DNS issues.. Please help

  • Thread starter Thread starter Darren
  • Start date Start date
D

Darren

I have a Win2000 DNS server that has been configure with a secondary DNS
zone and have been working for months without any problems, however
recently I notice that every day or so when my Win2000 performs a DNS zone
transfer (occurs automatically in the background) all my DNS entries are
being dropped form my secondary zone file, however if I delete and recreate
my secondary zone file and force a transfer my DNS entries are recreated
until the next DNS cycle of automatic zone transfer occurs.?
Any idea's why this is occurring, in addition does DNS transfer uses RPC for
zone transfers ?
I think I ma have a network connectivity issue, hover I need to proof so I
can address this issue with my WAN team..

Thanks
 
You are not supposed to be adding anything to the zone on the secondary
server. All your addition to the zone should be done on the Primary server
hosting the zone. The complete zone is being transfered from the primary to
the secondary, and whatever you have in your secondary is being conveniently
overwritten by the authoritative source (the Primary)

HTH
Deji
 
Deji,
I'm confused by your response, perhaps I didn't explain my problem
correctly. I'm simply doing a zone transfer from a primary DNS server. The
zone is stored on anther Win2000 server as a secondary zone file. I haven't
added any entries on the secondary, in fact I would not be Able to since
this is a secondary zone..
Hope this clarify my problem..
Thanks
 
In
Darren said:
I have a Win2000 DNS server that has been configure with a secondary
DNS zone and have been working for months without any problems,
however recently I notice that every day or so when my Win2000
performs a DNS zone transfer (occurs automatically in the background)
all my DNS entries are being dropped form my secondary zone file,
however if I delete and recreate my secondary zone file and force a
transfer my DNS entries are recreated until the next DNS cycle of
automatic zone transfer occurs.?
Any idea's why this is occurring, in addition does DNS transfer uses
RPC for zone transfers ?
I think I ma have a network connectivity issue, hover I need to proof
so I can address this issue with my WAN team..

Thanks
Click to expand...

Zone transfers, based on the RFC, do not use RPC. However, they do require
TCP and UDP 53 opened. In some cases with Microsoft DNS, they also require
the emphereal port opened too, which is UDP > 1023.

Do you have a firewall between them? What exactly does the WAN team have
going on as far as restrictions?


--
Regards,
Ace

Please direct all replies to the newsgroup so all can benefit.
This posting is provided "AS IS" with no warranties.

Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MVP
Microsoft Windows MVP - Active Directory
 
OK, I know there's something I'm missing. Unfortunately, I still do not
quite understand the problem.

When you mentioned "zone file", I automatically assumed that you are editing
the file by hand. Now, it seems that that is not what you meant. Could you
try to be more exact in the description.

Deji
 
Hi, Ace
The WAN team claims all ports are open between both DNS server and there is
no firewall between both DNS servers. I did a tracert and confirm that
traffic is not being routed between any firewall. I Is there a tool I can
used to confirm that the required ports are open on the destination DNS
server, I think MS has a tool call portqry.exe. Do you have any other idea's
I can try..

Thanks again..
"Ace Fekay [MVP]"
 
In
Darren said:
Hi, Ace
The WAN team claims all ports are open between both DNS server and
there is no firewall between both DNS servers. I did a tracert and
confirm that traffic is not being routed between any firewall. I Is
there a tool I can used to confirm that the required ports are open
on the destination DNS server, I think MS has a tool call
portqry.exe. Do you have any other idea's I can try..

Thanks again..
"Ace Fekay [MVP]"
Click to expand...

There are many scanners you can use for this. I use NMAP, Superscan,
Languard, Retina and a number of others. NMAP and Superscan are free. It
maybe easier for you to use Superscan, if not familar with scanning options,
etc. You can find that at www.foundstone.com, among a bunch of other cool
free network tools.

But you can simply use nslookup to see if the DNS server is responding.

nslookup
server <type in it's IP address here>
set type=any
microsoft.com
(you should see a bunch of stuff come back)

If that doesn;'t work, try this setting next:

set vc

That will force it to use TCP instead of UDP. If this works, then it';s
saying that there are rules blocking UDP traffic.

Hope that helps



--
Regards,
Ace

Please direct all replies to the newsgroup so all can benefit.
This posting is provided "AS IS" with no warranties.

Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MVP
Microsoft Windows MVP - Active Directory
 
D> all my DNS entries are being dropped form my secondary zone file,

What DNS entries ? What makes you think that they are being "dropped" ?
Please provide a proper description of your problem, _describing what you
actually observe_, not simply giving your guess as to what is happening
and expecting us to work from that.

<URL:http://homepages.tesco.net./~J.deBoynePollard/FGA/problem-report-standard-litany.html>

D> does DNS transfer uses RPC for zone transfers ?

No.

D> I think I ma have a network connectivity issue, [...]

You say that "zone transfer" database replication is succeeding. If so,
IP connectivity is not your problem.

D> hover I need to proof so I can address this issue with my WAN team..

It's unlikely that you'll be able to prove this to others, given that
from what you tell us it isn't actually your problem.
 
Back
Top