The Domain Name System (DNS) is a hierarchical, globally distributed system responsible for associating the name of a computer, service or other resource into an IP address for connecting to the Internet or a private network. Most prominently, it translates domain names to the numerical IP addresses needed for the purpose of computer services and devices worldwide.

Share tech news, updates, or what's on your mind.

Sign up to Post

When I setup a new server is it better to have dhcp and DNS running off the router instead of the server.

The reason why I ask is if the server ever goes down they will still be able to have internet.

Especially if our client is far away.
DNS configuration for ESX hostname

I have configuration ESX hostname and DNS suffix in DCUI, but when I ping it by name it does not resolve.

DNS Setting in Windows TCP/ IP

on the Screenshot below , there is a configuration of network adapter for TCP/IP , and in the DNS part, we can see the primary DNS is pointing to the local server where DNS services are installed in the Alternate it is pointing to Google DNS.

Now, does that mean any name resolutions for local network will be resolved by the server , and if it is outside the network it will be resolved by Google DNS ?

If I remember, it used be that Alternate DNS will never be used unless if the primary DNS is down...and both IP address will point to DNS servers on the local Network not on the Internet.


Thank you
Working through some issues on a Server 2016 Essentials server and noticed that the remote web access portal site (remote,domain.com/remote) is not accessible internally (on the LAN) but works fine externally. If I ping the site internally from the Server 2016 Essentials server, it replies back with the public IP address of the server. This seems correct and matches what we see on other Server 2016 Essentials servers with Anywhere Access/RWA working internally and externally. Likewise, if we compare DNS settings (Forward Lookup Zones) between working and non-working servers, settings appear to be the same.

Internally, if I enter the public IP in a browser, the page does not resolve. Externally, it does resolve, as does the DNS address - remote.domain.com/remote.

Running the Anywhere Access repair wizard did not address the issue. It completes successfully, but does not allow us to access the site internally on the same LAN as the server. Doesn't matter if I try from the server itself or a client workstation.

We are having exchange certificate issue, We have an internal domain with [u].local[/u] and External domain with [b].com[/b], We have certificate from godaddy for [b].com[/b] external URL and applied it to our exchange server. i have dns record pointing to from .com to .local host.
We have two 2003 domain controllers. I would like to make the backup the primary, and the primary the backup.

What are the steps to do this?

It's 2020 and I'm having a hard time finding any material online that goes over this. Thanks.
Hello everyone,
Today we worked on installing a new server at an office that has around 50 users.  We planned out and deployed a server migration from Server 2008 R2 to Server 2019.  

All worked well, FSMO, DHCP, DNS, everything moved over without a hitch.  After modifing the login script to recognize the new file server, all users were able to login without any problem and access files.

That all changed about an hour later.  A network connection was disconnected from the new server.  And ever since then, the computers have slowed to pas a crawl.

Like it literrally takes 15-20 mins just to LOG IN!  
Once logged in, you simply can't click any applications or even the start menu.  They aren't locked, just every operation takes minutes when they should be mili-seconds.

I started investigating.  One issue I found was the GPO objects didn't move from the old server.  So when I tried to modify them in the GPO manager, it gave errors saying it couldn't be found.  So I copied them out of SYSVOL on that old server.  Great.  I was now able to edit those GPOs.  

I cleaned up some DNS entries, but I cannot find anything in the event log of any of the servers to indicate any problems.  Since the workstations are soooooooooooo slow, I can't even open the event viewer to see what is going on.  Every command I send it, times out.  I can't find any errors in DNS or DCDIAG.  

Please help

I have been asked to evaluate/review approximately 150 servers on our network, ranging from Server 2008 to Server 2019 list in  a spreadsheet with very limited information.   Just primary roles. (e.g. DC, DNS, RODC, SCCM Distribution Point, File and Print server, etc.)   It also lists Hyper-V, Hyper-V on workstation, etc.  

I don't have the owner information so I can't reach out to each and ask "what is this and what's it for?  The objective is to go through this giant list and label each with a "priority #" to either decommission it, upgrade the existing OS, determining the utilization of each server, apps installed, roles installed, etc.   I then need to be able to share my findings with the rest of my team so we can then determine the effort necessary to migrate, upgrade or decommission the server(s) as we look forward to our newest 2016 functional level infrastructure.  Fro example, there are 14 RODCs at branch sites, but Sites and Services is not configured properly, so that could be a priority #1 (through 5) for us.   How do you experts approach these types of tasks and projects?   What do you break things down to and label it as to what should happen to each server and where it should reside, e..g Azure.

Thanks for any information you can provide.
I know there are numerous, ongoing discussions about the best naming convention for your internal Domain. The situation I encounter with almost all of my new clients is this:
> They need an in-house Domain Controller
> They will use Office365 (and sometimes/rarely gmail) for email hosting
> They need VPN access (using Server 2016 Remote Access via the Essentials Role)

I have always used .local for the internal domain name. Some have said / warned to not use that going forward. However, my clients only have the above requirements - none are hosting in-house Exchange, Websites, etc.

So is .local still a reasonable choice?
Seems so, since the Server 2016 Essentials Experience setup wizard defaults to .local as an internal domain choice...
Windows Server DNS not updating
I recently brought a windows 2016 Server into my network. This server was originally configured on a different Subnet but in the same domain. I have already statically assigned a new IP in my subnet.  The problem is the DNS record is still holding on to the old IP. So far this is what I have tried:
Check my network settings and DNS Suffiix.  Ran: (Ipconfig /registerdns)  and (Ipconfig /flushdns) and
I removed the server from the domain and added it back.
I check my Event logs and I do see that my DNS request is getting rejected but I’m not sure if it’s getting rejected from the DNS Server side. I don’t have admin access to the DNS Servers to see if the request is coming from the server with the problem. Here is the error I got:

The system failed to register host (A or AAAA) resource records (RRs) for network adapter
with settings:  Adapter Name : {K8A99A7D-48A1-5343-A82D-CDE738DD9A3D}
           Host Name : test-Server2K16SA
           Primary Domain Suffix : ABC.com
           DNS server list :
               X.X.X.X, X.X.X.X
           Sent update to server : <?>
           IP Address(es) :
             (New IP address)

The reason the system could not register these RRs was because the DNS server contacted refused the update request. The reasons for this might be (a) you are not allowed to update the specified DNS domain name, or (b) because the DNS server authoritative for this name does not support the DNS dynamic …
I am trying to confirm if there will be a EMAIL / WEBSITE outage due to making changes to DNS provider / changing WHOIS tech contact or any other unforseen changes

  • website domain is xyz.com DNS managed by MNSI.NET and currently hosted by go daddy

  • Email domain is also xyz.com hosted by office 365 and emails MX record hit barracuda email security cloud service first

  • We are launching a new website no longer going to be hosted by go daddy and DNS hosted by a different provider other than MNSI.NET

What can cause a outage to EMAIL and or website with what we are going?
Dear Experts,

I created the RDS service in my domain controller, I like to change the URL link from Https://domaincontrol.domain.local/rdweb to https://RemoteApp.Domain.local/rdweb using the DNS

Can you please guide me to achieve that.

Thank you

I am running a Windows 2016 server, for some reason this server will let me remote into it but I can’t ping the server from another machine on the same Network also the server is not updating in DNS.
When I receive the server, it was configure in my domain but on a different subnet so right now the nsLookup is still resolving the old DNS record. I don’t have access to the DNS Server to see the A-record.
Things I have tried:
•      Ipconfig /flush DNS
•      Ipconfig /registerdns

I think the issue is in maybe in the Windows Firewall but I’m not sure where to look.

Thank You.
I called my ISP and they confirmed that I do have a reverse DNS PTR record.  I don't know why I'm still getting employees that are getting this error message from my server.
i checked mxtoolbox and it does show that I have a reverse DNS PTR on record, so I'm not sure where some of these emails are coming from.

Any suggestions?

Diagnostic information for administrators:

Generating server: mail.mydomain.org


Remote Server returned '554 5.0.0 <mx1.comcast.net #5.0.0 smtp; 554 resimta-po-06v.sys.comcast.net resimta-po-06v.sys.comcast.net Comcast requires that all mail servers must have a PTR record with a valid Reverse DNS entry. Currently your mail server does not fill that requirement. For more information, refer to: http://postmaster.comcast.net/smtp-error-codes.php#554
I am setting up a new Windows 2019 Server for a customer.  The way I was taught in the past was to add the role of DNS server to the DC and use the router for the DHCP to the PCs.  I have done it successfully on several servers but it seems convoluted and possibly not correct and efficient.  I do have one customer where the DC is both the DHCP server and DNS server and have not had any issues.  The DNS is configured properly with the interfaces and forwarders and DHCP turned off in the SonicWall.  DHCP is configured with the scope and all of the correct parameters.  I would like to get some opinions as to which way to go.  It seems to me it would be best practice to allow the DC to do both.  What are the pros and cons (if any) using this method?
Thank you in advance,
Dear Experts
We have main office with Windows AD as DNS and DHCP server, we have following requirement
1.      Branch office is connected over MPLS network to main office, branch office IP subnet is and main office network is 109.0/24 both the networks can talk to each other, we would like to join the branch office systems to the main office Windows AD domain. Please suggest how and where to add this IP subnet in the windows AD so that branch office different IP subnet gets resolved with main office Windows AD, please help with steps on “HOW TO”
2.      Few home users connect to the office network using Cisco Anyconnect client VPN software with the IP pool series. please suggest where in windows AD to configure this IP pool so that this gets resolved via windows AD DNS.
Thanks in advance.
I have a DNS entry to host name which resolve to two or more IP address. It seems like we are getting MITM warning due to this intentional configuration. What is the way to overcome this. Should we disable StrictHostKeyChecking but that would not be a good idea. I am wondering what is the recommendations.
I have 3 cisco routers with gateway to gateway vpns setup. Location 2 can ping the local domain (mydomain.local which resides at Main Location1) and everything works just fine. Users can connect to the domain perfectly.

Location 3 cannot ping mydomain.local or the netbios name of the server at MainLocation1. I can ping the ip address of the server at MainLocation1.

MainLocation 1 (Where the server resides)
Location 2 (satellite office)
Location 3 (satellite office).

On the workstation at Location 3 I manually assigned dns 1 to the server's ip.

Other details: All of the routers are the same. Any help I can get would be much appreciated!
I currently host my own exchange 2016 server internally.   I currently have a .org domain.
I just created a new DNS lookup zone of .com for the same domain, both internally and externally, in external DNS.

I also added under exchange, under accepted domains, the new domain.com, but I'm still not able to receive emails externally.

Internally, I can send from my .org email to my .com email, and works fine, but just doesn't work when I send an email from my gmail to my .com email address.

Can anyone point me in the right direction?

I have a second domain in different AD forest and I need need to remove it. Can I just delete all computers in that domain including DC and clear DNS? Is there that enough?

Domain and Forest level: Windows Server 2012 R2

I have a windows server 2012R2 for DHCP and DNS.

I am reviewing my reverse lookup zones in my DNS server and I have a lot of computers in there with the same name, but with different IPs.
What is the best way to clean it up?  Can I just delete every entry for every reverse lookup zone?
Every time I try to update the offline address book in Outlook, either fully or just changes, I get this error: 0x8004010F: The operation failed. An object could not be found.

Already tried this:
To resolve this issue, add a host (A) record in DNS for Autodiscover.domain.com and point to the Exchange 2007 server that has the Client Access server role. For example, if the user’s primary SMTP address is user@contoso.com, the host (A) record you need to add is: autodiscover.contoso.com A <IPaddress>. For mor
Im getting this error when opening DFS. I would appreciate any help I can get. \\mydomain.com\public. The namespace cannot be queried. The specified domain either does not exist or could not be contacted.

I looked in DNS and there is an SRV record for it. Amy I looking in the wrong place?

Here is a clue... from the secondary dc, I cannot ping the PDC by the FQDN. It will ping without the domain extension.
Running a pretty small LAN here with a few servers.

All the sudden we have one of them (2012R2 member server, hosting an SQL instance, but probably irrelevant) acting up

logging as local admin I can ping both our DNS servers and domain controllers... Not exactly sure what is going on.

What set of diagnostic can I run to trace this ?
I'm setting up Office 355 hosted Exchange for a client. To verify domain ownership to Microsoft O365, I have to add a DNS text record to the domain. I've done this yesterday, but the setup process in O365 can't find my txt record, and does show me some found text records that don't exist on this clients domain. Upon a closer look, the domain DNS servers have been set to servers with an other organization that hosts this clients web site. Will adding a third DNS server (the domain default) to the list in the domain cpanel fix the communication error, or will I have to figure out who is hosting the web and get them involved?






The Domain Name System (DNS) is a hierarchical, globally distributed system responsible for associating the name of a computer, service or other resource into an IP address for connecting to the Internet or a private network. Most prominently, it translates domain names to the numerical IP addresses needed for the purpose of computer services and devices worldwide.