Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium







The Domain Name System (DNS) is a hierarchical, globally distributed system responsible for associating the name of a computer, service or other resource into an IP address for connecting to the Internet or a private network. Most prominently, it translates domain names to the numerical IP addresses needed for the purpose of computer services and devices worldwide.

Share tech news, updates, or what's on your mind.

Sign up to Post

I have 2 DC's running win 2008 32bit also Running DNS, DHCP with Domain Functional Level of Windows Server 2008.
I want to introduce a Windows Server 2012 as a DC and transfer the FSMO but I still want to keep running DNS and DHCP on th eolde 2008 32bit servers. ANY recommendation as of what steps should I take and should I also move DNS and DHCP to the new server?
Upgrade your Question Security!
LVL 11
Upgrade your Question Security!

Your question, your audience. Choose who sees your identity—and your question—with question security.

Hi All,

I recently had to rebuild a Windows Server 2k12R2 Server. Current Set-Up

2 x Windows Server 2k12R2

DC01 has all the FSMO roles
DC02 (before rebuilt) - kicked it off the domain, demoted the server
DC02 (rebuilt) - I gave it the same name and IP address as the one that I demoted.

  • I'm unable to replicate, when I do repadmin /syncall, it says that the RPC server is unavailable
  • I am able to ping the rebuilt DC02 by IP
  • I have attached a screen shot of dcdiag
  • It says no host record, but when I check the DNS manager of DC01 and DC02, I do see it
We recently took over a domain controller and an Exchange Server, both Windows 2008 R2, with e-mail connectivity problems. We soon found invalid AAAA records in DNS. They were pointing to the IPv6 addresses of the hosts' 6TO4 tunnel adapters, not to the addresses of their physical LAN adapters.
We then deleted the wrong AAAA records on the domain controller's DNS server only to see them re-appear again within a couple of hours, breaking Exchange communication again. Who/what keeps registering these records? How do we keep them off?
("Register in DNS" in LAN connection properties is unchecked; all servers are IPv6-autoconfiguring.)
Looking for a script that will go out and check if DNS is SET to DHCP. The script will run against all the computers in the network.  The output should only contain the name of Computers that are not using DHCP Option for DNS.

Thanks in advance
Hi All Experts.

I've network with new Exchange 2013
Computers (Windows 10) with Outlook 2007 and 2010 (domain members or not) doesn't have any problem to connect to Exchange
Outlook 2013 and 2016 computers that are not part of domain (Windows 10 home edition) has problem to configure outlook.
For the first time when I try to connect new profile to Exchange Outlook is asking for Name, email and password, then is keep prompting for password all the time.

There is no way to connect.

I assume there is some problem with new way of authentication in new Outlook 2013 and 2016 but I can't figure out what I need to change in my network configuration to make this work.
The client is no longer using Exchange on SBS, so I just need to move AD accounts and DNS responsibility to the new Windows 2016 server. This is a little above my level of expertise. Thanks for your help!
I have a domain name registered with email hosting from Provider 1. I have a website built using Wix (Provider 2) and need to link the domain/pages at Wix to the registered domain.

What settings at Wix and at Provider 1 are required to make the above work?
I have

Exchange 2010 SP3 on Windows 2008r2 -  4 servers (2 CASHUB + 2 MBX).
Internal clients are using NLB called excasarray.domain.com pointing to DAG
Domain name has other DNS records internally referring to the excasarray.domain.com.  

As we added Exchange 2016 servers (RYEX01 & RYEX02) on the existing organization and migrated few pilot users for testing.  The issue is purely for the internal outlook users. After we migrate the users are getting certificate prompt of new exchange server which has only exchange server hostname and fqdn in the certificate. Hence it is throwing certificate prompt for all users stating the new certificate does not match with the other SAN names. We have added new DNS A record for autodiscover and webmail.domain.com. For external users access owa has no issue. But for the outlook users it is prompting for certificate. What i am missing here. Here are the output from virtual directories.  We want a solution to avoid certificate prompt for the user before we migrate the mailbox. Also we have public certificate applied on the old server and exported pfx file and iimported to the new server. Appreciate your help on the same.

[PS] C:\>Get-ActiveSyncVirtualDirectory -ADPropertiesOnly | fl Identity, *lurl*, *method*
Identity                      : RYCASHUB01\Microsoft-Server-ActiveSync (Default Web Site)
InternalUrl                   : https://rycashub01.domain.com/Microsoft-Server-ActiveSync
ExternalUrl                   : 

Open in new window

A client of ours is still sitting at "Windows Server 2003" for both the "domain and forest" functional levels. They only have 1 x 2008 member server with the rest of the member servers being Server 2012 and Server 2012 R2 editions.

We are having SYSVOL replication issues (I believe that it is still trying to use FRS versus using DFS Replication as it should be. We are also having DNS issues that we believe may be related to this as well.

I want to raise both the domain and forest functional levels, is there a specific order that these need to be done in? Is there a reboot of any kind required? Services that need to be restarted?

I haven't done this in several years so any suggestions are greatly appreciated.

My home Wi-Fi can't access certain websites and would forever load until it throws up an error state. When I'm connected via ethernet, it works fine, so I know the Wi-Fi has issues. I also want to add that my printer normally prints via Wi-Fi and lately it hasn't been connecting. I'm having to hardwire my printer to my Macbook.

  • The devices I'm using are Macbook and Android phone.
  • This problem started roughly three months ago. No changes have been made to my Wi-Fi (that I know of).
  • I tried changing the DNS. It worked for a day but now the problem continues to exist.
  • I've reset the modem/router.
  • I've tried accessing aforementioned websites on different browsers. Same problem.
Get your problem seen by more experts
LVL 11
Get your problem seen by more experts

Be seen. Boost your question’s priority for more expert views and faster solutions

I recently added a DC to an existing domain that had two existing DCs. I created a second site in AD sites and services, added the new server to the new site and shipped the server to the 2nd location. The sites are connected by VPN. I can ping servers by IP address across the VPN but not by name. DCDIAG /test:DNS passes at both sites. repadmin /replsum fails error 1722 "The RPC server is unavailable" when replicating across the VPN. Local replication between the two original DCs has 0 errors. repadmin /syncall runs with no errors.
I have my Domain hosted with Azure DNS and it is parked on ns1-03.azure-dns.com, ns2-03.azure-dns.net, ns3-03.azure-dns.org, ns4-03.azure-dns.info

I added all of the Services Records for the domain though at the end it wants me to change the NS Records for the domain. I hit Ignore and when I go back it it says that Domain  has 'Possible service issues'

then lists these errors
record Found:  ns1-03.azure-dns.com, record Expected:  ns1.bdm.microsoftonline.com
record Found:  ns2-03.azure-dns.net, record Expected:  ns2.bdm.microsoftonline.com
record Found:  ns3-03.azure-dns.org, record Expected:  ns3.bdm.microsoftonline.com
record Found:  ns4-03.azure-dns.info, record Expected:  ns4.bdm.microsoftonline.com

Does not seem like I should be changing my DNS to another Server?
I have 4 other Domains and I didn't have to do that. for them.

Previous IT set up server 2016 with .com that they didn't own.  Happens to be parent company of franchise, so causing all kinds of DNS issues.

Wanted to rename domain - so ran the random steps.... everything works until I get to random /execute and I get an error message that script failed to execute :3.  

I have searched and cannot find a solution...
In my godaddy user portal  I can create alternative namservers

eg: nameserver1.mydomain.com       134.119.177.XXX
      nameserver2.mydomain.com       134.119.177.XXX

But how can I be sure that these namerservers are propogated and functioning?

Please note  that I am NOT asking for DNS lookup (like https://mxtoolbox.com/dnscheck.aspx)

Thank you
service pdns status -l
Redirecting to /bin/systemctl status  -l pdns.service
â pdns.service - PowerDNS Authoritative Server
   Loaded: loaded (/usr/lib/systemd/system/pdns.service; enabled; vendor preset: disabled)
   Active: active (running) since Thu 2018-01-04 14:39:03 CET; 237ms ago
  Process: 6403 ExecStop=/usr/bin/pdns_control quit (code=exited, status=1/FAILURE)
  Process: 6418 ExecStart=/usr/sbin/pdns_server --daemon (code=exited, status=0/SUCCESS)
 Main PID: 6419 (pdns_server)
   CGroup: /system.slice/pdns.service
           ââ6419 /usr/sbin/pdns_server --daemon

Jan 04 14:39:03 ns1.domainname.be pdns[6419]: TCP server bound to
Jan 04 14:39:03 ns1.domainname.be pdns[6419]: PowerDNS Authoritative Server 3.4.11 (jenkins@autotest.powerdns.com) (C) 2001-2016 PowerDNS.COM BV
Jan 04 14:39:03 ns1.domainname.be pdns[6419]: Using 64-bits mode. Built on 20170116223245 by mockbuild@buildhw-05.phx2.fedoraproject.org, gcc 4.8.5 20150623 (Red Hat 4.8.5-11).
Jan 04 14:39:03 ns1.domainname.be pdns[6419]: PowerDNS comes with ABSOLUTELY NO WARRANTY. This is free software, and you are welcome to redistribute it according to the terms of the GPL version 2.
Jan 04 14:39:03 ns1.domainname.be pdns[6419]: DNS Proxy launched, local port 10929, remote
Jan 04 14:39:03 ns1.domainname.be pdns[6419]: Creating backend connection for TCP
Jan 04 14:39:03 ns1.domainname.be pdns[6419]: Master/slave communicator launching
Jan 04 14:39:03 ns1.domainname.be …
I have a windows application that has it own built-in web server using https:// as https://localhost:10880/api/v1/companies/ 

It has a self-generated SSL certificate that I can't change nor add a valid certificate. I have asked the developer of the application and they are just ignoring my request

I like to use IIS web server to redirect http://app.example.com:8080 to https://localhost:10880

I have created an A Record for app.example.com pointing the IP of the server where the application is installed

Is this possible and if so how would I do this?
I use several third party softwares, to allow them to email on my domain's behalf I have to add records to my domain.
The problem I have is that two are trying to use the same host:

Host: s1._domainkey.mydomain.pro
Data:  XXX

The domain manager won't let me add the second because there is an existing one with the same 'host' information.
How can I add both using the same Host info ?
So I am a hungry PHP programmer.

And I was wondering about DNS Sec.

Godaddy wants to charge me but my balls have dropped enough to think how can I do this.

So my DNS servers - how do I do this? I will register a domain with the intention of using dns1.mydomain.net and dns2.mydomain.net.

So I could create a sub direc on my Godaddy account but how do I point servers to that?


I have a dns name onenote.mydomain.com at godaddy.com which points to
https://1drv.ms/u/s!AuBjpW9I3NC4geo_JLxfTEtjhgBhbw (= onenote), it works fine but it does not work with mask (then it does not load at all, page stays blank).

What can I do to make the masking work?

Please advise.
Who's Defending Your Organization from Threats?
Who's Defending Your Organization from Threats?

Protecting against advanced threats requires an IT dream team – a well-oiled machine of people and solutions working together to defend your organization. Download our resource kit today to learn more about the tools you need to build you IT Dream Team!

Hello, I have been having this issue for some time now and cant seem to narrow it down. We have one vendor we cant email. Everytime I lookup the error it states their server does not have sufficient disk space. I have redacted our server info. I cant seem to figure out where the error is coming from because they keep telling me their server has sufficient space. I also performed a couple of MX tests and their server seems to fail the TLS tests.

remote.TFSJax.com rejected your message to the following email addresses:
'rreyes@tfsjax.com' (rreyes@tfsjax.com)
The recipient's email system can't process this message. Please try resending the message later.
remote.TFSJax.com gave this error:
Unrecognized command

Diagnostic information for administrators:
Generating server: "my mail server"
Remote Server returned '500 5.3.3 Unrecognized command'
Original message headers:
Received: from "my mail server" by
 "my mail server" with Microsoft SMTP Server
 (TLS) id 15.0.1263.5; Fri, 29 Dec 2017 10:12:40 -0500
Received: from "my mail server" by
 "my mail server" with Microsoft SMTP Server
 (TLS) id 15.0.1263.5; Fri, 29 Dec 2017 10:12:39 -0500
Received: from "my mail server" ([fe80::b8bb:d61a:d661:452]) by
 "my mail server"([fe80::b8bb:d61a:d661:452%12]) with mapi id
 15.00.1263.000; Fri, 29 Dec 2017 10:12:39 -0500
From: "me:
To: "'rreyes@tfsjax.com'" <rreyes@tfsjax.com>
Subject: Test
Thread-Topic: Test
Thread-Index: …
I have two servers right now that are set up on my local network.

I know using Apache on Ubuntu that I edit the /etc/hosts file to create hosts (i.e. phppatternsobjectsandpractice.local) - set it to, and I can visit it on my local computer.

I want to host intranet site on one of my servers, and allow people who are connected to my network to type in a site (phppatternsobjectsandpractice.localhost) and visit the site.

Do I edit the /etc/hosts file or do I set up Bind on my two servers?

Dear All,

Thank you all for your support.I have a user that has skype issue whereby when he tries to join Skype meeting his Skype freezes & when he tries to host a Skype meeting it just hangs there no visual/audio display.

Any ideas much appreciated.
Hi Experts,

I am getting ready to demote a Domain Controller from our domain.
Yesterday I removed this server from the DNS listings of our DHCP clients.  The only DNS servers assigned were the 2 other DC that were previously there and working fine.

Once their leases were renewed and they received these settings, the internet was hit or miss.  Some sites didn't work at all while others took forever to load.  It was clear to me at the time that it was looking for the other DNS server but it was not listed in their DNS servers and even if something was referencing it, it was still available.

I ended up putting it back into the scope and all has returned to normal.  Here is my question:

Why did this happen?  Does DHCP still know of it's existence even though I removed it?
If and when I demote this domain controller, will this automatically remove it from DHCP or will/or should I do this step again after?

Thank you for your help

Had and old SBS server that died.  I seized the FSMO roles from the old SBS to the new DC.  However our remote site 2012 r2 server still shows the old SBS server as the FSMO holder and thus having all kinds of replication issues.

Would the best / easiest option be to demote the remote DC and re-join it to the domain?  Or is there some way to get it to see the changes to the FSMO without it trying to take the roles itself using ntdsutil?

 Prohibit use of Internet Connection Sharing on your DNS domain network and Don't Allow hosted networks have been enabled through GPO and I want to make sure that the GPOs are working fine.

When the GPO is applied, on Windows 10 Mobile Hotspot is disabled and on either on Windows 8.1 or 10, when the user goes in CMD with administrator privileges to create a hosted network the below occurs:

You must run this command from command prompt with administrator privilege
Attempts to start any hosted network results in the below:

The group or resource is not in the correct state to perform the requested operation.
I want to make sure that this is expected behavior as a result of the GPO. Although it is prohibiting users from creating hosted networks, I am looking for proof that these errors are actually the result of the GPO being applied. Tried looking into Event viewer but cannot find relevant events.

Any heads up on if these are actually valid errors as a result of the GPO?

Thanks in advance






The Domain Name System (DNS) is a hierarchical, globally distributed system responsible for associating the name of a computer, service or other resource into an IP address for connecting to the Internet or a private network. Most prominently, it translates domain names to the numerical IP addresses needed for the purpose of computer services and devices worldwide.