• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 59
  • Last Modified:

DNS Server not functioning properly

Ever since I changed my DHCP-DNS server and changed IP addresses it has not been able to get to the internet effectively.  I get a unable to connect to DNS error, if I refresh it a couple of time it will eventually come up. The Domain Controllers seem to be working correctly and I get no errors from them.  I have manually deleted all the old IP addresses from the forward Lookup Zones.  I know it's DNS problem because if I change the DNS to 8.8.8.8 on a local station it works fine.  

I have run the command _ldap._tcp.noam.reskit.com SRV service location:
and everything looks great, found both DNS server.  

The DNS Server is connected to my domain and active directory.  It worked fine until I moved the FSMO roles and changed the IP address of the DNS server
0
lcfrederickson
Asked:
lcfrederickson
  • 3
  • 3
  • 2
  • +1
2 Solutions
 
Muhammad MullaCommented:
Check your forwarders. Have you changed ISP? it could be that you still have your old ISP's Forwarders setup in your DNS.

Get the DNS forwarders from your current ISP. Even if you haven't changed, it could be that they have changed their forwarder addresses and you might have missed the communication from them. Click on Edit and delete, add and reorder forwarding servers as required.
0
 
KimputerCommented:
Use nslookup on a PC to see if the DNS servers are responding correctly (obviously, enter a few domain names to see if it looks up quickly, for both domain related, as well as internet based)
0
 
lcfredericksonAuthor Commented:
NS Lookup works fine.  My ISP has not changed but I probably should have mentioned that I have a SonicWall TZ600 SonicWall for a firewall between the ISP and my local network
0
SMB Security Just Got a Layer Stronger

WatchGuard acquires Percipient Networks to extend protection to the DNS layer, further increasing the value of Total Security Suite.  Learn more about what this means for you and how you can improve your security with WatchGuard today!

 
DrDave242Commented:
What are you using for forwarders on your DNS server? Since 8.8.8.8 works when your internal machines use it as a DNS server, you can remove your existing forwarders and use it (and 8.8.4.4) as forwarders instead. Alternatively, you can remove all of your forwarders and use root hints.

Also, is there any chance your firewall is configured to only pass outbound DNS traffic from certain addresses? This is somewhat unusual, but I've run across it before in environments where strict control of external name resolution is needed.
0
 
lcfredericksonAuthor Commented:
The forward lookup zones are the Active Directory-integraged Primary, and standard primary for my domain.  The firewall configuration hasn't changed.

I added the 8.8.8.8 and 8.8.4.4 to the forwarders and removed the ip addresses of my DNS server.  How will that affect the group policy assignments on my domain?
0
 
DrDave242Commented:
How will that affect the group policy assignments on my domain?
I'm not sure what you mean. Changing the forwarders won't affect Group Policy at all, since that's processed inside the domain. The forwarders only come into play for resolving queries for names outside the domain.
0
 
Muhammad MullaCommented:
Your own DNS servers shouldn't be in the Forwarders. As DrDave242 mentioned, Forwarders are not used for names inside the domain, hence your internal DNS servers don't need to be in there.
0
 
lcfredericksonAuthor Commented:
Thanks!!!  It seem to be working great!
0
 
Muhammad MullaCommented:
Author accepted answer.
0

Featured Post

VIDEO: THE CONCERTO CLOUD FOR HEALTHCARE

Modern healthcare requires a modern cloud. View this brief video to understand how the Concerto Cloud for Healthcare can help your organization.

  • 3
  • 3
  • 2
  • +1
Tackle projects and never again get stuck behind a technical roadblock.
Join Now