The Domain Name System (DNS) is a hierarchical, globally distributed system responsible for associating the name of a computer, service or other resource into an IP address for connecting to the Internet or a private network. Most prominently, it translates domain names to the numerical IP addresses needed for the purpose of computer services and devices worldwide.

Share tech news, updates, or what's on your mind.

Sign up to Post

Following the narrowing down of an issue that seems to be purely DNS related with a client. I am looking to rebuild the DNS if this is at all possible.

Some tips on how to do this along with other associated tasks would be great.

Just for those who are curious, I could ping to sever and connect to shares by ip etc. I did re-add the forwarders after removing and they wouldn’t verify until I rebooted the modem which I thought was interesting.
We Need Your Input!
We Need Your Input!

WatchGuard is currently running a beta program for our new macOS Host Sensor for our Threat Detection and Response service. We're looking for more macOS users to help provide insight and feedback to help us make the product even better. Please sign up for our beta program today!

Access 2003 mdb with a SQL 2014 backend. We recently changed DNS servers on our LAN to a new box with a new name and IP address, and now the ODBC linked tables to SQL take forever to open. Is there something in an mdb that remembers it's LAN DNS server? I already tried relinking a few tables with the linked table manager, no difference. I do know, however, that the ODBC DSN is fine because I created a test mdb and added a few linked tables from the same SQL backend, and they open lightning fast. It's just something about this existing mdb that now won't open tables in a tolerable time.
I can't see all the machines on the network on a new DC we set up. I can map to them and ping them, just cant see them all in File Explorer/network. I have a network that we just took over, the previous admin used a domain.com for the DNS / server name that the company does't even own. So to get around the issues we set up static routes for the internal servers. This seems to work fine on the current production server that we will be migrating to a new production server. It can now see all the machines on the network and they show up in File Explorer/network. I have checked all the obvious things, sharing is enabled, all the proper services are running etc. The DNS records between the new and old server match.

So what we have is as follows.

Current server 2008r2: Had to add an a record to point the domain.com to the internal IP now it seems to be working, it can see all machines on the network when you open file explorer.

Old Exchange server 2008r2 that use to be the production server: Moved mail to hosted solution, now it only has data on it that we will be moving.

New server 2016: It will be the new production server to replace these older servers. We added it to the domain, made it a DC. I didn't want to go any further because I can only see a handful of machines on the network. Oddly enough the same machines on the old exchange server are the same machines I can see on the new server. I'm sure I am missing something simple here?

Just strange I can see all…
Hi, we are setting up a brand new Win2016 Standard server mainly as a file server with RDS.  Should I setup Active Directory as "company.com" or "company.local"?  There is no Exchange server but we would like to have SSL certificate for the Remote Desktop Gateway.  Something that came to mind for Remote Desktop Services access is to setup a sub domain called, "remote.company.com" for our remote desktop users.  Thanks.
Dear experts,

I have a domain controller running on Window 2012 R2 with Active Directory Integrated zone. I also have another domain controller running on Window 2008 R2. Unfortunately the Window 2008 R2 machine malfunctioned which at least I can still survive on the DC on Window 2012 R2. My concern right now is how to remove/demote the Window 2008 R2 properly without the capability of accessing that machine? Can I remove/demote Window 2008 R2 directly from Window 2012 R2? Thanks
I want to find how DNS is setup for scavenging, is there any small Powershell scripts to get an overview of how DNS is run, windows 2008\2012r2 environment
DNS logging is not working for a 2008R2 server

Any advice on steps to reenable DNS logging?

Do i need to change or remove scavenging rules for this server , if so whats best practice for this

hello everyone !!!
                              i am implementing exchange 2016 on server 2012 r2 for testing. i am able to send email from one mailbox to another in my local network. all i need to configure my public dns and local dns record. my email also not delver from my exchange to other domain like gmail. i got the following massage.

Delivery is delayed to these recipients or groups:

mohit.saini101@gmail.com (mohit.saini101@gmail.com)


This message hasn't been delivered yet. Delivery will continue to be attempted.

The server will keep trying to deliver this message for the next 1 days, 19 hours and 59 minutes. You'll be notified if the message can't be delivered by that time.

Diagnostic information for administrators:


 Remote Server returned '400 4.4.7 Message delayed'

Original message headers:
 EXCNLG.CONTROLPRINT.LOCAL ( with Microsoft SMTP Server (TLS) id; Thu, 15 Mar 2018 16:31:52 +0530
 ([::1]) with mapi id 15.01.0225.041; Thu, 15 Mar 2018 16:31:52 +0530
From: mohit saini <mohit.saini@controlprint.xyz>
To: "mohit.saini101@gmail.com" <mohit.saini101@gmail.com>
Thread-Index: AQHTvEDbtJyYA/WnZ0umgkO0ytMrhQ==
Date: Thu, 15 Mar 2018 11:01:52 +0000
Message-ID: …
CNAME Record caused my emails to fail.

I hosted 2 emails at RackSpace for my domain, and verified they worked fine. This required me to update the MX records where I host my domain.


Then, before I could create a website, I was allowed by my partner to point my domain at his website.

The redirect worked once I created a CNAME record.
domain1.com brings up the site at domain2.com

But the emails stopped working.

The error is "553 Relaying disallowed"

I called RackSpace and they said it's because the MX records at the domain2.com, where domain1.com points at, are pointing to Zoho (a major email provider).

So, my question is...

If I move my two emails from RackSpace to Zoho, can I have a solution where

1) domain forwarding is working (domain1.com brings up the site at domain2.com)
2) emails work as well (both (domain1.com emails work again)



Or, is there another way to configure this?

Hi, we are using windows 2012 R2 environment,

My question is Does Normal AD account will have access DNS console using RAST tools.. to Read Access on DNS zones
SMB Security Just Got a Layer Stronger
SMB Security Just Got a Layer Stronger

WatchGuard acquires Percipient Networks to extend protection to the DNS layer, further increasing the value of Total Security Suite.  Learn more about what this means for you and how you can improve your security with WatchGuard today!


If someone enters our web address in their browser without the www, it would show page could not be found.
But, if they enter www in front of our web address, it would bring them to our website. We never paid attention to this until we received a warning from Google Analytics recently as shown below. I guess Google is recommending us to setup our website in a way where it would open if someone doesn't enter www. infront of our web address.  Is there a way to configure our website as suggested by Google?  Thank you!

Property http://www.xyz.com is receiving data from redundant hostnames. Some of the redundant hostnames are:
•      xyz.com
•      www.xyz.com
Redundant hostnames are counted as separate rows in reports, so hits that are going to the same page on your site from different hostnames will be split into multiple rows. With data split across multiple rows, traffic to specific pages will appear lower than it actually is.

To avoid this problem, consider setting up a 301 redirect from one of your redundant hostnames to the other, or create a search-and-replace filter that strips "www." from hostnames.

Google Tag Assistant Recordings can help you verify that your redirect is setup correctly, or that your filter is working as …
Can anyone tell me what entries I should give in godaddy DNS for site example.com?

www.example.com is loading from cloudfront origin with ssl however, example.com is loading directly from server without ssl. Looks like synchronization problem between cloudfront and origin.

There should be only 1 site https://www.example.com and only 1 origin. Everything should redirect to it only.

Cloudfront distribution with custom wildcard ACM certificate installed. Server ip address in A record. Cloudfront domain name in cname record.
System: Windows 2012 R2, CRM 2016

I completed the configuration of ADFS, Claims-Based Authentication and IFD without any errors.  The login form opens both internally and externally.

The issue is that it is pointing to the wrong site.  It is pointing to the sts1 address, however, the System Admin tells me that this is a production site.

I don't want to try ripping out ADFS and starting over, I have seen that cause major problems

Can someone tell me how I can change the site from sts1 to the correct site?

The system admin had me try adfs.wwmh.net but it reverts back to the sts1 site.

I am at the last  step of the IFD setup and if I can get this issue resolved, I am done

When my client sent email to external companies some time it goes to junk.
So, i got request from my client to increasing reputation of the domain.

My client is checking reputation by going to "http://reputationauthority.org/index.php"   (Watchgaurd domain)

I have no idea on how we can increasing reputation of domain ? or is it possible ?
This is an odd problem we are currently having with just Gmail business accounts. We are having no issues receiving email from any other domains. These hosted business accounts are all getting this error:

DNS Error: 5253683 DNS type 'mx' lookup of domainname.com responded with code SERVFAIL

What's even more odd is that some of the mailboxes from a hosted account can email us while others can't.

Our domain record on MXTOOLBOX doesn't show any obvious errors with our DNS.

Our email is hosted by a cloud service.
Hi guys,

Tonight we were installing some Windows updates on a server running Windows Server 2012 R2 with Exchange 2016. During the installation the server became unresponsive so after a while we decided to hard reset it. When it came back online everything seemed fine at first. The update manager even noted that all updates had been installed correctly. But none of the Exchange services wouldn't start. The eventlogs were packed with all types of errors that we're pointing towards network connectivity issues.
We tried all the standard solutions for testing and fixing network issues, like checking DNS server, "net view" and "net use" from the broken server to other servers; everything seemed to be functioning correctly. It' wasn't until we ran the "nltest /dsgetsite" and were getting the error:
Getting DC name failed: Status = 1919 0x77f ERROR_NO_SITENAME
We checked the registry and noticed the "DynamicSiteName" key was missing.
For the sake of testing we manually created the key and watched as Exchange services start up. But halfway through they stopped starting up. It turned out the DynamicSiteName key had removed itself from the registry again. Once again we recreated the key and this time Exchange was able to start up completely and started functioning correctly again.
The problem was that the registry key was gone again. Everytime we create it, it deletes itself within seconds.

We're not sure what to do about this. Exchange currently remains to …
Hello Experts I need your help with exchange decommissioning.

For some reasons I needed to reinstall exchange 2013 and move all mailboxes from OLD to NEW one.
OLD and NEW exchange servers are integrated to AD all users and computers too.
All mailboxes are moved to NEW one so now as I have a NATing and external DNS I tried to switch the IP address of ODL server to NEW and turn off OLD server, it worked for OWA so the users extern and intern can connect to their mailbox without any problem, but the local outlook 2013 -2016 users have problems to connect to the server (First of all proxy certificate error, second problem user cant authenticate, I tried to remove outlook profile and create the new one - outlook cant find the exchange server).

Please somebody tell me what I'm doing wrong?
Dear Experts,

I have gracefully demoted a domain controller, removed all AD DS roles including the DNS role. Under Sites and Services the demoted DC still exists, which can be normal and can be safely deleted hover under the demoted DC object is a "msDNS-ServerSettings" object, i font know if i can safely delete it? Microsoft (MSDN) mentions it is associated with the Key Master required for DNSSEC although no DNS zones within the domain use DNSSEC. Any ideas if I can delete the object manually and what impact if any it could cause?

Domain/Forest Functional Level is Windows Server 2016, upgraded previously from Windows Server 2012 R2.
Dear experts,

I have a Window 2012 R2 server running DNS, DHCP, and AD DS and a sonicwall firewall. For some reason that my DNS server is not working. When I look at my network connection from Window 7, I can see that IPv4 Default Gateway is, IPv4 DHCP server is on but IPv DNS server is on 68.x.x.x It is not pointing to my DNS which should be the same as the DHCP server ( I am not sure what went wrong as in if there is a mis-configuration in sonicwall firewall/router or the DNS server at

I can see my client PC is not talking to the local DNS server but instead on 68.x.x.x my ISP. Is there a way to configure in order to ensure my client PC will ask my local DNS first if no information can be found then forward to the DNS of my ISP and so forth?  I have set my TCP/IPv4 to Obtain an IP address automatically and Obtain DNS server address automatically. Is there a way to set obtain IP and DNS server automatically rather than set those to static?
Upgrade your Question Security!
LVL 12
Upgrade your Question Security!

Your question, your audience. Choose who sees your identity—and your question—with question security.

I need to add a reverse dns record in my dns configuration.

I am getting this error is the ip of the mail server

Remote host said: 451 4.1.8 Possibly forged hostname for

I have access to the dns zone  of the domain

Any ideas
Striggling with dhcp on linux.  
Need to know scope range, reservations, lease hours/days, % scope used, etc.

Here is what I have:   can can you take  apeek and help with commands?

# File managed by Chef

# set this to store vendor strings.
set vendor-string = option vendor-class-identifier;

allow booting;
allow bootp;
allow unknown-clients;
allow client-updates;

authoritative ;
ddns-domainname "corp.companyname.com.";
ddns-update-style interim;
ddns-updates on;
default-lease-time 6400;
filename "pxelinux.0";
max-lease-time 86400;
next-server 10.x.x.x;
one-lease-per-client true;
ping-check true;
update-static-leases true;

option domain-name "corp.companyname.com";
option domain-name-servers 10.x.x.x,;
option domain-search "corp.companyname.com", "i.companyname.com", "someothername";
option host-name  = binary-to-ascii (16, 8, "-", substring (hardware, 1, 6));

zone corp.companyname.com {
 primary 10.x.x.x;
 # uses name format could use IP address format
# zone 42.10.in-addr.arpa {
#  primary serverhostname;
# }

include "/etc/dhcp/groups.d/list.conf";
include "/etc/dhcp/subnets.d/list.conf";
include "/etc/dhcp/hosts.d/list.conf";
~     …
I have a Windows 2012 DNS server with an internal Forward Lookup Zone of internal.com (I'm not using my real domain names). I have a separate company.com domain hosted on an external DNS server. When staff want to access an internal host from the Internet (outside of the office), they use the url hostname.company.com. On my internal Windows DNS server I would like anyone trying to access hostname.company.com to be redirected to the appropriate internal host versus being sent to the public IP. I'm not familiar with how to configure this. I tried configuring another forward lookup zone for company.com on my internal Windows DNS server with an A record of hostname.company.com and the internal IP Address of the internal host. However, it did not work.

Any advice will be appreciated.

Thank you.
I have a Windows Server 2016 domain on a /24 network.  I have the DC setup as DNS and DHCP servers.  The gateway is a Xycel router.  The client computers use both DHCP and static IP from the DNS server. The problem I am having is two-fold. When I state the DC DNS IP as the primary DNS server (DHCP also list this IP as well).   1. Having problems getting out to the outside world.  I am seeing either No Internet or Slow Internet (problems resolving and more than 30 hops on tracert), and some pages are loading incorrectly.
When, I add the Google Public DNS as the secondary DNS server, the Internet seems to work fine.  Pages resolve and hops and ms are normal.
So, I know I have a DNS issue going on.  
Question: Would DNS forwarding correct this problem?  If so what IP address do I forward to?  
Google Public?   The external IP address for the ISP?   The internal IP address for the Xycel router?
Looking for answers?
One other note:  This is a clean install (not a migration or upgrade)
Thanks in advance
DNS ageing without scavenging
As a preliminary phase, prior to enabling scavenging, I want to start replicating the timestamps of Microsoft Active-Directory-Integrated zone.
All my DNS servers are Global Catalog & Domain Controllers.
From my research, the way to replicate the timestamps on records is to enable Ageing/Scavenging on the targeted Zone, but NOT enable scavenging on the Servers.
Is this correct?
Also, are secure dynamic updates a requirement? I currently have "allow non secure dynamic updates" set at the zone.

Once all my timestamps are coordinated I will enable the scavenging on the "PDC" domain controller only.
Thanks in advance.
My servers are 2008, 2012 and 2016
Hey Pros,

I really need your expert help.. I'm migrating 2003 DC to 2008 R2. Please see the attach error message, its very common error message but I'm struggling with it for past 2 weeks.
I know nothing wrong with my DHCP or DNS server because its working fine for all other PCs/laptops etc. I tried to remove few PC from the domain and re add them to domain to testing purpose and it work fine. Lastly couple days ago I thought to join my new server to join it to domain before I run dcpromo and it join to the farm no problem and still getting the same error message no matter what I do.

Please comment and advise help...






The Domain Name System (DNS) is a hierarchical, globally distributed system responsible for associating the name of a computer, service or other resource into an IP address for connecting to the Internet or a private network. Most prominently, it translates domain names to the numerical IP addresses needed for the purpose of computer services and devices worldwide.