Windows Vista Tips
Home Register Members Search Windows Vista Tips File Database Links
Member Login:

Windows Vista Tips > Newsgroups > Windows Server > DNS Server > DNS Scavenging questions

Reply
Thread Tools Display Modes

DNS Scavenging questions

 
 
Barkley Bees
Guest
Posts: n/a

 
      07-06-2009
I'm currently planning to perform DNS scavenging on one of our primary
forward lookup zones (AD integrated). We have 3 Win2003 Domain Controllers
all running DNS in our environment.

Before proceeding, however, I have a few items that need some clarification
and I would appreciate any advice from those in the know:

[1] Several days ago I went through the DNS records for this zone on our
primary DC to remove the "delete this record when it becomes stale" checkbox
from our static entries (server dns records). I went back today to recheck
them and I see that once again they are set to be deleted when they become
stale again. Why is this happening? I see on the other DC's that the same
record is not set for deletion though.

[2] In the forward zone I want to scavenge, there are the following sub
folders with records that are all set to delete when they become stale:

- _sites\Default-First-Site-Name\_tcp\ (_ldap record for each DC)
- _tcp (_gc, _kerberos, _kpasswd, _ldap records for each DC)
- _udp (_kerberos, _kpasswd records for each DC)
- DomainDNSZones (A record for each DC)
- DomainDNSZones\_tcp\ (_ldap record for each DC)
- DomainDNSZones\_sites\Default-First-Site-Name\_tcp\ (_ldap record for each
DC)
- ForestDNSZones (A record for each DC)
- ForestDNSZones\_tcp\ (_ldap record for each DC)
- ForestDNSZones\_sites\Default-First-Site-Name\_tcp\ (_ldap record for each
DC)

Should I be unchecking the "delete this record when it becomes stale" for
all these records on all 3 domain controllers?

[3] I realize that I must set scavenging at the server level and at the zone
level but do I want to set scavenging on all 3 DC's or just one? The DNS
zones are set to replicate "to all DNS servers in the Active Directory
domain".

Appreciate any feedback or advice anyone can offer on this matter. Thanks.
 
Reply With Quote
 
 
 
 
Chris Dent
Guest
Posts: n/a

 
      07-06-2009


Hi Barkley Bees,

Please see in-line.

> [1] Several days ago I went through the DNS records for this zone on our
> primary DC to remove the "delete this record when it becomes stale" checkbox
> from our static entries (server dns records). I went back today to recheck
> them and I see that once again they are set to be deleted when they become
> stale again. Why is this happening? I see on the other DC's that the same
> record is not set for deletion though.

The servers in question will still have permission to update the record.
They will update the timestamp, and therefore update that box. If you
see differences between DCs check replication (or allow time for
replication).

I advise you allow those records to be scavenged anyway. For Host (A)
and Pointer (PTR) records the DHCP Client service will update each once
every 24 hours (this applies to clients with static IP addresses).

Making them completely static just gives you more work to do should you
decommission a server in teh future.

> [2] In the forward zone I want to scavenge, there are the following sub
> folders with records that are all set to delete when they become stale:
>
> - _sites\Default-First-Site-Name\_tcp\ (_ldap record for each DC)
> - _tcp (_gc, _kerberos, _kpasswd, _ldap records for each DC)
> - _udp (_kerberos, _kpasswd records for each DC)
> - DomainDNSZones (A record for each DC)
> - DomainDNSZones\_tcp\ (_ldap record for each DC)
> - DomainDNSZones\_sites\Default-First-Site-Name\_tcp\ (_ldap record for each
> DC)
> - ForestDNSZones (A record for each DC)
> - ForestDNSZones\_tcp\ (_ldap record for each DC)
> - ForestDNSZones\_sites\Default-First-Site-Name\_tcp\ (_ldap record for each
> DC)
>
> Should I be unchecking the "delete this record when it becomes stale" for
> all these records on all 3 domain controllers?

No.

The NetLogon Service on the DC will maintain those registrations,
performing a Refresh once every 24 hours.

> [3] I realize that I must set scavenging at the server level and at the zone
> level but do I want to set scavenging on all 3 DC's or just one? The DNS
> zones are set to replicate "to all DNS servers in the Active Directory
> domain".

Just one. The settings on the zone will replicate to each server. And
the Scavenging task (Server Properties / Advanced) should only run on
one DNS server.

Because of the update intervals mentioned above I strongly recommend you
do not consider setting the Refresh Interval lower than 24 hours.

HTH

Chris
 
Reply With Quote
Reply

« 2000 Server netdiag DNS FATAL Error | dnslint error - not authoritative »
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
DNS Scavenging questions Barkley Bees Server Networking 3 08-25-2009 02:33 PM
DNS Scavenging questions Barkley Bees Windows Server 3 08-25-2009 02:33 PM
Re: Scavenging Herb Martin DNS Server 1 01-30-2007 03:17 PM
Scavenging Questions Cyberndj DNS Server 9 10-12-2004 03:10 AM
Scavenging Martin H.T. Ngo DNS Server 0 06-04-2004 05:15 PM


Forum Software Powered by vBulletin®, Copyright Jelsoft Enterprises Ltd.
SEO by vBSEO 3.3.2 ©2009, Crawlability, Inc.
Contact Us - Windows Vista Tips - Archive - Privacy Statement - Top

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59