Win 2003 DNS issues

[tripex]

Hello my friends,

I'm relatively new here so, go easy on me.

One of my best friends is having serious DNS issues on his network. He has a Windows 2003 SP1 server with the latest updates available from Windows Update. He can't upgrade to SP2 because of an incompatibility with his accounting software.


Network details:

- 1 serverwith AD and domain "XYZ.local" installed/configured 2 years ago (with DNS forwarding pointing to the smoothwall server) [192.168.0.2]
- 1 smoothwall server for internet access [192.168.0.1]
- 8 workstations (Win XP SP2) [DHCP]

That's it



The kind of problems he has are:

- slow slow network/internet access for some specific computers
- ping timeouts for those computers
- one computer have like 40million received packets on the network status (windows xp)
- when on the server, if he pings some computer, they are available from more than 1 ip (Definitely a DNS thing, like a stale record or something - i fixed this by deleting the old records on the server)

 

[tripex]

Ok, i'm going to paste some of the errors i find on the DNS event viewer...

A warning:

Event Type: Warning
Event Source: DNS
Event Category: None
Event ID: 4515
Date: 19-09-2007
Time: 7:27:02
User: N/A
Computer: SERVIDOR
Description:
The zone XYZ.local was previously loaded from the directory partition MicrosoftDNS but another copy of the zone has been found in directory partition DomainDnsZones.XYZ.local. The DNS Server will ignore this new copy of the zone. Please resolve this conflict as soon as possible.

If an administrator has moved this zone from one directory partition to another this may be a harmless transient condition. In this case, no action is necessary. The deletion of the original copy of the zone should soon replicate to this server.

If there are two copies of this zone in two different directory partitions but this is not a transient caused by a zone move operation then one of these copies should be deleted as soon as possible to resolve this conflict.

To change the replication scope of an application directory partition containing DNS zones and for more details on storing DNS zones in the application directory partitions, please see Help and Support.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 89 25 00 00 ?%..

Another warning:

Event Type: Warning
Event Source: DNS
Event Category: None
Event ID: 4515
Date: 18-09-2007
Time: 16:47:35
User: N/A
Computer: SERVIDOR
Description:
The zone XYZ.local was previously loaded from the directory partition MicrosoftDNS but another copy of the zone has been found in directory partition DomainDnsZones.XYZ.local. The DNS Server will ignore this new copy of the zone. Please resolve this conflict as soon as possible.

If an administrator has moved this zone from one directory partition to another this may be a harmless transient condition. In this case, no action is necessary. The deletion of the original copy of the zone should soon replicate to this server.

If there are two copies of this zone in two different directory partitions but this is not a transient caused by a zone move operation then one of these copies should be deleted as soon as possible to resolve this conflict.

To change the replication scope of an application directory partition containing DNS zones and for more details on storing DNS zones in the application directory partitions, please see Help and Support.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 89 25 00 00 ?%..

Now an error:

Event Type: Error
Event Source: DNS
Event Category: None
Event ID: 4004
Date: 14-09-2007
Time: 18:15:24
User: N/A
Computer: SERVIDOR
Description:
The DNS server was unable to complete directory service enumeration of zone XYZ.local. This DNS server is configured to use information obtained from Active Directory for this zone and is unable to load the zone without it. Check that the Active Directory is functioning properly and repeat enumeration of the zone. The extended error debug information (which may be empty) is "". The event data contains the error.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 2a 23 00 00 *#..

 

[tripex]

Event Type: Error
Event Source: DNS
Event Category: None
Event ID: 4004
Date: 14-09-2007
Time: 18:15:24
User: N/A
Computer: SERVIDOR
Description:
The DNS server was unable to complete directory service enumeration of zone 0.168.192.in-addr.arpa. This DNS server is configured to use information obtained from Active Directory for this zone and is unable to load the zone without it. Check that the Active Directory is functioning properly and repeat enumeration of the zone. The extended error debug information (which may be empty) is "". The event data contains the error.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 2a 23 00 00 *#..

Event Type: Error
Event Source: DNS
Event Category: None
Event ID: 4004
Date: 14-09-2007
Time: 18:15:24
User: N/A
Computer: SERVIDOR
Description:
The DNS server was unable to complete directory service enumeration of zone _msdcs.XYZ.local. This DNS server is configured to use information obtained from Active Directory for this zone and is unable to load the zone without it. Check that the Active Directory is functioning properly and repeat enumeration of the zone. The extended error debug information (which may be empty) is "". The event data contains the error.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 2a 23 00 00 *#..

Event Type: Error
Event Source: DNS
Event Category: None
Event ID: 4004
Date: 14-09-2007
Time: 18:15:24
User: N/A
Computer: SERVIDOR
Description:
The DNS server was unable to complete directory service enumeration of zone .. This DNS server is configured to use information obtained from Active Directory for this zone and is unable to load the zone without it. Check that the Active Directory is functioning properly and repeat enumeration of the zone. The extended error debug information (which may be empty) is "". The event data contains the error.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 2a 23 00 00 *#..

Event Type: Error
Event Source: DNS
Event Category: None
Event ID: 4015
Date: 14-09-2007
Time: 18:15:24
User: N/A
Computer: SERVIDOR
Description:
The DNS server has encountered a critical error from the Active Directory. Check that the Active Directory is functioning properly. The extended error debug information (which may be empty) is "". The event data contains the error.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 51 00 00 00 Q...

 

[stash]

http://support.microsoft.com/d...x?scid=kb;en-us;867464

 

[RebateMonger]

As you mentioned in the first post, you have to be careful about changes to DNS/DHCP Servers. Make sure that any obsolete records are deleted. DHCP and DNS will happily keep duplicate records with both old and new IPs until the oldest ones are automatically purged. In the meantime this can cause lots of stuff to stop functioning.

 

[tripex]

Thanks, that's good info.


According to the article, i have to delete one of the zones.

- ForestDNSZones
- DomainDNSZones
- All domain controllers

How do i know which one to delete?

 

[tripex]

Whats up in this DNS issuing thread?





ooh a bump in the road!

 

[tripex]

No help?

According to the article, i have to delete one of the zones.

- ForestDNSZones
- DomainDNSZones
- All domain controllers


How do i know which one to delete?

 

[stash]

Delete the one that doesn't have the most recent zone data.