Spooky DNS problem

Tech-Archive recommends: Repair Windows Errors & Optimize Windows Performance

From: mcron (mcron_at_discussions.microsoft.com)
Date: 12/14/04 

Date: Tue, 14 Dec 2004 12:01:03 -0800

I have two W2K DNS servers (dns1 and dns2) to support AD (standard zones, not
AD-integrated) and to resolve Internet names via forwarders. Each is
configured with forwarders to our ISP's two DNS servers. Internal clients
point to dns1 first and then dns2. I have had several instances where a user
is trying to access a web site and the page that loads is afternic.com (not
the requested page) and it indicates that the requested domain is for sale.
I examine our DNS server's cache and see that our DNS server does not have
the correct host record for the requested URL. I compare this to a lab
machine that uses a different DNS server and I can successfully navigate to
the requested URL from this machine. I clear the DNS server cache and run
ipconfig /flushdns and both the user and I can successfully navigate to the
requested URL.

If I understand how DNS and forwarders work correctly, the only zones the
DNS servers "know" are the forward and reverse lookup zones that I have
configured. Everything else it "learns" from the DNS server configured as
forwarders (our ISP's DNS servers). After the TTL for the records expire,
the DNS server "forgets" what it "learned".

It appears that our DNS servers are "learning" an incorrect ip address for
the requested URL . That is hard to believe since we are using a Tier-1 ISP.

Can anyone shed some light on what might be happening here?

Thanks in advance for your help.

McR

Relevant Pages

  • Re: Forworders or Root Hints?
    ... internal network)" You can have your own Cache only DNS server without being ... messup my internal DNS server. ... time I saw an issue with forwarders was with a client that had their DNS ... work (for obvious reasons), at last you have Conditional Forwarding ...
    (microsoft.public.windows.server.dns)
  • Re: Missing Forwarders
    ... > zone, then delegate all the domains to the proper DNS server. ... > internet access at all this will work fine and it disables forwarders. ... Root zones all deleted. ...
    (microsoft.public.win2000.dns)
  • Re: large amount of DNS errors
    ... Are these four forwarders required, ... a forwarder if it wont do recursion ... We're getting alot of the following errors on our DNS server. ... 1000s of errors so cant be good for the system! ...
    (microsoft.public.win2000.dns)
  • Re: DNS forwarders not working
    ... >>> So my solution was to set up DNS forwarders on my DNS server to try ... >>> resolve the third party queries using a forwarder to their server. ... Their DNS server will to resolve Internet FOR YOU? ... > get EITHER internet or 3rd party working but not both a the same time. ...
    (microsoft.public.win2000.dns)
  • Re: recursion
    ... his cache and asks the forwarders. ... Why would I disable recursion at the Advanced tab? ... disabling recursion on a DNS server happens when DNS clients are to be limited to resolving names authoritatively managed on a specific server. ... this is the case when a DNS server has only DNS names data for an internal network or when the DNS server is incapable of resolving external DNS names and clients are expected to retry another DNS server to resolve these names. ...
    (microsoft.public.windows.server.dns)