Re: Scavenging DNS records

From: Nancy Kafer (nkafer_at_homesteaderslife.com)
Date: 12/07/04 

Date: Tue, 7 Dec 2004 12:22:13 -0600

Thanks for the advice. Here's my dilemma. I am trying to remote control
these remote laptops however, I am running into an issue where more than one
machine is registered in DNS with the same IP. This happens because these
addresses are being used for VPN connections. When I try to control the
laptop from SMS it uses the IP address and is trying to control the wrong
machine.

Is there a better way to keep DNS cleaned up so this doesn't happen? I've
thought about just assigning static IP addresses to these users via a
DHCP/MAC address match. However the issue I run into here is that I need to
be able to assign the address to the network adapter on the VPN client.

Thanks.

Nancy

"Herb Martin" <news@LearnQuick.com> wrote in message
news:%23u%23axfH3EHA.1152@TK2MSFTNGP14.phx.gbl...
> "Nancy Kafer" <nkafer@homesteaderslife.com> wrote in message
> news:#kGQlIH3EHA.1452@TK2MSFTNGP11.phx.gbl...
> > I have configured my DNS server according to the HOWTO: article on
> > Microsoft's website. I have set the refresh interval and no-refresh
> interval
> > to 1 hour.
>
> Don't do this unless you are absolutely sure that 1) you
> REQUIRE this and 2) you have TESTED it.
>
> Especially if you have WANS.
>
> Scavenging should seldom be set faster than the default
> of 2-3 weeks.
>
> > I also set the automatic scavenging property on the DNS server
> > itself to 1 hour. When I look at my DNS records I see records that I
think
> > should have been scavenged because the time to scavenge property is
> earlier
> > than the current time + the no-refresh interval + the refresh interval.
> >
> > Why are these records not being scavenged? Here's my dilemma. I have
> remote
> > users that VPN into our network. Right now if I look at the DNS records
> for
> > the IP addresses that are associated with my VPN users I see multiple
> > records for a particular IP address. I need these records to disappear
as
> > soon as possible after the user disconnects their VPN connection. How
can
> I
> > achieve this?
>
> If you lose connection between AD integrated DNS DCs
> for more than the scavenging period they will scavenge
> each other's records and lose connectivity -- requiring you
> to re-initialize you DNS and then your AD replication from
> (near) scratch.
>
>

Relevant Pages

  • Re: Scavenging DNS records
    ... > addresses are being used for VPN connections. ... > Is there a better way to keep DNS cleaned up so this doesn't happen? ... > be able to assign the address to the network adapter on the VPN client. ... >>> I also set the automatic scavenging property on the DNS server ...
    (microsoft.public.windows.server.dns)
  • Re: Scavenging DNS records
    ... Scavenging should seldom be set faster than the default ... When I look at my DNS records I see records that I think ... > users that VPN into our network. ... If you lose connection between AD integrated DNS DCs ...
    (microsoft.public.windows.server.dns)
  • Re: Duplicate HOST A record entries on the reverse lookup Zone
    ... then 24 and did the manual/ start scavenging of the stale resource records ... Used the DHCP server to update DNS records: ... "Set Aging/Scavenging for All Zones. ...
    (microsoft.public.windows.server.dns)
  • Re: DNS Scavenging
    ... We are planning to turn on DNS Scavenging and are ... Not to delete the DNS record when it becomes stale etc.. ... The nice thing about DHCP ... Force DHCP to register all records, Forward and PTR, (whether a client ...
    (microsoft.public.windows.server.active_directory)
  • Re: Always need to re-register DC DNS entry!
    ... Scavenging time must be longer than registration refresh interval. ... The registry value below can be found in this KB: ... How to configure DNS dynamic updates in Windows Server 2003 ... scavenging and with client computers moving from one site to another ...
    (microsoft.public.windows.server.dns)