Re: Event ID: 5504
From: Ace Fekay [MVP] (PleaseSubstituteMyActualFirstName&LastNameHere_at_hotmail.com)
Date: 07/06/04
- Next message: James W. Long: "W2k Server definately needs a UPS"
- Previous message: John Shaw: "Use dnscmd or script to add subdomain"
- In reply to: InBan: "Re: Event ID: 5504"
- Next in thread: InBan: "Re: Event ID: 5504"
- Reply: InBan: "Re: Event ID: 5504"
- Messages sorted by: [ date ] [ thread ]
Date: Tue, 6 Jul 2004 14:13:51 -0400
In news:B77DB15D-58B7-45B1-91A5-890B17BB8C0D@microsoft.com,
InBan <InBan@discussions.microsoft.com> asked for help and I offered my
suggestions below:
> Its good to know I'm not the only one this is nagging at. Some of the
> other guys in IT in my organization didn't seem very interested in
> trying to pin this one down, but there is just something about it
> that bothers me.
>
> A note on my config; no forwarders to external servers are used, all
> clients use only internal DNS. Internal DNS servers are configured to
> use root hints. 127.0.0.1 is not used to specify a DNS server in the
> servers IP Config. Internal DNS servers are configured to use
> themselves, by their static assigned IP, and their peers.
>
> Here is some real food for thought. Check out the details of this
> packet capture. The first packet is a query sent to a root hint
> server (source and destination are the ip of the internal DNS server
> and the gateway). The second packet is the response from the root
> hint. The response is from a different root hint than the query was
> sent to, there are just so many of these I just grabbed two, they are
> all essentially identical.
>
> (note I doctored it a little because I don't like exposing my
> internal IP addresses to the world, though a determined individual
> could pull the info from the hex, it would be rather pointless.):
>
<snip>
The expiration, retry and refresh interval usually is based on the zone
data, but that's strange.
That is also strange that 192.112.36.4 would respond to a query originally
sent to 192.228.79.201. Ian, do me a favor and set a forwarder and let me
know what happens. Usually in most cases we recommend forwarding for a
number of reasons, main one is to offload the recursion processing to
another server. I usually mention to use 4.2.2.2, or you can use whatever
you like that supports the RA bit.
-- Regards, Ace Please direct all replies ONLY to the Microsoft public newsgroups so all can benefit. This posting is provided "AS-IS" with no warranties or guarantees and confers no rights. Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MVP Microsoft Windows MVP - Active Directory HAM AND EGGS: A day's work for a chicken; A lifetime commitment for a pig. -- =================================
- Next message: James W. Long: "W2k Server definately needs a UPS"
- Previous message: John Shaw: "Use dnscmd or script to add subdomain"
- In reply to: InBan: "Re: Event ID: 5504"
- Next in thread: InBan: "Re: Event ID: 5504"
- Reply: InBan: "Re: Event ID: 5504"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
