Tommy.Thompson wrote:
> Why are we getting incorrect cached DNS info for some internet
> domains over and over again, but only on the internal DNS servers in
> one of my two sites?
This sounds like something fishy / malicious is going on at one of your
sites.
I would wonder if someone / something is messing with the DNS traffic or
the DNS cache.
> Where is the incorrect info coming from? Why is it only a problem
> with my WI DNS servers? Is there anything I can do to correct the
> problem even though the source of the incorrect information comes
> from outside my network?
For giggles, try setting up an additional zone at the WI site that is
the same as the DNS zone that is causing problems. I.e. spoof the zone
for your own purposes. Set up an MX record and any thing else you need.
See if the problem returns. If it does not, then there is a chance
that something is interfering with / modifying the DNS server's queries
out to the world. Is your ISP doing some less than nice things with
your traffic?
If the problem does return, then it is probably either stale information
in the DNS zone(s) that you are spoofing, or someone is messing with
your DNS server's cache.
Just my two cents worth at 1:15 in the morning. Take it for what it
is(n't) worth.
Grant. . . .
|
Linear Mode
