How to delete root-servers?

  • Thread starter Thread starter Stefan Kirch
  • Start date Start date
S

Stefan Kirch

Hi!

I want to set up my win2k-Server as a dns-server which resolves the
ip's from the lan (Active Directory) and forwards all other questions
to another dns-server (linux).
For security reason, I want to disable all other dns-traffic from
win2k despite from the linux-pc, so I tried to delete all root-servers
(cause win2k seems to connect several times to them - but this traffic
is completly firewalled).

But: After I delete all root-server, it takes some hour/days
(reboot?), and suddenly all root-servers appears in the dns-settings
and I one again have the dns-traffic from win2k to the root servers.

Is there a way to completely delete the root-servers, so that they
never appears again? Or is there a reason, why I MUSt have
root-servers, which I don't recognized?!?

Best regards

Steff
 
Steff,

The root hints (root server list) is kept in a file called cache.dns. There are two copies of this
file under the <systemroot>\System32\DNS folder. When you remove the list from the DNS
MMC, then reboot, they are put back because they load out of the cache.dns file. Clear the
root servers in the MMC and then delete/rename the cache.dns file (suggest renaming if you
ever want them back) and then they should not return.

But without them, understand if your forwarding DNS servers go down, your DNS will not be
able to resolve external names. The root hints server as a backup so to speak so you always
have DNS capability.

If you are seeing a lot of DNS traffic (more than you think you should), it is not the root hints
fault, as they just accept requests. There must be something else causing your issue. Most
likely some spyware/malware on your network making excessive DNS requests.

Hope this helps,
Gary
--------------------
'--'From: (e-mail address removed) (Stefan Kirch)
'--'Newsgroups: microsoft.public.win2000.networking
'--'Subject: How to delete root-servers?
'--'Date: 31 Jan 2004 04:31:40 -0800
'--'Organization: http://groups.google.com
'--'Lines: 21
'--'Message-ID: <[email protected]>
'--'NNTP-Posting-Host: 145.254.137.108
'--'Content-Type: text/plain; charset=ISO-8859-1
'--'Content-Transfer-Encoding: 8bit
'--'X-Trace: posting.google.com 1075552301 27453 127.0.0.1 (31 Jan 2004 12:31:41 GMT)
'--'X-Complaints-To: (e-mail address removed)
'--'NNTP-Posting-Date: Sat, 31 Jan 2004 12:31:41 +0000 (UTC)
'--'Path: cpmsftngxa07.phx.gbl!cpmsftngxa06.phx.gbl!cpmsftngxa09.phx.gbl!
TK2MSFTNGP08.phx.gbl!newsfeed00.sul.t-online.de!t-online.de!newsfeed.icl.net!
newsfeed.fjserv.net!colt.net!news.maxwell.syr.edu!postnews1.google.com!not-for-mail
'--'Xref: cpmsftngxa07.phx.gbl microsoft.public.win2000.networking:53289
'--'X-Tomcat-NG: microsoft.public.win2000.networking
'--'
'--'Hi!
'--'
'--'I want to set up my win2k-Server as a dns-server which resolves the
'--'ip's from the lan (Active Directory) and forwards all other questions
'--'to another dns-server (linux).
'--'For security reason, I want to disable all other dns-traffic from
'--'win2k despite from the linux-pc, so I tried to delete all root-servers
'--'(cause win2k seems to connect several times to them - but this traffic
'--'is completly firewalled).
'--'
'--'But: After I delete all root-server, it takes some hour/days
'--'(reboot?), and suddenly all root-servers appears in the dns-settings
'--'and I one again have the dns-traffic from win2k to the root servers.
'--'
'--'Is there a way to completely delete the root-servers, so that they
'--'never appears again? Or is there a reason, why I MUSt have
'--'root-servers, which I don't recognized?!?
'--'
'--'Best regards
'--'
'--' Steff
'--'


--

This posting is provided "AS IS" with no warranties, and confers no rights. Use of included
script samples are subject to the terms specified at http://www.microsoft.com/info/cpyright.htm

Note: For the benefit of the community-at-large, all responses to this message are best
directed to the newsgroup/thread from which they originated.
 
You need to delete the "." zone and configure a fowarder to the Linux DNS
server. See 298148 HOWTO: Remove the Root Zone (Dot Zone)
http://support.microsoft.com/?id=298148

--

Thanks,
Marc Reynolds
Microsoft Technical Support

This posting is provided "AS IS" with no warranties, and confers no rights.
 
Back
Top