40

Expert Comment

ID: 40489482
Here's a good article that helps to explain how DHCP lease time and DNS scavenging relate.
Parts of it take a little thought to grasp.  One thing I don't think it mentions is that clients will try to renew their DHCP lease halfway through the lease period, and if successful, refresh their DNS record.

Featured Post

NAS Cloud Backup Strategies

This article explains backup scenarios when using network storage. We review the so-called “3-2-1 strategy” and summarize the methods you can use to send NAS data to the cloud

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
save browser passwords 11 71
Recover unsaved Tab contents (and settings/preferences) from Notepad++ 3 92
DNS Forward 4 17
FTP server backups 5 8
Issue: One Windows 2008 R2 64bit server on the network unable to connect to a buffalo Device (Linkstation) with firmware version 1.56. There are a total of four servers on the network this being one of them. Troubleshooting Steps: Connect via h…
NTFS file system has been developed by Microsoft that is widely used by Windows NT operating system and its advanced versions. It is the mostly used over FAT file system as it provides superior features like reliability, security, storage, efficienc…
With the advent of Windows 10, Microsoft is pushing a Get Windows 10 icon into the notification area (system tray) of qualifying computers. There are many reasons for wanting to remove this icon. This two-part Experts Exchange video Micro Tutorial s…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.

860 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question