The Domain Name System (DNS) is a hierarchical, globally distributed system responsible for associating the name of a computer, service or other resource into an IP address for connecting to the Internet or a private network. Most prominently, it translates domain names to the numerical IP addresses needed for the purpose of computer services and devices worldwide.

Share tech news, updates, or what's on your mind.

Sign up to Post

Hi EE,

If I am using a Windows Server 2008 server it possible to create a CNAME alias that points to directly to specific SQL instance (2016) on a Windows Cluster.

The cluster setup is follows:

Cluster Nodes
LABTSTSQL01 - Windows Server 2016 Standard
LABTSTSQL02  - Windows Server 2016 Standard

Cluster Quorum Model: Disk Witness

For example: CNAME = SQLAAPRD/SQL2014APPS to LABTSTSQL01.asdf.local
                        CNAME = SQLAAPRD/SQL2012APPS to LABTSTSQL01.asdf.local

Any assistance is welcome.

Thank you
Turning OFF my WordPress Site?

I have the Admin login to my WordPress site, but I need to turn it off.

I do not care where the domain points afterwards.

How do I "unpublish" the site?

Updating my domain (on GoDaddy) to NOT point to my site

I guess I have two options, point it to a broken IP address, at which point GoDaddy will display a "URL not found" type of error.

Another is to point at their default "Coming Soon" website.

I think I prefer the broken URL option.

How do I make my domain to point to nothing?

Does anyone know how a person (perhaps attacker?) is able to change a DNS record (A record) to point to a different IP.  Let's assume that we own the root domain for it (will check the DNS servers on Monday).

For example, how can someone change test.company.com to point to a different IP ( and we own company.com.  Interestingly, the test.company.com doesn't exist on our DNS servers.  When doing nslookup to test.company.com against our internal DNS servers, it says "non-existent domain".

thank you!
I use an ASUS Router RT66 in connection with a synology station, where webdav is running.
All is configured and if I connect from outside, over the internet, all works fine.
I use https with port 5006. If i try to connect with my mobile inside the own network, it does not work. I will be asked for a password, but this will  not be accept.
At home I use the the same configuration with the synology station. It works fine over internet and in the local network. The only difference is the router.  Could it be a DNS issue?
How to export Entire DNS Record and Zone

someone is spoofing my mail domain.
I have SPF record and it is not enough to stop spoofing.

I didnt know how spoofing is easy :-)

"Find a website like deadfake, which describes itself as “a site that lets you send free fake emails to anyone you like.
Or anonymailer.net. Or spoofbox.com. There are dozens. Many of them are free, some cost a little money to send mail.

    Enter your recipient’s email address in the To: field.
    Put whatever email address you want in the From: field.
    Craft your message and press the Send Now! Button.


So,what are my options?I have ptr and spf record.
To configure dkim and dmarc?
Any advice?
Please,can anyone explain how to implement.I have 4 email domains on mail server.
Is there any dkim&dmarc tutorial for dummies :-)
Thank you
I've created a DMarc and I'm receiving emailed reports.

However, I'm not sure how to read them.  

There are coming with an .xml.gz extension.

Any ideas?
I have a  Windows 2012 Domain Controller at a DR site. Replication is working perfectly between the other DCs. For the DC at the DR site, I do not want it to be authenticating users. I changed the weight and the priority of about a dozen SRV records for the DR DC in DNS but it seems to still be authenticating. Anything else I can check? Does the DR DC need to be removed from the Name Servers tab in DNS?

Thank you
Hi Experts,

Is there a way to easily see a list of users that are authenticating against a specific domain controller? (The server is running Windows Server 2012 R2)
The server is a DC and its planned to de-commission the server soon but prior to doing this it would be good to check if there are still users authenticating against the domain controller

Exchange 2010, sp3 rollup 25 on server 2008 r2, EXI-vms.
Our DAG died an ugly death in the aftermath of another incident. There may have been the deletion of a second virtual network card, but I didn't do the initial setup of Exchangeor DAG, so dont know for sure.
Right now there is one card and one network address.
Oddly the active mailbox server seems to have the IP address of the DAG embedded in itself but it is not in the normal network card information under TCPIP/4. Its only visible when looking at ipconfig /all.

In any case, I am trying to re-establish the DAG, but can not.
I see in the event log that the account "ExchangeDAG$" has a login failure, but I dont think there ever was such an account/machine. There is a DNS entry for "ExchangeDAG" as required, but no actual active directory object for it.
I ran cluster verification to try and help understand what was going on - it warns that that the windows KB's dont match.

Should I break DAG, let users work on the existing server and then try to establish a new DAG?
Can I do this with one network card ? (PS, there is no MAPI network)
Is running cluster verification on 2010 EX/2008 r2 OS not a valid thing to do?
I have read a few articles but honestly I think I have a mental block on this.
I hope this doesnt end in a dreaded, $$, MS call...

On my main DC (PDC) I have started to sporadically get event ID 1869 ,1655 ,1869, 1126  global catalog errors They last for a few hours, once an hour

The only changes that I recently did were added a self signed certificate to that DC. (I did it to try and configure LDAPS) and upgraded DFL/FFL from 2003 to 2008R2

I did repadmin/ replsum and everything looks good. I dont hear any complaints from end users.  This is the only DC that I am getting these errors on.

What could be causing these errors?

I have attached the errors in even viewer.

Thank you.
Please explain the ".co" domain extension

What does it mean?


I have an idea to create a separate DNS zone for the wifi network.  Segregation would help with administration and management.
 Does anyone do that already and does it help?  Has any benefits?
My concern is the lag maybe longer when moving laptops from wired to wifi network I think. Any other concerns?
 Please advice.  Thank you!
we have a windows 2012 server v2 std edition running hyperv with 2 virtual machines. One is our domain controller and one is just a standard file server.

All has been working well till we installed some new updates over the weekend.

Now our file server and several of our clients can no longer access the internet. there are several strangely who still can.

On the domain controller, we find that the forwarders that point to our ISP dns and google for dns, can no longer resolve their IP addresses?? The other vm which is just a file server still can.

All local clients can access the shared folders on or DC.

Can anyone advise how we can go about diagnosing and fixing this problem?

Any assistance much appreciated.

Many thanks.
When should I use internal Active Directory DNS Conditional Forwarders vs. Stub Zones?  What are the difference?
Dear Experts,

I have a question regarding to the Window 2012 R2 server DNS, AD, and DHCP setup. Say I have a server setup with the these services DNS, AD, and DCHP. If I wish to configure a failover or a copy of this server, what will be a good way to setup? If I do need to setup another server will I need to keep it up all the time so in case the main server fails the backup can take over? How will I know if the user are on the main or the backup? Will the backup server cause conflict with the main server? Thanks. (sorry that I have so many question in one)
I have a server 2012 R2 running DFS.There is also another server 2012 r2 that has a share on there using DFS as well. I have 4 DC's, 2 onsite and 2 at another site. Everything was working correctly right up until I ran updates to all my servers and reboot them to apply updates. Now I am getting people randomly telling me that they cannot connect to shares when signing in. After a few reboots they could. I have checked DNS and it looks good. When a user is at a broken state, What always works is the home drive which is applied on the profile tab in AD. That is referenced to a dfs share. What sometimes works after a few reboots is the logon script that has the rest of the peoples drives that they haven't been getting consistently. Does anyone have an idea of whats going on. Thanks a head of time.
In AD internal DNS I see two partitions.   It looks like the domain controller is hosting two domains.  One company.com and another company.local
I'm not sure the reason but assume the Domain has been renamed sometime in the past.  From .local to .com
 Windows 2016 Domain controllers.

Is it safe to remove that old local DNS partition without breaking anything?  Or should I ignore it?  Would it cause any issues?
If I go into the properties of some of my Active Directory DNS zones, and look at the namerservers tab, I see old domain controllers listed there.  How can I safely remove these?  

My thought is to go into DNS, highlight the zone, right click into "properties", then check each and every folder looking for any mentions of old DNS servers.  Will removing the records this way also remove them from the "nameservers" tab?
We're having some issues getting to our website from inside the network. The website host crashed this past week. We moved our website server to a new host. I changed the IP in the DNS area, but it still won't connect. The site works fine from outside of our network. The domain is the same internally as externally. companyname.net   so when I go to ping www.companyname.net it shows the updated IP internally but for some reason the site isn't coming up. The old site isn't either. The site refused to connect is what I see.
Weird issue after upgrading domain/forest level from 2003 to 2008r2. Not sure if that has to do with it.

I see this in dns (see picture)

Also one of my remote dcs are getting authentication error has occured code 0x80004005
Any ideas?
BGP and DNS implementation

If I understand BGP is used when you have 2 Primary links to 2 separate ISPs, so that your Customers can reach your services in your LAN.
Though in some articles , they say  it is also used when you have 2 Primary links to 2 separate ISPs to reach other sites ...Not sure this is correct..please shade some lights on this.

Well, in either cases mentioned above , I believe with Public DNS , you still can make Customers reach your LAN or you can reach their LANs.

So how BGP is different from DNS ?

Thank you
Hi.  We haven't changed our network structure on the IBM I for years and only recently have a need to as all of our processes have been pretty much contained on the I.  I'm self taught in IBM maintenance and learning as I go but I think the changes I need to make are pretty benign but I need some advice.    

I noticed my host table is totally out of whack with my network so I need to remove and correct some entries.  I'm really thinking about only leaving those entries referencing my Virtual IP on the I and otherwise not using a host table.  Ultimately, I need to add some DNS entries and allow external resolution.  Currently my Host name search priority field under CHGTCPDMN is set to *LOCAL.  Is it necessary to change to *REMOTE to make DNS active?  Would this change require an IPL?   If I leave that setting at *LOCAL, Do I need to make a specific entry in my host table or will lookups query my host table and then automatically jump over to DNS for those  queries without a corresponding entry, provided I have the DNS server addresses listed?  
I guess my question(s) are, What is best practice in this case?   Do Host table changes or DNS changes require any service restarts or an IPL or can I just make these changes on the fly?
Does anyone know why a Sophos firewall would suddenly stop providing proper DNS? We thought it was a Verizon issue, but the traceroutes I'm running stop at the firewall? I checked the DNS entries and they read like the Sophos site says they should.






The Domain Name System (DNS) is a hierarchical, globally distributed system responsible for associating the name of a computer, service or other resource into an IP address for connecting to the Internet or a private network. Most prominently, it translates domain names to the numerical IP addresses needed for the purpose of computer services and devices worldwide.